last executing test programs: 4.805875082s ago: executing program 3 (id=1119): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000240)={'wlan1\x00', 0x0}) r2 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_TID_CONFIG(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000640)={0x24, r2, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r1}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x8, 0x11d, 0x0, 0x1, [{0x4, 0x0, 0x0, 0x0}]}]}, 0x24}}, 0x0) 4.562942942s ago: executing program 3 (id=1122): r0 = syz_usb_connect$uac1(0x0, 0xdc, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000000000106b1d01014000010203010902ca0003010070000904000000010100000a24010800000201020d24060000030800000000000000240803960c03112d9cd2ce0c240208000103000000ff000924060506020100000924030003030005490c240206"], 0x0) syz_usb_control_io(r0, &(0x7f0000001bc0)={0x2c, 0x0, &(0x7f0000000980)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x407}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f0000001080)={0x2c, 0x0, &(0x7f0000000f80)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0xc01}}, 0x0, 0x0, 0x0}, 0x0) syz_usb_control_io(r0, &(0x7f00000007c0)={0x2c, 0x0, &(0x7f0000000500)={0x0, 0x3, 0x4, @lang_id={0x4, 0x3, 0x414}}, 0x0, 0x0, 0x0}, 0x0) 4.247395451s ago: executing program 4 (id=1127): r0 = syz_open_dev$sg(&(0x7f0000001600), 0x0, 0x0) setreuid(0x0, 0xee00) writev(0xffffffffffffffff, &(0x7f0000000000)=[{&(0x7f0000000400)="580000001400192340834b80040d8c560a067fbc45ff810500000000070058000b480400945f640094272d7061d328b92d0000000000008000f0fffeffe809000000fff5dd00000010000100090808004149", 0x52}], 0x1) ioctl$SCSI_IOCTL_SEND_COMMAND(r0, 0x1, &(0x7f0000000000)=ANY=[@ANYRES32=r0]) 4.11022935s ago: executing program 4 (id=1128): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0xc0ed000e, &(0x7f00000001c0)={[{@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@data_err_abort}, {@debug}, {@noload}, {@mblk_io_submit}, {@nombcache}, {@init_itable_val={'init_itable', 0x3d, 0x601}}, {@debug}]}, 0xfe, 0x46d, &(0x7f0000000f00)="$eJzs3M1vFOUfAPDvTF94+/FrRXwBQapoJL60tLzIwYtGEw6amOgB46m2hVQKNbQmQohWD3g0JN6N/4XxpBejXjTxqndDQgwXUC9rZmemLMtu2aXbLnQ/n2S6zzPzdJ/nOzPP7jPz7G4APWsk+5NE/C8ifo+IoTx7a4GR/OHGtYtTf1+7OJVEpfLWX0m13PVrF6fKouX/bcszlUqR39Sg3kvvRkzOzc2cK/Jji2c+GFs4f+GF2TOTp2ZOzZydOHbs8KG9g0cnjnQkziyu67s/nt+z6/g7l9+YOnH5vZ+S/sjjjro4OmUk37sNPd3pyrpse026umOX7fvlZrrRmUA39UVEdrgGqv1/KPpiy/K2oXjts642DlhTlUqlssKr8lIF2MCS6HYLgO4o3+iz699yWaehxz3h6sv5BVAW941iybf0R5on9g3UXd920khEnFj656tsiTW6DwEAUOu7bPzzfKPxXxoP54nB7M//izmU4Yh4ICJ2RMSDEbEzIh6KqJZ9JCIebbP++hmS28c/6ZW7Dq4F2fjvpWJu69bxX1oWGe4rctur8Q8kJ2fnZg4W++RADGw6OZvMjK9Qx/ev/vZFs221479syeovx4JFO670192gm55cnFxNzLWufhqxu79R/EmU0zhJROyKiN13Wcfss/1Nt905/hU0f9qWVb6OeCY//ktRF38paTo/Of7i0YkjY5tjbubgWHlW3O7nXy+92az+VcXfAdnx39rw/F+OfzjZHLFw/sLp6nztQvt1XPrj86bXNG2e/8e3F+f/YPJ2dcVgseGjycXFc+MRg8nrt6+fuPlsZb4sn8V/YH/j/r8jbu6JxyJiT0TsjYjHs4vCou1PRMSTEbF/hfh/fOWp99uPf33mSrP4p+90/KP2+Lef6Dv9w7d3jn9zRDQ7/oerqQPFmlZe/1pt4Gr2HQAAANwv0upn4JN0dDmdpqOj+Wf4d8bWdG5+YfG5k/Mfnp3OPys/HANpeadrqOZ+6Hhxb7jMT9TlDxX3jb/s21LNj07Nz013O3jocdua9P/Mn33dbh2w5jowjwbcp/R/6F36P/SmRP+Hnqb/Q+9q1P8/aVp69Js1bQywrrz/Q+9qof8v5Q/NRwXA/cn7P/Qu/R96UtPvxqer+sr/uif+LX7P8F5pz8ZPRHpPNGPjJ/pb/jGLNhKVobz/Z2s2NSzT7VcmAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAzvgvAAD//w3J5b0=") r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file0\x00', 0x0, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x8004587d, &(0x7f0000000140)={0x2, 0x0, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) mount$9p_fd(0x0, &(0x7f00000002c0)='./file1\x00', 0x0, 0x0, 0x0) 3.766652329s ago: executing program 4 (id=1131): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000001000), 0x48882, 0x0) sendfile(r0, r0, 0x0, 0x20000000003f) r1 = dup(r0) fallocate(r1, 0x11, 0x0, 0x80400) 3.690023689s ago: executing program 0 (id=1133): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f0000000640)='./file1\x00', 0x3014850, &(0x7f00000001c0)={[{@quota}, {@barrier_val={'barrier', 0x3d, 0x1000}}, {@grpjquota}, {@norecovery}, {@dioread_lock}]}, 0x3, 0x4c1, &(0x7f0000000680)="$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") r0 = open$dir(&(0x7f0000000240)='.\x00', 0x0, 0x0) renameat(r0, &(0x7f0000000400)='./file0\x00', r0, &(0x7f0000000440)='./file1\x00') mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) 3.018015107s ago: executing program 0 (id=1137): r0 = fsopen(&(0x7f0000000040)='cifs\x00', 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000140)={{0x14}, [@NFT_MSG_NEWTABLE={0x28, 0x0, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}, @NFTA_TABLE_FLAGS={0x8, 0x2, 0x1, 0x0, 0x2}]}, @NFT_MSG_NEWCHAIN={0x40, 0x3, 0xa, 0x201, 0x0, 0x0, {0x1}, [@NFTA_CHAIN_NAME={0x9, 0x3, 'syz1\x00'}, @NFTA_CHAIN_HOOK={0x14, 0x4, 0x0, 0x1, [@NFTA_HOOK_PRIORITY={0x8}, @NFTA_HOOK_HOOKNUM={0x8}]}, @NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0x90}}, 0x4080) close_range(r0, 0xffffffffffffffff, 0x0) 2.767744607s ago: executing program 0 (id=1139): setsockopt$SO_ATTACH_FILTER(0xffffffffffffffff, 0x1, 0x1a, &(0x7f0000000040)={0x2, &(0x7f0000000140)=[{0x28, 0x0, 0x0, 0xfffff004}, {0x6}]}, 0x10) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x204092, &(0x7f0000000480), 0x11, 0x50d, &(0x7f00000006c0)="$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") syz_mount_image$fuse(0x0, &(0x7f0000000200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x800400, 0x0, 0x0, 0x0, 0x0) quotactl$Q_GETNEXTQUOTA(0xffffffff80000900, &(0x7f00000001c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) 2.410345376s ago: executing program 1 (id=1141): syz_mount_image$cramfs(&(0x7f0000000240), &(0x7f00000001c0)='./file0\x00', 0x0, &(0x7f000001f580)=ANY=[], 0x1, 0x14b, &(0x7f0000000280)="$eJzszjFLAmEcx/HfdadEaRYYWJAJDR2JaSfWFKSRJGQHhUuTYBcFipFQjka0NQStDpbQJL4Fy1oshbA30eIWOBaPZ4TQ0v77LMd9n//9n9tYbanwAF0HetazmeMTI5cz9j07ejy6+1GrhUW3AhgeODfnH8LAoXgqQOccEPnJDhwcpY3FVDYt3jthQAUQGcWa6AGYsyOiOc3ZpX5T54D6pNm0P1qw36YVIOIwm9j3dQvMi30Tv/s+AeSL3mrlZbvZiPkW7mdkXMa8sxbz1/HT3caVFp0q21wyEsbzHSKS+O7d3/C9+auVdqsZ39LjeiuoacsSUAiE2vprMxYqXEPZtJ0Ce9LgPVa43EoCuJCAm95Z51GyA6iXunpmbKXUv79wJnsAKV9MJV2WctI5PgRZhQQiIiIiIiIiIiIiIiIiIqL/+g4AAP//nptkmQ==") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x0, 0x0) getdents(r0, 0x0, 0x0) open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2.372785726s ago: executing program 3 (id=1142): syz_mount_image$hfs(&(0x7f0000002c80), &(0x7f0000000080)='./file1\x00', 0x4490, &(0x7f0000002cc0)=ANY=[], 0xfd, 0x278, &(0x7f0000000200)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000280)=""/158, 0x9e) unlinkat(0xffffffffffffff9c, &(0x7f0000000380)='./file1\x00', 0x0) 2.029163275s ago: executing program 4 (id=1143): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000100)={'batadv_slave_0\x00', 0x0}) sendmsg$ETHTOOL_MSG_COALESCE_GET(r1, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000280)=ANY=[@ANYBLOB='4\x00\x00\x00', @ANYRES16=r0, @ANYBLOB="010000000000000000001c00000020000180140002006970366772653000000000000000000008000100", @ANYRES32=r2], 0x34}, 0x1, 0x0, 0x0, 0x200088c5}, 0x4000) 2.028936695s ago: executing program 3 (id=1144): r0 = fsopen(&(0x7f00000000c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x89) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 1.907559385s ago: executing program 1 (id=1145): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0x9, 0x4, 0x8, 0xe, 0x0, 0xffffffffffffffff, 0x8, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000006020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b70300000000ecff850000000400000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000005c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f000000e000)={0x18, 0x4, &(0x7f00000000c0)=ANY=[@ANYBLOB="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"], &(0x7f0000003ff6)='GPL\x00', 0x2, 0xfd90, &(0x7f000000cf3d)=""/195, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) 1.899813705s ago: executing program 0 (id=1146): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) symlink(&(0x7f0000000080)='./file0\x00', &(0x7f00000000c0)='./file0\x00') 1.746109064s ago: executing program 3 (id=1147): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000080), 0x14d802, 0x0) r1 = dup(r0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x1000002, 0x28011, r1, 0x2c93a000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) 1.723513104s ago: executing program 4 (id=1148): syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f0000000040)='./file1\x00', 0x8c0, &(0x7f0000000080)=ANY=[@ANYBLOB='acl,heartbeat=none,dir_resv_level=00003,coherency=full,coherency=full,localflocks,coherency=full,noacl,\x00'/119], 0x1, 0x4434, &(0x7f0000008940)="$eJzs3c9rG1ceAPA3Y+/GziZZO5tDFhZWsIFddoORc9pdB9ZxnDh24s2SbULpRZFtJXErW8GWSw85uLdAT4UeSg+hhdxMD8GHXtM/oZce03OgPfRSKIS6SBrZnpGMVWPZjfl8IBrP+y19NU9vDpMXJ6oP5pdz88u54mKuMntv+ULu3Up5ZaEU4gNy2P3TmW7ESewPz83LV/9/50IIX859/XJjY2Mj1PSGtoa3/f3D949mtx+b4kydWrvtW9svb4UQzrSMq6YnhPDmFyFEIYRLSdpYcuwPIZwKjbw7jz64m9un0Tx7UbpYeDX9eH3k3NTak/Wd33sUwiflP56/v/DtX3pGvvn7PnUPAAAAAAAAAAAAAAAAAMBrbuLWzdv/yw+H51HoXYtan9edSI47PR+7sW/+3P03CwAAAAAAAAAAAAAAAAAAAL9SW8//56LTbZ7/H0+Oo7WXz1vrb/znYMZJd0z+9+b4lfxwsv971JL/zyTpu0s9YbDNvu/Z/d8vZeq33/+9tZ+9ao6v2e9AiOKh1HkcDw2F8Fmy8fvZ6HhcrixX/3GvsrI4t2/DeG2l49/YvT8VnWRD/07jP5Zpv/v7//+h5dtUO7+7f1+xIy0d/54dyz19P+oo/pcz9Q4i/uxdOv699bT+7QVGGxNALf4f9u4e//FM+92K/6kQQi6qjTWXmgFqa5ha+mg3Oj2C0vH/TT0tNXUmH+RO1/+PmfhfybR/WPP/avaHiLbS8f9tPa0vVWLr+h+Md7/+r2baP4z418a/6ve/I+n4H2sk9qaK1D/JTuf/iUz73Yr/7TgZ56ko9Q1Yixrpzf+vrq8bnR8h6fi3flpb939xR+u/a5n6B3X/1+y3ef/XnP7/FjXu/2gvHf/+Hct1ev1PZup1e/4fra//2Kt0/I/X09Jr54H6a6fxn8q0v0/x780m1Fclfc34b80nPx1rpH9q/deRdPx/10iMt5dYrb/W13/R7uv/65n2D2P9Vxv/atzdXo+KdPxP7Fju6fl8+KqD3/8bmXrdj38IeWv9PUvH/+SO5erXf9/u8Z/O1Ot2/P/azcYBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXgNjyXEgRPFQ6jyOh4ZCuJycnw3Ho5niXGGmXJl9ZzmE8SQ9F05H98uVmWK5ML9YmSsViuVyZTaEK0n+mdAXLZcr1cJC8eHVzbb6owel4lJ1plSshhAmkvQ/hZPNtmbmqwvFhyGEa5t5v48rSw8fFBcLc/NL/87n8/kwuTmGwaj0XrW0WG303sgNYWqz7kC0bXD17OubYzkRvV1ZWVosluvpN7bVKVdmi+VtdaaTvI/CYFRdWlmcLVZLhXLlfrO/wzSaHMcnb71x68ZwS/7dqHEcO9hhAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPALPR/518chhN7GWRxCyEXJH1HyL+XZi9LFwqvpx+sj56bWnqy/bFcGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICf2YEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIu/aM0EERxAH4zFlp6DKtlt7NdUUQLVwRPoMfwMHoUL+EdLFKkTRECySyE/QPbJNX3NQ/mx8x7MA8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAYLnHt+79tW4iUlxtLyN+P//+j/PnUr/vpu9fnGFGTufppbt/qJvy72mU35ajVZv36Wb99RETtfcz2JPhPh2M+wzN7dvcfH3f60i5ioi25Dcp56pa9hYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMCOHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAsQAAAACAMH/rKPo2AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB+BQAA//8GUB/l") mknodat$loop(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x6000, 0x0) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) open(&(0x7f00009e1000)='./file0\x00', 0x60840, 0x0) 1.699132054s ago: executing program 1 (id=1149): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan1\x00', 0x0}) sendmsg$NL80211_CMD_GET_MPP(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f00000005c0)={&(0x7f0000000040)={0x1c, r1, 0xe1527b0cf4b1ab9f, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 1.546081454s ago: executing program 2 (id=1150): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000280)='cgroup.controllers\x00', 0x275a, 0x0) fcntl$setstatus(r0, 0x4, 0x0) r1 = dup(r0) copy_file_range(r0, 0x0, r1, &(0x7f0000000640)=0x20000000000, 0x6, 0x0) 1.482246294s ago: executing program 1 (id=1151): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x3a8bc000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) inotify_init1(0x80800) 1.357454603s ago: executing program 2 (id=1152): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000b80)=@delchain={0x134, 0x65, 0x0, 0x70bd27, 0x0, {}, [@filter_kind_options=@f_flower={{0xb}, {0x30, 0x2, [@TCA_FLOWER_KEY_CT_MARK={0x8, 0x5f, 0x9}, @TCA_FLOWER_KEY_IPV4_SRC_MASK={0x8, 0xb, 0xffffff00}, @TCA_FLOWER_KEY_MPLS_TC={0x5, 0x45, 0x5}, @TCA_FLOWER_KEY_ARP_THA_MASK={0xa, 0x42, [0x0, 0xff, 0xff, 0xff, 0xff]}, @TCA_FLOWER_KEY_CT_STATE={0x6, 0x5b, 0x900}]}}, @TCA_RATE={0x6}, @TCA_CHAIN={0x8}, @TCA_RATE={0x6}, @filter_kind_options=@f_route={{0xa}, {0xb0, 0x2, [@TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_FROM={0x8}, @TCA_ROUTE4_IIF={0x8}, @TCA_ROUTE4_ACT={0x94, 0x6, [@m_connmark={0x50, 0x0, 0x0, 0x0, {{0xd}, {0x20, 0x2, 0x0, 0x1, [@TCA_CONNMARK_PARMS={0x1c, 0x1, {{0xfffffffe, 0x800}}}]}, {0x4}, {0xc}, {0xc}}}, @m_sample={0x40, 0x1c, 0x0, 0x0, {{0xb}, {0x4}, {0x11, 0x6, "7540328a81220054530cf364b2"}, {0xc, 0x7, {0x1, 0x1}}, {0xc, 0x8, {0x1, 0x4}}}}]}]}}]}, 0x134}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x14}, {&(0x7f00000007c0)=""/154, 0x8}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 1.082144042s ago: executing program 2 (id=1153): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000140), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_COALESCE(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000b00)={&(0x7f0000000240)=ANY=[@ANYBLOB='<\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010000000000000000000200000008000300", @ANYRES32=r2, @ANYBLOB="0800250000000040080002"], 0x3c}, 0x1, 0x0, 0x0, 0x7000000}, 0x0) 870.853552ms ago: executing program 2 (id=1154): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_IBSS(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000580)={&(0x7f0000000040)=ANY=[@ANYBLOB='0\x00\x00\x00', @ANYRES16=r1, @ANYBLOB="010100000000916fcd7c92a8bcfd08000300", @ANYRES32=r2], 0x30}}, 0x0) 600.767312ms ago: executing program 3 (id=1155): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000100)=0x40049, 