last executing test programs:

6m22.015667507s ago: executing program 2 (id=8245):
r0 = syz_open_dev$vim2m(&(0x7f0000000140), 0x8, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0285628, &(0x7f0000000240)={0x1, @win={{}, 0x1, 0x0, 0x0, 0x0, 0x0}})

6m21.900686044s ago: executing program 2 (id=8249):
r0 = socket$pppl2tp(0x18, 0x1, 0x1)
connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e21, @private=0xa010101}, 0x0, 0x4, 0x4, 0x4}}, 0x26)

6m21.727842559s ago: executing program 2 (id=8251):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000340)=@raw={'raw\x00', 0x3c1, 0x3, 0x430, 0x0, 0xc8, 0x8, 0x0, 0x5803, 0x360, 0x2e8, 0x2e8, 0x360, 0x2e8, 0x3, 0x0, {[{{@uncond, 0x0, 0x198, 0x200, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x10, 'fsm\x00', "cfcfcf0c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1a, 0x0, {0x80000}}}, @common=@frag={{0x30}, {[0x6, 0x3], 0x3, 0x2, 0x1}}]}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x17, 0x3, 0x6, 0xc0000000, 'pptp\x00', 'syz0\x00', {0xe6}}}}, {{@ipv6={@rand_addr=' \x01\x00', @rand_addr=' \x01\x00', [0xff, 0xffffff00, 0xff000000, 0xff], [0xff, 0x0, 0xffffff00], 'wg0\x00', 'nicvf0\x00', {0xff}, {}, 0x0, 0xc0, 0x0, 0x14}, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x4, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00', {0x4}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x490)

6m21.600684168s ago: executing program 2 (id=8253):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000100)=ANY=[@ANYBLOB="28000000430001002dbd7000fcdbdf25020000000c0008000800000000000000050001"], 0x28}, 0x1, 0x0, 0x0, 0x40001}, 0x240040c0)

6m21.399695017s ago: executing program 2 (id=8256):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000000)=ANY=[@ANYBLOB="6000000002060108000034e4000000000a000000050001000600000005000400000000000900020073797a2900000000050005000a00000011000300686173683a69702c706f72740000000014000780050014002800000008000840"], 0x60}}, 0x2)

6m21.318990667s ago: executing program 2 (id=8258):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000041c0)=ANY=[@ANYBLOB="140000002600010026bdf000fcdb080006"], 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20048000)

6m5.162414648s ago: executing program 32 (id=8258):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000001ac0)={&(0x7f00000041c0)=ANY=[@ANYBLOB="140000002600010026bdf000fcdb080006"], 0x14}, 0x1, 0x0, 0x0, 0x4000d}, 0x20048000)

3m12.690195516s ago: executing program 1 (id=11951):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
setsockopt$inet_int(r0, 0x0, 0x33, &(0x7f0000000040)=0x80000001, 0x4)

3m12.572817024s ago: executing program 1 (id=11952):
syz_mount_image$vfat(&(0x7f0000003880), &(0x7f0000000e80)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0, &(0x7f00000004c0)={[{@fat=@umask={'umask', 0x3d, 0x4}}, {@shortname_lower}, {@uni_xlate}, {@rodir}, {@fat=@sys_immutable}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'iso8859-3'}}, {@shortname_winnt}, {@shortname_mixed}, {@numtail}, {@uni_xlateno}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'macceltic'}}, {@fat=@codepage={'codepage', 0x3d, '862'}}, {@utf8}, {@utf8no}]}, 0x1, 0x2b9, &(0x7f0000000200)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000000c0)='blkio.throttle.io_service_bytes_recursive\x00', 0x275a, 0x0)

3m12.295026218s ago: executing program 1 (id=11957):
timer_create(0xfffffffffffffffd, 0x0, &(0x7f00000000c0))
timer_create(0xfffffffffffffffc, 0x0, &(0x7f0000000040))

3m12.072811611s ago: executing program 1 (id=11961):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file0\x00', 0x800, &(0x7f0000001bc0)={[{@keep_last_dots}, {@sys_tz}, {@errors_remount}, {@iocharset={'iocharset', 0x3d, 'ascii'}}, {@allow_utime={'allow_utime', 0x3d, 0x9}}, {@errors_remount}, {@gid}, {@namecase}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'maccenteuro'}}]}, 0x1, 0x1529, &(0x7f0000000680)="$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")
mount(0x0, &(0x7f0000000180)='./file0/../file0\x00', &(0x7f0000000080)='configfs\x00', 0x200, 0x0)

3m11.691648902s ago: executing program 1 (id=11968):
r0 = socket$inet(0xa, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000001840)=@mangle={'mangle\x00', 0x44, 0x6, 0x3d8, 0x138, 0x98, 0x138, 0x138, 0x98, 0x3b0, 0x3b0, 0x98, 0x3b0, 0x3b0, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'veth0_to_hsr\x00', 'nr0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60, 'CLUSTERIP\x00', 0x0, {0x0, @broadcast, 0x0, 0x0, [0x22, 0x31, 0x4, 0x1d, 0x4, 0x38, 0x3c, 0x1c, 0x18, 0x11, 0x1b, 0x28, 0x3, 0x1e, 0xe, 0x1], 0x2, 0x7, 0x382}}}, {{@ip={@broadcast, @empty, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00', {}, {}, 0x0, 0x1}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x438)

3m11.359902972s ago: executing program 1 (id=11974):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r0, 0x12, 0x2, 0x0, &(0x7f0000000080))

3m10.907234083s ago: executing program 33 (id=11974):
r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x3, 0x3)
getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r0, 0x12, 0x2, 0x0, &(0x7f0000000080))

2m47.850469462s ago: executing program 6 (id=12340):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=ANY=[@ANYBLOB="bc1b0000400007012bbd700000000000017c00000400c2800c00018006000600843b0000971b02805402178006"], 0x1bbc}, 0x1, 0x0, 0x0, 0x4048011}, 0xc000)

2m47.544373979s ago: executing program 6 (id=12344):
r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000200), 0x2, 0x0)
pwritev(r0, &(0x7f00000004c0)=[{&(0x7f0000000280)="c7", 0x1}], 0x1, 0x5, 0x7ff)

2m47.36016288s ago: executing program 6 (id=12350):
syz_mount_image$udf(&(0x7f0000000f00), &(0x7f0000000080)='./file0\x00', 0xa00004, &(0x7f00000000c0)={[{@adinicb}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@utf8}, {@uid}, {}, {@iocharset={'iocharset', 0x3d, 'macinuit'}}, {@mode={'mode', 0x3d, 0x8}}, {@iocharset={'iocharset', 0x3d, 'iso8859-4'}}, {@longad}, {@gid_forget}, {@lastblock={'lastblock', 0x3d, 0x7}}, {@gid_forget}, {@anchor={'anchor', 0x3d, 0x907}}]}, 0x1, 0xc4d, &(0x7f0000000f40)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x130)

2m46.995829802s ago: executing program 6 (id=12359):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000004c0)=@updpolicy={0x1fc, 0x19, 0x1, 0x0, 0x1, {{@in6=@initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, @in=@dev={0xac, 0x14, 0x14, 0x36}, 0x0, 0x0, 0x4e24, 0x0, 0x2, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {}, {0x0, 0x1}}, [@tmpl={0x144, 0x5, [{{@in=@local, 0x0, 0x33}, 0x0, @in=@broadcast, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x33}, 0x0, @in6=@dev}, {{@in=@initdev={0xac, 0x1e, 0x1, 0x0}, 0x0, 0x6c}, 0x0, @in=@local}, {{@in6=@remote, 0x0, 0x6c}, 0x0, @in=@empty, 0x0, 0x0, 0x0, 0x50}, {{@in=@multicast1, 0x0, 0x2b}, 0x0, @in6=@private1, 0x3501, 0x5, 0x0, 0x0, 0x0, 0x9}]}]}, 0x1fc}, 0x1, 0x0, 0x0, 0x1}, 0x0)

2m46.792610479s ago: executing program 6 (id=12361):
prctl$PR_SET_IO_FLUSHER(0x41, 0x3)
mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x6)

2m46.559717632s ago: executing program 6 (id=12367):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000002600010316bd7000fcffbfff01"], 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x800)

2m30.411121512s ago: executing program 34 (id=12367):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)=ANY=[@ANYBLOB="140000002600010316bd7000fcffbfff01"], 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x800)

2m2.484550144s ago: executing program 4 (id=13189):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000006c0)={0x6, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"/686], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x3a, 0x10, &(0x7f0000000340), 0xd58495bc, 0x0, 0xffffffffffffffff, 0xffffffffffffff5b}, 0x42)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000c80)={r0, 0x2000000, 0xfe7f, 0x0, &(0x7f0000000c40)="63eced8e46dc3f2ddf33c9e9b986", 0x0, 0x7ffe, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

2m2.115553264s ago: executing program 4 (id=13195):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000b00)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000a40)=@newtaction={0x84, 0x30, 0xffff, 0x70bd27, 0x0, {}, [{0x70, 0x1, [@m_police={0x6c, 0x1, 0x0, 0x0, {{0xb}, {0x40, 0x2, 0x0, 0x1, [[@TCA_POLICE_TBF={0x3c, 0x1, {0x0, 0x38, 0x0, 0x0, 0x10000, {}, {0x0, 0x1, 0x1dea}}}]]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x84}}, 0x0)

2m1.883157186s ago: executing program 4 (id=13198):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f00000007c0)={0x1, @pix={0x3, 0xf3b, 0x34324241, 0x2, 0x7, 0x10000, 0xb, 0xf, 0x0, 0xc3da533fd69e53e7, 0x500, 0x5}})

2m1.649969952s ago: executing program 4 (id=13203):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$nfs(&(0x7f00000001c0)='..\x00', &(0x7f0000000240)='./file0\x00', 0x0, 0x85000, 0x0)

2m1.471055574s ago: executing program 4 (id=13206):
syz_mount_image$squashfs(&(0x7f0000000100), &(0x7f0000000000)='./file2\x00', 0x0, &(0x7f00000005c0)=ANY=[@ANYRES16=0x0, @ANYRES64=0x0, @ANYRES8, @ANYBLOB="0f7e998cc1ac58617ce1fbb6376c77c41a1a96b4da7f665ab0ba10e31828f922d42984ff743aac0de669573cb8490d9622b55de7abb7777c2c5473a9b854b8f54eb00eaf004cb9065dc006f418a81d78f32c142c339a6153e387b37cc066c279ec19836cafe0082c2c47d464ed86915b009ccddd71b99513c218ea2cdf784e4dd085c94749052a82fa29778594c24d47b723ecfba4c79e7a22f04cade3acdf", @ANYRES32, @ANYRES16, @ANYBLOB="01ce6671a3b30f673148672100038bbb4413ea284b893f38cdddda3da4c78d6059c5766f98f8020013503eaf8c90a24dda1e09f68cd741168d69dae50652ca7b67c5b0a27a1d5beabee7c1346b215f641ae190d56ea4ab81bacd909929deb5757040e8d5b2752ea779c30f600bd516a68d881e7fc7289826cbd840ffdb008356c72319cceb43ccb1281556efdf0fdf582fcdcf0000dff178a068d9dcbfde7af6012383adb085c40e4c295c2a3be750a42400e58523d24b8eecd75caabaee22347bdb78b72b400d080a044ebde5d39ad91ff0ef75aa244381cf00cd6fe9b9a92a996810eef02481022af426853287e521a4e3cfe480f90300cea1359ff932eb34bc75aefea41074799f3502a7472a6686b4011a41d7f0cfb25b3dc3077b4e8ded17cfff2b1d41bc12f637c36690f5ca91ee999ec138f6ce76522ed2b73c8160b299f0d123f1721171bd72c012623f06d8965d3e5785d057c15798ab36af821c9b308731422ba3858b9895ace14068ea58f8cb6060c205cab0f2a73628eff5b9270a4a55c2d7fc59a4fe6e023bd424d8fe06e2232d1b2e6ca603b466b2c82afff4a8cc469e8664d5aa34222070bc7b8878741962e638d7028a8e3fad41243aaaa76785624cbf48602a37b21938674204ae1cd9cd0f5061f41718f090cb4577ab4ce7758395d80000000000000000000000002612bd94dfb7649fadbc7ea9fe7365a73146c98d902fca6aa18fa89d7c54930f8da3eedfaf7f88aaf2bcf17b406bf0795a5a73e9cb3337477904757ca0a09218bca533992a3e78923b752790421f61ee45bb8172d24e2e8b46b1accab2a2ccbba7fecf38f0b83e246030b78c5ac2f51ec5c530838ea837090b77f756a4ffd34d273db2c3d76fd09971345920ce68", @ANYRESHEX=0x0, @ANYRES32], 0xfd, 0x1ee, &(0x7f00000003c0)="$eJzsVc1q1FAU/u6dmyZV0a7dOthu1Gkq4hvYB/ABHKaxFqNiE7AdCkYXduNCfImCT+FC1L0LEUGEdqGgi4qrgkTOveemN5ghcXAxwv1g5nznNyc59+dWdj8LAfw63BlhARoCp/BRCCgAi8LYjuaM/MGyZHxRRl9m+wuWByyz7fG7p0QkxreHaZpsZtstRAigLaZGOgV1J28f1y0C/6rylAQSaHTlPfOR/3Q9q1nCphjOba48A4T6a3DJqQp+7RLMS73TuANMckVmCzUMxbga59VAACJBtdNamv/wnCpfPoOJjbWRmV0JLpF/lZWBZ5pdeyTxXSvvD3dGRG7wKUa2NfOzW0LHkPLKiTmrgAIQPZRVHWVGjUXO+1yW4wsbd4bryXpyN45XrgzenOSRJ4NLNzfS5OFp4KdNl0QUKtA+nXfaDAB8OvYXcCCc1ggnAOHm0vlrD+elc24WncXHuW4NE/GyqhGyjT7FdZwHrd8HBbljtvZ1tSeRfsFVCPSgQO+5rGpPPMIBIu24OLqXru1CQHDkYA8KEq9tAwEke+J9R1m5Wr3+Lss+y1X9H2GP9X2W9u6yd5LSFb6xtlQAc9ga5vmmvry25vOAE8kWa5tmC9WTJT/V3ob2xOiH8PDw8PDw8PD4T/A7AAD//+kWST0=")
open(&(0x7f00000001c0)='./file1\x00', 0x10927e, 0x28)

2m1.002622774s ago: executing program 4 (id=13216):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
ioctl$SNDCTL_DSP_RESET(r0, 0x4d00, 0x0)

2m0.675179581s ago: executing program 35 (id=13216):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x8041, 0x0)
ioctl$SNDCTL_DSP_RESET(r0, 0x4d00, 0x0)

1.967661217s ago: executing program 3 (id=15495):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000090000000000000000000000850000001300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000880)={r0, 0x0, 0xcc0, 0x0, &(0x7f0000000040)="c1dfb080cd21d308098e000081007e2288a8", 0x0, 0x6, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4}, 0x50)

1.830021033s ago: executing program 3 (id=15499):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000300)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a010400000000000000000500fffe0900010073797a30000000002c000000030a01020000000000000000050000000900010073797a30000000000900030073797a3200000000e4040000060a010400000000000000000500000008000b40000000000900010073797a300000000008000940000000020c0005800800014000000000c4000740ab487b1b512f33a8dbd67a8b35f2405127f309901ea13e31d5810f85eae8f528c938c24abb1b1abbda2e7fa6e0758629bb09ed64a8ba5b2ef3c3591fd06d7e10d93c0857ecac854ac51ad69639d98adb2c1464e444cc1a6a2e7ee244622433b51f58606b063f4938101a7e764c957eba2e913b2ac10435471fa769740a1275cb467e5264b71bc8727fc12e9aba46e4a8abf3dda91e0da608d6a0a35573d5524fb25451cc23051887de4df85c8e771260c4943e78905aa1e7493027366ed1bea0d80304804800018008000100667764"], 0x558}}, 0x40)

1.546402545s ago: executing program 3 (id=15506):
r0 = socket$isdn_base(0x22, 0x3, 0x0)
ioctl$IMSETDEVNAME(r0, 0x80184947, 0x0)

1.469792269s ago: executing program 8 (id=15509):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000006c0)=@raw={'raw\x00', 0x8, 0x3, 0x568, 0x1c0, 0xffffffff, 0xffffffff, 0x1c0, 0xffffffff, 0x498, 0xffffffff, 0xffffffff, 0x498, 0xffffffff, 0x3, 0x0, {[{{@uncond, 0x0, 0x1a0, 0x1c0, 0x60030000, {0x0, 0xff000000}, [@common=@inet=@recent0={{0xf8}, {0x9, 0x0, 0x24, 0x0, 'syz1\x00'}}]}, @unspec=@TRACE={0x20}}, {{@ipv6={@remote, @private2, [0xffffff00, 0xffffffff, 0x0, 0xffffff00], [0xffffffff, 0xffffff00, 0xffffffff, 0xff000000], 'netpci0\x00', 'bridge0\x00', {}, {0xff}, 0x2b, 0x2, 0x5, 0x5}, 0x0, 0x298, 0x2d8, 0x0, {}, [@common=@inet=@recent0={{0xf8}, {0x0, 0x20, 0x1, 0x1, 'syz0\x00'}}, @common=@inet=@recent0={{0xf8}, {0x0, 0x6, 0x4, 0x0, 'syz0\x00'}}]}, @common=@inet=@TCPOPTSTRIP={0x40, 'TCPOPTSTRIP\x00', 0x0, {[0x1, 0x9, 0x4, 0x3, 0x5, 0x1, 0x0, 0x6]}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x5c8)

1.281798668s ago: executing program 8 (id=15511):
r0 = socket(0x2, 0x80805, 0x0)
getsockopt$bt_hci(r0, 0x84, 0x1a, 0x0, &(0x7f0000001080))

1.235585725s ago: executing program 3 (id=15512):
r0 = syz_init_net_socket$nl_rdma(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000100)=[{&(0x7f0000001880)={0x18, 0x2f, 0x1, 0x70bd2b, 0x25dfdbff, "", [@typed={0x8, 0xe9, 0x0, 0x0, @uid}]}, 0x18}], 0x1, 0x0, 0x0, 0x1}, 0x0)

1.188896166s ago: executing program 7 (id=15513):
r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f00000004c0), 0x2, 0x0)
write$RDMA_USER_CM_CMD_GET_EVENT(r0, &(0x7f0000000000)={0x16, 0x8, 0xfa00, {0xfffffffffffffffe}}, 0x10)

1.087996927s ago: executing program 8 (id=15516):
mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x0, 0x200000005c832, 0xffffffffffffffff, 0x0)
mremap(&(0x7f0000000000/0x9000)=nil, 0x600002, 0x600002, 0x7, &(0x7f0000a00000/0x600000)=nil)

1.073373155s ago: executing program 0 (id=15517):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000340)=@newlink={0x54, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x90646}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x10, 0x2, 0x0, 0x1, [@IFLA_VLAN_FLAGS={0xc, 0x2, {0x1f, 0x1b}}]}}}, @IFLA_ALT_IFNAME={0x14, 0x35, 'vlan1\x00'}]}, 0x54}, 0x1, 0x0, 0x0, 0x600}, 0x0)

1.060050223s ago: executing program 3 (id=15518):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@deltaction={0x24, 0x30, 0xec1ba69ffcd4df1, 0x0, 0x0, {}, [@TCA_ACT_TAB={0x10, 0x1, [{0xc, 0x1, 0x0, 0x0, @TCA_ACT_KIND={0x8, 0x1, 'nat\x00'}}]}]}, 0x24}}, 0x0)

974.723853ms ago: executing program 7 (id=15519):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000540)={0x3, 0x3, &(0x7f0000000480)=@framed, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000140)={@map=0x1, r0, 0x2f, 0x0, 0xffffffffffffffff, @void, @value=0x0}, 0x20)

907.854047ms ago: executing program 5 (id=15520):
r0 = socket$inet6_sctp(0xa, 0x1, 0x84)
getsockopt$inet_sctp6_SCTP_PEER_ADDR_THLDS(r0, 0x84, 0x1f, &(0x7f0000000080)={0x0, @in={{0x2, 0x4f22, @empty}}, 0xfffd, 0xff04}, &(0x7f0000000440)=0x90)

862.227214ms ago: executing program 3 (id=15521):
r0 = syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000015c0)='./file0\x00', 0x4000, &(0x7f0000003a40), 0x0, 0x559e, &(0x7f000000ac40)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
ioctl$BTRFS_IOC_GET_SUBVOL_INFO(r0, 0x81f8943c, &(0x7f0000000740))

861.30832ms ago: executing program 8 (id=15522):
r0 = syz_open_dev$vim2m(&(0x7f0000000040), 0x40000000e, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000000)={0x44, 0x2, 0x457f1c9146f8f874, "464905e100000000000000007f00", 0x59455247})

813.335177ms ago: executing program 0 (id=15523):
r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$DRM_IOCTL_GEM_CLOSE(r0, 0x40086409, &(0x7f0000000100))

792.620232ms ago: executing program 5 (id=15524):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_NEW(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000f80)={0x24, 0x4, 0x8, 0x401, 0x0, 0x0, {}, [@CTA_TIMEOUT_L3PROTO={0x6}, @CTA_TIMEOUT_L4PROTO={0x5, 0x3, 0x3a}]}, 0x24}, 0x1, 0x0, 0x0, 0x20040404}, 0x0)

743.854999ms ago: executing program 7 (id=15525):
r0 = syz_open_dev$midi(&(0x7f00000012c0), 0x2, 0x2)
writev(r0, &(0x7f0000001040)=[{&(0x7f0000000000)="7008fa193f7db839e76dca2f44702a7e9eafe0cd176658f21eb5b5d2c3ae76b36d83f89e339ab2a278cffaf3af838e9adc5ab74433cf38b8992790b8ea3f91a2608a045a4f365c731920ddf4077ea88a5dd19f05863123334beaf0e3956a3900", 0x60}, {&(0x7f0000000080)="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", 0xfa1}], 0x2)

663.539258ms ago: executing program 7 (id=15526):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_MSG_GETFLOWTABLE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000180)={0x20, 0x17, 0xa, 0x301, 0x0, 0x0, {0x2, 0x0, 0x8}, [@NFTA_FLOWTABLE_TABLE={0x9, 0x1, 'syz0\x00'}]}, 0x20}, 0x1, 0x0, 0x0, 0x44000}, 0x8094)

633.879566ms ago: executing program 8 (id=15527):
syz_mount_image$ext4(&(0x7f00000004c0)='ext4\x00', &(0x7f0000000680)='./file0\x00', 0x0, &(0x7f0000000340)={[{@usrquota}, {@nojournal_checksum}]}, 0x21, 0x4bd, &(0x7f00000006c0)="$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")
setxattr$system_posix_acl(&(0x7f0000000040)='./file0\x00', &(0x7f0000000080)='system.posix_acl_default\x00', 0x0, 0x0, 0x0)

611.177754ms ago: executing program 0 (id=15528):
r0 = socket$xdp(0x2c, 0x3, 0x0)
mmap$xdp(&(0x7f0000ffc000/0x4000)=nil, 0x4000, 0x0, 0x4008053, r0, 0x80000000)

610.48044ms ago: executing program 5 (id=15529):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
getpeername$netrom(r0, 0x0, 0x0)

466.928107ms ago: executing program 0 (id=15530):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_FLUSH(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000100)={0x1c, 0x4, 0x6, 0x101, 0x0, 0x0, {}, [@IPSET_ATTR_PROTOCOL={0x5}]}, 0x1c}}, 0x0)

441.860618ms ago: executing program 7 (id=15531):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000000)={0x400000000000000, 0x0, &(0x7f0000000080)={&(0x7f0000000500)={0x2, 0x3, 0x0, 0x9, 0xa, 0x0, 0x0, 0x20000, [@sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x0, @remote}}, @sadb_sa={0x2, 0x1, 0x0, 0xfd, 0x0, 0x5, 0x4, 0x4bfffffe}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x4e21, @multicast2}}]}, 0x50}}, 0x0)

441.155202ms ago: executing program 5 (id=15532):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x3, 0x3, &(0x7f0000000040)=ANY=[@ANYBLOB="1800000008000000000000000000910095"], &(0x7f0000000100)='syzkaller\x00', 0x6, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls=0x2f, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x94)
bpf$BPF_LINK_CREATE(0x1c, &(0x7f0000001340)={r0, r0, 0x2f, 0x0, @val=@tcx={@void, @value=r0}}, 0x1c)

235.363681ms ago: executing program 0 (id=15533):
r0 = syz_open_procfs(0x0, &(0x7f00000000c0)='net/sockstat6\x00')
read$FUSE(r0, &(0x7f0000000100)={0x2020}, 0x2020)

199.389224ms ago: executing program 5 (id=15534):
r0 = socket$l2tp(0x2, 0x2, 0x73)
sendmmsg$inet(r0, &(0x7f0000000100)=[{{&(0x7f0000000000)={0x2, 0x4e22, @multicast1}, 0x10, &(0x7f0000000180)=[{0x0, 0xa00}, {&(0x7f0000000340)="89c0", 0x2}], 0x2}}], 0x1, 0x0)

87.744442ms ago: executing program 8 (id=15535):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000140)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8fcffffb702000005000000b703000000000000850000007500000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000000)='tlb_flush\x00', r0}, 0x10)

60.294805ms ago: executing program 7 (id=15536):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x1, 0x0, 0x0, 0x0, 0x1}, [@call={0x85, 0x0, 0x0, 0x41}, @call={0x85, 0x0, 0x0, 0x7d}]}, &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp=0x25, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000780)={r0, 0x18000000000002a0, 0xe, 0x0, &(0x7f0000000040)="5aee41dea43e63a3e7fb7f11c72b", 0x0, 0xf000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

28.246804ms ago: executing program 0 (id=15537):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)=@ipv6_deladdrlabel={0x38, 0x48, 0x1, 0x70bd29, 0x25dfdbff, {0xa, 0x0, 0x1f, 0x0, 0x0, 0x4}, [@IFAL_LABEL={0x8, 0x2, 0x3}, @IFAL_ADDRESS={0x14, 0x1, @mcast1}]}, 0x38}, 0x1, 0x0, 0x0, 0x4000}, 0x8044)

0s ago: executing program 5 (id=15538):
r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48)
bpf$PROG_LOAD(0x5, &(0x7f0000000880)={0x3, 0x8, &(0x7f0000000000)=@framed={{0x18, 0x6}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r0}, {}, {0x85, 0x0, 0x0, 0x89}}]}, &(0x7f0000000980)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x20, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffff90, 0x0, 0x0, 0x0}, 0x90)

kernel console output (not intermixed with test programs):