0x4) setsockopt$IPT_SO_SET_REPLACE(0xffffffffffffffff, 0x4000000000000, 0x40, &(0x7f0000000580)=@raw={'raw\x00', 0x4008, 0x3, 0x240, 0xd8, 0x500b, 0x148, 0xd8, 0x148, 0x1a8, 0x240, 0x240, 0x1a8, 0x240, 0x7fffffe, 0x0, {[{{@ip={@local, @local, 0x0, 0x0, 'ip6gretap0\x00', 'team_slave_0\x00'}, 0x0, 0x70, 0xd8}, @unspec=@CT2={0x68, 'CT\x00', 0x2, {0x0, 0x0, 0x0, 0x0, '\x00', 'syz0\x00'}}}, {{@uncond, 0x0, 0x70, 0xd0}, @common=@CLUSTERIP={0x60}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x2a0) recvmmsg(r0, &(0x7f0000000480)=[{{0x0, 0x0, 0x0, 0x0, &(0x7f00000003c0)=""/11, 0x10}}], 0x400000000000179, 0x10022, 0x0) 500.353771ms ago: executing program 2 (id=1156): syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) pipe(&(0x7f0000000080)={0xffffffffffffffff}) io_setup(0x7, &(0x7f0000004200)=0x0) io_submit(r1, 0x5f, &(0x7f0000000900)=[&(0x7f0000000140)={0x0, 0x0, 0x0, 0x0, 0x0, r0, &(0x7f00000000c0)='P', 0x1}]) 420.162641ms ago: executing program 0 (id=1157): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f00000007c0)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000001fc0)=@delchain={0x82c, 0x65, 0x0, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, {0x9}}, [@TCA_CHAIN={0x8}, @TCA_CHAIN={0x8}, @filter_kind_options=@f_flower={{0xb}, {0x4}}, @filter_kind_options=@f_cgroup={{0xb}, {0x7dc, 0x2, [@TCA_CGROUP_ACT={0x140, 0x1, [@m_ife={0x13c, 0x2, 0x0, 0x0, {{0x8}, {0x4c, 0x2, 0x0, 0x1, [@TCA_IFE_DMAC={0xa, 0x3, @random="e723bdf21099"}, @TCA_IFE_METALST={0x30, 0x6, [@IFE_META_SKBMARK={0x4, 0x1, @void}, @IFE_META_SKBMARK={0x8, 0x1, @val=0x3}, @IFE_META_PRIO={0x8, 0x3, @val=0x1}, @IFE_META_TCINDEX={0x6}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x54ae}, @IFE_META_TCINDEX={0x6, 0x5, @val=0x9}]}, @TCA_IFE_SMAC={0xa, 0x4, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0xe}}]}, {0xc9, 0x6, "e3946a9a74a3e9c676bb6449efe01a385c73941f2ea18d43166aa70a8252155015dff75b2ea2c2721628bdbeb1c35539411a6174a872a807c5921ffc1cea9f82fe559661af72d8576c454d5cc452ccd0058ec5ebc500966841bfec520e68fef55cbeb2dfc8ef8f561cfd0cfbdb0e70375d47a5b3be472fdd78b6b9eae7c142a511f0413711611a4d4712447b3aba253f24c5c8e74e244505d1701390858cf3899393dc90f74143df7074b58ef455d0ef13839e835d14d226ab7a6828d49aa9dbe62672b462"}, {0xc, 0x7, {0x1}}, {0xc, 0x8, {0x2, 0x1}}}}]}, @TCA_CGROUP_POLICE={0x47c, 0x2, [@TCA_POLICE_PEAKRATE={0x404, 0x3, [0xfffffff9, 0x1, 0xfffffffc, 0x7, 0xa, 0x5, 0x5, 0x4, 0x5, 0x0, 0x0, 0x5, 0x5, 0x7, 0x0, 0x6, 0x5, 0x2, 0xe, 0xfffffffc, 0x80000001, 0x7, 0x1ff, 0x9, 0x8, 0x2, 0xb08, 0xfffff708, 0x40, 0x8239, 0x7, 0x7, 0x0, 0xf, 0xa06a, 0x401, 0x1, 0x7, 0x4, 0x9, 0x6, 0x7, 0x1, 0x0, 0x2, 0x52, 0x5, 0x7f, 0x24a4a771, 0xfffffffe, 0x9, 0xfff, 0x1, 0x2, 0x4, 0x2, 0x0, 0xffff, 0x8000, 0x5, 0xfffffffb, 0x7, 0x4, 0x3, 0xd, 0x5, 0x3, 0x80000000, 0x7, 0x0, 0xe, 0x3, 0x1, 0x6, 0x8a5, 0x197365c3, 0x8, 0x2, 0xfffffff9, 0x9, 0x3ff, 0x7, 0xc445, 0x80, 0x8, 0x1, 0x0, 0x7, 0x4, 0x7, 0x3, 0x7, 0x101, 0x5, 0x2, 0x8, 0xae0, 0x4, 0x81, 0x7ff, 0xfffffffb, 0x1, 0x2, 0x1, 0x5, 0x9, 0xd3bf, 0x4, 0xd, 0x4, 0x8, 0x5, 0x100, 0x1, 0x3, 0x8, 0xfffff77a, 0x22ef, 0x7fff, 0x3ff, 0xfffffe01, 0x60000000, 0x0, 0x8, 0x1, 0xa241, 0x7, 0x8, 0x9, 0x1, 0x6, 0x4, 0xc, 0x401, 0x8, 0x400, 0x2, 0xffff, 0x3, 0x2, 0x80, 0x9, 0x2, 0x6, 0xfffffc00, 0x10000, 0x0, 0x48000000, 0x5, 0x9, 0x8, 0x0, 0x1000, 0x7, 0x2, 0x5, 0x334519ca, 0x4, 0x1ff, 0x3, 0x0, 0x6, 0x10000, 0x0, 0x9, 0xde0, 0x0, 0x7ff, 0xe7, 0x7, 0x6, 0xffff, 0x80000001, 0xfffffb14, 0x602, 0xfffffcb7, 0x88, 0x5, 0x5d91, 0x800, 0x1c, 0x7, 0x800, 0x9ab, 0xefa1, 0x4, 0xf40, 0xb8, 0x0, 0xe8, 0x5, 0x4, 0x40, 0x5, 0x10, 0x4, 0x3a63, 0x8, 0x8, 0x5, 0x3, 0x5, 0x0, 0xf4, 0x7, 0x8, 0x81, 0x2762, 0x2, 0xe, 0x100, 0x99, 0xfffffffe, 0x0, 0x4, 0x0, 0xf, 0x2, 0x8001, 0xf40f, 0x200, 0xf, 0x1, 0x10000, 0x7, 0x7, 0x2, 0x8, 0x2, 0x144, 0x241d, 0x380000, 0x7, 0xfffffff9, 0x2, 0x80000000, 0x6, 0x8, 0x3, 0x9, 0x3, 0x2, 0x200, 0x497, 0x2, 0x9, 0x4, 0x5, 0x1, 0xfffffffc, 0x4, 0x0, 0x13f, 0xe, 0x3, 0x8]}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x8}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x5}, @TCA_POLICE_TBF={0x3c, 0x1, {0x1ff, 0x5, 0xb, 0x235cac32, 0x7, {0xd, 0x0, 0xfffa, 0x0, 0x7, 0x1000}, {0x81, 0x1, 0x8, 0x8, 0x4, 0x9}, 0x3, 0x3, 0x6}}, @TCA_POLICE_PEAKRATE64={0xc, 0x9, 0x3b6}, @TCA_POLICE_RESULT={0x8, 0x5, 0x9}, @TCA_POLICE_RATE64={0xc, 0x8, 0x7d8}]}, @TCA_CGROUP_EMATCHES={0x14, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x200}}]}, @TCA_CGROUP_EMATCHES={0x208, 0x3, 0x0, 0x1, [@TCA_EMATCH_TREE_LIST={0xb8, 0x2, 0x0, 0x1, [@TCF_EM_CMP={0x18, 0x3, 0x0, 0x0, {{0x7, 0x1, 0x3}, {0x80000001, 0x40, 0x64ea, 0xcbbc66a001d418c, 0x7, 0x2, 0x2}}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x5, 0x8, 0x1000}, {0x6, 0x0, 0x4}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x3ff, 0x8, 0x7}, {0x1, 0x6}}}, @TCF_EM_NBYTE={0x1c, 0x3, 0x0, 0x0, {{0x7, 0x2, 0xe5d4}, {0x81, 0x9, 0x2, "f8e5755513f42aeab9"}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x4, 0x1, 0xf6c}, {0xe67a, 0x9, 0x6, 0x4, 0x7, 0x2, 0x2}}}, @TCF_EM_CONTAINER={0x48, 0x3, 0x0, 0x0, {{0x56b, 0x0, 0x80}, "5689fff81c0850ef01b1a307253548314b21624a823e47a522d319098ba5d1df0913a5e583d8061a03e14a08ec743e7d6f3410c101dfa73523"}}]}, @TCA_EMATCH_TREE_HDR={0x8}, @TCA_EMATCH_TREE_LIST={0x74, 0x2, 0x0, 0x1, [@TCF_EM_CANID={0x14, 0x3, 0x0, 0x0, {{0x4, 0x7, 0xfcfa}, {{0x3, 0x0, 0x1}, {0x0, 0x1, 0x1, 0x1}}}}, @TCF_EM_CANID={0x14, 0x2, 0x0, 0x0, {{0x5, 0x7, 0xfebf}, {{0x3, 0x1, 0x1, 0x1}, {0x8000, 0x1, 0x1}}}}, @TCF_EM_CMP={0x18, 0x1, 0x0, 0x0, {{0x8, 0x1, 0x6000}, {0x80, 0x8, 0xf93, 0x1, 0xa, 0x1}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x1, 0x8, 0x5ea}, {0xffffffffffffffff, 0x0, 0x2}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x9, 0x8, 0x4}, {0x3, 0x1, 0x4}}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x8, 0x8, 0xfffd}, {0x3, 0x6, 0x7}}}]}, @TCA_EMATCH_TREE_LIST={0x88, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x9, 0x8, 0x1548}, {0x3, 0x5}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x4, 0x8, 0x5}, {0xffffffffffffffff, 0x1, 0x4}}}, @TCF_EM_NBYTE={0x10, 0x3, 0x0, 0x0, {{0x1}, {0x80, 0x0, 0x1}}}, @TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x3, 0x8, 0x5}, {0x1, 0x4}}}, @TCF_EM_IPSET={0x10, 0x3, 0x0, 0x0, {{0x0, 0x8, 0x1000}, {0x1, 0x0, 0x5}}}, @TCF_EM_U32={0x1c, 0x3, 0x0, 0x0, {{0x9, 0x3, 0xffd1}, {0xaa3, 0x5, 0x8aa, 0x9}}}, @TCF_EM_CMP={0x18, 0x2, 0x0, 0x0, {{0x4e6f, 0x1, 0x5}, {0x81, 0x73905350, 0x1, 0x4, 0x0, 0x0, 0x2}}}]}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0xfff}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_HDR={0x8, 0x1, {0x5}}, @TCA_EMATCH_TREE_LIST={0x30, 0x2, 0x0, 0x1, [@TCF_EM_IPSET={0x10, 0x2, 0x0, 0x0, {{0x7, 0x8, 0x5c}, {0xffffffffffffffff, 0x0, 0x6}}}, @TCF_EM_U32={0x1c, 0x1, 0x0, 0x0, {{0x1, 0x3, 0xbd4}, {0x81, 0x1, 0x2, 0x62a}}}]}]}]}}]}, 0x82c}}, 0x0) r0 = socket(0x10, 0x803, 0x0) sendto(r0, &(0x7f0000000740)="120000001200e7ef007b00000000000000a1", 0x12, 0x0, 0x0, 0x0) recvmmsg(r0, &(0x7f00000037c0)=[{{&(0x7f00000004c0)=@ethernet={0x0, @random}, 0xfdf4, &(0x7f0000000380)=[{&(0x7f0000000140)=""/100, 0x365}, {&(0x7f0000000280)=""/85, 0x7c}, {&(0x7f0000000fc0)=""/4096, 0x197}, {&(0x7f0000000400)=""/106, 0x645}, {&(0x7f0000000980)=""/73, 0x1b}, {&(0x7f0000000200)=""/77, 0x334}, {&(0x7f00000007c0)=""/154, 0x2c}, {&(0x7f00000001c0)=""/17, 0x1d8}], 0x21, &(0x7f0000000600)=""/191, 0x41}}], 0x4000000000003b4, 0x0, &(0x7f0000003700)={0x77359400}) 310.182291ms ago: executing program 4 (id=1158): r0 = socket$pppl2tp(0x18, 0x1, 0x1) r1 = socket$inet6_udp(0xa, 0x2, 0x0) connect$pppl2tp(r0, &(0x7f0000000000)=@pppol2tpv3={0x18, 0x1, {0x3, r1, {0x2, 0x4e24, @broadcast}, 0x2}}, 0x2e) ioctl$PPPIOCGL2TPSTATS(r0, 0x80487436, &(0x7f0000000080)) 309.951491ms ago: executing program 1 (id=1159): r0 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) r1 = syz_init_net_socket$nfc_raw(0x27, 0x3, 0x0) r2 = dup2(r0, r1) accept4$nfc_llcp(r2, 0x0, 0x0, 0x0) 176.918171ms ago: executing program 0 (id=1160): r0 = openat$sw_sync(0xffffffffffffff9c, &(0x7f0000000080), 0x2701, 0x0) ioctl$SW_SYNC_IOC_CREATE_FENCE(r0, 0xc0285700, &(0x7f0000000000)={0xfffffffe, "94c492eb0165203d36c82d00000040e1100ad9850800000022000000004fa300", 0xffffffffffffffff}) r2 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f00000001c0)='.\x00', &(0x7f0000000180), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESOCT=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r2]) 160.47252ms ago: executing program 1 (id=1161): r0 = timerfd_create(0x0, 0x0) timerfd_settime(r0, 0x3, &(0x7f0000000440)={{0x0, 0x989680}}, 0x0) clock_adjtime(0x0, &(0x7f0000000480)={0xd54, 0xfffffffffffffffd, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xb3a7, 0x8000000}) ioctl$TFD_IOC_SET_TICKS(r0, 0x40085400, &(0x7f0000000380)=0x2) 0s ago: executing program 2 (id=1162): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, 0x0, 0x0) setsockopt$MRT_ADD_MFC(r0, 0x0, 0xcc, 0x0, 0x0) setsockopt$MRT_FLUSH(r0, 0x0, 0xd4, &(0x7f0000000140)=0x7, 0x4) kernel console output (not intermixed with test programs): e9b59d [ 139.175641][ T5764] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 139.195632][ T5756] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x3ffff [ 139.209235][ T5764] BTRFS info (device loop3): setting nodatacow, compression disabled [ 139.225313][ T5756] F2FS-fs (loop4): invalid crc value [ 139.243640][ T5764] BTRFS info (device loop3): force clearing of disk cache [ 139.266945][ T5756] F2FS-fs (loop4): Found nat_bits in checkpoint [ 139.276215][ T5764] BTRFS info (device loop3): enabling ssd optimizations [ 139.308058][ T5764] BTRFS info (device loop3): using spread ssd allocation scheme [ 139.342999][ T5764] BTRFS info (device loop3): turning off barriers [ 139.364663][ T5764] BTRFS info (device loop3): max_inline at 34 [ 139.374415][ T5764] BTRFS info (device loop3): using free space tree [ 139.487651][ T5756] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 139.687287][ T5764] BTRFS info (device loop3): rebuilding free space tree [ 139.764442][ T4256] syz-executor: attempt to access beyond end of device [ 139.764442][ T4256] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 139.926574][ T4249] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 140.039977][ T5758] loop0: detected capacity change from 0 to 65536 [ 140.242282][ T5758] XFS (loop0): Mounting V5 Filesystem [ 140.392147][ T5758] XFS (loop0): Ending clean mount [ 140.427884][ T5758] XFS (loop0): Quotacheck needed: Please wait. [ 140.503023][ T5758] XFS (loop0): Quotacheck: Done. [ 140.727195][ T4250] XFS (loop0): Unmounting Filesystem [ 140.763682][ T5817] loop4: detected capacity change from 0 to 164 [ 140.895514][ T5819] loop3: detected capacity change from 0 to 2048 [ 140.939156][ T5819] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 141.031962][ T5820] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 141.032253][ T5819] syz.3.476: attempt to access beyond end of device [ 141.032253][ T5819] loop3: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 141.269564][ T5813] loop2: detected capacity change from 0 to 40427 [ 141.302103][ T5813] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x3ffff [ 141.333139][ T5813] F2FS-fs (loop2): invalid crc value [ 141.355343][ T5813] F2FS-fs (loop2): Found nat_bits in checkpoint [ 141.362136][ T5815] loop1: detected capacity change from 0 to 32768 [ 141.417895][ T5815] XFS: ikeep mount option is deprecated. [ 141.423606][ T5815] XFS: noikeep mount option is deprecated. [ 141.484055][ T5813] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 141.503182][ T5830] loop4: detected capacity change from 0 to 512 [ 141.557092][ T5815] XFS (loop1): Mounting V5 Filesystem [ 141.612008][ T5830] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.484: bg 0: block 393: padding at end of block bitmap is not set [ 141.638357][ T5830] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 141.665271][ T4260] syz-executor: attempt to access beyond end of device [ 141.665271][ T4260] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 141.665314][ T5830] EXT4-fs (loop4): 2 truncates cleaned up [ 141.707097][ T5830] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 141.783048][ T5815] XFS (loop1): Ending clean mount [ 141.803075][ T5815] XFS (loop1): Quotacheck needed: Please wait. [ 141.810017][ T5806] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 141.916261][ T5815] XFS (loop1): Quotacheck: Done. [ 141.996751][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 142.018149][ T5806] usb 4-1: Using ep0 maxpacket: 8 [ 142.034862][ T5806] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 142.048748][ T4258] XFS (loop1): Unmounting Filesystem [ 142.055030][ T5806] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8D has invalid maxpacket 3 [ 142.081254][ T5806] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 142.120324][ T5824] loop3: detected capacity change from 0 to 32768 [ 142.126858][ T5806] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 142.147233][ T5806] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 142.157904][ T5806] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 142.174665][ T5806] usb 4-1: config 0 descriptor?? [ 142.180804][ T5835] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 142.224933][ T5824] loop3: p1 p3 < p5 > p4 [ 142.888306][ T5824] loop3: detected capacity change from 0 to 512 [ 142.987150][ T5806] usb 4-1: string descriptor 0 read error: -71 [ 143.016308][ T5806] usb 4-1: USB disconnect, device number 6 [ 143.177717][ T5848] loop0: detected capacity change from 0 to 4096 [ 143.217991][ T5848] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 143.265158][ T5843] loop4: detected capacity change from 0 to 32768 [ 143.274847][ T5848] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 