_chksum : 0xe619d30d)
[  956.675077][ T7482] IPVS: stopping backup sync thread 20867 ...
[  956.791740][ T3085] chnl_net:caif_netlink_parms(): no params data found
[  956.834753][ T6179] Bluetooth: hci2: command tx timeout
[  956.843178][ T3170] openvswitch: netlink: IP tunnel dst address not specified
[  956.971985][ T3175] tmpfs: Bad value for 'nr_inodes'
[  957.287575][ T3194] netlink: 'syz.3.13271': attribute type 15 has an invalid length.
[  957.295804][ T3194] netlink: 666 bytes leftover after parsing attributes in process `syz.3.13271'.
[  957.660596][ T3085] bridge0: port 1(bridge_slave_0) entered blocking state
[  957.677800][ T3085] bridge0: port 1(bridge_slave_0) entered disabled state
[  957.679713][ T6341] usb 8-1: new full-speed USB device number 3 using dummy_hcd
[  957.717831][ T3085] bridge_slave_0: entered allmulticast mode
[  957.735166][ T3085] bridge_slave_0: entered promiscuous mode
[  957.820497][ T3215] netlink: 'syz.0.13278': attribute type 4 has an invalid length.
[  957.873305][ T3219] geneve3: entered promiscuous mode
[  957.880524][ T3085] bridge0: port 2(bridge_slave_1) entered blocking state
[  957.885746][ T6341] usb 8-1: config 0 has an invalid interface number: 29 but max is 0
[  957.887904][ T3085] bridge0: port 2(bridge_slave_1) entered disabled state
[  957.903074][ T3085] bridge_slave_1: entered allmulticast mode
[  957.927397][ T6341] usb 8-1: config 0 has no interface number 0
[  957.933576][ T6341] usb 8-1: config 0 interface 29 has no altsetting 0
[  957.965409][ T3085] bridge_slave_1: entered promiscuous mode
[  957.965812][ T6341] usb 8-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=39.ac
[  958.004625][ T6341] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  958.011761][ T3225] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13283'.
[  958.021742][ T6341] usb 8-1: Product: syz
[  958.026215][ T6341] usb 8-1: Manufacturer: syz
[  958.033803][ T6341] usb 8-1: SerialNumber: syz
[  958.063835][ T6341] usb 8-1: config 0 descriptor??
[  958.168013][ T3085] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[  958.188358][ T3233] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[  958.199216][ T3233] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[  958.250623][ T3085] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[  958.305303][ T6341] peak_usb 8-1:0.29: PEAK-System PCAN-USB X6 v154 fw v36.88.168 (2 channels)
[  958.406531][ T3085] team0: Port device team_slave_0 added
[  958.445152][ T3085] team0: Port device team_slave_1 added
[  958.521568][ T6341] peak_usb 8-1:0.29 can0: unable to request usb[type=2 value=5] err=-71
[  958.542249][ T6341] peak_usb 8-1:0.29: unable to tell PCAN-USB X6 driver is loaded (err -71)
[  958.644190][ T6341] peak_usb 8-1:0.29: probe with driver peak_usb failed with error -71
[  958.670074][ T6341] usb 8-1: USB disconnect, device number 3
[  958.693510][ T3085] batman_adv: batadv0: Adding interface: batadv_slave_0
[  958.735426][ T3085] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  958.772963][ T3085] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[  958.788823][ T3085] batman_adv: batadv0: Adding interface: batadv_slave_1
[  958.802697][ T3085] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[  958.855878][ T3085] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[  958.895653][ T7482] hsr_slave_0: left promiscuous mode
[  958.913950][ T7482] hsr_slave_1: left promiscuous mode
[  958.921461][ T3261] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13301'.
[  958.932102][ T7482] batman_adv: batadv0: Removing interface: virt_wifi0
[  958.943645][ T3259] netlink: 4 bytes leftover after parsing attributes in process `syz.5.13300'.
[  958.971847][ T7482] veth1_macvtap: left promiscuous mode
[  958.982875][ T3259] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  958.994711][ T7482] veth0_macvtap: left promiscuous mode
[  959.001499][ T7482] veth0_vlan: left promiscuous mode
[  959.059182][ T6179] Bluetooth: hci2: command tx timeout
[  959.108979][ T3269] ip6t_REJECT: TCP_RESET illegal for non-tcp
[  959.293266][ T3273] loop3: detected capacity change from 0 to 1024
[  959.327213][ T3273] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled
[  959.391443][ T3273] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[  959.569108][ T6174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  959.627502][ T3293] loop5: detected capacity change from 0 to 256
[  959.649411][ T3293] exfat: Deprecated parameter 'utf8'
[  959.654793][ T3293] exfat: Deprecated parameter 'utf8'
[  959.702882][ T3293] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  959.933500][ T3299] loop3: detected capacity change from 0 to 4096
[  959.975156][ T3299] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[  959.998803][ T3299] ntfs3(loop3): ino=3, mi_enum_attr
[  960.485040][ T3324] loop3: detected capacity change from 0 to 256
[  960.585821][ T3324] FAT-fs (loop3): Directory bread(block 64) failed
[  960.617054][ T3324] FAT-fs (loop3): Directory bread(block 65) failed
[  960.640437][ T3324] FAT-fs (loop3): Directory bread(block 66) failed
[  960.679781][ T3324] FAT-fs (loop3): Directory bread(block 67) failed
[  960.716099][ T3324] FAT-fs (loop3): Directory bread(block 68) failed
[  960.743950][ T3324] FAT-fs (loop3): Directory bread(block 69) failed
[  960.764073][ T3324] FAT-fs (loop3): Directory bread(block 70) failed
[  960.764105][ T3324] FAT-fs (loop3): Directory bread(block 71) failed
[  960.764193][ T3324] FAT-fs (loop3): Directory bread(block 72) failed
[  960.764216][ T3324] FAT-fs (loop3): Directory bread(block 73) failed
[  960.812645][   T30] audit: type=1326 audit(1763559721.793:243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3335 comm="syz.5.13336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  960.824962][   T30] audit: type=1326 audit(1763559721.793:244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3335 comm="syz.5.13336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  960.825225][   T30] audit: type=1326 audit(1763559721.793:245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3335 comm="syz.5.13336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=150 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  960.825422][   T30] audit: type=1326 audit(1763559721.793:246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3335 comm="syz.5.13336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  960.825685][   T30] audit: type=1326 audit(1763559721.793:247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3335 comm="syz.5.13336" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  961.287679][ T6179] Bluetooth: hci2: command tx timeout
[  961.530676][ T3360] loop3: detected capacity change from 0 to 512
[  961.574987][ T6341] usb 1-1: new high-speed USB device number 25 using dummy_hcd
[  961.626510][ T3360] EXT4-fs error (device loop3): ext4_orphan_get:1417: comm syz.3.13347: bad orphan inode 11862016
[  961.669520][ T3360] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000d40000 r/w without journal. Quota mode: writeback.
[  961.693594][ T3360] ext4 filesystem being mounted at /2652/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  961.745098][ T6341] usb 1-1: config 220 has an invalid interface number: 76 but max is 2
[  961.756954][ T6341] usb 1-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[  961.796458][ T6341] usb 1-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[  961.808265][ T6341] usb 1-1: config 220 has no interface number 2
[  961.814592][ T6341] usb 1-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[  961.825261][ T6174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000d40000.
[  961.878652][ T6341] usb 1-1: config 220 interface 0 has no altsetting 0
[  961.892595][ T6341] usb 1-1: config 220 interface 76 has no altsetting 0
[  961.900283][ T6341] usb 1-1: config 220 interface 1 has no altsetting 0
[  961.909848][ T6341] usb 1-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[  961.921525][ T6341] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  961.943077][ T6341] usb 1-1: Product: syz
[  961.954849][ T6341] usb 1-1: Manufacturer: syz
[  961.989665][ T6341] usb 1-1: SerialNumber: syz
[  962.064318][ T3375] futex_wake_op: syz.7.13353 tries to shift op by -1; fix this program
[  962.245635][ T6341] uvcvideo 1-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[  962.262289][ T6341] uvcvideo 1-1:220.0: No valid video chain found.
[  962.270196][ T6341] usb 1-1: selecting invalid altsetting 0
[  962.329159][ T6341] usb 1-1: selecting invalid altsetting 0
[  962.351067][ T6341] usbtest 1-1:220.1: probe with driver usbtest failed with error -22
[  962.387227][ T6341] usb 1-1: USB disconnect, device number 25
[  962.419129][ T3380] loop3: detected capacity change from 0 to 4096
[  963.458915][ T3085] hsr_slave_0: entered promiscuous mode
[  963.481693][ T3085] hsr_slave_1: entered promiscuous mode
[  963.502603][ T3085] debugfs: 'hsr0' already exists in 'hsr'
[  963.519942][ T6179] Bluetooth: hci2: command tx timeout
[  963.545235][ T3085] Cannot create hsr debugfs directory
[  963.627387][ T3422] netlink: 28 bytes leftover after parsing attributes in process `syz.7.13370'.
[  963.934906][ T3432] loop5: detected capacity change from 0 to 1764
[  964.195834][ T3442] loop3: detected capacity change from 0 to 1764
[  964.310258][ T3442] iso9660: Corrupted directory entry in block 2 of inode 1920
[  964.357681][ T7482] IPVS: stop unused estimator thread 0...
[  964.523253][ T3457] loop5: detected capacity change from 0 to 256
[  964.638739][ T3457] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1aabf3fb, utbl_chksum : 0xe619d30d)
[  964.682787][ T3085] netdevsim netdevsim8 netdevsim0: renamed from eth0
[  964.713962][   T30] audit: type=1326 audit(1763559725.440:248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3462 comm="syz.3.13386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  964.782939][   T30] audit: type=1326 audit(1763559725.440:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3462 comm="syz.3.13386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  964.782991][   T30] audit: type=1326 audit(1763559725.449:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3462 comm="syz.3.13386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=305 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  964.783032][   T30] audit: type=1326 audit(1763559757.451:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3462 comm="syz.3.13386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  964.783071][   T30] audit: type=1326 audit(1763559757.451:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3462 comm="syz.3.13386" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  964.814255][ T3085] netdevsim netdevsim8 netdevsim1: renamed from eth1
[  964.863024][ T3085] netdevsim netdevsim8 netdevsim2: renamed from eth2
[  965.070977][ T3085] netdevsim netdevsim8 netdevsim3: renamed from eth3
[  965.429551][ T3493] loop7: detected capacity change from 0 to 512
[  965.447087][ T3085] 8021q: adding VLAN 0 to HW filter on device bond0
[  965.499885][ T3085] 8021q: adding VLAN 0 to HW filter on device team0
[  965.524247][ T3493] EXT4-fs (loop7): Cannot turn on journaled quota: type 0: error -2
[  965.539072][T31263] bridge0: port 1(bridge_slave_0) entered blocking state
[  965.546302][T31263] bridge0: port 1(bridge_slave_0) entered forwarding state
[  965.593507][ T3493] EXT4-fs (loop7): Cannot turn on journaled quota: type 1: error -2
[  965.638007][T31263] bridge0: port 2(bridge_slave_1) entered blocking state
[  965.645249][T31263] bridge0: port 2(bridge_slave_1) entered forwarding state
[  965.695812][ T3493] EXT4-fs (loop7): 1 truncate cleaned up
[  965.728782][ T3493] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  966.058213][ T6149] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[  966.255774][ T6149] usb 8-1: Using ep0 maxpacket: 32
[  966.296392][ T6149] usb 8-1: New USB device found, idVendor=0d49, idProduct=7000, bcdDevice=26.2f
[  966.323703][ T6149] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  966.359811][ T6149] usb 8-1: Product: syz
[  966.370453][ T3085] 8021q: adding VLAN 0 to HW filter on device batadv0
[  966.374927][ T6149] usb 8-1: Manufacturer: syz
[  966.403691][ T6149] usb 8-1: SerialNumber: syz
[  966.422731][ T6149] usb 8-1: config 0 descriptor??
[  966.511331][ T3539] loop5: detected capacity change from 0 to 4096
[  966.532245][ T3539] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  966.633742][ T3539] ntfs3(loop5): ino=19, mi_enum_attr
[  966.655148][ T3539] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  966.679001][ T6149] ums-onetouch 8-1:0.0: USB Mass Storage device detected
[  966.750573][ T3539] ntfs3(loop5): failed to convert "c46c" to iso8859-7
[  966.823382][ T3539] ntfs3(loop5): ino=20, mi_enum_attr
[  966.823858][ T6149] usb 8-1: USB disconnect, device number 4
[  967.154999][ T3085] veth0_vlan: entered promiscuous mode
[  967.185596][ T3085] veth1_vlan: entered promiscuous mode
[  967.294747][ T3561] loop5: detected capacity change from 0 to 4096
[  967.296281][ T3085] veth0_macvtap: entered promiscuous mode
[  967.341430][ T3561] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[  967.350025][ T3085] veth1_macvtap: entered promiscuous mode
[  967.374175][ T3568] overlay: Unknown parameter '\'
[  967.408194][ T1744] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  967.419383][ T3085] batman_adv: batadv0: Interface activated: batadv_slave_0
[  967.431473][ T3561] ntfs3(loop5): ino=19, mi_enum_attr
[  967.475915][ T3561] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[  967.489911][ T3085] batman_adv: batadv0: Interface activated: batadv_slave_1
[  967.572834][ T3318] netdevsim netdevsim8 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  967.630977][ T3318] netdevsim netdevsim8 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  967.716763][ T3318] netdevsim netdevsim8 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  967.758361][ T3318] netdevsim netdevsim8 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  967.780498][ T3580] usb usb1: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[  967.815788][ T3580] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[  968.171537][ T2115] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  968.230504][ T2115] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  968.347365][   T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  968.363568][   T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  968.391931][ T3594] loop3: detected capacity change from 0 to 4096
[  968.438225][ T3594] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[  968.604095][ T3594] ntfs3(loop3): ino=1a, mi_enum_attr
[  968.629221][ T3594] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[  968.666779][ T3594] ntfs3(loop3): ino=1a, mi_enum_attr
[  968.704003][ T3594] ntfs3(loop3): Failed to initialize $Extend/$Reparse.
[  969.487237][ T3643] loop5: detected capacity change from 0 to 16
[  969.541404][ T3643] erofs (device loop5): mounted with root inode @ nid 36.
[  969.580171][ T3647] netlink: 'syz.0.13448': attribute type 3 has an invalid length.
[  969.918184][ T3622] infiniband syz2: set down
[  969.930788][ T3622] infiniband syz2: added ipvlan0
[  970.078510][ T3622] RDS/IB: syz2: added
[  970.084230][ T3622] smc: adding ib device syz2 with port count 1
[  970.110824][ T3622] smc:    ib device syz2 port 1 has no pnetid
[  970.553913][ T6093] usb 1-1: new high-speed USB device number 26 using dummy_hcd
[  970.757144][ T6093] usb 1-1: Using ep0 maxpacket: 16
[  970.788258][ T6093] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[  970.831743][ T6093] usb 1-1: config 0 interface 0 altsetting 1 endpoint 0x7 has an invalid bInterval 0, changing to 7
[  970.885343][ T6093] usb 1-1: config 0 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[  970.912353][ T6093] usb 1-1: config 0 interface 0 has no altsetting 0
[  970.923036][ T6093] usb 1-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb
[  970.935921][ T6093] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  970.950604][ T6093] usb 1-1: Product: syz
[  970.954796][ T6093] usb 1-1: Manufacturer: syz
[  970.959399][ T6093] usb 1-1: SerialNumber: syz
[  970.970194][ T6093] usb 1-1: config 0 descriptor??
[  971.174117][ T3706] netlink: 'syz.5.13476': attribute type 1 has an invalid length.
[  971.187667][ T3706] netlink: 248 bytes leftover after parsing attributes in process `syz.5.13476'.
[  971.471461][T13894] usb 1-1: USB disconnect, device number 26
[  971.485648][ T3718] loop3: detected capacity change from 0 to 736
[  971.612362][ T3720] netlink: 'syz.5.13482': attribute type 21 has an invalid length.
[  971.863801][ T3727] loop5: detected capacity change from 0 to 1024
[  971.968438][ T3727] hfsplus: inconsistency in B*Tree (1,0,2,1,0)
[  971.998725][ T3727] hfsplus: xattr searching failed
[  972.107544][ T3734] netlink: 40 bytes leftover after parsing attributes in process `syz.8.13489'.
[  972.548252][ T3753] delete_channel: no stack
[  972.879926][ T3763] loop3: detected capacity change from 0 to 4096
[  972.998207][ T3763] ntfs3(loop3): Failed to initialize $Extend/$ObjId.
[  973.099832][ T3770] A link change request failed with some changes committed already. Interface ipvlan1 may have been left with an inconsistent configuration, please check.
[  973.218063][ T3772] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13507'.
[  973.273011][ T3772] netlink: 24 bytes leftover after parsing attributes in process `syz.5.13507'.
[  973.322776][ T3772] netlink: 24 bytes leftover after parsing attributes in process `syz.5.13507'.
[  974.137624][ T3807] netlink: 212408 bytes leftover after parsing attributes in process `syz.3.13525'.
[  974.621237][ T3827] loop8: detected capacity change from 0 to 164
[  974.657728][ T3827] Unable to read rock-ridge attributes
[  974.713909][ T3827] Unable to read rock-ridge attributes
[  974.951944][ T3837] ipt_REJECT: ECHOREPLY no longer supported.
[  975.409362][ T3858] netlink: 36 bytes leftover after parsing attributes in process `syz.8.13550'.
[  975.566166][ T3865] netlink: 16 bytes leftover after parsing attributes in process `syz.5.13552'.
[  975.719225][ T3871] netlink: 132 bytes leftover after parsing attributes in process `syz.8.13555'.
[  975.829812][ T3877] loop3: detected capacity change from 0 to 256
[  975.849516][ T3877] exfat: Deprecated parameter 'utf8'
[  975.901122][ T3877] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[  976.208348][ T3887] loop5: detected capacity change from 0 to 512
[  976.259356][ T3887] EXT4-fs (loop5): revision level too high, forcing read-only mode
[  976.303038][ T3887] EXT4-fs (loop5): orphan cleanup on readonly fs
[  976.310377][ T3887] Quota error (device loop5): v2_read_file_info: Block with free entry 4294967071 out of range (1, 6).
[  976.322807][ T3887] EXT4-fs warning (device loop5): ext4_enable_quotas:7183: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[  976.346956][ T3887] EXT4-fs (loop5): Cannot turn on quotas: error -117
[  976.366630][ T3887] EXT4-fs error (device loop5): ext4_validate_block_bitmap:441: comm syz.5.13563: bg 0: block 40: padding at end of block bitmap is not set
[  976.402260][ T3887] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6667: Corrupt filesystem
[  976.414986][ T3887] EXT4-fs (loop5): 1 truncate cleaned up
[  976.467815][ T3887] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[  976.584657][ T3887] EXT4-fs error (device loop5): ext4_get_link:106: inode #16: comm syz.5.13563: bad symlink.
[  976.747026][T25125] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  977.036221][ T3916] x_tables: ip6_tables: TCPMSS target: only valid for protocol 6
[  977.503375][ T3939] loop8: detected capacity change from 0 to 16
[  977.514781][ T3939] erofs (device loop8): mounted with root inode @ nid 36.
[  977.546210][ T3939] erofs (device loop8): read error -95 @ 8200 of nid 36
[  977.580951][   T30] audit: type=1326 audit(1763559769.480:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  977.605644][   T30] audit: type=1326 audit(1763559769.499:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  977.672755][   T30] audit: type=1326 audit(1763559769.546:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  977.697495][   T30] audit: type=1326 audit(1763559769.546:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  977.802071][   T30] audit: type=1326 audit(1763559769.546:257): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  977.880289][   T30] audit: type=1326 audit(1763559769.546:258): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  977.983829][   T30] audit: type=1326 audit(1763559769.546:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  978.070022][   T30] audit: type=1326 audit(1763559769.546:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  978.165573][   T30] audit: type=1326 audit(1763559769.546:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=3940 comm="syz.5.13588" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[  978.337870][ T3973] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13604'.
[  978.397327][ T3979] sctp: [Deprecated]: syz.0.13606 (pid 3979) Use of int in max_burst socket option.
[  978.397327][ T3979] Use struct sctp_assoc_value instead
[  978.576822][ T3987] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13610'.
[  978.608459][ T3987] netlink: 312 bytes leftover after parsing attributes in process `syz.5.13610'.
[  978.639456][ T3987] netlink: 8 bytes leftover after parsing attributes in process `syz.5.13610'.
[  978.674099][ T3989] netlink: 212408 bytes leftover after parsing attributes in process `syz.0.13612'.
[  978.962521][ T4005] cgroup: name respecified
[  979.142759][ T4014] loop8: detected capacity change from 0 to 256
[  979.175170][ T4014] exFAT-fs (loop8): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[  979.211256][ T4018] loop3: detected capacity change from 0 to 512
[  979.333213][ T4018] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  979.364048][ T4018] ext4 filesystem being mounted at /2727/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  979.564279][ T4028] netlink: 8 bytes leftover after parsing attributes in process `syz.8.13630'.
[  979.628489][ T6174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  979.762837][ T4035] loop7: detected capacity change from 0 to 256
[  980.946062][ T4077] netlink: 24 bytes leftover after parsing attributes in process `syz.5.13653'.
[  980.992126][ T4080] netlink: 8 bytes leftover after parsing attributes in process `syz.3.13655'.
[  981.273347][ T4090] overlayfs: overlapping lowerdir path
[  981.306728][ T4092] ptrace attach of "./syz-executor exec"[1744] was attempted by ""[4092]
[  981.565856][ T4108] netlink: 40 bytes leftover after parsing attributes in process `syz.5.13666'.
[  982.115655][ T4129] loop3: detected capacity change from 0 to 256
[  982.193650][ T4129] FAT-fs (loop3): Directory bread(block 64) failed
[  982.193696][ T4129] FAT-fs (loop3): Directory bread(block 65) failed
[  982.193783][ T4129] FAT-fs (loop3): Directory bread(block 66) failed
[  982.193805][ T4129] FAT-fs (loop3): Directory bread(block 67) failed
[  982.193879][ T4129] FAT-fs (loop3): Directory bread(block 68) failed
[  982.193902][ T4129] FAT-fs (loop3): Directory bread(block 69) failed
[  982.193981][ T4129] FAT-fs (loop3): Directory bread(block 70) failed
[  982.194003][ T4129] FAT-fs (loop3): Directory bread(block 71) failed
[  982.194074][ T4129] FAT-fs (loop3): Directory bread(block 72) failed
[  982.194096][ T4129] FAT-fs (loop3): Directory bread(block 73) failed
[  982.725896][   T30] kauditd_printk_skb: 4 callbacks suppressed
[  982.725913][   T30] audit: type=1326 audit(1763559774.288:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4147 comm="syz.3.13681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  982.740379][   T30] audit: type=1326 audit(1763559774.297:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4147 comm="syz.3.13681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  982.743319][   T30] audit: type=1326 audit(1763559774.307:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4147 comm="syz.3.13681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=22 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  982.745865][   T30] audit: type=1326 audit(1763559774.307:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4147 comm="syz.3.13681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  982.746077][   T30] audit: type=1326 audit(1763559774.307:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=4147 comm="syz.3.13681" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[  982.808464][ T4109] loop7: detected capacity change from 0 to 32768
[  982.957316][ T4154] tmpfs: Bad value for 'mpol'
[  984.493249][ T4215] i2c i2c-0: Invalid block read size 253
[  984.859496][ T4234] netlink: 240 bytes leftover after parsing attributes in process `syz.7.13714'.
[  984.944074][ T4240] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  985.469822][ T4256] loop8: detected capacity change from 0 to 2048
[  985.494478][ T4256] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[  985.705226][ T4268] xfrm1: entered allmulticast mode
[  985.789543][ T4271] netlink: 'syz.5.13730': attribute type 13 has an invalid length.
[  985.872363][ T4271] netlink: 'syz.5.13730': attribute type 17 has an invalid length.
[  985.943741][ T4281] vhci_hcd: Failed attach request for unsupported USB speed: UNKNOWN
[  986.150608][ T4271] 8021q: adding VLAN 0 to HW filter on device team0
[  986.168430][ T4271] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[  986.464780][   T30] audit: type=1107 audit(1763559777.786:271): pid=4300 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[  986.479566][ T4297] loop3: detected capacity change from 0 to 8192
[  986.552995][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.614521][ T4297] FAT-fs (loop3): Filesystem has been set read-only
[  986.637552][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.658019][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.716406][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.775824][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.817182][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.833168][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.930945][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  986.934678][ T4321] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[  986.996376][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  987.005027][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  987.049934][ T4297] FAT-fs (loop3): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[  987.121515][   T30] audit: type=1800 audit(1763559778.394:272): pid=4297 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.13738" name="file2" dev="loop3" ino=1048819 res=0 errno=0
[  987.158156][ T4328] netlink: 'syz.8.13752': attribute type 2 has an invalid length.
[  987.218477][ T4328] �9þ: entered promiscuous mode
[  987.458782][ T4342] netlink: 'syz.0.13757': attribute type 1 has an invalid length.
[  987.509686][ T4342] netlink: 'syz.0.13757': attribute type 1 has an invalid length.
[  988.374416][ T4389] loop7: detected capacity change from 0 to 4096
[  988.525696][ T4389] ntfs3(loop7): ino=5, "/" indx_read
[  988.531664][ T4389] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[  988.729116][ T4405] netlink: 32 bytes leftover after parsing attributes in process `syz.5.13786'.
[  989.163771][ T4427] overlayfs: missing 'workdir'
[  989.323751][ T4428] loop7: detected capacity change from 0 to 8192
[  989.413363][ T4428] FAT-fs (loop7): error, fat_free: invalid cluster chain (i_pos 2068)
[  989.451198][ T4428] FAT-fs (loop7): Filesystem has been set read-only
[  989.619448][ T4445] x_tables: ip6_tables: NETMAP.0 target: invalid size 40 (kernel) != (user) 0
[  989.803593][ T4451] loop5: detected capacity change from 0 to 16
[  989.826867][ T4451] erofs (device loop5): mounted with root inode @ nid 36.
[  990.000789][ T4423] loop8: detected capacity change from 0 to 32768
[  990.072795][ T4423] jfs_create: dtInsert returned -EIO
[  990.087689][ T4423] ERROR: (device loop8): jfs_create: 
[  990.087689][ T4423] 
[  990.095766][ T4462] loop7: detected capacity change from 0 to 8
[  990.095787][ T4459] loop3: detected capacity change from 0 to 1024
[  990.108031][ T4463] loop5: detected capacity change from 0 to 1764
[  990.147422][ T4463] iso9660: Corrupted directory entry in block 2 of inode 1920
[  990.164329][ T4459] EXT4-fs: Ignoring removed bh option
[  990.176212][ T4462] SQUASHFS error: Failed to read block 0x2fc: -5
[  990.184493][ T4462] SQUASHFS error: Unable to read metadata cache entry [2fa]
[  990.191877][ T4462] SQUASHFS error: Unable to read directory block [247:26]
[  990.222462][ T4459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-001000000000 r/w without journal. Quota mode: writeback.
[  990.363762][ T4470] xt_CT: No such helper "snmp"
[  990.537357][ T6174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-001000000000.
[  990.652945][ T4480] loop8: detected capacity change from 0 to 2048
[  990.717636][ T4480] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[  990.950025][ T4489] mac80211_hwsim hwsim3 wlan1: entered allmulticast mode
[  991.015941][ T4493] netlink: get zone limit has 4 unknown bytes
[  991.409430][ T4506] netlink: 128 bytes leftover after parsing attributes in process `syz.8.13835'.
[  992.062615][ T4532] loop8: detected capacity change from 0 to 64
[  992.111330][ T4532] syz.8.13850: attempt to access beyond end of device
[  992.111330][ T4532] loop8: rw=0, sector=2590, nr_sectors = 2 limit=64
[  992.198998][ T4532] Buffer I/O error on dev loop8, logical block 1295, async page read
[  992.233863][ T4532] syz.8.13850: attempt to access beyond end of device
[  992.233863][ T4532] loop8: rw=0, sector=2590, nr_sectors = 2 limit=64
[  992.289308][ T4532] Buffer I/O error on dev loop8, logical block 1295, async page read
[  992.300902][ T4532] Trying to free block not in datazone
[  992.301331][   T30] audit: type=1800 audit(1763559783.249:273): pid=4532 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.13850" name="file2" dev="loop8" ino=6 res=0 errno=0
[  992.306419][ T4532] minix_free_block (loop8:21): bit already cleared
[  992.748666][ T4557] comedi comedi3: bad chanlist[0]=0x80000000 chan=0 range length=4
[  993.421942][ T4580] netdevsim netdevsim7 netdevsim0: entered allmulticast mode
[  993.460811][ T4580] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[  993.532198][ T4588] netlink: 'syz.0.13876': attribute type 2 has an invalid length.
[  993.720676][ T4593] netlink: 212 bytes leftover after parsing attributes in process `syz.5.13877'.
[  993.741073][ T4594] loop8: detected capacity change from 0 to 16
[  993.776870][ T4594] erofs (device loop8): mounted with root inode @ nid 36.
[  993.835786][ T4594] erofs (device loop8): unknown algorithm 7 @ pos 8192 for nid 89, please upgrade kernel
[  993.887709][ T4594] erofs (device loop8): readahead error at folio 2 @ nid 89
[  993.916142][ T4594] syz.8.13879: attempt to access beyond end of device
[  993.916142][ T4594] loop8: rw=524288, sector=256, nr_sectors = 8 limit=16
[  993.996007][ T4594] syz.8.13879: attempt to access beyond end of device
[  993.996007][ T4594] loop8: rw=524288, sector=0, nr_sectors = 1024 limit=16
[  994.085395][ T4594] syz.8.13879: attempt to access beyond end of device
[  994.085395][ T4594] loop8: rw=0, sector=256, nr_sectors = 8 limit=16
[  994.182459][ T4594] erofs (device loop8): read error -5 @ 1 of nid 89
[  994.202095][   T30] audit: type=1800 audit(1763559785.007:274): pid=4594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.13879" name="file2" dev="loop8" ino=89 res=0 errno=0
[  994.405783][ T4613] netlink: 'syz.5.13888': attribute type 4 has an invalid length.
[  994.433770][ T4613] netlink: 2548 bytes leftover after parsing attributes in process `syz.5.13888'.
[  994.552002][ T4619] loop3: detected capacity change from 0 to 512
[  994.604516][ T4619] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  994.647101][ T4619] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  994.658745][ T4596] 9pnet_fd: p9_fd_create_tcp (4596): problem connecting socket to 127.0.0.1
[  994.730743][ T4619] EXT4-fs error (device loop3): ext4_acquire_dquot:6948: comm syz.3.13891: Failed to acquire dquot type 1
[  994.798751][ T4619] EXT4-fs (loop3): 1 truncate cleaned up
[  994.901584][ T4619] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  994.928382][ T4629] loop8: detected capacity change from 0 to 1024
[  994.964975][ T4629] hfsplus: Filesystem is marked locked, mounting read-only.
[  994.993723][ T4619] ext4 filesystem being mounted at /2786/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[  995.038494][ T4629] hfsplus: filesystem is marked locked, leaving read-only.
[  995.106298][ T4619] Quota error (device loop3): find_tree_dqentry: Cycle in quota tree detected: block 3 index 0
[  995.187577][ T4619] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[  995.199740][ T4640] xt_TPROXY: Can be used only with -p tcp or -p udp
[  995.245483][ T4619] EXT4-fs error (device loop3): ext4_acquire_dquot:6948: comm syz.3.13891: Failed to acquire dquot type 1
[  995.435364][ T6174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  995.598416][ T4654] loop7: detected capacity change from 0 to 256
[  995.741886][ T4654] FAT-fs (loop7): Directory bread(block 64) failed
[  995.748460][ T4654] FAT-fs (loop7): Directory bread(block 65) failed
[  995.817704][ T4654] FAT-fs (loop7): Directory bread(block 66) failed
[  995.825556][ T4654] FAT-fs (loop7): Directory bread(block 67) failed
[  995.890599][ T4654] FAT-fs (loop7): Directory bread(block 68) failed
[  995.924114][ T4654] FAT-fs (loop7): Directory bread(block 69) failed
[  995.930749][ T4654] FAT-fs (loop7): Directory bread(block 70) failed
[  995.958422][ T4654] FAT-fs (loop7): Directory bread(block 71) failed
[  995.965064][ T4654] FAT-fs (loop7): Directory bread(block 72) failed
[  996.009866][ T4654] FAT-fs (loop7): Directory bread(block 73) failed
[  996.446968][ T4649] loop5: detected capacity change from 0 to 32768
[  996.578904][ T4649] ERROR: (device loop5): xtSearch: xt_getpage: xtree page corrupt
[  996.578904][ T4649] 
[  996.653331][ T4649] ERROR: (device loop5): remounting filesystem as read-only
[  996.660741][ T4649] xtLookup: xtSearch returned -5
[  997.586089][ T4726] netlink: 4 bytes leftover after parsing attributes in process `syz.8.13940'.
[  997.634921][ T6093] usb 4-1: new high-speed USB device number 16 using dummy_hcd
[  997.636321][ T4729] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[  997.649778][ T4729] IPv6: NLM_F_CREATE should be set when creating new route
[  997.657061][ T4729] IPv6: NLM_F_CREATE should be set when creating new route
[  997.817432][ T6093] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.9e
[  997.834681][ T6093] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[  997.864252][ T4735] loop8: detected capacity change from 0 to 2048
[  997.874242][ T6093] usb 4-1: config 0 descriptor??
[  997.960868][ T4735] UDF-fs: warning (device loop8): udf_verify_domain_identifier: Not OSTA UDF compliant logical volume descriptor.
[  997.979264][ T4735] UDF-fs: warning (device loop8): udf_fill_super: No fileset found
[  998.030969][ T4744] geneve2: entered promiscuous mode
[  998.046605][ T4744] geneve2: entered allmulticast mode
[  998.133028][ T4746] netlink: 3 bytes leftover after parsing attributes in process `syz.0.13949'.
[  998.354754][ T6093] ath6kl: Failed to read usb control message: -71
[  998.397035][ T6093] ath6kl: Unable to read the bmi data from the device: -71
[  998.414377][ T6093] ath6kl: Unable to recv target info: -71
[  998.421175][ T6093] ath6kl: Failed to init ath6kl core: -71
[  998.427601][ T6093] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[  998.470748][ T6093] usb 4-1: USB disconnect, device number 16
[  998.725935][ T6299] usb 6-1: new high-speed USB device number 8 using dummy_hcd
[  998.827461][ T4784] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13967'.
[  998.837475][ T4784] netlink: 48 bytes leftover after parsing attributes in process `syz.0.13967'.
[  998.898030][ T4784] bond6: option all_slaves_active: invalid value (55)
[  998.907513][ T4784] bond6 (unregistering): Released all slaves
[  998.948733][ T6299] usb 6-1: config 1 interface 0 altsetting 8 endpoint 0x81 has an invalid bInterval 243, changing to 11
[  998.989514][ T6299] usb 6-1: config 1 interface 0 has no altsetting 0
[  999.013591][ T4792] loop8: detected capacity change from 0 to 256
[  999.021193][ T4792] exfat: Deprecated parameter 'utf8'
[  999.031122][ T6299] usb 6-1: New USB device found, idVendor=09da, idProduct=001a, bcdDevice= 0.40
[  999.056095][ T4792] exfat: Deprecated parameter 'namecase'
[  999.061884][ T4792] exfat: Deprecated parameter 'namecase'
[  999.069580][ T6299] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  999.098667][ T4792] exfat: Deprecated parameter 'utf8'
[  999.111395][ T6299] usb 6-1: Product: syz
[  999.115595][ T6299] usb 6-1: Manufacturer: syz
[  999.132672][ T6299] usb 6-1: SerialNumber: syz
[  999.135483][ T4792] exFAT-fs (loop8): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[  999.169157][ T4792] exFAT-fs (loop8): failed to test first cluster bit of root dir(5)
[  999.429741][ T6299] usbhid 6-1:1.0: can't add hid device: -71
[  999.457327][ T6299] usbhid 6-1:1.0: probe with driver usbhid failed with error -71
[  999.492818][ T6299] usb 6-1: USB disconnect, device number 8
[  999.947012][ T4797] loop7: detected capacity change from 0 to 32768
[ 1000.040160][ T4797] XFS (loop7): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1000.253734][ T4797] XFS (loop7): Ending clean mount
[ 1000.299036][ T4797] XFS (loop7): Quotacheck needed: Please wait.
[ 1000.430175][ T4797] XFS (loop7): Quotacheck: Done.
[ 1000.474453][ T1744] XFS (loop7): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1001.575356][ T4902] bridge1: entered promiscuous mode
[ 1001.622140][ T4904] netlink: 24 bytes leftover after parsing attributes in process `syz.5.14022'.
[ 1001.639898][ T4902] bridge1: entered allmulticast mode
[ 1001.691973][ T4907] loop3: detected capacity change from 0 to 1024
[ 1001.905420][ T1003] hfsplus: b-tree write err: -5, ino 4
[ 1002.359725][   T10] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1002.379238][ T4939] netlink: 16 bytes leftover after parsing attributes in process `syz.0.14039'.
[ 1002.541154][   T10] usb 6-1: Using ep0 maxpacket: 8
[ 1002.559613][   T10] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1002.586581][   T10] usb 6-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0x6F, changing to 0xF
[ 1002.627629][   T10] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 47, changing to 9
[ 1002.655697][   T10] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0xF has invalid maxpacket 25189, setting to 1024
[ 1002.691616][   T10] usb 6-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1002.722565][   T10] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1002.741271][ T4953] loop7: detected capacity change from 0 to 512
[ 1002.747826][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1002.757388][   T10] usb 6-1: Product: syz
[ 1002.761602][   T10] usb 6-1: Manufacturer: syz
[ 1002.768846][   T10] usb 6-1: SerialNumber: syz
[ 1002.773485][ T4953] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1002.790682][ T4927] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1002.813201][   T10] cdc_ether 6-1:1.0: probe with driver cdc_ether failed with error -22
[ 1002.825362][   T10] usbtest 6-1:1.0: couldn't get endpoints, -22
[ 1002.833570][ T4953] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a84ce01c, mo2=0002]
[ 1002.846630][   T10] usbtest 6-1:1.0: probe with driver usbtest failed with error -22
[ 1002.858995][ T4953] System zones: 1-12
[ 1002.864431][ T4953] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1002.875834][   T24] usb 4-1: new high-speed USB device number 17 using dummy_hcd
[ 1002.889408][ T4953] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.14046: invalid indirect mapped block 12 (level 1)
[ 1002.912429][ T4953] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.14046: invalid indirect mapped block 2 (level 2)
[ 1002.927278][ T4953] EXT4-fs (loop7): 1 truncate cleaned up
[ 1002.934661][ T4953] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: writeback.
[ 1003.043656][   T24] usb 4-1: Using ep0 maxpacket: 8
[ 1003.056341][   T24] usb 4-1: New USB device found, idVendor=0c45, idProduct=613e, bcdDevice=c4.6d
[ 1003.075842][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1003.086379][   T24] usb 4-1: Product: syz
[ 1003.092320][   T24] usb 4-1: Manufacturer: syz
[ 1003.097492][   T24] usb 4-1: SerialNumber: syz
[ 1003.110616][   T24] usb 4-1: config 0 descriptor??
[ 1003.122950][ T1744] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1003.138045][   T24] gspca_main: sonixj-2.14.0 probing 0c45:613e
[ 1003.152214][   T10] usb 6-1: USB disconnect, device number 9
[ 1003.251509][ T4962] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1003.292718][ T4964] netlink: 'syz.8.14051': attribute type 6 has an invalid length.
[ 1003.426799][ T4969] xt_TCPMSS: Only works on TCP SYN packets
[ 1003.451302][ T4970] netdevsim netdevsim8 netdevsim0: entered allmulticast mode
[ 1003.472920][ T4970] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1003.554489][   T24] gspca_sonixj: reg_r err -71
[ 1003.565391][   T24] sonixj 4-1:0.0: probe with driver sonixj failed with error -71
[ 1003.608718][   T24] usb 4-1: USB disconnect, device number 17
[ 1003.836915][ T4988] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14062'.
[ 1003.875128][ T4988] netlink: 660 bytes leftover after parsing attributes in process `syz.5.14062'.
[ 1003.897071][ T4987] loop8: detected capacity change from 0 to 2048
[ 1003.955434][ T4993] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1004.058362][ T4995] netlink: 'syz.5.14066': attribute type 10 has an invalid length.
[ 1004.075104][ T4995] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[ 1004.094569][ T4993] NILFS (loop8): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1004.106931][ T4995] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1004.138582][ T4993] NILFS error (device loop8): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1004.178079][ T4993] Remounting filesystem read-only
[ 1004.205404][ T3085] NILFS (loop8): disposed unprocessed dirty file(s) when stopping log writer
[ 1004.275883][ T4997] loop7: detected capacity change from 0 to 4096
[ 1004.301247][ T4997] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[ 1004.379104][ T4997] ntfs3(loop7): Mark volume as dirty due to NTFS errors
[ 1004.435224][ T4997] ntfs3(loop7): ino=19, mi_enum_attr
[ 1004.736392][ T5021] netlink: 16 bytes leftover after parsing attributes in process `syz.3.14079'.
[ 1004.990611][ T5031] loop7: detected capacity change from 0 to 2048
[ 1005.012110][ T5031] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1005.033230][   T10] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1005.081095][ T5037] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1005.137010][ T5031] NILFS (loop7): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157
[ 1005.164210][ T5031] NILFS error (device loop7): nilfs_bmap_last_key: broken bmap (inode number=16)
[ 1005.207875][ T5031] Remounting filesystem read-only