143.319243][ T5843] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 143.364785][ T5848] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 143.435331][ T5848] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 143.447178][ T5846] loop1: detected capacity change from 0 to 32768 [ 143.457905][ T5846] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.486 (5846) [ 143.486081][ T5848] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 143.530542][ T5846] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 143.550588][ T5846] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 143.566870][ T5848] ntfs: volume version 3.1. [ 143.587697][ T5846] BTRFS info (device loop1): setting nodatacow, compression disabled [ 143.595838][ T5846] BTRFS info (device loop1): turning on flush-on-commit [ 143.616192][ T5846] BTRFS info (device loop1): enabling auto defrag [ 143.624740][ T4256] ocfs2: Unmounting device (7,4) on (node local) [ 143.687995][ T5846] BTRFS info (device loop1): max_inline at 0 [ 143.694059][ T5846] BTRFS info (device loop1): using free space tree [ 143.997740][ T5846] BTRFS info (device loop1): enabling ssd optimizations [ 144.053866][ T5878] netlink: 72 bytes leftover after parsing attributes in process `syz.3.491'. [ 144.369563][ T4258] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 144.663429][ T5890] loop2: detected capacity change from 0 to 1024 [ 144.700615][ T5892] loop0: detected capacity change from 0 to 512 [ 144.828671][ T5892] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #17: comm syz.0.499: iget: bogus i_mode (0) [ 144.908119][ T5892] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.499: couldn't read orphan inode 17 (err -117) [ 145.006591][ T5892] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 145.137300][ T5892] EXT4-fs error (device loop0): ext4_validate_block_bitmap:429: comm syz.0.499: bg 0: block 7: invalid block bitmap [ 145.244888][ T5900] netlink: 'syz.2.500': attribute type 10 has an invalid length. [ 145.278152][ T5900] bond0: (slave bond_slave_0): Releasing backup interface [ 145.321147][ T5902] netlink: 60 bytes leftover after parsing attributes in process `syz.1.502'. [ 145.350682][ T5902] netlink: 28 bytes leftover after parsing attributes in process `syz.1.502'. [ 145.362080][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 145.477451][ T5906] loop0: detected capacity change from 0 to 256 [ 145.536735][ T5906] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x1a97a7bd, utbl_chksum : 0xe619d30d) [ 145.776666][ T5912] loop4: detected capacity change from 0 to 64 [ 145.926526][ T5914] loop0: detected capacity change from 0 to 1024 [ 145.979731][ T5914] EXT4-fs: Ignoring removed orlov option [ 146.027722][ T5914] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 146.082171][ T5914] EXT4-fs (loop0): orphan cleanup on readonly fs [ 146.096892][ T5904] loop3: detected capacity change from 0 to 32768 [ 146.115370][ T5904] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.503 (5904) [ 146.142248][ T5904] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 146.163085][ T5914] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 146.192107][ T5904] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 146.197182][ T5914] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #3: comm syz.0.508: mark_inode_dirty error [ 146.212170][ T5904] BTRFS info (device loop3): enabling auto defrag [ 146.212202][ T5904] BTRFS info (device loop3): doing ref verification [ 146.212222][ T5904] BTRFS info (device loop3): use no compression [ 146.212240][ T5904] BTRFS info (device loop3): force clearing of disk cache [ 146.212289][ T5904] BTRFS info (device loop3): max_inline at 4096 [ 146.212315][ T5904] BTRFS info (device loop3): disabling free space tree [ 146.266146][ T5914] EXT4-fs error (device loop0): ext4_read_block_bitmap_nowait:477: comm syz.0.508: Invalid block bitmap block 3 in block_group 0 [ 146.297708][ T5914] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 146.318210][ T5910] sch_tbf: burst 1127 is lower than device lo mtu (65550) ! [ 146.333071][ T5914] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #3: comm syz.0.508: mark_inode_dirty error [ 146.368865][ T5914] Quota error (device loop0): write_blk: dquota write failed [ 146.413070][ T5914] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #3: block 1: comm syz.0.508: lblock 6 mapped to illegal pblock 1 (length 1) [ 146.462595][ T5914] Quota error (device loop0): write_blk: dquota write failed [ 146.488073][ T5914] Quota error (device loop0): qtree_write_dquot: Error -28 occurred while creating quota [ 146.539757][ T5914] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #3: block 48: comm syz.0.508: lblock 0 mapped to illegal pblock 48 (length 1) [ 146.616378][ T5914] Quota error (device loop0): v2_write_file_info: Can't write info structure [ 146.628672][ T5904] BTRFS info (device loop3): enabling ssd optimizations [ 146.640239][ T5914] EXT4-fs error (device loop0): ext4_acquire_dquot:6794: comm syz.0.508: Failed to acquire dquot type 0 [ 146.652622][ T5904] BTRFS info (device loop3): rebuilding free space tree [ 146.715741][ T5914] EXT4-fs error (device loop0): ext4_map_blocks:634: inode #3: block 49: comm syz.0.508: lblock 1 mapped to illegal pblock 49 (length 1) [ 146.752649][ T5904] BTRFS info (device loop3): disabling free space tree [ 146.760178][ T5914] Quota error (device loop0): do_insert_tree: Can't read tree quota block 1 [ 146.777986][ T5904] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 146.787260][ T5944] loop4: detected capacity change from 0 to 4096 [ 146.789242][ T5914] EXT4-fs error (device loop0): ext4_acquire_dquot:6794: comm syz.0.508: Failed to acquire dquot type 0 [ 146.815754][ T5904] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 146.841939][ T5914] EXT4-fs error (device loop0) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 146.890426][ T5944] ntfs: volume version 3.1. [ 146.906332][ T5914] EXT4-fs error (device loop0): ext4_evict_inode:279: inode #15: comm syz.0.508: mark_inode_dirty error [ 146.937607][ T4701] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 146.959050][ T5914] EXT4-fs warning (device loop0): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 147.031136][ T5946] loop1: detected capacity change from 0 to 2048 [ 147.038137][ T5914] EXT4-fs (loop0): 1 orphan inode deleted [ 147.052590][ T5914] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 147.077959][ T5946] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 147.157922][ T4701] usb 3-1: Using ep0 maxpacket: 16 [ 147.165753][ T4701] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 147.188461][ T4249] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 147.218176][ T4701] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 147.257715][ T4701] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 147.314473][ T4701] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 147.337492][ T4701] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 147.445845][ T5937] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 147.483690][ T4701] cdc_acm 3-1:1.0: Control and data interfaces are not separated! [ 147.494545][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 147.598673][ T5950] netlink: 36 bytes leftover after parsing attributes in process `syz.4.517'. [ 147.681458][ T5952] netlink: 8 bytes leftover after parsing attributes in process `syz.0.516'. [ 147.699374][ T4701] cdc_acm 3-1:1.0: ttyACM0: USB ACM device [ 147.741080][ T4701] usb 3-1: USB disconnect, device number 6 [ 148.098175][ T5960] loop0: detected capacity change from 0 to 4096 [ 148.119146][ T5960] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 148.203247][ T5967] loop1: detected capacity change from 0 to 128 [ 148.298520][ T5967] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 148.352998][ T5960] ntfs3: loop0: ntfs_sync_fs r=1a failed, -22. [ 148.375318][ T5967] ext4 filesystem being mounted at /96/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 148.417298][ T5960] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 148.481055][ T5971] ntfs3: loop0: ntfs_sync_fs r=1a failed, -22. [ 148.538319][ T4250] ntfs3: loop0: ntfs_sync_fs r=1a failed, -22. [ 148.555444][ T4250] ntfs3: loop0: ntfs_evict_inode r=1a failed, -22. [ 148.591781][ T5958] loop4: detected capacity change from 0 to 32768 [ 148.704713][ T5958] XFS (loop4): Mounting V5 Filesystem [ 148.717143][ T4258] EXT4-fs (loop1): unmounting filesystem. [ 148.769301][ T5980] use of bytesused == 0 is deprecated and will be removed in the future, [ 148.793710][ T5980] use the actual size instead. [ 148.869498][ T5958] XFS (loop4): Ending clean mount [ 148.879246][ T4698] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 148.904923][ T5958] XFS (loop4): Quotacheck needed: Please wait. [ 148.982210][ T5958] XFS (loop4): Quotacheck: Done. [ 149.049744][ T5989] loop1: detected capacity change from 0 to 4096 [ 149.111535][ T5989] __ntfs_error: 4 callbacks suppressed [ 149.111555][ T5989] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match. Run ntfsfix or chkdsk. [ 149.113296][ T4698] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 149.117057][ T5989] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 149.171762][ T4698] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 149.220315][ T5989] ntfs: volume version 3.1. [ 149.226390][ T4698] usb 3-1: config 0 descriptor?? [ 149.268219][ T4256] XFS (loop4): Unmounting Filesystem [ 149.268474][ T4698] cp210x 3-1:0.0: cp210x converter detected [ 149.675023][ T4698] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 149.702526][ T4698] usb 3-1: cp210x converter now attached to ttyUSB0 [ 149.798252][ T5797] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 149.921933][ T5806] usb 3-1: USB disconnect, device number 7 [ 149.945479][ T5806] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 149.975775][ T5806] cp210x 3-1:0.0: device disconnected [ 149.997732][ T5797] usb 4-1: Using ep0 maxpacket: 16 [ 150.014054][ T5797] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 150.051653][ T5797] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 150.081961][ T5797] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 150.105286][ T5797] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 150.124663][ T5797] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 150.147298][ T5999] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 150.158376][ T5797] cdc_acm 4-1:1.0: Control and data interfaces are not separated! [ 150.293017][ T26] audit: type=1326 audit(1736772846.248:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6014 comm="syz.0.541" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f6452585d29 code=0x0 [ 150.366538][ T5797] cdc_acm 4-1:1.0: ttyACM0: USB ACM device [ 150.403406][ T5797] usb 4-1: USB disconnect, device number 7 [ 150.930263][ T6030] loop2: detected capacity change from 0 to 4096 [ 150.950965][ T6030] ntfs3: loop2: Different NTFS' sector size (4096) and media sector size (512) [ 151.081821][ T6030] ntfs3: loop2: failed to convert "c46c" to cp863 [ 151.364188][ T6045] netlink: 76 bytes leftover after parsing attributes in process `syz.0.554'. [ 151.628040][ T4701] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 151.734997][ T6054] program syz.0.559 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 151.824554][ T4701] usb 5-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 151.848787][ T4701] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 151.903546][ T4701] usb 5-1: config 0 descriptor?? [ 151.910920][ T4701] cp210x 5-1:0.0: cp210x converter detected [ 152.325544][ T4701] cp210x 5-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 152.365957][ T4701] usb 5-1: cp210x converter now attached to ttyUSB0 [ 152.410816][ T6074] netlink: 8 bytes leftover after parsing attributes in process `syz.2.568'. [ 152.567038][ T4698] usb 5-1: USB disconnect, device number 5 [ 152.586734][ T4698] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 152.623268][ T4698] cp210x 5-1:0.0: device disconnected [ 152.887768][ T5806] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 152.913012][ T6087] loop3: detected capacity change from 0 to 1024 [ 152.926124][ T6087] EXT4-fs: Ignoring removed nobh option [ 152.964129][ T6072] loop0: detected capacity change from 0 to 32768 [ 152.968661][ T6087] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 152.990764][ T6072] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.567 (6072) [ 153.020343][ T6072] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 153.033740][ T6072] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 153.043723][ T6072] BTRFS info (device loop0): using free space tree [ 153.097606][ T5806] usb 3-1: Using ep0 maxpacket: 8 [ 153.120944][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 153.132405][ T5806] usb 3-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 153.153461][ T5806] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 153.204459][ T5806] usb 3-1: Product: syz [ 153.221526][ T5806] usb 3-1: Manufacturer: syz [ 153.262649][ T5806] usb 3-1: SerialNumber: syz [ 153.278933][ T6072] BTRFS info (device loop0): enabling ssd optimizations [ 153.326537][ T6108] loop3: detected capacity change from 0 to 8192 [ 153.333367][ T5806] usb 3-1: config 0 descriptor?? [ 153.371375][ T5806] gspca_main: sq930x-2.14.0 probing 2770:930c [ 153.390783][ T6108] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 153.433515][ T6108] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 153.469518][ T4250] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 153.498588][ T6108] REISERFS (device loop3): using ordered data mode [ 153.505417][ T6108] reiserfs: using flush barriers [ 153.530830][ T6108] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 153.604062][ T6108] REISERFS (device loop3): checking transaction log (loop3) [ 153.614373][ T6108] REISERFS (device loop3): Using r5 hash to sort names [ 153.622673][ T6108] REISERFS (device loop3): using 3.5.x disk format [ 153.634354][ T6108] REISERFS warning (device loop3): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 153.669511][ T6108] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 154.178875][ T5806] gspca_sq930x: ucbus_write failed -71 [ 154.417833][ T5806] gspca_sq930x: Sensor ov9630 not yet treated [ 154.425255][ T5806] sq930x: probe of 3-1:0.0 failed with error -22 [ 154.456854][ T5806] usb 3-1: USB disconnect, device number 8 [ 154.584697][ T6116] loop4: detected capacity change from 0 to 32768 [ 154.664565][ T6116] XFS (loop4): Mounting V5 Filesystem [ 154.729785][ T6143] netlink: 32 bytes leftover after parsing attributes in process `syz.0.586'. [ 154.808463][ T6146] loop2: detected capacity change from 0 to 1024 [ 154.814296][ T6116] XFS (loop4): Ending clean mount [ 154.834958][ T6116] XFS (loop4): Quotacheck needed: Please wait. [ 154.872195][ T26] audit: type=1800 audit(1736772850.828:30): pid=6146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.587" name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dev="loop2" ino=26 res=0 errno=0 [ 154.935405][ C0] vkms_vblank_simulate: vblank timer overrun [ 154.997941][ T6116] XFS (loop4): Quotacheck: Done. [ 155.035544][ T56] hfsplus: b-tree write err: -5, ino 4 [ 155.045909][ T6128] loop1: detected capacity change from 0 to 32768 [ 155.175426][ T6128] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 155.196103][ T4256] XFS (loop4): Unmounting Filesystem [ 155.317694][ T4328] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 155.401118][ T6156] loop2: detected capacity change from 0 to 1024 [ 155.517617][ T4328] usb 1-1: Using ep0 maxpacket: 8 [ 155.542036][ T4328] usb 1-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 155.574764][ T6156] hfsplus: xattr searching failed [ 155.583414][ T4328] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.617628][ T4328] usb 1-1: Product: syz [ 155.621849][ T4328] usb 1-1: Manufacturer: syz [ 155.626461][ T4328] usb 1-1: SerialNumber: syz [ 155.652268][ T4258] ocfs2: Unmounting device (7,1) on (node local) [ 155.680381][ T46] hfsplus: bad catalog file entry [ 155.698446][ T4328] usb 1-1: config 0 descriptor?? [ 155.704933][ T46] hfsplus: b-tree write err: -5, ino 3 [ 155.814280][ T6160] netlink: 8 bytes leftover after parsing attributes in process `syz.3.594'. [ 155.851189][ T6160] netlink: 12 bytes leftover after parsing attributes in process `syz.3.594'. [ 155.910394][ T4328] usb 1-1: dvb_usb_v2: found a 'Terratec H7' in warm state [ 156.037392][ T6164] loop3: detected capacity change from 0 to 512 [ 156.170384][ T6164] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 156.209291][ T6164] EXT4-fs (loop3): orphan cleanup on readonly fs [ 156.226778][ T6164] Quota error (device loop3): dq_insert_tree: Quota tree root isn't allocated! [ 156.237653][ T6164] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota [ 156.317926][ T6164] EXT4-fs error (device loop3): ext4_acquire_dquot:6794: comm syz.3.596: Failed to acquire dquot type 1 [ 156.345408][ T6164] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.596: bg 0: block 40: padding at end of block bitmap is not set [ 156.418880][ T6164] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 156.448316][ T6164] EXT4-fs (loop3): 1 truncate cleaned up [ 156.469921][ T6164] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 156.520755][ T4328] usb write operation failed. (-71) [ 156.558882][ T4328] usb 1-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 156.606188][ T4328] dvbdev: DVB: registering new adapter (Terratec H7) [ 156.631159][ T4328] usb 1-1: media controller created [ 156.652871][ T4328] usb read operation failed. (-71) [ 156.676454][ T6185] loop1: detected capacity change from 0 to 256 [ 156.681298][ T4328] usb write operation failed. (-71) [ 156.715446][ T4328] dvb_usb_az6007: probe of 1-1:0.0 failed with error -5 [ 156.751306][ T4328] usb 1-1: USB disconnect, device number 5 [ 156.754597][ T6185] FAT-fs (loop1): unable to read block(17179869184) for building NFS inode [ 156.918855][ T6191] loop1: detected capacity change from 0 to 1024 [ 157.013580][ T6191] hfsplus: xattr searching failed [ 157.128351][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 157.136702][ T4298] hfsplus: bad catalog file entry [ 157.149218][ T4298] hfsplus: b-tree write err: -5, ino 3 [ 157.833493][ T6218] loop1: detected capacity change from 0 to 512 [ 157.882230][ T6218] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 158.014454][ T4258] EXT4-fs (loop1): unmounting filesystem. [ 158.049891][ T6224] tap0: tun_chr_ioctl cmd 1074025677 [ 158.055731][ T6224] tap0: linktype set to 773 [ 158.301837][ T6228] netlink: 8 bytes leftover after parsing attributes in process `syz.3.624'. [ 158.345872][ T6203] loop4: detected capacity change from 0 to 40427 [ 158.353273][ T6226] loop1: detected capacity change from 0 to 8192 [ 158.375661][ T6203] F2FS-fs (loop4): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 158.385994][ T6226] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 158.403273][ T6203] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 158.421979][ T6226] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 158.451664][ T6203] F2FS-fs (loop4): invalid crc value [ 158.518071][ T6226] REISERFS (device loop1): using ordered data mode [ 158.524636][ T6226] reiserfs: using flush barriers [ 158.559627][ T6203] F2FS-fs (loop4): Found nat_bits in checkpoint [ 158.599116][ T6226] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 158.656330][ T6226] REISERFS (device loop1): checking transaction log (loop1) [ 158.735960][ T6226] REISERFS (device loop1): Using r5 hash to sort names [ 158.746505][ T6241] team0: Port device team_slave_0 removed [ 158.747040][ T6203] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 158.752439][ T6226] REISERFS (device loop1): using 3.5.x disk format [ 158.752919][ T6226] REISERFS warning (device loop1): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 158.768858][ T6203] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 158.792695][ T6241] A link change request failed with some changes committed already. Interface team_slave_0 may have been left with an inconsistent configuration, please check. [ 158.823240][ T6226] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 158.954619][ T6236] f2fs_ckpt-7:4: attempt to access beyond end of device [ 158.954619][ T6236] loop4: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 159.167586][ T6254] loop3: detected capacity change from 0 to 512 [ 159.198953][ T6254] EXT4-fs: Ignoring removed mblk_io_submit option [ 159.241294][ T6254] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 159.315888][ T6257] Zero length message leads to an empty skb [ 159.383637][ T6254] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 159.441667][ T6254] System zones: 1-12 [ 159.490303][ T6254] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2186: inode #15: comm syz.3.635: corrupted in-inode xattr [ 159.563922][ T6254] EXT4-fs error (device loop3): ext4_orphan_get:1405: comm syz.3.635: couldn't read orphan inode 15 (err -117) [ 159.608034][ T6254] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 159.680016][ T6268] loop1: detected capacity change from 0 to 256 [ 159.815746][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 159.823508][ T6268] 9pnet_virtio: no channels available for device [ 159.927359][ T6273] loop4: detected capacity change from 0 to 1024 [ 159.978743][ T6273] EXT4-fs: Ignoring removed nobh option [ 160.078016][ T6273] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 160.322524][ T6275] loop0: detected capacity change from 0 to 8192 [ 160.364339][ T6275] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 160.434039][ T6264] loop2: detected capacity change from 0 to 32768 [ 160.444097][ T6275] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 160.455103][ T6275] REISERFS (device loop0): using ordered data mode [ 160.462478][ T6275] reiserfs: using flush barriers [ 160.480558][ T6275] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 160.568586][ T6275] REISERFS (device loop0): checking transaction log (loop0) [ 160.717007][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 160.849537][ T6275] REISERFS (device loop0): Using tea hash to sort names [ 160.877256][ T6275] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 161.332803][ T6297] netem: incorrect ge model size [ 161.377582][ T6297] netem: change failed [ 161.628969][ T6303] loop3: detected capacity change from 0 to 64 [ 161.693165][ T6301] loop0: detected capacity change from 0 to 4096 [ 161.845674][ T6301] ntfs: volume version 3.1. [ 161.884188][ T6283] loop1: detected capacity change from 0 to 65536 [ 162.004310][ T6283] XFS (loop1): Mounting V5 Filesystem [ 162.023239][ T6314] serio: Serial port ttynull [ 162.106638][ T6283] XFS (loop1): Ending clean mount [ 162.260247][ T4258] XFS (loop1): Unmounting Filesystem [ 162.581697][ T6330] loop2: detected capacity change from 0 to 512 [ 162.729841][ T6330] EXT4-fs error (device loop2): ext4_get_branch:178: inode #13: block 2: comm syz.2.665: invalid block [ 162.844126][ T6330] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.665: invalid indirect mapped block 10 (level 1) [ 162.906237][ T6330] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.665: invalid indirect mapped block 8 (level 1) [ 162.984304][ T6330] EXT4-fs (loop2): 1 truncate cleaned up [ 163.002034][ T6330] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 163.062593][ T6330] EXT4-fs (loop2): shut down requested (1) [ 163.161197][ T4260] EXT4-fs (loop2): unmounting filesystem. [ 163.172189][ T6323] loop4: detected capacity change from 0 to 32768 [ 163.355708][ T6323] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 163.470482][ T6324] loop0: detected capacity change from 0 to 32768 [ 163.499189][ T6324] XFS: ikeep mount option is deprecated. [ 163.504999][ T6324] XFS: noikeep mount option is deprecated. [ 163.626317][ T4256] ocfs2: Unmounting device (7,4) on (node local) [ 163.651500][ T6324] XFS (loop0): Mounting V5 Filesystem [ 163.739073][ T6336] loop1: detected capacity change from 0 to 32768 [ 163.836153][ T6324] XFS (loop0): Ending clean mount [ 163.850833][ T6324] XFS (loop0): Quotacheck needed: Please wait. [ 163.862912][ T6336] XFS (loop1): Mounting V5 Filesystem [ 163.962283][ T6324] XFS (loop0): Quotacheck: Done. [ 164.095877][ T6336] XFS (loop1): Ending clean mount [ 164.109211][ T6367] loop4: detected capacity change from 0 to 2048 [ 164.153197][ T6367] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 164.210951][ T6367] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 164.233927][ T4250] XFS (loop0): Unmounting Filesystem [ 164.310159][ T6336] syz.1.663 (6336) used greatest stack depth: 19240 bytes left [ 164.345248][ T4258] XFS (loop1): Unmounting Filesystem [ 164.405747][ T6372] netlink: 104 bytes leftover after parsing attributes in process `syz.3.676'. [ 164.603739][ T6377] misc userio: Can't change port type on an already running userio instance [ 164.760262][ T6384] loop0: detected capacity change from 0 to 128 [ 164.805123][ T6384] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 164.828048][ T6384] ext4 filesystem being mounted at /131/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 164.905485][ T6391] loop3: detected capacity change from 0 to 1024 [ 164.916669][ T6391] EXT4-fs: Ignoring removed nomblk_io_submit option [ 164.942243][ T6391] EXT4-fs: Ignoring removed oldalloc option [ 164.975911][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 165.013231][ T6391] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 165.226328][ T4249] EXT4-fs (loop3): unmounting filesystem. [ 166.114868][ T6422] loop3: detected capacity change from 0 to 4096 [ 166.133833][ T6422] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 166.180504][ T6422] ntfs: (device loop3): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 166.203368][ T6422] ntfs: (device loop3): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 166.233014][ T6422] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 166.267785][ T6422] ntfs: (device loop3): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 166.307745][ T6422] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 166.336844][ T6422] ntfs: (device loop3): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x0, offset 0x200 because its location on disk could not be determined even after retrying (error code -5). [ 166.387480][ T6422] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 166.396316][ T6422] ntfs: (device loop3): ntfs_read_block(): Failed to read from inode 0xa, attribute type 0x80, vcn 0x1, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 166.444999][ T6422] ntfs: (device loop3): ntfs_mapping_pairs_decompress(): Corrupt attribute. [ 166.472342][ T6422] ntfs: volume version 3.1. [ 166.615319][ T6429] loop4: detected capacity change from 0 to 64 [ 166.954079][ T6435] loop4: detected capacity change from 0 to 1024 [ 167.012108][ T6433] loop3: detected capacity change from 0 to 4096 [ 167.049081][ T6433] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 167.163751][ T46] hfsplus: b-tree write err: -5, ino 3 [ 167.267837][ T4263] Bluetooth: hci5: command 0x1003 tx timeout [ 167.276302][ T4251] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 167.463772][ T6443] loop1: detected capacity change