[ 1005.214381][   T10] usb 6-1: Using ep0 maxpacket: 16
[ 1005.224704][   T10] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1005.242731][ T5031] NILFS (loop7): error -5 truncating bmap (ino=16)
[ 1005.257633][   T10] usb 6-1: config 0 interface 0 has no altsetting 0
[ 1005.287087][   T10] usb 6-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=9d.3d
[ 1005.332330][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1005.358543][   T10] usb 6-1: Product: syz
[ 1005.368126][ T1744] NILFS (loop7): disposed unprocessed dirty file(s) when detaching log writer
[ 1005.375205][   T10] usb 6-1: Manufacturer: syz
[ 1005.384965][   T10] usb 6-1: SerialNumber: syz
[ 1005.401508][   T10] usb 6-1: config 0 descriptor??
[ 1005.423361][   T10] hub 6-1:0.0: bad descriptor, ignoring hub
[ 1005.450700][   T10] hub 6-1:0.0: probe with driver hub failed with error -5
[ 1005.502447][   T10] usb 6-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1005.533305][ T5056] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1005.558667][ T1003] usb 6-1: Failed to submit usb control message: -71
[ 1005.565912][ T1003] usb 6-1: unable to send the bmi data to the device: -71
[ 1005.611362][ T1003] usb 6-1: unable to get target info from device
[ 1005.617719][ T1003] usb 6-1: could not get target info (-71)
[ 1005.659851][ T1003] usb 6-1: could not probe fw (-71)
[ 1005.773908][   T24] usb 6-1: USB disconnect, device number 10
[ 1006.980877][ T5113] bond4: Removing last ns target with arp_interval on
[ 1007.722566][ T5144] kAFS: unable to lookup cell 'syz1'
[ 1007.794051][ T5155] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[ 1008.222544][ T5178] netlink: 28 bytes leftover after parsing attributes in process `syz.0.14150'.
[ 1008.255036][ T5180] trusted_key: encrypted_key: master key parameter '' is invalid
[ 1008.278838][ T5178] netlink: 28 bytes leftover after parsing attributes in process `syz.0.14150'.
[ 1008.295946][ T5185] xt_hashlimit: overflow, rate too high: 0
[ 1008.569265][ T5201] loop8: detected capacity change from 0 to 64
[ 1008.871244][ T5215] netlink: 228 bytes leftover after parsing attributes in process `syz.3.14166'.
[ 1008.971324][ T5223] usb usb1: usbfs: process 5223 (syz.8.14168) did not claim interface 0 before use
[ 1009.117324][ T5231] netlink: 'syz.5.14172': attribute type 1 has an invalid length.
[ 1009.831708][ T5264] netlink: 'syz.8.14190': attribute type 1 has an invalid length.
[ 1009.845709][ T5227] loop3: detected capacity change from 0 to 32768
[ 1009.864323][ T5227] (syz.3.14171,5227,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1009.914184][ T5227] (syz.3.14171,5227,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1009.997170][ T5227] JBD2: Ignoring recovery information on journal
[ 1010.051107][ T5272] netlink: 'syz.0.14193': attribute type 39 has an invalid length.
[ 1010.123808][ T5227] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1010.437576][ T5253] loop7: detected capacity change from 0 to 32768
[ 1010.490463][ T6174] ocfs2: Unmounting device (7,3) on (node local)
[ 1010.655325][ T5289] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14202'.
[ 1010.687697][ T1875] usb 9-1: new high-speed USB device number 2 using dummy_hcd
[ 1010.704142][ T5291] loop5: detected capacity change from 0 to 512
[ 1010.800136][ T5291] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a842c018, mo2=0102]
[ 1010.858999][ T5291] System zones: 0-2, 18-18, 34-35
[ 1010.901762][ T1875] usb 9-1: Using ep0 maxpacket: 8
[ 1010.908763][ T5291] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1010.908922][ T1875] usb 9-1: config 0 has an invalid interface number: 52 but max is 0
[ 1010.942072][ T1875] usb 9-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1010.969140][ T5291] ext4 filesystem being mounted at /1181/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1010.997762][ T1875] usb 9-1: config 0 has no interface number 0
[ 1011.007258][ T1875] usb 9-1: config 0 interface 52 altsetting 1 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1011.026339][ T1875] usb 9-1: config 0 interface 52 altsetting 1 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1011.053270][ T1875] usb 9-1: config 0 interface 52 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1011.080687][ T1875] usb 9-1: config 0 interface 52 has no altsetting 0
[ 1011.093207][ T5306] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14207'.
[ 1011.110889][ T5291] EXT4-fs error (device loop5): __ext4_remount:6751: comm syz.5.14203: Abort forced by user
[ 1011.140054][ T1875] usb 9-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice= 0.00
[ 1011.140468][ T5291] EXT4-fs (loop5): Remounting filesystem read-only
[ 1011.163210][ T1875] usb 9-1: New USB device strings: Mfr=0, Product=0, SerialNumber=35
[ 1011.193777][ T1875] usb 9-1: SerialNumber: syz
[ 1011.213790][ T5291] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[ 1011.225119][ T1875] usb 9-1: config 0 descriptor??
[ 1011.373071][T25125] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1011.492361][ T1875] synaptics_usb 9-1:0.52: synusb_open - usb_submit_urb failed, error: -90
[ 1011.526152][ T1875] synaptics_usb 9-1:0.52: probe with driver synaptics_usb failed with error -5
[ 1011.744353][ T5330] sctp: [Deprecated]: syz.0.14220 (pid 5330) Use of int in maxseg socket option.
[ 1011.744353][ T5330] Use struct sctp_assoc_value instead
[ 1011.824704][ T1875] usb 9-1: USB disconnect, device number 2
[ 1012.170406][ T5350] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma?
[ 1012.279036][   T30] audit: type=1326 audit(1763559801.928:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5357 comm="syz.5.14234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1012.363961][   T30] audit: type=1326 audit(1763559801.956:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5357 comm="syz.5.14234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1012.402626][ T5362] loop3: detected capacity change from 0 to 256
[ 1012.415906][   T30] audit: type=1326 audit(1763559801.965:277): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5357 comm="syz.5.14234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=243 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1012.491434][ T5362] FAT-fs (loop3): Directory bread(block 64) failed
[ 1012.528628][ T5362] FAT-fs (loop3): Directory bread(block 65) failed
[ 1012.535339][   T30] audit: type=1326 audit(1763559801.965:278): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5357 comm="syz.5.14234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1012.583365][ T5362] FAT-fs (loop3): Directory bread(block 66) failed
[ 1012.613652][ T5362] FAT-fs (loop3): Directory bread(block 67) failed
[ 1012.636032][ T5362] FAT-fs (loop3): Directory bread(block 68) failed
[ 1012.642598][ T5362] FAT-fs (loop3): Directory bread(block 69) failed
[ 1012.649740][   T30] audit: type=1326 audit(1763559801.965:279): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5357 comm="syz.5.14234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1012.672350][ T5362] FAT-fs (loop3): Directory bread(block 70) failed
[ 1012.679136][ T5362] FAT-fs (loop3): Directory bread(block 71) failed
[ 1012.740640][ T5362] FAT-fs (loop3): Directory bread(block 72) failed
[ 1012.747201][ T5362] FAT-fs (loop3): Directory bread(block 73) failed
[ 1013.172435][ T5392] loop3: detected capacity change from 0 to 256
[ 1013.270859][ T5392] FAT-fs (loop3): Directory bread(block 64) failed
[ 1013.299906][ T5392] FAT-fs (loop3): Directory bread(block 65) failed
[ 1013.306570][ T5392] FAT-fs (loop3): Directory bread(block 66) failed
[ 1013.338382][ T5392] FAT-fs (loop3): Directory bread(block 67) failed
[ 1013.378345][ T5392] FAT-fs (loop3): Directory bread(block 68) failed
[ 1013.412974][ T5392] FAT-fs (loop3): Directory bread(block 69) failed
[ 1013.446302][ T5392] FAT-fs (loop3): Directory bread(block 70) failed
[ 1013.462907][ T5392] FAT-fs (loop3): Directory bread(block 71) failed
[ 1013.483400][ T5392] FAT-fs (loop3): Directory bread(block 72) failed
[ 1013.512767][ T5392] FAT-fs (loop3): Directory bread(block 73) failed
[ 1014.153066][ T5438] mac80211_hwsim hwsim11 wlan1: entered allmulticast mode
[ 1014.160573][ T5438] A link change request failed with some changes committed already. Interface wlan1 may have been left with an inconsistent configuration, please check.
[ 1014.625722][ T5462] netlink: 204 bytes leftover after parsing attributes in process `syz.0.14286'.
[ 1014.666670][ T5462] netlink: 204 bytes leftover after parsing attributes in process `syz.0.14286'.
[ 1014.825666][ T5470] SET target dimension over the limit!
[ 1015.208180][ T5492] tmpfs: Bad value for 'mpol'
[ 1015.631484][ T5517] netlink: 4 bytes leftover after parsing attributes in process `syz.3.14310'.
[ 1016.066422][ T5539] loop3: detected capacity change from 0 to 256
[ 1016.509218][ T5555] bond5: entered promiscuous mode
[ 1016.578557][ T5555] bond5: entered allmulticast mode
[ 1016.604332][ T5555] 8021q: adding VLAN 0 to HW filter on device bond5
[ 1016.904685][ T5574] loop7: detected capacity change from 0 to 8192
[ 1017.225566][ T5600] RDS: rds_bind could not find a transport for fc02::1, load rds_tcp or rds_rdma?
[ 1017.428626][ T5611] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14354'.
[ 1017.461563][ T5613] blktrace: Concurrent blktraces are not allowed on sg0
[ 1017.479407][ T5611] netlink: 20 bytes leftover after parsing attributes in process `syz.3.14354'.
[ 1017.562204][ T6179] Bluetooth: hci1: command 0x0406 tx timeout
[ 1017.705057][ T5626] PKCS7: Unknown OID: [5] (bad)
[ 1017.719531][ T5626] PKCS7: Only support pkcs7_signedData type
[ 1018.156957][ T5648] netlink: 512 bytes leftover after parsing attributes in process `syz.0.14370'.
[ 1018.795335][ T5683] loop3: detected capacity change from 0 to 16
[ 1019.254129][ T5683] erofs (device loop3): mounted with root inode @ nid 36.
[ 1019.424206][ T6175] erofs (device loop3): failed to decompress -4045 in[4096, 0] out[9000]
[ 1019.425554][ T5709] JFS: charset not found
[ 1019.452242][ T5683] erofs (device loop3): failed to decompress -4045 in[4096, 0] out[8192]
[ 1019.480931][ T5683] erofs (device loop3): read error -117 @ 1 of nid 89
[ 1019.497437][   T30] audit: type=1800 audit(1763559808.690:280): pid=5683 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.14386" name="file2" dev="loop3" ino=89 res=0 errno=0
[ 1019.735998][ T5716] netlink: 'syz.0.14404': attribute type 10 has an invalid length.
[ 1019.773001][ T5716] netlink: 152 bytes leftover after parsing attributes in process `syz.0.14404'.
[ 1020.384878][ T5738] loop8: detected capacity change from 0 to 4096
[ 1020.414224][ T5738] ntfs3(loop8): Different NTFS sector size (4096) and media sector size (512).
[ 1020.480713][ T5738] ntfs3(loop8): Inode r=19 is not in use!
[ 1020.502198][ T5738] ntfs3(loop8): Mark volume as dirty due to NTFS errors
[ 1020.520814][ T5738] ntfs3(loop8): ino=18, mi_enum_attr
[ 1020.816721][ T5751] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14421'.
[ 1021.066659][ T5759] Cannot find set identified by id 65534 to match
[ 1021.109110][ T5740] loop3: detected capacity change from 0 to 32768
[ 1021.334717][ T5742] loop5: detected capacity change from 0 to 32768
[ 1021.429595][ T5742] jfs_lookup: dtSearch returned -5
[ 1021.595340][ T5776] netlink: 180 bytes leftover after parsing attributes in process `syz.8.14432'.
[ 1021.663196][   T30] audit: type=1800 audit(1763559810.701:281): pid=5768 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.0.14429" name="/" dev="sockfs" ino=111225 res=0 errno=0
[ 1021.879774][ T5785] netlink: 'syz.0.14436': attribute type 1 has an invalid length.
[ 1022.337805][ T5800] netlink: 'syz.0.14444': attribute type 10 has an invalid length.
[ 1022.360832][ T5800] netlink: 40 bytes leftover after parsing attributes in process `syz.0.14444'.
[ 1022.415291][ T5770] loop3: detected capacity change from 0 to 32768
[ 1022.464973][ T5806] loop8: detected capacity change from 0 to 64
[ 1022.468341][ T5800] team0: Port device geneve0 added
[ 1022.496558][ T5808] loop5: detected capacity change from 0 to 8
[ 1022.500930][ T5770] ERROR: (device loop3): diWrite: ixpxd invalid
[ 1022.500930][ T5770] 
[ 1022.539238][ T5770] ERROR: (device loop3): remounting filesystem as read-only
[ 1022.559597][ T5770] ERROR: (device loop3): txCommit: 
[ 1022.559597][ T5770] 
[ 1022.587787][ T5770] imap: ffff88804a7d8000: 07ffffff 00000000 00000000 00000000
[ 1022.614422][ T5770] imap: ffff88804a7d8010: 00000004 00000002 00000000 00000000
[ 1022.646961][ T5770] ERROR: (device loop3): diFree: inum = 7, iagno = 0, nextiag = 0
[ 1022.646961][ T5770] 
[ 1022.786619][ T5818] program syz.8.14450 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1022.836950][ T5818] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1022.872553][ T5821] netlink: 'syz.7.14453': attribute type 1 has an invalid length.
[ 1022.914928][ T5821] netlink: 14436 bytes leftover after parsing attributes in process `syz.7.14453'.
[ 1023.063054][ T5830] loop8: detected capacity change from 0 to 512
[ 1023.105668][ T5830] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1023.156784][ T5830] EXT4-fs (loop8): revision level too high, forcing read-only mode
[ 1023.177435][ T5830] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01d, mo2=0102]
[ 1023.199727][ T5838] loop7: detected capacity change from 0 to 128
[ 1023.210438][ T5838] hpfs: 
[ 1023.210438][ T5838] HPFS filesystem options:
[ 1023.210438][ T5838]       help              do not mount and display this text
[ 1023.210438][ T5838]       uid=xxx           set uid of files that don't have uid specified in eas
[ 1023.210438][ T5838]       gid=xxx           set gid of files that don't have gid specified in eas
[ 1023.210438][ T5838]       umask=xxx         set mode of files that don't have mode specified in eas
[ 1023.210438][ T5838]       case=lower        lowercase all files
[ 1023.210438][ T5838]       case=asis         do not lowercase files (default)
[ 1023.210438][ T5838]       check=none        no fs checks - kernel may crash on corrupted filesystem
[ 1023.210438][ T5838]       check=normal      do some checks - it should not crash (default)
[ 1023.210438][ T5838]       check=strict      do extra time-consuming checks, used for debugging
[ 1023.210438][ T5838]       errors=continue   continue on errors
[ 1023.210438][ T5838]       errors=remount-ro remount read-only if errors found (default)
[ 1023.210438][ T5838]       errors=panic      panic on errors
[ 1023.210438][ T5838]       chkdsk=no         do not mark fs for chkdsking even if there were errors
[ 1023.210438][ T5838]       chkdsk=errors     mark fs dirty if errors found (default)
[ 1023.210438][ T5838]       chkdsk=always     always mark fs dirty - used for debugging
[ 1023.210438][ T5838]       e
[ 1023.219024][ T5830] EXT4-fs (loop8): couldn't mount RDWR because of unsupported optional features (80)
[ 1023.407387][ T5838] loop7: detected capacity change from 0 to 1024
[ 1023.421054][ T5830] EXT4-fs (loop8): Skipping orphan cleanup due to unknown ROCOMPAT features
[ 1023.445722][ T5830] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1023.525402][ T5830] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1023.616823][ T5830] EXT4-fs (loop8): couldn't mount RDWR because of unsupported optional features (80)
[ 1023.804678][ T5854] loop7: detected capacity change from 0 to 1024
[ 1023.815365][ T3085] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1023.819444][ T5854] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1023.844484][ T5856] netlink: 'syz.3.14469': attribute type 10 has an invalid length.
[ 1023.895540][ T5854] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1023.972202][ T5854] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1023.995000][ T5862] loop3: detected capacity change from 0 to 512
[ 1024.009110][ T5862] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1024.034382][ T5849] Bluetooth: hci5: Opcode 0x0c1a failed: -4
[ 1024.039372][ T5854] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1024.076725][ T5854] EXT4-fs: Remounting file system with no journal so ignoring journalled data option
[ 1024.083901][ T5849] Bluetooth: hci5: Opcode 0x0406 failed: -4
[ 1024.120637][ T5854] EXT4-fs: Cannot change journaled quota options when quota turned on
[ 1024.160596][ T5849] Bluetooth: hci1: Opcode 0x0c1a failed: -4
[ 1024.166704][ T5849] Bluetooth: hci1: Opcode 0x0406 failed: -4
[ 1024.178074][ T5862] EXT4-fs (loop3): revision level too high, forcing read-only mode
[ 1024.226291][ T5849] Bluetooth: hci6: Opcode 0x0c1a failed: -4
[ 1024.244084][ T5862] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e040e018, mo2=0002]
[ 1024.253114][ T5862] System zones: 0-1, 15-15, 18-18, 34-34
[ 1024.256989][ T5849] Bluetooth: hci6: Opcode 0x0406 failed: -4
[ 1024.259315][ T5862] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1024.272978][ T5862] Quota error (device loop3): v2_read_header: Failed header read: expected=8 got=0
[ 1024.281684][ T5869] netlink: 'syz.0.14473': attribute type 5 has an invalid length.
[ 1024.284775][ T5862] EXT4-fs warning (device loop3): ext4_enable_quotas:7183: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1024.307778][ T5862] EXT4-fs (loop3): Cannot turn on quotas: error -22
[ 1024.317950][ T5862] EXT4-fs (loop3): 1 truncate cleaned up
[ 1024.323004][ T1744] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1024.342493][ T5862] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1024.368241][ T5849] Bluetooth: hci2: Opcode 0x0c1a failed: -4
[ 1024.383170][ T5849] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1024.428115][ T5862] fscrypt (loop3, inode 16): Error -61 getting encryption context
[ 1024.476718][ T5849] Bluetooth: hci2: Opcode 0x0406 failed: -4
[ 1024.611097][ T6174] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1024.884761][ T5888] loop7: detected capacity change from 0 to 764
[ 1024.953216][ T5888] rock: directory entry would overflow storage
[ 1024.981671][ T6093] usb 9-1: new high-speed USB device number 3 using dummy_hcd
[ 1025.001129][ T5888] rock: sig=0x4f50, size=4, remaining=3
[ 1025.011960][ T5888] iso9660: Corrupted directory entry in block 6 of inode 1792
[ 1025.164277][ T6093] usb 9-1: Using ep0 maxpacket: 32
[ 1025.182190][ T6093] usb 9-1: unable to get BOS descriptor or descriptor too short
[ 1025.202785][ T6093] usb 9-1: config 128 has an invalid interface number: 6 but max is 2
[ 1025.217112][ T6093] usb 9-1: config 128 has an invalid interface number: 8 but max is 2
[ 1025.228076][ T6093] usb 9-1: config 128 has an invalid interface number: 92 but max is 2
[ 1025.236354][ T6093] usb 9-1: config 128 has no interface number 0
[ 1025.243495][ T6093] usb 9-1: config 128 has no interface number 1
[ 1025.252578][ T6093] usb 9-1: config 128 has no interface number 2
[ 1025.259024][ T6093] usb 9-1: config 128 interface 6 has no altsetting 0
[ 1025.267956][ T6093] usb 9-1: config 128 interface 8 has no altsetting 0
[ 1025.321586][ T6093] usb 9-1: config 128 interface 92 has no altsetting 0
[ 1025.337288][ T6093] usb 9-1: New USB device found, idVendor=11ba, idProduct=1001, bcdDevice=8c.42
[ 1025.354705][ T6093] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1025.363166][ T6093] usb 9-1: Product: syz
[ 1025.368740][ T6093] usb 9-1: Manufacturer: syz
[ 1025.373751][ T6093] usb 9-1: SerialNumber: syz
[ 1025.607974][ T6093] pvrusb2: Hardware description: OnAir USB2 Hybrid USB tuner
[ 1025.631600][ T6093] usb 9-1: selecting invalid altsetting 0
[ 1025.640809][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.664742][ T6093] pvrusb2: Hardware description: OnAir USB2 Hybrid USB tuner
[ 1025.685908][ T6093] usb 9-1: selecting invalid altsetting 0
[ 1025.705326][ T6093] pvrusb2: Hardware description: OnAir USB2 Hybrid USB tuner
[ 1025.723125][ T6093] usb 9-1: selecting invalid altsetting 0
[ 1025.752530][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.758330][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.769053][ T6093] usb 9-1: USB disconnect, device number 3
[ 1025.794216][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.825940][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.841044][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.864032][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.870465][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.898433][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.922243][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.933609][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.941545][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.966250][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.991981][ T2346] pvrusb2: Invalid write control endpoint
[ 1025.999801][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.005589][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.016542][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.025293][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.031168][ T6175] Bluetooth: hci5: command 0x0406 tx timeout
[ 1026.047345][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.055034][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.060874][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.101205][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.134071][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.168398][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.174172][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.184049][ T5940] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14510'.
[ 1026.194192][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.199953][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.225292][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.268804][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.291054][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.305300][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.336847][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.368399][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.374264][ T6179] Bluetooth: hci1: command 0x0406 tx timeout
[ 1026.374389][ T6175] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1026.443705][ T2346] pvrusb2: Module ID 3 (saa7115) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[ 1026.542590][ T6175] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1026.596318][ T5962] comedi comedi0: board detection failed
[ 1026.628903][ T5963] 9pnet_fd: p9_fd_create_unix (5963): problem connecting socket: ./file0: -111
[ 1026.701099][ T2346] cs53l32a 2-0011: chip found @ 0x22 (pvrusb2_a)
[ 1026.740259][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.772677][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.788836][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.801561][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.824609][ T5973] netlink: 76 bytes leftover after parsing attributes in process `syz.0.14523'.
[ 1026.830131][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.856380][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.896097][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.913580][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.933479][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.949829][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.955774][ T5978] loop3: detected capacity change from 0 to 64
[ 1026.979569][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.985531][ T2346] pvrusb2: Invalid write control endpoint
[ 1026.995712][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.001949][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.033668][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.056357][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.066214][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.079026][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.089586][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.095376][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.117886][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.144903][ T2346] pvrusb2: Attached sub-driver cs53l32a
[ 1027.223970][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.236655][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.272238][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.278024][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.309121][ T2346] pvrusb2: Module ID 4 (tuner) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[ 1027.365749][ T2346] pvrusb2: Device being rendered inoperable
[ 1027.378668][ T2346] pvrusb2: ***WARNING*** pvrusb2 driver initialization failed due to the failure of one or more sub-device kernel modules.
[ 1027.415519][ T2346] pvrusb2: You need to resolve the failing condition before this driver can function.  There should be some earlier messages giving more information about the problem.
[ 1027.419530][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.514973][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.514998][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515012][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515025][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515037][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515050][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515063][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515076][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515091][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515104][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515118][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515132][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515145][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515158][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515172][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515185][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515199][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515212][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515233][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515248][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515263][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515277][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515303][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.515317][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524016][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524043][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524059][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524074][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524088][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524102][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524116][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.524130][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.525048][ T2346] pvrusb2: Module ID 3 (saa7115) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[ 1027.661313][ T2346] cs53l32a 3-0011: chip found @ 0x22 (pvrusb2_b)
[ 1027.661374][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661391][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661406][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661421][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661435][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661450][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661463][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661619][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661633][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661646][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661659][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661671][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661683][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661696][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661708][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661722][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661735][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661749][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661763][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661776][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.661790][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.662115][ T2346] pvrusb2: Attached sub-driver cs53l32a
[ 1027.777826][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.777868][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.777887][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.777904][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.777915][ T2346] pvrusb2: Module ID 4 (tuner) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[ 1027.777935][ T2346] pvrusb2: Device being rendered inoperable
[ 1027.777950][ T2346] pvrusb2: ***WARNING*** pvrusb2 driver initialization failed due to the failure of one or more sub-device kernel modules.
[ 1027.777962][ T2346] pvrusb2: You need to resolve the failing condition before this driver can function.  There should be some earlier messages giving more information about the problem.
[ 1027.785239][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908541][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908564][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908580][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908594][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908608][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908622][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908635][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908649][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908663][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908677][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908690][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908704][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908718][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908732][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908745][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908760][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908773][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908787][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908800][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908812][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908826][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908841][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908854][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908868][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908881][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908895][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908909][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908922][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908937][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908950][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908964][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.908978][ T2346] pvrusb2: Invalid write control endpoint
[ 1027.909853][ T2346] pvrusb2: Module ID 3 (saa7115) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[ 1028.020791][ T2346] cs53l32a 2-0011: chip found @ 0x22 (pvrusb2_c)
[ 1028.020851][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.020868][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.020883][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.020897][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.020911][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.020925][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.020940][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021116][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021131][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021145][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021159][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021173][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021187][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021201][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021215][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021228][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021249][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021263][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021277][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021292][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.021306][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.045064][ T2346] pvrusb2: Attached sub-driver cs53l32a
[ 1028.270364][ T6175] Bluetooth: hci5: command 0x0406 tx timeout
[ 1028.467022][ T6034] netlink: 168 bytes leftover after parsing attributes in process `syz.5.14550'.
[ 1028.527581][ T6037] netlink: 16 bytes leftover after parsing attributes in process `syz.3.14551'.
[ 1028.648707][ T6179] Bluetooth: hci1: command 0x0406 tx timeout
[ 1028.730556][ T6175] Bluetooth: hci6: command 0x0c1a tx timeout
[ 1028.732592][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.732614][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.732630][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.732645][ T2346] pvrusb2: Invalid write control endpoint
[ 1028.732655][ T2346] pvrusb2: Module ID 4 (tuner) for device OnAir USB2 Hybrid USB tuner failed to load.  Possible missing sub-device kernel module or initialization failure within module.
[ 1028.732673][ T2346] pvrusb2: Device being rendered inoperable
[ 1028.732695][ T2346] pvrusb2: ***WARNING*** pvrusb2 driver initialization failed due to the failure of one or more sub-device kernel modules.
[ 1028.732734][ T2346] pvrusb2: You need to resolve the failing condition before this driver can function.  There should be some earlier messages giving more information about the problem.
[ 1028.773295][ T6179] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1029.384345][ T6070] loop5: detected capacity change from 0 to 64
[ 1029.495987][ T6076] SET target dimension over the limit!
[ 1030.387720][ T6118] lo speed is unknown, defaulting to 1000
[ 1030.783929][ T6134] loop3: detected capacity change from 0 to 16
[ 1030.805211][ T6134] erofs (device loop3): mounted with root inode @ nid 36.
[ 1030.844806][ T6134] erofs (device loop3): readahead error at folio 2 @ nid 89
[ 1030.862602][ T6179] erofs (device loop3): failed to decompress 7514 in[4096, 0] out[8192]
[ 1030.950236][ T6134] erofs (device loop3): failed to decompress 7514 in[4096, 0] out[8192]
[ 1030.962288][ T6136] netlink: 180 bytes leftover after parsing attributes in process `syz.7.14596'.
[ 1030.990401][ T6179] Bluetooth: hci2: command 0x0c1a tx timeout
[ 1031.014806][ T6134] erofs (device loop3): read error -117 @ 1 of nid 89
[ 1031.023626][   T30] audit: type=1800 audit(1763559819.466:282): pid=6134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.14595" name="file3" dev="loop3" ino=89 res=0 errno=0
[ 1031.027519][ T6134] syz.3.14595 (6134) used greatest stack depth: 18728 bytes left
[ 1031.056716][ T6138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14597'.
[ 1031.128468][ T6140] kAFS: unable to lookup cell '('
[ 1031.297854][ T6125] loop5: detected capacity change from 0 to 32768
[ 1031.328517][ T6125] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.14592 (6125)
[ 1031.355140][ T6146] netlink: 44 bytes leftover after parsing attributes in process `syz.7.14601'.
[ 1031.434919][ T6122] loop8: detected capacity change from 0 to 32768
[ 1031.446112][ T6125] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1031.505938][ T6125] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[ 1031.576475][ T6122] XFS (loop8): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1031.825166][ T6122] XFS (loop8): Ending clean mount
[ 1031.898481][ T6125] BTRFS info (device loop5): enabling ssd optimizations
[ 1031.912194][ T6122] XFS (loop8): Quotacheck needed: Please wait.
[ 1031.982753][ T6125] BTRFS info (device loop5): turning on async discard
[ 1032.018453][ T6125] BTRFS info (device loop5): enabling free space tree
[ 1032.104653][ T6122] XFS (loop8): Quotacheck: Done.
[ 1032.252399][T25125] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1032.301457][ T6213] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14611'.
[ 1032.308017][ T3085] XFS (loop8): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1032.924859][ T6236] netlink: 65051 bytes leftover after parsing attributes in process `syz.0.14620'.
[ 1033.167721][ T6245] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1033.506685][ T6277] netlink: 'syz.8.14632': attribute type 10 has an invalid length.
[ 1033.506714][ T6278] openvswitch: netlink: nsh attribute has 4 unknown bytes.
[ 1033.584116][ T6277] macvlan0: entered allmulticast mode
[ 1033.622843][ T6277] veth1_vlan: entered allmulticast mode
[ 1033.649756][ T6277] team0: Port device macvlan0 added
[ 1033.674618][ T6284] netlink: 12 bytes leftover after parsing attributes in process `syz.5.14636'.
[ 1034.235747][ T6306] loop7: detected capacity change from 0 to 2048
[ 1034.271994][ T6311] set match dimension is over the limit!
[ 1034.296809][ T6306] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1034.396431][ T6317] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1035.271974][ T6362] netlink: 7 bytes leftover after parsing attributes in process `syz.3.14673'.
[ 1035.278236][ T6363] netlink: 'syz.5.14674': attribute type 1 has an invalid length.
[ 1035.318630][ T6363] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14674'.
[ 1035.735596][ T6386] netlink: 'syz.3.14685': attribute type 1 has an invalid length.
[ 1035.838169][ T6387] bond1: option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 1035.877056][ T6387] bond1 (unregistering): Released all slaves
[ 1035.970723][ T6396] loop8: detected capacity change from 0 to 512
[ 1036.042305][ T6396] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1036.067920][ T6402] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14692'.
[ 1036.102648][ T6396] ext4 filesystem being mounted at /263/file2 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1036.172307][ T6396] Quota error (device loop8): write_blk: dquota write failed
[ 1036.213721][ T6396] Quota error (device loop8): find_free_dqentry: Can't write quota data block 5
[ 1036.247375][ T6396] Quota error (device loop8): qtree_write_dquot: Error -28 occurred while creating quota
[ 1036.284781][ T6396] EXT4-fs error (device loop8): ext4_acquire_dquot:6948: comm syz.8.14691: Failed to acquire dquot type 1
[ 1036.336903][   T30] audit: type=1800 audit(1763559824.423:283): pid=6396 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.8.14691" name="file2" dev="loop8" ino=16 res=0 errno=0
[ 1036.385661][ T6417] netlink: set zone limit has 8 unknown bytes
[ 1036.404994][ T3085] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1036.606729][ T6427] netlink: 12 bytes leftover after parsing attributes in process `syz.8.14701'.
[ 1036.911084][ T6447] loop5: detected capacity change from 0 to 164
[ 1037.100319][ T6453] comedi comedi0: s526: I/O port conflict (0x3,64)
[ 1038.006057][ T6505] bridge0: port 3(team0) entered blocking state
[ 1038.037930][ T6505] bridge0: port 3(team0) entered disabled state
[ 1038.059301][ T6505] team0: entered allmulticast mode
[ 1038.065130][ T6505] team_slave_0: entered allmulticast mode
[ 1038.082829][ T6505] team_slave_1: entered allmulticast mode
[ 1038.097636][ T6505] geneve0: entered allmulticast mode
[ 1038.128798][ T6505] team0: entered promiscuous mode
[ 1038.155987][ T6505] team_slave_0: entered promiscuous mode
[ 1038.191674][ T6505] team_slave_1: entered promiscuous mode
[ 1038.197960][ T6505] geneve0: entered promiscuous mode
[ 1038.302749][   T24] usb 4-1: new full-speed USB device number 18 using dummy_hcd
[ 1038.515866][   T24] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1038.559308][   T24] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1038.595515][   T24] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1038.632024][   T24] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a5, bcdDevice= 0.40
[ 1038.650470][   T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1
[ 1038.671995][   T24] usb 4-1: SerialNumber: syz
[ 1038.706548][   T24] cdc_ether 4-1:1.0: probe with driver cdc_ether failed with error -22
[ 1038.730744][   T24] usb-storage 4-1:1.0: USB Mass Storage device detected
[ 1038.750872][   T24] usb-storage 4-1:1.0: Quirks match for vid 0525 pid a4a5: 10000
[ 1038.894554][ T6545] usb usb8: usbfs: process 6545 (syz.7.14761) did not claim interface 0 before use
[ 1038.916762][ T6547] netlink: 8 bytes leftover after parsing attributes in process `syz.8.14762'.
[ 1038.988678][ T6299] usb 4-1: USB disconnect, device number 18
[ 1039.705985][ T6583] netlink: 'syz.3.14780': attribute type 2 has an invalid length.
[ 1039.877878][ T6590] IPv6: Can't replace route, no match found
[ 1039.967720][ T6587] veth3: entered allmulticast mode
[ 1040.476828][ T6623] netlink: 'syz.0.14800': attribute type 4 has an invalid length.
[ 1040.485291][ T6623] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.14800'.
[ 1040.847503][   T24] usb 9-1: new full-speed USB device number 4 using dummy_hcd
[ 1041.033004][   T24] usb 9-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config
[ 1041.052927][   T24] usb 9-1: New USB device found, idVendor=7a69, idProduct=0001, bcdDevice=a8.6b
[ 1041.079933][   T24] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1041.088142][   T24] usb 9-1: Product: syz
[ 1041.092730][   T24] usb 9-1: Manufacturer: syz
[ 1041.102029][   T24] usb 9-1: SerialNumber: syz
[ 1041.132898][   T24] usb 9-1: dvb_usb_v2: found a '774 Friio White ISDB-T USB2.0' in warm state
[ 1041.560844][ T6677] bond1: entered promiscuous mode
[ 1041.566485][   T24] usb 9-1: dvb_usb_v2: this USB2.0 device cannot be run on a USB1.1 port (it lacks a hardware PID filter)
[ 1041.571188][ T6677] bond1: entered allmulticast mode
[ 1041.597656][ T6677] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1041.611073][   T24] usb 9-1: USB disconnect, device number 4
[ 1041.762940][ T6690] loop5: detected capacity change from 0 to 512
[ 1041.771443][ T6690] EXT4-fs: Ignoring removed i_version option
[ 1041.795746][ T6690] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode
[ 1041.818388][ T6690] EXT4-fs (loop5): 1 truncate cleaned up
[ 1041.832817][ T6690] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1041.879546][ T6696] netlink: 'syz.0.14835': attribute type 3 has an invalid length.
[ 1041.920723][T25125] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1042.028830][ T6703] netlink: 'syz.5.14836': attribute type 8 has an invalid length.
[ 1042.276324][ T6715] No such timeout policy "syz1"
[ 1042.871188][ T6748] loop8: detected capacity change from 0 to 8
[ 1042.938490][ T6748] SQUASHFS error: Unable to read inode 0xa7
[ 1043.133456][ T6757] loop5: detected capacity change from 0 to 4096
[ 1043.159162][ T6757] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1043.191912][ T6757] EXT4-fs (loop5): Test dummy encryption mode enabled
[ 1043.247993][ T6757] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1043.280584][ T6768] netlink: 28 bytes leftover after parsing attributes in process `syz.8.14870'.
[ 1043.320168][T25125] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1043.341534][   T30] audit: type=1400 audit(1763559830.989:284): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=6769 comm="syz.3.14871"
[ 1043.592639][ T6778] netlink: 'syz.5.14872': attribute type 3 has an invalid length.