from 0 to 1024 [ 167.498652][ T6443] EXT4-fs: Ignoring removed nobh option [ 167.588457][ T6443] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 167.687360][ T4258] EXT4-fs (loop1): unmounting filesystem. [ 167.896930][ T6450] loop4: detected capacity change from 0 to 8192 [ 168.012908][ T6450] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 168.126071][ T6450] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 168.133052][ T9] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.179724][ T6450] REISERFS (device loop4): using ordered data mode [ 168.186406][ T6450] reiserfs: using flush barriers [ 168.226515][ T6437] loop0: detected capacity change from 0 to 40427 [ 168.257328][ T6450] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 168.306725][ T6437] F2FS-fs (loop0): Small segment_count (9 < 1 * 24) [ 168.326855][ T6437] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 168.351606][ T6450] REISERFS (device loop4): checking transaction log (loop4) [ 168.372054][ T6450] REISERFS (device loop4): Using r5 hash to sort names [ 168.389117][ T6450] REISERFS (device loop4): using 3.5.x disk format [ 168.400114][ T6437] F2FS-fs (loop0): Found nat_bits in checkpoint [ 168.408130][ T6450] REISERFS warning (device loop4): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 168.451325][ T9] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.461987][ T6450] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 168.570801][ T6437] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 168.587730][ T6437] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 168.616093][ T9] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 168.669530][ T6437] syz.0.703: attempt to access beyond end of device [ 168.669530][ T6437] loop0: rw=2049, sector=53248, nr_sectors = 8 limit=40427 [ 168.841867][ T4250] syz-executor: attempt to access beyond end of device [ 168.841867][ T4250] loop0: rw=2049, sector=40960, nr_sectors = 32 limit=40427 [ 168.870358][ T9] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 169.135056][ T6464] loop2: detected capacity change from 0 to 8192 [ 169.212108][ T6464] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 169.247740][ T6464] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 169.292421][ T6464] REISERFS (device loop2): using ordered data mode [ 169.317699][ T6464] reiserfs: using flush barriers [ 169.335721][ T6464] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 169.361668][ T6464] REISERFS (device loop2): checking transaction log (loop2) [ 169.462297][ T6464] REISERFS (device loop2): Using r5 hash to sort names [ 169.500897][ T6464] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 169.538096][ T6477] loop1: detected capacity change from 0 to 1024 [ 169.544113][ T4263] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 169.558343][ T4263] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 169.568259][ T4263] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 169.577067][ T4263] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 169.587274][ T4263] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 169.595072][ T4263] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 169.873864][ T4298] hfsplus: b-tree write err: -5, ino 4 [ 170.183721][ T6495] loop4: detected capacity change from 0 to 64 [ 170.348237][ T6500] serio: Serial port ttynull [ 170.619776][ T6511] loop4: detected capacity change from 0 to 512 [ 170.729797][ T6511] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.726: invalid indirect mapped block 10 (level 1) [ 170.735111][ T6504] loop1: detected capacity change from 0 to 8192 [ 170.801021][ T6504] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 170.832030][ T6511] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.726: invalid indirect mapped block 8 (level 1) [ 170.903432][ T6504] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 170.968466][ T6511] EXT4-fs (loop4): 1 truncate cleaned up [ 170.977738][ T6504] REISERFS (device loop1): using ordered data mode [ 171.007729][ T6511] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 171.016388][ T6504] reiserfs: using flush barriers [ 171.043958][ T6504] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 171.089725][ T6475] chnl_net:caif_netlink_parms(): no params data found [ 171.108618][ T6511] EXT4-fs (loop4): shut down requested (1) [ 171.148694][ T6504] REISERFS (device loop1): checking transaction log (loop1) [ 171.178021][ T6504] REISERFS (device loop1): Using r5 hash to sort names [ 171.210474][ T6504] REISERFS (device loop1): using 3.5.x disk format [ 171.236972][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 171.253333][ T6504] REISERFS warning (device loop1): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 171.348599][ T6504] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 171.383988][ T6506] loop2: detected capacity change from 0 to 32768 [ 171.533252][ T6506] XFS (loop2): Mounting V5 Filesystem [ 171.668094][ T4251] Bluetooth: hci0: command 0x0409 tx timeout [ 171.782634][ T6506] XFS (loop2): Ending clean mount [ 172.093802][ T4260] XFS (loop2): Unmounting Filesystem [ 172.103052][ T6475] bridge0: port 1(bridge_slave_0) entered blocking state [ 172.144219][ T6475] bridge0: port 1(bridge_slave_0) entered disabled state [ 172.174451][ T6475] device bridge_slave_0 entered promiscuous mode [ 172.191613][ T6518] loop0: detected capacity change from 0 to 32768 [ 172.238432][ T6518] XFS: ikeep mount option is deprecated. [ 172.247716][ T6475] bridge0: port 2(bridge_slave_1) entered blocking state [ 172.255204][ T6475] bridge0: port 2(bridge_slave_1) entered disabled state [ 172.289434][ T6475] device bridge_slave_1 entered promiscuous mode [ 172.360100][ T6518] XFS (loop0): Mounting V5 Filesystem [ 172.409467][ T6560] serio: Serial port ttynull [ 172.475229][ T6518] XFS (loop0): Ending clean mount [ 172.569214][ T6518] XFS (loop0): Quotacheck needed: Please wait. [ 172.685240][ T6518] XFS (loop0): Quotacheck: Done. [ 172.780471][ T6475] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.889542][ T4250] XFS (loop0): Unmounting Filesystem [ 172.916062][ T9] device hsr_slave_0 left promiscuous mode [ 172.975471][ T9] device hsr_slave_1 left promiscuous mode [ 173.008572][ T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 173.016184][ T9] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 173.059352][ T9] device bridge_slave_1 left promiscuous mode [ 173.068371][ T9] bridge0: port 2(bridge_slave_1) entered disabled state [ 173.117423][ T6577] loop2: detected capacity change from 0 to 2048 [ 173.154816][ T6577] UDF-fs: error (device loop2): udf_process_sequence: Primary Volume Descriptor not found! [ 173.183854][ T9] device bridge_slave_0 left promiscuous mode [ 173.199514][ T9] bridge0: port 1(bridge_slave_0) entered disabled state [ 173.213788][ T6577] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 173.377059][ T9] device veth1_macvtap left promiscuous mode [ 173.398946][ T9] device veth0_macvtap left promiscuous mode [ 173.405168][ T9] device veth1_vlan left promiscuous mode [ 173.437779][ T9] device veth0_vlan left promiscuous mode [ 173.749826][ T4251] Bluetooth: hci0: command 0x041b tx timeout [ 173.756000][ T5806] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 173.802077][ T6584] loop0: detected capacity change from 0 to 8192 [ 173.822986][ T6584] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 173.847938][ T6584] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 173.857381][ T6584] REISERFS (device loop0): using ordered data mode [ 173.868888][ T6584] reiserfs: using flush barriers [ 173.895174][ T6584] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 173.912581][ T6584] REISERFS (device loop0): checking transaction log (loop0) [ 173.921680][ T6584] REISERFS (device loop0): Using r5 hash to sort names [ 173.929209][ T6584] REISERFS (device loop0): using 3.5.x disk format [ 173.936004][ T6584] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 173.956245][ T6584] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 173.985044][ T5806] usb 2-1: Using ep0 maxpacket: 8 [ 174.011326][ T5806] usb 2-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 174.036376][ T5806] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 174.046499][ T5806] usb 2-1: Product: syz [ 174.067319][ T5806] usb 2-1: Manufacturer: syz [ 174.072144][ T5806] usb 2-1: SerialNumber: syz [ 174.097054][ T5806] usb 2-1: config 0 descriptor?? [ 174.141209][ T5806] gspca_main: sq930x-2.14.0 probing 2770:930c [ 174.556191][ T6601] loop0: detected capacity change from 0 to 256 [ 174.639299][ T6601] 9pnet_virtio: no channels available for device [ 174.950644][ T5806] gspca_sq930x: ucbus_write failed -71 [ 175.198281][ T5806] gspca_sq930x: Sensor ov9630 not yet treated [ 175.204472][ T5806] sq930x: probe of 2-1:0.0 failed with error -22 [ 175.240813][ T5806] usb 2-1: USB disconnect, device number 7 [ 175.424800][ T9] team0 (unregistering): Port device team_slave_1 removed [ 175.446273][ T6615] loop2: detected capacity change from 0 to 1024 [ 175.469943][ T6605] loop0: detected capacity change from 0 to 32768 [ 175.555879][ T6605] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 175.583013][ T9] team0 (unregistering): Port device team_slave_0 removed [ 175.692587][ T4250] ocfs2: Unmounting device (7,0) on (node local) [ 175.837869][ T4251] Bluetooth: hci0: command 0x040f tx timeout [ 175.870104][ T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 175.950786][ T6623] loop4: detected capacity change from 0 to 4096 [ 175.975670][ T6621] loop2: detected capacity change from 0 to 8192 [ 176.049757][ T6621] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 176.073508][ T6621] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 176.089299][ T6621] REISERFS (device loop2): using ordered data mode [ 176.095862][ T6621] reiserfs: using flush barriers [ 176.167226][ T6621] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 176.188465][ T6621] REISERFS (device loop2): checking transaction log (loop2) [ 176.209489][ T6625] loop1: detected capacity change from 0 to 4096 [ 176.244062][ T6625] __ntfs_error: 11 callbacks suppressed [ 176.244080][ T6625] ntfs: (device loop1): parse_options(): Invalid mft_zone_multiplier. Using default value, i.e. 1. [ 176.323614][ T6633] netlink: 36 bytes leftover after parsing attributes in process `syz.0.764'. [ 176.373071][ T6625] ntfs: volume version 3.1. [ 176.390585][ T4256] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 176.399375][ T4256] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 176.441865][ T6625] ntfs: (device loop1): ntfs_ucstonls(): Unicode name contains characters that cannot be converted to character set cp857. You might want to try to use the mount option nls=utf8. [ 176.475004][ T6625] ntfs: (device loop1): ntfs_filldir(): Skipping unrepresentable inode 0x4. [ 176.495228][ T6621] REISERFS (device loop2): Using tea hash to sort names [ 176.508353][ T6621] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 176.656758][ T26] audit: type=1804 audit(1736772872.608:32): pid=6621 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.759" name="/newroot/147/file0/file0" dev="loop2" ino=4 res=1 errno=0 [ 176.993951][ T6642] loop1: detected capacity change from 0 to 2048 [ 177.045091][ T6642] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 177.085849][ T6642] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 177.666153][ T9] bond0 (unregistering): Released all slaves [ 177.813936][ T6475] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 177.908151][ T4251] Bluetooth: hci0: command 0x0419 tx timeout [ 177.985594][ T6475] team0: Port device team_slave_0 added [ 178.068185][ T6475] team0: Port device team_slave_1 added [ 178.209180][ T6475] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 178.216265][ T6475] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.317683][ T6475] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 178.365692][ T6475] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 178.408266][ T6475] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 178.497287][ T6475] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 178.524492][ T6655] loop4: detected capacity change from 0 to 32768 [ 178.577030][ T6655] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.774 (6655) [ 178.641838][ T6475] device hsr_slave_0 entered promiscuous mode [ 178.662094][ T6655] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 178.719097][ T6655] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 178.728982][ T6475] device hsr_slave_1 entered promiscuous mode [ 178.761171][ T6475] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 178.764831][ T6655] BTRFS info (device loop4): using free space tree [ 178.807379][ T6475] Cannot create hsr debugfs directory [ 179.000737][ T6677] loop1: detected capacity change from 0 to 4096 [ 179.088032][ T4703] usb 3-1: new high-speed USB device number 9 using dummy_hcd [ 179.297981][ T4703] usb 3-1: Using ep0 maxpacket: 16 [ 179.328153][ T4703] usb 3-1: config 0 has no interfaces? [ 179.348911][ T6655] BTRFS info (device loop4): enabling ssd optimizations [ 179.363290][ T4703] usb 3-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 6.00 [ 179.424763][ T4703] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 179.447465][ T4703] usb 3-1: Product: syz [ 179.457644][ T4703] usb 3-1: Manufacturer: syz [ 179.462394][ T4703] usb 3-1: SerialNumber: syz [ 179.493503][ T4703] usb 3-1: config 0 descriptor?? [ 179.703485][ T4251] block nbd0: Receive control failed (result -107) [ 179.757632][ T125] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 179.773976][ T6715] block nbd0: shutting down sockets [ 179.782921][ T4256] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 179.798793][ T4703] usb 3-1: USB disconnect, device number 9 [ 179.957878][ T125] usb 2-1: Using ep0 maxpacket: 8 [ 179.970082][ T125] usb 2-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 179.988550][ T125] usb 2-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 180.020597][ T125] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 180.042731][ T125] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 180.073376][ T125] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 180.090933][ T125] usb 2-1: Product: syz [ 180.123960][ T125] usb 2-1: Manufacturer: syz [ 180.128987][ T125] usb 2-1: SerialNumber: syz [ 180.504518][ T6728] IPVS: ovf: UDP 127.0.0.1:19999 - no destination available [ 180.563373][ T125] usb 2-1: 0:2 : does not exist [ 180.698010][ T125] usb 2-1: USB disconnect, device number 8 [ 180.780370][ T6736] loop2: detected capacity change from 0 to 256 [ 180.995250][ T6736] FAT-fs (loop2): error, invalid access to FAT (entry 0x00000001) [ 181.021263][ T4262] udevd[4262]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 181.050851][ T6736] FAT-fs (loop2): Filesystem has been set read-only [ 181.313212][ T6750] netlink: 'syz.0.799': attribute type 2 has an invalid length. [ 181.363016][ T6475] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 181.396554][ T6475] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 181.477149][ T6475] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 181.517046][ T6475] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 181.743713][ T6766] netlink: 4 bytes leftover after parsing attributes in process `syz.0.803'. [ 181.755811][ T6771] loop4: detected capacity change from 0 to 1024 [ 181.768461][ T6771] EXT4-fs: Ignoring removed nobh option [ 181.778650][ T6771] EXT4-fs: Ignoring removed bh option [ 181.890685][ T6771] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 182.052317][ T6771] EXT4-fs error (device loop4): ext4_mb_mark_diskspace_used:3841: comm syz.4.805: Allocating blocks 497-513 which overlap fs metadata [ 182.082363][ T6771] EXT4-fs (loop4): Remounting filesystem read-only [ 182.095285][ T6771] EXT4-fs (loop4): pa ffff8880509a9380: logic 8224, phys. 177, len 21 [ 182.104149][ T6771] EXT4-fs error (device loop4): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 182.169953][ T6782] loop1: detected capacity change from 0 to 256 [ 182.200494][ T6771] EXT4-fs (loop4): Remounting filesystem read-only [ 182.436521][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 182.699133][ T6475] 8021q: adding VLAN 0 to HW filter on device bond0 [ 182.771109][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 182.790835][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 182.831072][ T6475] 8021q: adding VLAN 0 to HW filter on device team0 [ 182.886899][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 182.907328][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 182.939431][ T6798] netlink: 92 bytes leftover after parsing attributes in process `syz.0.816'. [ 182.943853][ T4298] bridge0: port 1(bridge_slave_0) entered blocking state [ 182.955646][ T4298] bridge0: port 1(bridge_slave_0) entered forwarding state [ 182.975635][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 183.009892][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 183.035198][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 183.064643][ T4298] bridge0: port 2(bridge_slave_1) entered blocking state [ 183.071829][ T4298] bridge0: port 2(bridge_slave_1) entered forwarding state [ 183.246805][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 183.265236][ T6809] loop0: detected capacity change from 0 to 512 [ 183.275108][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 183.331821][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 183.378046][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 183.398472][ T6809] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 183.445136][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 183.457131][ T6809] ext4 filesystem being mounted at /166/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 183.494115][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 183.503615][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 183.562977][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 183.579859][ T6819] loop4: detected capacity change from 0 to 512 [ 183.588835][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 183.613117][ T6809] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #2: comm syz.0.818: corrupted inode contents [ 183.625125][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 183.634176][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 183.651465][ T6475] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 183.668137][ T6809] EXT4-fs error (device loop0): ext4_dirty_inode:6089: inode #2: comm syz.0.818: mark_inode_dirty error [ 183.685933][ T6819] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.822: invalid indirect mapped block 256 (level 2) [ 183.728096][ T6819] EXT4-fs (loop4): 2 truncates cleaned up [ 183.733995][ T6819] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 183.756022][ T6809] EXT4-fs error (device loop0): ext4_do_update_inode:5224: inode #2: comm syz.0.818: corrupted inode contents [ 183.825047][ T6830] netlink: 108 bytes leftover after parsing attributes in process `syz.2.824'. [ 183.848328][ T6809] EXT4-fs error (device loop0): __ext4_ext_dirty:202: inode #2: comm syz.0.818: mark_inode_dirty error [ 183.867759][ T6819] EXT4-fs error (device loop4): empty_inline_dir:1877: inode #12: block 7: comm syz.4.822: bad entry in directory: rec_len % 4 != 0 - offset=4, inode=4278190093, rec_len=255, size=60 fake=0 [ 183.915245][ T6828] EXT4-fs error (device loop0): ext4_get_first_dir_block:3594: inode #18: comm syz.0.818: directory missing '.' [ 183.934368][ T6819] EXT4-fs warning (device loop4): empty_inline_dir:1884: bad inline directory (dir #12) - inode 4278190093, rec_len 255, name_len 0inline size 60 [ 184.096486][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 184.099562][ T6838] loop2: detected capacity change from 0 to 256 [ 184.171647][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 184.498077][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 184.505621][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 184.566649][ T6475] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 184.647720][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 184.689799][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 184.775019][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 184.789045][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 184.826328][ T6475] device veth0_vlan entered promiscuous mode [ 184.846230][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 184.866682][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 184.914351][ T6475] device veth1_vlan entered promiscuous mode [ 184.997425][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 185.028397][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 185.048376][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 185.094151][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 185.145746][ T6475] device veth0_macvtap entered promiscuous mode [ 185.168991][ T4308] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 185.214828][ T6475] device veth1_macvtap entered promiscuous mode [ 185.260574][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.321392][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.342092][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.367945][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.402638][ T26] audit: type=1326 audit(1736772881.358:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f706f985d29 code=0x7ffc0000 [ 185.439861][ T6881] loop1: detected capacity change from 0 to 164 [ 185.445624][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.478638][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.487120][ T26] audit: type=1326 audit(1736772881.388:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=319 compat=0 ip=0x7f706f985d29 code=0x7ffc0000 [ 185.516883][ T6881] Unable to read rock-ridge attributes [ 185.540723][ T6881] Unable to read rock-ridge attributes [ 185.560258][ T26] audit: type=1326 audit(1736772881.388:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=9 compat=0 ip=0x7f706f985d63 code=0x7ffc0000 [ 185.585036][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 185.607382][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 185.634742][ T26] audit: type=1326 audit(1736772881.388:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=1 compat=0 ip=0x7f706f9847df code=0x7ffc0000 [ 185.672246][ T6475] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 185.707147][ T26] audit: type=1326 audit(1736772881.388:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=11 compat=0 ip=0x7f706f985db7 code=0x7ffc0000 [ 185.712317][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 185.739707][ T26] audit: type=1326 audit(1736772881.398:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f706f984690 code=0x7ffc0000 [ 185.812373][ T26] audit: type=1326 audit(1736772881.398:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7f706f98592b code=0x7ffc0000 [ 185.816072][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 185.845917][ T26] audit: type=1326 audit(1736772881.398:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f706f98498a code=0x7ffc0000 [ 185.877122][ T26] audit: type=1326 audit(1736772881.398:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f706f98498a code=0x7ffc0000 [ 185.913557][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 185.927927][ T26] audit: type=1326 audit(1736772881.418:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6879 comm="syz.1.838" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f706f984597 code=0x7ffc0000 [ 185.957675][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.007718][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 186.034512][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.055708][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 186.099877][ T6895] loop1: detected capacity change from 0 to 64 [ 186.107439][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.133136][ T6475] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 186.190014][ T6475] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 186.238359][ T6475] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 186.263832][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 186.297638][ T5803] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 186.328160][ T4298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 186.361005][ T6475] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.387784][ T6475] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.396564][ T6475] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.453262][ T6475] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 186.497773][ T5803] usb 5-1: Using ep0 maxpacket: 8 [ 186.511126][ T5803] usb 5-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 186.540903][ T5803] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 186.561139][ T5803] usb 5-1: Product: syz [ 186.581421][ T5803] usb 5-1: Manufacturer: syz [ 186.586079][ T5803] usb 5-1: SerialNumber: syz [ 186.612563][ T5803] usb 5-1: config 0 descriptor?? [ 186.644266][ T5803] gspca_main: se401-2.14.0 probing 047d:5003 [ 186.798384][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 186.806740][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 186.925589][ T56] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 186.952906][ T46] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 186.970470][ T46] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 187.020149][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 187.054788][ T5803] gspca_se401: ExtraFeatures: 47 [ 187.068347][ T5803] gspca_se401: Too many frame sizes [ 187.278598][ T6722] usb 5-1: USB disconnect, device number 6 [ 187.284664][ T6925] loop0: detected capacity change from 0 to 1024 [ 187.377819][ T4262] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 187.566807][ T6936] loop1: detected capacity change from 0 to 128 [ 187.877830][ T6914] loop2: detected capacity change from 0 to 32768 [ 188.016836][ T6914] XFS (loop2): Mounting V5 Filesystem [ 188.064825][ T6914] XFS (loop2): Ending clean mount [ 188.151297][ T6962] netlink: 28 bytes leftover after parsing attributes in process `syz.1.864'. [ 188.345980][ T4260] XFS (loop2): Unmounting Filesystem [ 188.449886][ T6970] loop0: detected capacity change from 0 to 512 [ 188.573374][ T6970] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.867: invalid indirect mapped block 4294967295 (level 1) [ 188.690637][ T6970] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #11: comm syz.0.867: invalid indirect mapped block 4294967295 (level 1) [ 188.772751][ T6970] EXT4-fs (loop0): 2 truncates cleaned up [ 188.801212][ T6970] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 188.908568][ T6970] EXT4-fs (loop0): shut down requested (2) [ 189.054852][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 189.356348][ T6989] device dummy0 entered promiscuous mode [ 189.392250][ T6989] device macvtap1 entered promiscuous mode [ 189.443424][ T6989] device dummy0 left promiscuous mode [ 189.996520][ T7012] Bluetooth: MGMT ver 1.22 [ 190.109480][ T7005] loop0: detected capacity change from 0 to 8192 [ 190.174887][ T7005] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 190.207846][ T7005] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 190.218344][ T7005] REISERFS (device loop0): using ordered data mode [ 