[ 1043.753179][ T6786] loop5: detected capacity change from 0 to 2048
[ 1043.829870][ T6786] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1043.930183][ T6786] EXT4-fs error (device loop5): ext4_search_dir:1474: inode #12: block 9: comm syz.5.14879: bad entry in directory: rec_len % 4 != 0 - offset=0, inode=13, rec_len=21, size=56 fake=0
[ 1044.012142][ T6786] EXT4-fs (loop5): Remounting filesystem read-only
[ 1044.023423][ T6793] md: async del_gendisk mode will be removed in future, please upgrade to mdadm-4.5+
[ 1044.079761][T25125] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1044.657800][ T6831] netlink: 16 bytes leftover after parsing attributes in process `syz.5.14900'.
[ 1045.330495][ T6865] netlink: 'syz.7.14917': attribute type 21 has an invalid length.
[ 1045.787062][ T6886] netlink: 8 bytes leftover after parsing attributes in process `syz.3.14925'.
[ 1045.796059][ T6886] netlink: 'syz.3.14925': attribute type 1 has an invalid length.
[ 1045.919537][ T6888] syz_tun: entered promiscuous mode
[ 1045.945908][ T6888] syz_tun: entered allmulticast mode
[ 1046.574182][ T6913] loop8: detected capacity change from 0 to 4096
[ 1046.606079][ T6913] ntfs3(loop8): Different NTFS sector size (1024) and media sector size (512).
[ 1046.661639][ T6927] netlink: 256 bytes leftover after parsing attributes in process `syz.5.14947'.
[ 1046.697527][ T6921] loop3: detected capacity change from 0 to 2048
[ 1046.705447][ T6921] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=27485, location=27485
[ 1046.793049][ T6921] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1047.226409][ T6939] loop5: detected capacity change from 0 to 4096
[ 1047.238783][ T6939] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1047.328674][ T6939] ntfs3(loop5): ino=19, mi_enum_attr
[ 1047.336517][ T6939] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1047.409743][ T6939] ntfs3(loop5): failed to convert "c46c" to koi8-r
[ 1047.426218][ T6939] ntfs3(loop5): ino=20, mi_enum_attr
[ 1047.990503][ T6959] loop7: detected capacity change from 0 to 64
[ 1048.341988][ T6974] binder: 6973:6974 ioctl c0046209 ffffffffff600000 returned -22
[ 1048.679429][   T30] audit: type=1326 audit(1763559835.975:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6987 comm="syz.8.14976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae1838f6c9 code=0x7ffc0000
[ 1048.747306][   T30] audit: type=1326 audit(1763559835.975:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6987 comm="syz.8.14976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae1838f6c9 code=0x7ffc0000
[ 1048.845753][   T30] audit: type=1326 audit(1763559835.975:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6987 comm="syz.8.14976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=129 compat=0 ip=0x7fae1838f6c9 code=0x7ffc0000
[ 1048.859137][ T6995] loop7: detected capacity change from 0 to 512
[ 1048.880493][   T30] audit: type=1326 audit(1763559835.975:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6987 comm="syz.8.14976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae1838f6c9 code=0x7ffc0000
[ 1048.915444][   T30] audit: type=1326 audit(1763559835.975:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6987 comm="syz.8.14976" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fae1838f6c9 code=0x7ffc0000
[ 1048.945098][ T6995] EXT4-fs: Ignoring removed i_version option
[ 1049.011278][ T6995] EXT4-fs (loop7): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1049.075788][ T6995] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2842e12c, mo2=0002]
[ 1049.106918][ T6995] System zones: 1-12
[ 1049.111113][ T6995] EXT4-fs (loop7): orphan cleanup on readonly fs
[ 1049.128652][ T6995] EXT4-fs error (device loop7): ext4_free_branches:1023: inode #11: comm syz.7.14978: invalid indirect mapped block 12 (level 1)
[ 1049.211051][ T6995] EXT4-fs (loop7): Remounting filesystem read-only
[ 1049.217840][ T6995] EXT4-fs (loop7): 1 truncate cleaned up
[ 1049.273527][ T6995] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1049.524624][ T1744] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1049.875816][ T7029] loop7: detected capacity change from 0 to 4096
[ 1049.911799][ T7029] ntfs3(loop7): Different NTFS sector size (2048) and media sector size (512).
[ 1049.991993][ T7029] ntfs3(loop7): Failed to initialize $Extend/$ObjId.
[ 1050.298687][ T7048] netlink: 'syz.7.15003': attribute type 2 has an invalid length.
[ 1050.449048][ T7052] netlink: 7 bytes leftover after parsing attributes in process `syz.8.15005'.
[ 1050.502305][ T7052] netlink: 7 bytes leftover after parsing attributes in process `syz.8.15005'.
[ 1050.891636][ T7072] macvtap0: entered allmulticast mode
[ 1050.908657][ T7072] veth0_macvtap: entered allmulticast mode
[ 1051.455084][ T7102] netlink: 24 bytes leftover after parsing attributes in process `syz.0.15028'.
[ 1051.489960][ T7104] netlink: 'syz.5.15029': attribute type 11 has an invalid length.
[ 1051.498744][ T7102] netlink: 24 bytes leftover after parsing attributes in process `syz.0.15028'.
[ 1051.514408][ T7102] netlink: 'syz.0.15028': attribute type 5 has an invalid length.
[ 1051.691485][ T7114] i2c i2c-0: Invalid block write size 150
[ 1051.711392][ T1875] usb 9-1: new high-speed USB device number 5 using dummy_hcd
[ 1051.891027][ T1875] usb 9-1: Using ep0 maxpacket: 8
[ 1051.904724][ T1875] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64
[ 1051.948228][ T1875] usb 9-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1051.977714][ T1875] usb 9-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[ 1052.011995][ T7133] netlink: 'syz.7.15043': attribute type 30 has an invalid length.
[ 1052.021700][ T1875] usb 9-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1052.054438][ T7133] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15043'.
[ 1052.066079][ T1875] usb 9-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40
[ 1052.077666][ T1875] usb 9-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1052.087895][ T1875] usb 9-1: Product: syz
[ 1052.095341][ T1875] usb 9-1: Manufacturer: syz
[ 1052.105879][ T1875] usb 9-1: SerialNumber: syz
[ 1052.115213][ T7100] raw-gadget.0 gadget.8: fail, usb_ep_enable returned -22
[ 1052.130829][ T1875] cdc_ether 9-1:1.0: probe with driver cdc_ether failed with error -22
[ 1052.147490][ T7133] bond2: option arp_missed_max: mode dependency failed, not supported in mode 802.3ad(4)
[ 1052.160535][ T7133] bond2 (unregistering): Released all slaves
[ 1052.185996][ T1875] usbtest 9-1:1.0: Linux user mode ISO test driver
[ 1052.192792][ T1875] usbtest 9-1:1.0: high-speed {control bulk-in bulk-out} tests (+alt)
[ 1052.372937][ T7148] netlink: 'syz.5.15049': attribute type 1 has an invalid length.
[ 1052.380980][ T7148] netlink: 'syz.5.15049': attribute type 3 has an invalid length.
[ 1052.391799][ T7148] netlink: 224 bytes leftover after parsing attributes in process `syz.5.15049'.
[ 1052.392681][   T10] usb 9-1: USB disconnect, device number 5
[ 1052.440379][ T7152] loop7: detected capacity change from 0 to 256
[ 1052.521303][ T7152] FAT-fs (loop7): Directory bread(block 64) failed
[ 1052.549599][ T7152] FAT-fs (loop7): Directory bread(block 65) failed
[ 1052.575506][ T7152] FAT-fs (loop7): Directory bread(block 66) failed
[ 1052.592931][ T7152] FAT-fs (loop7): Directory bread(block 67) failed
[ 1052.607539][ T7152] FAT-fs (loop7): Directory bread(block 68) failed
[ 1052.614098][ T7152] FAT-fs (loop7): Directory bread(block 69) failed
[ 1052.625753][ T7152] FAT-fs (loop7): Directory bread(block 70) failed
[ 1052.642429][ T7152] FAT-fs (loop7): Directory bread(block 71) failed
[ 1052.658436][ T7152] FAT-fs (loop7): Directory bread(block 72) failed
[ 1052.665455][ T7152] FAT-fs (loop7): Directory bread(block 73) failed
[ 1053.125869][   T10] usb 6-1: new high-speed USB device number 11 using dummy_hcd
[ 1053.302348][   T10] usb 6-1: Using ep0 maxpacket: 16
[ 1053.317665][   T10] usb 6-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1053.356454][   T10] usb 6-1: config 0 has an invalid interface number: 255 but max is 1
[ 1053.372481][   T10] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1053.389982][   T30] audit: type=1400 audit(1763559840.390:290): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=7201 comm="syz.3.15076"
[ 1053.403496][   T10] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1053.477826][   T10] usb 6-1: config 0 has no interface number 0
[ 1053.497679][   T10] usb 6-1: too many endpoints for config 0 interface 255 altsetting 255: 255, using maximum allowed: 30
[ 1053.562143][   T10] usb 6-1: config 0 interface 255 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1053.597416][ T7212] cifs: Unknown parameter 'Ü[—Íñ¦bšÿÿÿITäŒ&¬æ:ÅèÙ"‚Õë�ï1:ºÃÃÓ­'Ä4,�Zz-#FÇ<æõ]%gCžÊ
[ 1053.597416][ T7212] SÃȘØÈžZ§6ŸÂ'
[ 1053.618944][   T10] usb 6-1: config 0 interface 255 has no altsetting 0
[ 1053.625577][   T10] usb 6-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1053.625608][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1053.625626][   T10] usb 6-1: Product: syz
[ 1053.625640][   T10] usb 6-1: Manufacturer: syz
[ 1053.625653][   T10] usb 6-1: SerialNumber: syz
[ 1053.632970][   T10] usb 6-1: config 0 descriptor??
[ 1053.926479][ T6268] usb 6-1: USB disconnect, device number 11
[ 1054.236805][ T7242] netlink: 'syz.7.15096': attribute type 11 has an invalid length.
[ 1054.792132][ T7276] netlink: 216 bytes leftover after parsing attributes in process `syz.0.15111'.
[ 1054.840864][ T6179] Bluetooth: hci5: unexpected event for opcode 0x2028
[ 1055.294035][ T7305] netlink: 'syz.7.15125': attribute type 16 has an invalid length.
[ 1055.315798][ T7305] netlink: 'syz.7.15125': attribute type 3 has an invalid length.
[ 1055.333690][ T7305] netlink: 132 bytes leftover after parsing attributes in process `syz.7.15125'.
[ 1055.397711][   T24] usb 1-1: new low-speed USB device number 27 using dummy_hcd
[ 1055.462064][ T7318] openvswitch: netlink: Missing key (keys=40, expected=200000)
[ 1055.582210][   T24] usb 1-1: config 0 has an invalid interface number: 3 but max is 0
[ 1055.600832][   T24] usb 1-1: config 0 has no interface number 0
[ 1055.614248][   T24] usb 1-1: config 0 interface 3 altsetting 0 endpoint 0x6 has invalid maxpacket 64, setting to 8
[ 1055.633669][   T24] usb 1-1: config 0 interface 3 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1055.646181][   T24] usb 1-1: config 0 interface 3 altsetting 0 endpoint 0x8 has invalid maxpacket 1024, setting to 8
[ 1055.667856][   T24] usb 1-1: config 0 interface 3 altsetting 0 endpoint 0x4 has invalid maxpacket 1023, setting to 8
[ 1055.709271][   T24] usb 1-1: config 0 interface 3 altsetting 0 endpoint 0xA has invalid maxpacket 1023, setting to 8
[ 1055.739882][   T24] usb 1-1: New USB device found, idVendor=1199, idProduct=6821, bcdDevice=98.59
[ 1055.748956][   T24] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1055.751514][ T7332] netlink: 1 bytes leftover after parsing attributes in process `syz.3.15137'.
[ 1055.787099][   T24] usb 1-1: config 0 descriptor??
[ 1055.803572][ T7300] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22
[ 1055.833652][   T24] hub 1-1:0.3: bad descriptor, ignoring hub
[ 1055.855534][   T24] hub 1-1:0.3: probe with driver hub failed with error -5
[ 1055.879208][   T24] sierra 1-1:0.3: Sierra USB modem converter detected
[ 1056.028509][ T7320] loop7: detected capacity change from 0 to 32768
[ 1056.049426][ T7320] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.15132 (7320)
[ 1056.066457][   T24] usb 1-1: Sierra USB modem converter now attached to ttyUSB0
[ 1056.086553][ T7344] netlink: 56 bytes leftover after parsing attributes in process `syz.3.15144'.
[ 1056.107324][ T7320] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1056.115100][   T24] usb 1-1: Sierra USB modem converter now attached to ttyUSB1
[ 1056.120092][ T7320] BTRFS info (device loop7): using sha256 (sha256-lib) checksum algorithm
[ 1056.156928][   T10] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1056.187021][   T24] usb 1-1: USB disconnect, device number 27
[ 1056.242966][   T24] sierra ttyUSB0: Sierra USB modem converter now disconnected from ttyUSB0
[ 1056.268802][   T24] sierra ttyUSB1: Sierra USB modem converter now disconnected from ttyUSB1
[ 1056.279405][   T24] sierra 1-1:0.3: device disconnected
[ 1056.338609][   T10] usb 6-1: Using ep0 maxpacket: 16
[ 1056.346670][   T10] usb 6-1: config 1 has an invalid interface number: 105 but max is 0
[ 1056.386467][   T10] usb 6-1: config 1 has no interface number 0
[ 1056.398572][ T7320] BTRFS info (device loop7): enabling ssd optimizations
[ 1056.406052][   T10] usb 6-1: config 1 interface 105 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16
[ 1056.416349][ T7320] BTRFS info (device loop7): turning on async discard
[ 1056.425162][ T7320] BTRFS info (device loop7): enabling free space tree
[ 1056.432012][   T10] usb 6-1: config 1 interface 105 has no altsetting 0
[ 1056.446778][   T10] usb 6-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 1056.465649][   T10] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1056.490025][   T10] usb 6-1: Product: syz
[ 1056.494269][   T10] usb 6-1: Manufacturer: syz
[ 1056.511441][   T10] usb 6-1: SerialNumber: syz
[ 1056.546612][ T7337] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1056.619557][ T1744] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1056.816248][   T10] aqc111 6-1:1.105: probe with driver aqc111 failed with error -22
[ 1057.043891][   T24] usb 6-1: USB disconnect, device number 12
[ 1057.730031][   T10] usb 4-1: new high-speed USB device number 19 using dummy_hcd
[ 1057.767834][ T7423] netlink: 'syz.5.15173': attribute type 2 has an invalid length.
[ 1057.810633][ T7423] netlink: 'syz.5.15173': attribute type 8 has an invalid length.
[ 1057.862714][ T7423] netlink: 132 bytes leftover after parsing attributes in process `syz.5.15173'.
[ 1057.922711][   T10] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 1057.942463][   T10] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1057.950505][   T10] usb 4-1: Product: syz
[ 1057.976875][   T10] usb 4-1: Manufacturer: syz
[ 1057.981506][   T10] usb 4-1: SerialNumber: syz
[ 1058.010123][   T10] usb 4-1: config 0 descriptor??
[ 1058.275414][   T10] hso 4-1:0.0: Failed to find BULK IN ep
[ 1058.304354][   T10] usb-storage 4-1:0.0: USB Mass Storage device detected
[ 1058.515336][ T6299] usb 4-1: USB disconnect, device number 19
[ 1058.586219][ T7464] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15193'.
[ 1058.766803][ T7476] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15197'.
[ 1058.783850][ T7476] netlink: 12 bytes leftover after parsing attributes in process `syz.8.15197'.
[ 1059.174913][ T7499] netlink: 16 bytes leftover after parsing attributes in process `syz.7.15209'.
[ 1059.236133][ T7507] xt_hashlimit: overflow, try lower: 7/0
[ 1059.459525][ T7521] loop5: detected capacity change from 0 to 256
[ 1059.482969][ T7521] exfat: Deprecated parameter 'utf8'
[ 1059.505977][ T7521] exfat: Deprecated parameter 'utf8'
[ 1059.550652][ T7521] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6d3f72e, utbl_chksum : 0xe619d30d)
[ 1059.609200][ T7521] fuse: Bad value for 'fd'
[ 1059.671270][ T7530] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1059.787162][ T7535] loop8: detected capacity change from 0 to 1024
[ 1059.793823][ T7537] netlink: 72 bytes leftover after parsing attributes in process `syz.5.15227'.
[ 1059.809968][ T7537] netlink: 72 bytes leftover after parsing attributes in process `syz.5.15227'.
[ 1059.888976][ T7541] loop3: detected capacity change from 0 to 1024
[ 1059.961143][ T3784] hfsplus: b-tree write err: -5, ino 4
[ 1060.464153][ T7565] loop7: detected capacity change from 0 to 64
[ 1060.955297][ T7583] netlink: 12 bytes leftover after parsing attributes in process `syz.5.15250'.
[ 1061.336843][ T7602] netlink: 892 bytes leftover after parsing attributes in process `syz.3.15260'.
[ 1061.431165][ T7607] nfs: Deprecated parameter 'nointr'
[ 1062.003560][ T7637] netlink: 'syz.8.15277': attribute type 11 has an invalid length.
[ 1062.039308][ T7637] netlink: 228 bytes leftover after parsing attributes in process `syz.8.15277'.
[ 1062.058859][   T30] audit: type=1326 audit(1763559848.499:291): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7638 comm="syz.3.15278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[ 1062.147958][   T30] audit: type=1326 audit(1763559848.528:292): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7638 comm="syz.3.15278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[ 1062.185257][ T7643] loop5: detected capacity change from 0 to 2048
[ 1062.248616][ T7643] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1062.250391][   T30] audit: type=1326 audit(1763559848.528:293): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7638 comm="syz.3.15278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=225 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[ 1062.360977][   T30] audit: type=1326 audit(1763559848.528:294): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7638 comm="syz.3.15278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[ 1062.425403][ T7655] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1062.440061][   T30] audit: type=1326 audit(1763559848.528:295): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7638 comm="syz.3.15278" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f254598f6c9 code=0x7ffc0000
[ 1062.541944][ T7657] veth4: entered allmulticast mode
[ 1062.860763][ T7679] netlink: 'syz.0.15298': attribute type 2 has an invalid length.
[ 1062.974634][ T7683] loop7: detected capacity change from 0 to 512
[ 1063.011565][ T7683] EXT4-fs (loop7): mounting ext2 file system using the ext4 subsystem
[ 1063.056517][ T7683] EXT4-fs error (device loop7): ext4_orphan_get:1391: inode #15: comm syz.7.15300: casefold flag without casefold feature
[ 1063.093452][ T7683] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.15300: couldn't read orphan inode 15 (err -117)
[ 1063.135317][ T7683] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1063.176306][ T7683] EXT4-fs error (device loop7): ext4_map_blocks:783: inode #2: block 4: comm syz.7.15300: lblock 0 mapped to illegal pblock 4 (length 1)
[ 1063.332317][ T1744] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1063.426383][ T7705] netlink: 32 bytes leftover after parsing attributes in process `syz.8.15308'.
[ 1063.441990][ T7703] libceph: resolve '4' (ret=-3): failed
[ 1063.486749][ T7705] netlink: 32 bytes leftover after parsing attributes in process `syz.8.15308'.
[ 1063.664265][ T7715] loop3: detected capacity change from 0 to 22
[ 1063.709613][ T7715] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1063.741884][ T7715] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1064.060447][   T10] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1064.262856][   T10] usb 6-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1064.297667][   T10] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1064.327574][   T10] usb 6-1: config 0 descriptor??
[ 1064.351042][   T10] cp210x 6-1:0.0: cp210x converter detected
[ 1064.539112][ T7757] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1064.587165][   T10] usb 6-1: cp210x converter now attached to ttyUSB0
[ 1064.794677][   T10] usb 6-1: USB disconnect, device number 13
[ 1064.833632][   T10] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1064.856710][   T10] cp210x 6-1:0.0: device disconnected
[ 1064.972723][ T7771] loop7: detected capacity change from 0 to 1024
[ 1065.038458][ T7745] loop8: detected capacity change from 0 to 32768
[ 1065.303430][ T7785] netlink: 28 bytes leftover after parsing attributes in process `syz.7.15347'.
[ 1065.572890][ T7792] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1066.049304][ T7818] netlink: 8 bytes leftover after parsing attributes in process `syz.8.15365'.
[ 1066.150100][ T7822] loop3: detected capacity change from 0 to 164
[ 1066.386196][ T7832] loop3: detected capacity change from 0 to 128
[ 1066.401938][ T7834] netlink: 'syz.0.15374': attribute type 32 has an invalid length.
[ 1066.474610][ T7832] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1066.554796][ T7832] ext4 filesystem being mounted at /3085/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1066.603290][ T7832] EXT4-fs error (device loop3): ext4_validate_inode_bitmap:105: comm syz.3.15372: Corrupt inode bitmap - block_group = 0, inode_bitmap = 19
[ 1066.754665][ T6174] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1066.773156][ T7848] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0)
[ 1066.783292][ T7849] loop5: detected capacity change from 0 to 128
[ 1066.909878][   T30] audit: type=1400 audit(1763559853.027:296): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=7851 comm="syz.7.15379"
[ 1067.137355][ T7857] bond1: option min_links: invalid value (18446744073709551614)
[ 1067.141310][   T30] audit: type=1326 audit(1763559853.242:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.5.15383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1067.181183][ T7857] bond1: option min_links: allowed values 0 - 2147483647
[ 1067.188288][   T30] audit: type=1326 audit(1763559853.288:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.5.15383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1067.224275][   T30] audit: type=1326 audit(1763559853.288:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.5.15383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=438 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1067.248720][ T7857] bond1 (unregistering): Released all slaves
[ 1067.255917][ T6268] usb 4-1: new high-speed USB device number 20 using dummy_hcd
[ 1067.275879][   T30] audit: type=1326 audit(1763559853.288:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7863 comm="syz.5.15383" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5cb938f6c9 code=0x7ffc0000
[ 1067.414561][ T6268] usb 4-1: Using ep0 maxpacket: 8
[ 1067.422962][ T6268] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[ 1067.446521][ T6268] usb 4-1: config 179 has no interface number 0
[ 1067.473851][ T6268] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1067.519931][ T6268] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1067.568500][ T6268] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1067.628317][ T6268] usb 4-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1067.678270][ T6268] usb 4-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1067.708570][ T7882] loop5: detected capacity change from 0 to 256
[ 1067.722114][ T6268] usb 4-1: config 179 interface 65 has no altsetting 0
[ 1067.745925][ T6268] usb 4-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1067.766372][ T7882] FAT-fs (loop5): Directory bread(block 64) failed
[ 1067.772110][ T6268] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1067.797007][ T7882] FAT-fs (loop5): Directory bread(block 65) failed
[ 1067.817587][ T7882] FAT-fs (loop5): Directory bread(block 66) failed
[ 1067.831786][ T7882] FAT-fs (loop5): Directory bread(block 67) failed
[ 1067.844248][ T7882] FAT-fs (loop5): Directory bread(block 68) failed
[ 1067.871658][ T6268] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:179.65/input/input78
[ 1067.872558][ T7882] FAT-fs (loop5): Directory bread(block 69) failed
[ 1067.938742][ T7882] FAT-fs (loop5): Directory bread(block 70) failed
[ 1067.960901][ T7882] FAT-fs (loop5): Directory bread(block 71) failed
[ 1067.981375][ T7882] FAT-fs (loop5): Directory bread(block 72) failed
[ 1067.987945][ T7882] FAT-fs (loop5): Directory bread(block 73) failed
[ 1068.051585][ T6268] usb 4-1: USB disconnect, device number 20
[ 1068.105341][ T7080] udevd[7080]: setting owner of /dev/input/event4 to uid=0, gid=104 failed: No such file or directory
[ 1068.275350][ T7898] gtp0: entered promiscuous mode
[ 1068.281061][ T7898] gtp0: entered allmulticast mode
[ 1068.314665][ T7900] loop5: detected capacity change from 0 to 256
[ 1068.341608][ T7900] exFAT-fs (loop5): Medium has reported failures. Some data may be lost.
[ 1068.379721][ T7900] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[ 1068.897932][ T7922] loop5: detected capacity change from 0 to 1764
[ 1069.023492][ T7934] netlink: 12 bytes leftover after parsing attributes in process `syz.0.15418'.
[ 1069.033246][ T7934] netlink: 31 bytes leftover after parsing attributes in process `syz.0.15418'.
[ 1069.042990][ T7934] netlink: 'syz.0.15418': attribute type 3 has an invalid length.
[ 1069.092990][ T7934] netlink: 'syz.0.15418': attribute type 2 has an invalid length.
[ 1069.128907][ T7934] netlink: 31 bytes leftover after parsing attributes in process `syz.0.15418'.
[ 1069.130194][ T7938] loop5: detected capacity change from 0 to 256
[ 1069.630566][ T7958] netlink: 100 bytes leftover after parsing attributes in process `syz.3.15430'.
[ 1069.654667][ T7960] overlayfs: workdir and upperdir must be separate subtrees
[ 1070.087463][ T6268] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1070.265468][ T6268] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[ 1070.285512][ T6268] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping
[ 1070.312871][ T6268] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1070.335044][ T6268] usb 6-1: config 220 has no interface number 2
[ 1070.352212][ T6268] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1070.376148][ T6268] usb 6-1: config 220 interface 0 has no altsetting 0
[ 1070.406907][ T6268] usb 6-1: config 220 interface 76 has no altsetting 0
[ 1070.417429][ T6268] usb 6-1: config 220 interface 1 has no altsetting 0
[ 1070.430961][ T6268] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1070.446203][ T6268] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1070.467795][ T6268] usb 6-1: Product: syz
[ 1070.477848][ T6268] usb 6-1: Manufacturer: syz
[ 1070.482483][ T6268] usb 6-1: SerialNumber: syz
[ 1070.503610][ T7990] loop8: detected capacity change from 0 to 2048
[ 1070.538799][ T7990] NILFS (loop8): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1070.572681][ T7993] NILFS (loop8): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1070.728487][ T6268] usb 6-1: selecting invalid altsetting 0
[ 1070.749625][ T6268] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1070.765852][ T6268] uvcvideo 6-1:220.0: No valid video chain found.
[ 1070.807954][ T6268] usb 6-1: selecting invalid altsetting 0
[ 1070.827270][ T6268] usbtest 6-1:220.1: probe with driver usbtest failed with error -22
[ 1070.864791][ T6268] usb 6-1: USB disconnect, device number 14
[ 1070.951689][ T8003] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 1071.109109][ T8011] tmpfs: Bad value for 'mpol'
[ 1071.240386][ T8017] loop8: detected capacity change from 0 to 512
[ 1071.262737][ T8019] netlink: 32 bytes leftover after parsing attributes in process `syz.3.15461'.
[ 1071.273146][ T8017] EXT4-fs: Ignoring removed bh option
[ 1071.284236][ T8017] EXT4-fs (loop8): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1071.292918][ T8022] loop7: detected capacity change from 0 to 16
[ 1071.308397][ T8017] EXT4-fs (loop8): mounting ext2 file system using the ext4 subsystem
[ 1071.332638][ T8022] MTD: Attempt to mount non-MTD device "/dev/loop7"
[ 1071.358183][ T8017] EXT4-fs (loop8): warning: mounting unchecked fs, running e2fsck is recommended
[ 1071.418013][ T8017] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[ 1071.485954][ T8017] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1071.611859][ T3085] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1071.772515][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1071.772532][   T30] audit: type=1400 audit(1763559857.572:302): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//(@\)//&@},['%%&\#*" pid=8036 comm="syz.0.15469"
[ 1071.881778][ T8043] loop3: detected capacity change from 0 to 128
[ 1071.921396][ T8043] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1071.938753][ T8043] ext4 filesystem being mounted at /3106/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1072.007798][ T6174] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1072.072555][ T8052] netlink: 'syz.5.15474': attribute type 3 has an invalid length.
[ 1072.225627][ T8058] netlink: 164 bytes leftover after parsing attributes in process `syz.3.15475'.
[ 1072.353341][ T8064] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1072.450052][ T8068] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1072.551605][ T8074] netlink: 'syz.7.15486': attribute type 1 has an invalid length.
[ 1072.909746][ T8092] netlink: 4 bytes leftover after parsing attributes in process `syz.7.15497'.
[ 1073.091864][ T8101] netlink: 60 bytes leftover after parsing attributes in process `syz.3.15499'.
[ 1073.097426][ T8100] netlink: 264 bytes leftover after parsing attributes in process `syz.8.15498'.
[ 1073.110487][ T8101] netlink: 12 bytes leftover after parsing attributes in process `syz.3.15499'.
[ 1073.268832][   T30] audit: type=1400 audit(1763559858.975:303): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name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
[ 1073.485973][ T8116] x_tables: ip6_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 1073.826327][ T8137] veth0_vlan: left promiscuous mode
[ 1073.860541][ T8137] vlan1: entered allmulticast mode
[ 1073.881806][ T8137] veth0_vlan: entered allmulticast mode
[ 1074.327722][ T8162] loop8: detected capacity change from 0 to 512
[ 1074.411247][ T8162] EXT4-fs (loop8): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1074.436772][ T8162] ext4 filesystem being mounted at /442/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1074.535456][ T8162] EXT4-fs error (device loop8): ext4_xattr_block_find:1878: inode #12: comm syz.8.15527: corrupted xattr block 6: invalid header
[ 1074.692310][ T3085] EXT4-fs (loop8): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1074.868117][ T8148] loop3: detected capacity change from 0 to 32768
[ 1074.868205][   T31] INFO: task syz.6.12367:1038 blocked for more than 143 seconds.
[ 1074.925705][   T31]       Not tainted syzkaller #0
[ 1074.939686][   T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 1074.941201][ T8148] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.15521 (8148)
[ 1074.976340][   T31] task:syz.6.12367     state:D stack:26120 pid:1038  tgid:1037  ppid:32549  task_flags:0x400040 flags:0x00080002
[ 1075.011080][ T8148] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1075.034819][ T8148] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[ 1075.042875][   T31] Call Trace:
[ 1075.060624][   T31]  <TASK>
[ 1075.065299][   T31]  __schedule+0x1836/0x4ed0
[ 1075.074558][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1075.079466][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1075.093863][   T31]  ? __pfx___schedule+0x10/0x10
[ 1075.098984][   T31]  ? schedule+0x91/0x360
[ 1075.105096][   T31]  schedule+0x165/0x360
[ 1075.109452][   T31]  schedule_preempt_disabled+0x13/0x30
[ 1075.115657][   T31]  __mutex_lock+0x7e6/0x1350
[ 1075.120457][   T31]  ? __mutex_lock+0x5bb/0x1350
[ 1075.126978][   T31]  ? nfsd_nl_rpc_status_get_dumpit+0xdf/0x1290
[ 1075.136855][   T31]  ? __pfx___mutex_lock+0x10/0x10
[ 1075.142893][   T31]  ? stack_trace_save+0x9c/0xe0
[ 1075.149557][   T31]  ? stack_depot_save_flags+0x40/0x860
[ 1075.154197][ T8148] BTRFS info (device loop3): enabling ssd optimizations
[ 1075.161077][   T31]  nfsd_nl_rpc_status_get_dumpit+0xdf/0x1290
[ 1075.162075][ T8148] BTRFS info (device loop3): turning on async discard
[ 1075.176283][   T31]  ? __alloc_skb+0x142/0x2d0
[ 1075.178998][ T8148] BTRFS info (device loop3): enabling free space tree
[ 1075.180927][   T31]  ? netlink_dump+0x1b7/0xe90
[ 1075.192509][   T31]  ? __netlink_dump_start+0x5cb/0x7e0
[ 1075.198848][   T31]  ? genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[ 1075.204844][   T31]  ? genl_rcv_msg+0x5da/0x790
[ 1075.209772][   T31]  ? netlink_rcv_skb+0x208/0x470
[ 1075.214733][   T31]  ? genl_rcv+0x28/0x40
[ 1075.219013][   T31]  ? netlink_unicast+0x82f/0x9e0
[ 1075.223966][   T31]  ? netlink_sendmsg+0x805/0xb30
[ 1075.228929][   T31]  ? __sock_sendmsg+0x21c/0x270
[ 1075.234020][   T31]  ? ____sys_sendmsg+0x505/0x870
[ 1075.238977][   T31]  ? ___sys_sendmsg+0x21f/0x2a0
[ 1075.243930][   T31]  ? __x64_sys_sendmsg+0x19b/0x260
[ 1075.250050][   T31]  ? do_syscall_64+0xfa/0xfa0
[ 1075.255552][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1075.263825][   T31]  ? __pfx_nfsd_nl_rpc_status_get_dumpit+0x10/0x10
[ 1075.270386][   T31]  ? rcu_is_watching+0x15/0xb0
[ 1075.275518][   T31]  ? trace_kmalloc+0x1f/0xd0
[ 1075.280129][   T31]  ? __kmalloc_node_track_caller_noprof+0x590/0x810
[ 1075.287277][   T31]  ? __build_skb_around+0x22d/0x3f0
[ 1075.292512][   T31]  genl_dumpit+0x10b/0x1b0
[ 1075.297607][   T31]  netlink_dump+0x6e4/0xe90
[ 1075.302227][   T31]  ? __pfx_netlink_dump+0x10/0x10
[ 1075.316776][   T31]  ? genl_start+0x499/0x6c0
[ 1075.321340][   T31]  __netlink_dump_start+0x5cb/0x7e0
[ 1075.326971][   T31]  genl_family_rcv_msg_dumpit+0x1e7/0x2c0
[ 1075.332723][   T31]  ? __pfx_genl_family_rcv_msg_dumpit+0x10/0x10
[ 1075.339357][   T31]  ? genl_get_cmd+0x496/0x910
[ 1075.344063][   T31]  ? __pfx_genl_start+0x10/0x10
[ 1075.349163][   T31]  ? __pfx_genl_dumpit+0x10/0x10
[ 1075.354193][   T31]  ? __pfx_genl_done+0x10/0x10
[ 1075.360273][   T31]  ? trim_netdev_trace+0x320/0x440
[ 1075.368268][   T31]  genl_rcv_msg+0x5da/0x790
[ 1075.374247][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1075.384786][   T31]  ? ref_tracker_free+0x63a/0x7d0
[ 1075.393372][   T31]  ? __pfx_nfsd_nl_rpc_status_get_dumpit+0x10/0x10
[ 1075.400023][   T31]  ? ____sys_sendmsg+0x505/0x870
[ 1075.405627][   T31]  ? ___sys_sendmsg+0x21f/0x2a0
[ 1075.410581][   T31]  ? __x64_sys_sendmsg+0x19b/0x260
[ 1075.416831][   T31]  ? do_syscall_64+0xfa/0xfa0
[ 1075.421606][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1075.429295][   T31]  netlink_rcv_skb+0x208/0x470
[ 1075.434412][   T31]  ? __lock_acquire+0xab9/0xd20
[ 1075.439355][   T31]  ? __pfx_genl_rcv_msg+0x10/0x10
[ 1075.444813][   T31]  ? __pfx_netlink_rcv_skb+0x10/0x10
[ 1075.450213][   T31]  ? down_read+0x1ad/0x2e0
[ 1075.455151][   T31]  genl_rcv+0x28/0x40
[ 1075.459268][   T31]  netlink_unicast+0x82f/0x9e0
[ 1075.464130][   T31]  ? __pfx_netlink_unicast+0x10/0x10
[ 1075.471091][   T31]  ? netlink_sendmsg+0x642/0xb30
[ 1075.476361][   T31]  ? skb_put+0x11b/0x210
[ 1075.480688][   T31]  netlink_sendmsg+0x805/0xb30
[ 1075.485594][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1075.492324][   T31]  ? aa_sock_msg_perm+0xf1/0x1d0
[ 1075.499542][   T31]  ? bpf_lsm_socket_sendmsg+0x9/0x20
[ 1075.504933][   T31]  ? __pfx_netlink_sendmsg+0x10/0x10
[ 1075.512130][   T31]  __sock_sendmsg+0x21c/0x270
[ 1075.516917][   T31]  ____sys_sendmsg+0x505/0x870
[ 1075.525224][   T31]  ? __pfx_____sys_sendmsg+0x10/0x10
[ 1075.530922][   T31]  ? import_iovec+0x74/0xa0
[ 1075.535569][   T31]  ___sys_sendmsg+0x21f/0x2a0
[ 1075.541620][   T31]  ? __pfx____sys_sendmsg+0x10/0x10
[ 1075.547007][   T31]  ? __fget_files+0x2a/0x420
[ 1075.558559][   T31]  ? __fget_files+0x3a0/0x420
[ 1075.566887][   T31]  __x64_sys_sendmsg+0x19b/0x260
[ 1075.572350][   T31]  ? __pfx___x64_sys_sendmsg+0x10/0x10
[ 1075.578835][   T31]  ? do_syscall_64+0xbe/0xfa0
[ 1075.584037][   T31]  do_syscall_64+0xfa/0xfa0
[ 1075.588631][   T31]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1075.595336][   T31]  ? clear_bhb_loop+0x60/0xb0
[ 1075.600112][   T31]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1075.607398][   T31] RIP: 0033:0x7f6850f8f6c9
[ 1075.611905][   T31] RSP: 002b:00007f6851d53038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 1075.621821][   T31] RAX: ffffffffffffffda RBX: 00007f68511e5fa0 RCX: 00007f6850f8f6c9
[ 1075.630054][   T31] RDX: 0000000000000800 RSI: 0000200000000180 RDI: 0000000000000003
[ 1075.639115][   T31] RBP: 00007f6851011f91 R08: 0000000000000000 R09: 0000000000000000
[ 1075.647205][   T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1075.655191][   T31] R13: 00007f68511e6038 R14: 00007f68511e5fa0 R15: 00007ffe6eda81a8
[ 1075.663332][   T31]  </TASK>
[ 1075.666561][   T31] 
[ 1075.666561][   T31] Showing all locks held in the system:
[ 1075.708409][   T31] 1 lock held by khungtaskd/31:
[ 1075.717207][   T31]  #0: ffffffff8df3d740 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[ 1075.742609][   T31] 1 lock held by udevd/5202:
[ 1075.749844][   T31] 2 locks held by getty/5592:
[ 1075.755485][   T31]  #0: ffff88814d8070a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[ 1075.765349][   T31]  #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[ 1075.788304][   T31] 2 locks held by syz.2.8258/24435:
[ 1075.793541][   T31]  #0: ffffffff8f340a30 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1075.802616][   T31]  #1: ffffffff8e22ae68 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_listener_set_doit+0x137/0x1690
[ 1075.813183][   T31] 5 locks held by kworker/u8:2/31263:
[ 1075.818634][   T31]  #0: ffff8880b873a3d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 1075.828647][   T31]  #1: ffff8880b8724248 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x53/0x880
[ 1075.837548][   T31]  #2: ffffffff8df3d740 (rcu_read_lock){....}-{1:3}, at: unwind_next_frame+0xa5/0x2390
[ 1075.847305][   T31]  #3: ffffffff99a846f8 (&obj_hash[i].lock){-.-.}-{2:2}, at: debug_object_activate+0xbb/0x420
[ 1075.858319][   T31]  #4: ffffffff8df3d740 (rcu_read_lock){....}-{1:3}, at: psi_task_switch+0x53/0x880
[ 1075.867809][   T31] 3 locks held by syz.6.12367/1038:
[ 1075.873304][   T31]  #0: ffffffff8f340a30 (cb_lock){++++}-{4:4}, at: genl_rcv+0x19/0x40
[ 1075.881491][   T31]  #1: ffff88802bd586f0 (nlk_cb_mutex-GENERIC){+.+.}-{4:4}, at: __netlink_dump_start+0xfe/0x7e0
[ 1075.892005][   T31]  #2: ffffffff8e22ae68 (nfsd_mutex){+.+.}-{4:4}, at: nfsd_nl_rpc_status_get_dumpit+0xdf/0x1290
[ 1075.902642][   T31] 1 lock held by kworker/u8:8/3318:
[ 1075.908616][   T31] 3 locks held by kworker/u8:11/6946:
[ 1075.914073][   T31]  #0: ffff8880b873a3d8 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 1075.924022][   T31]  #1: ffff8880b8724248 (psi_seq){-.-.}-{0:0}, at: psi_task_switch+0x53/0x880
[ 1075.932951][   T31]  #2: ffff8880b8725d98 (&base->lock){-.-.}-{2:2}, at: __mod_timer+0x1ae/0xf30
[ 1075.942173][   T31] 
[ 1075.942473][ T6174] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1075.944509][   T31] =============================================
[ 1075.944509][   T31] 
[ 1075.944533][   T31] NMI backtrace for cpu 0
[ 1075.944545][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[ 1075.944562][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1075.944572][   T31] Call Trace:
[ 1075.944580][   T31]  <TASK>
[ 1075.944589][   T31]  dump_stack_lvl+0x189/0x250
[ 1075.944619][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1075.944643][   T31]  ? __pfx__printk+0x10/0x10
[ 1075.944673][   T31]  nmi_cpu_backtrace+0x39e/0x3d0
[ 1075.944696][   T31]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 1075.944718][   T31]  ? __pfx__printk+0x10/0x10
[ 1075.944742][   T31]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 1075.944763][   T31]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 1075.944786][   T31]  sys_info+0x135/0x170
[ 1075.944804][   T31]  watchdog+0xfb5/0x1000
[ 1075.944828][   T31]  ? watchdog+0x20a/0x1000
[ 1075.944852][   T31]  kthread+0x711/0x8a0
[ 1075.944872][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1075.944889][   T31]  ? __pfx_kthread+0x10/0x10
[ 1075.944907][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1075.944929][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1075.944949][   T31]  ? __pfx_kthread+0x10/0x10
[ 1075.944967][   T31]  ret_from_fork+0x599/0xb30
[ 1075.944990][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1075.945020][   T31]  ? __switch_to_asm+0x39/0x70
[ 1075.945035][   T31]  ? __switch_to_asm+0x33/0x70
[ 1075.945050][   T31]  ? __pfx_kthread+0x10/0x10
[ 1075.945067][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1075.945100][   T31]  </TASK>
[ 1075.945107][   T31] Sending NMI from CPU 0 to CPUs 1:
[ 1076.115393][    C1] NMI backtrace for cpu 1
[ 1076.115410][    C1] CPU: 1 UID: 0 PID: 0 Comm: swapper/1 Not tainted syzkaller #0 PREEMPT(full) 
[ 1076.115427][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1076.115437][    C1] RIP: 0010:pv_native_safe_halt+0x13/0x20
[ 1076.115462][    C1] Code: 83 f1 02 00 cc cc cc 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 66 90 0f 00 2d 63 0f 0d 00 f3 0f 1e fa fb f4 <e9> 58 f1 02 00 cc cc cc cc cc cc cc cc 90 90 90 90 90 90 90 90 90
[ 1076.115475][    C1] RSP: 0018:ffffc90000197de0 EFLAGS: 000002c6
[ 1076.115490][    C1] RAX: d3da4cc697e0f200 RBX: ffffffff81979497 RCX: d3da4cc697e0f200
[ 1076.115502][    C1] RDX: 0000000000000001 RSI: ffffffff8d78e538 RDI: ffffffff8bbf8160
[ 1076.115513][    C1] RBP: ffffc90000197f10 R08: ffff8880b873339b R09: 1ffff110170e6673
[ 1076.115524][    C1] R10: dffffc0000000000 R11: ffffed10170e6674 R12: ffffffff8f7de470
[ 1076.115536][    C1] R13: 0000000000000001 R14: 0000000000000001 R15: 1ffff110039dcb70
[ 1076.115547][    C1] FS:  0000000000000000(0000) GS:ffff888125fbc000(0000) knlGS:0000000000000000
[ 1076.115559][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1076.115570][    C1] CR2: 000055557cb705c8 CR3: 000000007796c000 CR4: 00000000003526f0
[ 1076.115585][    C1] Call Trace:
[ 1076.115593][    C1]  <TASK>
[ 1076.115599][    C1]  default_idle+0x13/0x20
[ 1076.115614][    C1]  default_idle_call+0x73/0xb0
[ 1076.115630][    C1]  do_idle+0x1e7/0x510
[ 1076.115648][    C1]  ? ct_nmi_exit+0x14b/0x1d0
[ 1076.115670][    C1]  ? __pfx_do_idle+0x10/0x10
[ 1076.115696][    C1]  cpu_startup_entry+0x44/0x60
[ 1076.115714][    C1]  start_secondary+0x101/0x110
[ 1076.115731][    C1]  common_startup_64+0x13e/0x147
[ 1076.115755][    C1]  </TASK>
[ 1076.116794][   T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 1076.287023][   T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0 PREEMPT(full) 
[ 1076.296119][   T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 1076.306163][   T31] Call Trace:
[ 1076.309433][   T31]  <TASK>
[ 1076.312353][   T31]  dump_stack_lvl+0x99/0x250
[ 1076.316937][   T31]  ? __asan_memcpy+0x40/0x70
[ 1076.321514][   T31]  ? __pfx_dump_stack_lvl+0x10/0x10
[ 1076.326704][   T31]  ? __pfx__printk+0x10/0x10
[ 1076.331289][   T31]  vpanic+0x237/0x6d0
[ 1076.335256][   T31]  ? __pfx_vpanic+0x10/0x10
[ 1076.339741][   T31]  ? preempt_schedule_common+0x83/0xd0
[ 1076.345197][   T31]  panic+0xb9/0xc0
[ 1076.348904][   T31]  ? __pfx_panic+0x10/0x10
[ 1076.353305][   T31]  ? preempt_schedule_thunk+0x16/0x30
[ 1076.358676][   T31]  ? nmi_trigger_cpumask_backtrace+0x2bb/0x300
[ 1076.364822][   T31]  watchdog+0xfff/0x1000
[ 1076.369054][   T31]  ? watchdog+0x20a/0x1000
[ 1076.373457][   T31]  kthread+0x711/0x8a0
[ 1076.377520][   T31]  ? __pfx_watchdog+0x10/0x10
[ 1076.382180][   T31]  ? __pfx_kthread+0x10/0x10
[ 1076.386761][   T31]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1076.391947][   T31]  ? lockdep_hardirqs_on+0x9c/0x150
[ 1076.397136][   T31]  ? __pfx_kthread+0x10/0x10
[ 1076.401711][   T31]  ret_from_fork+0x599/0xb30
[ 1076.406295][   T31]  ? __pfx_ret_from_fork+0x10/0x10
[ 1076.411403][   T31]  ? __switch_to_asm+0x39/0x70
[ 1076.416151][   T31]  ? __switch_to_asm+0x33/0x70
[ 1076.420899][   T31]  ? __pfx_kthread+0x10/0x10
[ 1076.425477][   T31]  ret_from_fork_asm+0x1a/0x30
[ 1076.430241][   T31]  </TASK>
[ 1076.433592][   T31] Kernel Offset: disabled
[ 1076.437902][   T31] Rebooting in 86400 seconds..