190.224894][ T7005] reiserfs: using flush barriers [ 190.256322][ T7014] loop4: detected capacity change from 0 to 4096 [ 190.317616][ T7005] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 190.386313][ T7005] REISERFS (device loop0): checking transaction log (loop0) [ 190.569311][ T7033] overlayfs: failed to clone lowerpath [ 190.601091][ T4256] ntfs3: loop4: ntfs_evict_inode r=5 failed, -22. [ 190.628198][ T4256] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 190.728706][ T7005] REISERFS (device loop0): Using tea hash to sort names [ 190.796483][ T7005] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 191.287382][ T7048] loop1: detected capacity change from 0 to 2048 [ 191.423973][ T7048] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 191.471702][ T7048] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 191.788009][ T7064] loop4: detected capacity change from 0 to 2048 [ 191.829593][ T7064] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 191.871754][ T4258] EXT4-fs (loop1): unmounting filesystem. [ 191.903753][ T7073] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 191.911816][ T7064] syz.4.899: attempt to access beyond end of device [ 191.911816][ T7064] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 192.780496][ T7072] loop0: detected capacity change from 0 to 32768 [ 192.828281][ T7072] XFS: ikeep mount option is deprecated. [ 192.910725][ T7072] XFS (loop0): Mounting V5 Filesystem [ 193.015965][ T7092] loop1: detected capacity change from 0 to 8192 [ 193.054285][ T7092] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 193.077735][ T7092] REISERFS (device loop1): found reiserfs format "3.5" with non-standard journal [ 193.086995][ T7092] REISERFS (device loop1): using ordered data mode [ 193.095598][ T7092] reiserfs: using flush barriers [ 193.115135][ T7092] REISERFS (device loop1): journal params: device loop1, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 193.131973][ T7092] REISERFS (device loop1): checking transaction log (loop1) [ 193.140479][ T7072] XFS (loop0): Ending clean mount [ 193.150223][ T7092] REISERFS (device loop1): Using r5 hash to sort names [ 193.157450][ T7092] REISERFS (device loop1): Created .reiserfs_priv - reserved for xattr storage. [ 193.184423][ T7072] XFS (loop0): Quotacheck needed: Please wait. [ 193.271548][ T7072] XFS (loop0): Quotacheck: Done. [ 193.311688][ T7114] netlink: 24 bytes leftover after parsing attributes in process `syz.2.907'. [ 193.417463][ T4250] XFS (loop0): Unmounting Filesystem [ 193.932708][ T7132] loop2: detected capacity change from 0 to 512 [ 193.998870][ T7128] loop1: detected capacity change from 0 to 4096 [ 194.043700][ T7132] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 194.054539][ T7128] ntfs3: loop1: Different NTFS' sector size (4096) and media sector size (512) [ 194.069525][ T7132] EXT4-fs (loop2): orphan cleanup on readonly fs [ 194.128314][ T7132] __quota_error: 11 callbacks suppressed [ 194.128334][ T7132] Quota error (device loop2): dq_insert_tree: Quota tree root isn't allocated! [ 194.147472][ T7136] loop0: detected capacity change from 0 to 8 [ 194.215237][ T7136] SQUASHFS error: Failed to read block 0x8f: -5 [ 194.224531][ T7128] ntfs3: loop1: ntfs_sync_fs r=1a failed, -22. [ 194.233044][ T1274] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.233366][ T1274] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.234795][ T7132] Quota error (device loop2): qtree_write_dquot: Error -5 occurred while creating quota [ 194.235137][ T7132] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.912: Failed to acquire dquot type 1 [ 194.240543][ T7132] EXT4-fs error (device loop2): ext4_validate_block_bitmap:438: comm syz.2.912: bg 0: block 40: padding at end of block bitmap is not set [ 194.261812][ T7136] SQUASHFS error: Failed to read block 0xc00090: -5 [ 194.277647][ T7128] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 194.286714][ T7136] SQUASHFS error: Failed to read block 0x8f: -5 [ 194.305730][ T7136] SQUASHFS error: Failed to read block 0x8f: -5 [ 194.312698][ T7136] SQUASHFS error: Failed to read block 0x8f: -5 [ 194.319127][ T7136] SQUASHFS error: Failed to read block 0x8f: -5 [ 194.325524][ T7136] SQUASHFS error: Failed to read block 0x8f: -5 [ 194.332069][ T26] audit: type=1800 audit(1736772890.288:54): pid=7136 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.908" name="file3" dev="loop0" ino=6 res=0 errno=0 [ 194.383670][ T7132] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 194.385937][ T7139] ntfs3: loop1: ntfs_sync_fs r=1a failed, -22. [ 194.418334][ T7132] EXT4-fs (loop2): 1 truncate cleaned up [ 194.424152][ T7132] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 194.638507][ T4258] ntfs3: loop1: ntfs_sync_fs r=1a failed, -22. [ 194.669023][ T4258] ntfs3: loop1: ntfs_evict_inode r=1a failed, -22. [ 194.786130][ T7122] loop3: detected capacity change from 0 to 32768 [ 194.790862][ T7149] loop4: detected capacity change from 0 to 1024 [ 194.825487][ T7149] EXT4-fs: Ignoring removed orlov option [ 194.855969][ T7122] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.909 (7122) [ 194.878017][ T7149] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 194.903403][ T7146] loop0: detected capacity change from 0 to 4096 [ 194.925138][ T7149] EXT4-fs (loop4): orphan cleanup on readonly fs [ 194.935491][ T7149] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 194.961731][ T7146] ntfs3: loop0: Different NTFS' sector size (4096) and media sector size (512) [ 194.971441][ T7122] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 194.973198][ T7149] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #3: comm syz.4.918: mark_inode_dirty error [ 195.003625][ T7149] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.918: Invalid block bitmap block 3 in block_group 0 [ 195.044056][ T7149] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 195.045083][ T7157] netlink: 36 bytes leftover after parsing attributes in process `syz.1.917'. [ 195.065099][ T7146] ntfs3: loop0: Inode r=19 is not in use! [ 195.072845][ T7146] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 195.073069][ T7122] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 195.087071][ T7149] EXT4-fs error (device loop4): ext4_dirty_inode:6089: inode #3: comm syz.4.918: mark_inode_dirty error [ 195.118613][ T4260] EXT4-fs (loop2): unmounting filesystem. [ 195.136548][ T7149] Quota error (device loop4): write_blk: dquota write failed [ 195.144831][ T7122] BTRFS info (device loop3): enabling auto defrag [ 195.160300][ T7146] ntfs3: loop0: ino=5, "/" attr_set_size [ 195.187809][ T7122] BTRFS info (device loop3): doing ref verification [ 195.218797][ T7122] BTRFS info (device loop3): use no compression [ 195.238016][ T7149] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #3: block 1: comm syz.4.918: lblock 6 mapped to illegal pblock 1 (length 1) [ 195.257718][ T7122] BTRFS info (device loop3): force clearing of disk cache [ 195.264932][ T7122] BTRFS info (device loop3): max_inline at 4096 [ 195.295506][ T7149] Quota error (device loop4): write_blk: dquota write failed [ 195.323834][ T7122] BTRFS info (device loop3): disabling free space tree [ 195.332310][ T7149] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 195.389054][ T7149] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #3: block 48: comm syz.4.918: lblock 0 mapped to illegal pblock 48 (length 1) [ 195.446530][ T7149] Quota error (device loop4): v2_write_file_info: Can't write info structure [ 195.520362][ T7149] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.918: Failed to acquire dquot type 0 [ 195.623408][ T7149] EXT4-fs error (device loop4): ext4_map_blocks:634: inode #3: block 49: comm syz.4.918: lblock 1 mapped to illegal pblock 49 (length 1) [ 195.684729][ T7149] Quota error (device loop4): do_insert_tree: Can't read tree quota block 1 [ 195.707612][ T7122] BTRFS info (device loop3): enabling ssd optimizations [ 195.707967][ T7149] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 195.745404][ T7149] EXT4-fs error (device loop4): ext4_acquire_dquot:6794: comm syz.4.918: Failed to acquire dquot type 0 [ 195.761482][ T7122] BTRFS info (device loop3): rebuilding free space tree [ 195.794564][ T7149] EXT4-fs error (device loop4) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 195.836736][ T7149] EXT4-fs error (device loop4): ext4_evict_inode:279: inode #15: comm syz.4.918: mark_inode_dirty error [ 195.837326][ T7122] BTRFS info (device loop3): disabling free space tree [ 195.890768][ T7122] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 195.894063][ T7149] EXT4-fs warning (device loop4): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 195.941491][ T7122] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 195.941501][ T7149] EXT4-fs (loop4): 1 orphan inode deleted [ 195.982454][ T7149] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 196.307696][ T4263] Bluetooth: hci2: command 0x0406 tx timeout [ 196.313892][ T4263] Bluetooth: hci3: command 0x0406 tx timeout [ 196.320050][ T4251] Bluetooth: hci4: command 0x0406 tx timeout [ 196.326091][ T4251] Bluetooth: hci1: command 0x0406 tx timeout [ 196.409028][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 196.516509][ T6475] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 197.046539][ T7227] program syz.4.936 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 197.404905][ T26] audit: type=1326 audit(1736772893.358:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7238 comm="syz.4.939" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdf1d585d29 code=0x0 [ 197.551690][ T7235] loop3: detected capacity change from 0 to 8192 [ 197.595509][ T7235] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 197.627712][ T7210] loop2: detected capacity change from 0 to 32768 [ 197.635308][ T7235] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 197.646453][ T7235] REISERFS (device loop3): using ordered data mode [ 197.653517][ T7235] reiserfs: using flush barriers [ 197.665900][ T7235] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 197.738171][ T7235] REISERFS (device loop3): checking transaction log (loop3) [ 197.765501][ T7210] XFS (loop2): Mounting V5 Filesystem [ 197.791474][ T7235] REISERFS (device loop3): Using r5 hash to sort names [ 197.810786][ T7235] REISERFS (device loop3): using 3.5.x disk format [ 197.817842][ T7235] REISERFS warning (device loop3): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 197.831966][ T7235] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 197.865464][ T7210] XFS (loop2): Ending clean mount [ 197.872537][ T7210] XFS (loop2): Quotacheck needed: Please wait. [ 197.956151][ T7210] XFS (loop2): Quotacheck: Done. [ 197.972460][ T4299] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 198.160445][ T4260] XFS (loop2): Unmounting Filesystem [ 198.160473][ T4299] usb 2-1: Using ep0 maxpacket: 8 [ 198.204194][ T4299] usb 2-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 198.267897][ T4299] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 198.308881][ T4299] usb 2-1: Product: syz [ 198.316987][ T4299] usb 2-1: Manufacturer: syz [ 198.334345][ T4299] usb 2-1: SerialNumber: syz [ 198.384905][ T4299] usb 2-1: config 0 descriptor?? [ 198.487599][ T7267] loop0: detected capacity change from 0 to 8192 [ 198.524366][ T7267] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 198.537683][ T7267] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 198.547015][ T7267] REISERFS (device loop0): using ordered data mode [ 198.553964][ T7267] reiserfs: using flush barriers [ 198.607670][ T7267] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 198.661292][ T4299] usb 2-1: dvb_usb_v2: found a 'Terratec H7' in warm state [ 198.705446][ T7267] REISERFS (device loop0): checking transaction log (loop0) [ 198.756970][ T7267] REISERFS (device loop0): Using r5 hash to sort names [ 198.780132][ T7267] REISERFS (device loop0): using 3.5.x disk format [ 198.787051][ T7267] REISERFS warning (device loop0): jdm-13090 reiserfs_new_inode: ACLs aren't enabled in the fs, but vfs thinks they are! [ 198.844921][ T7267] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 199.282270][ T4299] usb write operation failed. (-71) [ 199.318768][ T4299] usb 2-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 199.376508][ T4299] dvbdev: DVB: registering new adapter (Terratec H7) [ 199.398968][ T4299] usb 2-1: media controller created [ 199.404679][ T7290] loop3: detected capacity change from 0 to 8192 [ 199.445613][ T4299] usb read operation failed. (-71) [ 199.457789][ T4299] usb write operation failed. (-71) [ 199.479893][ T4299] dvb_usb_az6007: probe of 2-1:0.0 failed with error -5 [ 199.487996][ T7290] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 199.499092][ T4299] usb 2-1: USB disconnect, device number 9 [ 199.581271][ T7290] REISERFS (device loop3): found reiserfs format "3.6" with non-standard journal [ 199.607866][ T7290] REISERFS (device loop3): using ordered data mode [ 199.627915][ T7290] reiserfs: using flush barriers [ 199.645261][ T7290] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 199.702715][ T7290] REISERFS (device loop3): checking transaction log (loop3) [ 199.919320][ T7290] REISERFS (device loop3): Using tea hash to sort names [ 199.929382][ T7290] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 199.960712][ T7282] loop4: detected capacity change from 0 to 32768 [ 200.116265][ T7282] XFS (loop4): Mounting V5 Filesystem [ 200.125721][ T26] audit: type=1804 audit(1736772896.078:56): pid=7290 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.953" name="/newroot/19/file0/file0" dev="loop3" ino=4 res=1 errno=0 [ 200.158981][ T7288] loop2: detected capacity change from 0 to 32768 [ 200.203683][ T7288] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.944 (7288) [ 200.245776][ T7288] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 200.265554][ T7288] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 200.275489][ T7288] BTRFS info (device loop2): enabling auto defrag [ 200.282295][ T4704] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 200.301875][ T7288] BTRFS info (device loop2): doing ref verification [ 200.337974][ T7288] BTRFS info (device loop2): use no compression [ 200.344396][ T7288] BTRFS info (device loop2): force clearing of disk cache [ 200.387746][ T7288] BTRFS info (device loop2): max_inline at 4096 [ 200.396315][ T7288] BTRFS info (device loop2): disabling free space tree [ 200.467991][ T4704] usb 2-1: Using ep0 maxpacket: 16 [ 200.483978][ T4704] usb 2-1: config 0 has an invalid interface number: 161 but max is 0 [ 200.511979][ T4704] usb 2-1: config 0 has no interface number 0 [ 200.537735][ T4704] usb 2-1: config 0 interface 161 has no altsetting 0 [ 200.594648][ T7282] XFS (loop4): Ending clean mount [ 200.605540][ T4704] usb 2-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01 [ 200.619348][ T7282] XFS (loop4): Quotacheck needed: Please wait. [ 200.656601][ T4704] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 200.701027][ T4704] usb 2-1: Product: syz [ 200.718211][ T7303] loop0: detected capacity change from 0 to 32768 [ 200.718842][ T4704] usb 2-1: Manufacturer: syz [ 200.761459][ T4704] usb 2-1: SerialNumber: syz [ 200.775613][ T7303] ocfs2: Slot 0 on device (7,0) was already allocated to this node! [ 200.795607][ T7303] JBD2: Ignoring recovery information on journal [ 200.802029][ T4704] usb 2-1: config 0 descriptor?? [ 200.815197][ T7288] BTRFS info (device loop2): enabling ssd optimizations [ 200.823843][ T4704] ums-jumpshot 2-1:0.161: USB Mass Storage device detected [ 200.838203][ T7288] BTRFS info (device loop2): rebuilding free space tree [ 200.843245][ T7282] XFS (loop4): Quotacheck: Done. [ 200.889018][ T4704] ums-jumpshot 2-1:0.161: Quirks match for vid 05dc pid 0001: 2 [ 200.917939][ T7288] BTRFS info (device loop2): disabling free space tree [ 200.947803][ T7288] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 200.977206][ T7303] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 200.995269][ T7288] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 201.010722][ T4256] XFS (loop4): Unmounting Filesystem [ 201.099255][ T6722] usb 2-1: USB disconnect, device number 10 [ 201.191519][ T4250] ocfs2: Unmounting device (7,0) on (node local) [ 201.488876][ T4260] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 202.164597][ T7365] loop1: detected capacity change from 0 to 512 [ 202.229202][ T7365] EXT4-fs: Ignoring removed mblk_io_submit option [ 202.270679][ T7365] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 202.356772][ T7365] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c118, mo2=0002] [ 202.404570][ T7365] System zones: 1-12 [ 202.444978][ T7365] EXT4-fs error (device loop1): ext4_xattr_ibody_find:2186: inode #15: comm syz.1.966: corrupted in-inode xattr [ 202.483603][ T7365] EXT4-fs error (device loop1): ext4_orphan_get:1405: comm syz.1.966: couldn't read orphan inode 15 (err -117) [ 202.535547][ T7365] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 203.057867][ T4299] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 203.073426][ T4258] EXT4-fs (loop1): unmounting filesystem. [ 203.101677][ T7393] loop0: detected capacity change from 0 to 64 [ 203.118095][ T7386] netlink: 8 bytes leftover after parsing attributes in process `syz.4.977'. [ 203.158611][ T7386] netlink: 12 bytes leftover after parsing attributes in process `syz.4.977'. [ 203.274280][ T4299] usb 4-1: Using ep0 maxpacket: 8 [ 203.281837][ T4299] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 203.317585][ T4299] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 203.338189][ T4299] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 203.357639][ T4299] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 203.393542][ T4299] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 203.423617][ T4299] usb 4-1: New USB device strings: Mfr=0, Product=7, SerialNumber=0 [ 203.448312][ T4299] usb 4-1: Product: syz [ 203.504626][ T7401] loop0: detected capacity change from 0 to 2048 [ 203.537428][ T7404] loop2: detected capacity change from 0 to 1024 [ 203.544453][ T125] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 203.565341][ T7401] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 203.583160][ T7404] EXT4-fs: Ignoring removed nobh option [ 203.605750][ T7404] EXT4-fs: Ignoring removed bh option [ 203.621056][ T26] audit: type=1800 audit(1736772899.578:57): pid=7401 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.980" name="file1" dev="loop0" ino=1346 res=0 errno=0 [ 203.693569][ T4299] usb 4-1: GET_CAPABILITIES returned 0 [ 203.701866][ T4299] usbtmc 4-1:16.0: can't read capabilities [ 203.737068][ T7404] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 203.747778][ T125] usb 2-1: Using ep0 maxpacket: 16 [ 203.754923][ T125] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 203.827973][ T125] usb 2-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 203.891588][ T125] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 203.932139][ T7404] EXT4-fs error (device loop2): ext4_mb_mark_diskspace_used:3841: comm syz.2.981: Allocating blocks 497-513 which overlap fs metadata [ 203.950984][ T125] usb 2-1: config 0 descriptor?? [ 203.967374][ T7404] EXT4-fs (loop2): Remounting filesystem read-only [ 203.990400][ T7404] EXT4-fs (loop2): pa ffff8880509a9000: logic 8224, phys. 177, len 21 [ 203.998232][ T7381] usb 4-1: usbtmc_ioctl_clear_out_halt returned -32 [ 203.998886][ T7404] EXT4-fs error (device loop2): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 204.025732][ T125] input: bcm5974 as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input13 [ 204.038337][ T7404] EXT4-fs (loop2): Remounting filesystem read-only [ 204.049023][ T5803] usb 4-1: USB disconnect, device number 8 [ 204.182864][ T3607] bcm5974 2-1:0.0: could not read from device [ 204.200696][ T125] bcm5974 2-1:0.0: could not read from device [ 204.227676][ T125] input: failed to attach handler mousedev to device input13, error: -5 [ 204.256568][ T4260] EXT4-fs (loop2): unmounting filesystem. [ 204.264493][ T3607] bcm5974 2-1:0.0: could not read from device [ 204.279142][ T125] usb 2-1: USB disconnect, device number 11 [ 204.687604][ T5808] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 204.834308][ T7429] loop2: detected capacity change from 0 to 1024 [ 204.898112][ T5808] usb 1-1: Using ep0 maxpacket: 32 [ 204.922639][ T5808] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 204.952899][ T5808] usb 1-1: config 0 has no interface number 0 [ 204.964439][ T7429] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 204.984973][ T5808] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 204.997767][ T5808] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 205.005969][ T5808] usb 1-1: Product: syz [ 205.011375][ T5808] usb 1-1: Manufacturer: syz [ 205.016151][ T5808] usb 1-1: SerialNumber: syz [ 205.023408][ T5808] usb 1-1: config 0 descriptor?? [ 205.039194][ T5808] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 205.169179][ T7429] EXT4-fs (loop2): orphan cleanup on readonly fs [ 205.212765][ T7429] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 205.223820][ T7436] loop1: detected capacity change from 0 to 256 [ 205.236437][ T5808] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 205.266626][ T5808] usb 1-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 205.293927][ T7436] exFAT-fs (loop1): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 205.296407][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 205.344807][ T7429] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #3: comm syz.2.986: mark_inode_dirty error [ 205.375327][ T7436] exFAT-fs (loop1): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 205.439815][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 205.446471][ T7429] EXT4-fs error (device loop2): ext4_read_block_bitmap_nowait:477: comm syz.2.986: Invalid block bitmap block 3 in block_group 0 [ 205.571660][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 205.581253][ T7429] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 205.613714][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 205.640031][ T7429] EXT4-fs error (device loop2): ext4_dirty_inode:6089: inode #3: comm syz.2.986: mark_inode_dirty error [ 205.640485][ C1] usb 1-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 205.659784][ T6722] usb 1-1: USB disconnect, device number 6 [ 205.692160][ T6722] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 205.729788][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 205.729879][ T6722] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 205.768128][ T7429] Quota error (device loop2): write_blk: dquota write failed [ 205.770713][ T6722] quatech2 1-1:0.51: device disconnected [ 205.775606][ T7429] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 1: comm syz.2.986: lblock 6 mapped to illegal pblock 1 (length 1) [ 205.890371][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 205.896962][ T7429] Quota error (device loop2): write_blk: dquota write failed [ 205.936808][ T7429] Quota error (device loop2): qtree_write_dquot: Error -28 occurred while creating quota [ 205.957133][ T7429] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 48: comm syz.2.986: lblock 0 mapped to illegal pblock 48 (length 1) [ 206.006302][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 206.033913][ T7429] Quota error (device loop2): v2_write_file_info: Can't write info structure [ 206.054143][ T7429] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.986: Failed to acquire dquot type 0 [ 206.116007][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 206.132919][ T7429] EXT4-fs error (device loop2): ext4_map_blocks:634: inode #3: block 49: comm syz.2.986: lblock 1 mapped to illegal pblock 49 (length 1) [ 206.197595][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 206.205004][ T7445] loop1: detected capacity change from 0 to 4096 [ 206.227696][ T7429] Quota error (device loop2): do_insert_tree: Can't read tree quota block 1 [ 206.243954][ T7430] loop3: detected capacity change from 0 to 40427 [ 206.257605][ T7429] Quota error (device loop2): qtree_write_dquot: Error -117 occurred while creating quota [ 206.286014][ T7429] EXT4-fs error (device loop2): ext4_acquire_dquot:6794: comm syz.2.986: Failed to acquire dquot type 0 [ 206.297332][ T7430] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 206.324483][ T7430] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 206.345098][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 206.357621][ T7445] ntfs: volume version 3.1. [ 206.368809][ T7429] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5885: Corrupt filesystem [ 206.380293][ T7430] F2FS-fs (loop3): invalid crc_offset: 33558524 [ 206.424196][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 206.443116][ T7430] F2FS-fs (loop3): Found nat_bits in checkpoint [ 206.498043][ T7429] EXT4-fs error (device loop2): ext4_evict_inode:279: inode #15: comm syz.2.986: mark_inode_dirty error [ 206.517403][ T7429] EXT4-fs (loop2): Remounting filesystem read-only [ 206.518625][ T7450] loop4: detected capacity change from 0 to 128 [ 206.535009][ T7429] EXT4-fs warning (device loop2): ext4_evict_inode:282: couldn't mark inode dirty (err -117) [ 206.582378][ T7450] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 206.592038][ T7429] EXT4-fs (loop2): 1 orphan inode deleted [ 206.603444][ T7450] ext4 filesystem being mounted at /219/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 206.608732][ T7429] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 206.662448][ T7455] loop1: detected capacity change from 0 to 64 [ 206.732595][ T7430] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 206.749118][ T7430] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 206.930439][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 207.031906][ T4260] EXT4-fs (loop2): unmounting filesystem. [ 207.166331][ T7460] loop4: detected capacity change from 0 to 2048 [ 207.194159][ T7460] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 207.282190][ T26] audit: type=1800 audit(1736772903.238:58): pid=7460 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.993" name="file1" dev="loop4" ino=1346 res=0 errno=0 [ 207.384868][ T7465] netlink: 300 bytes leftover after parsing attributes in process `syz.1.996'. [ 207.773719][ T7452] loop0: detected capacity change from 0 to 40427 [ 207.832466][ T7452] F2FS-fs (loop0): invalid crc value [ 207.869680][ T7452] F2FS-fs (loop0): Found nat_bits in checkpoint [ 207.957776][ T6722] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 207.984013][ T7480] loop3: detected capacity change from 0 to 1024 [ 208.013960][ T7452] F2FS-fs (loop0): Cannot turn on quotas: -2 on 1 [ 208.024901][ T7480] EXT4-fs: Ignoring removed nobh option [ 208.034347][ T7480] EXT4-fs: Ignoring removed bh option [ 208.047614][ T7452] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 208.108303][ T7480] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 208.123643][ T7452] syz.0.1001: attempt to access beyond end of device [ 208.123643][ T7452] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 208.167585][ T6722] usb 5-1: Using ep0 maxpacket: 16 [ 208.175089][ T6722] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 208.195453][ T6722] usb 5-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 208.205705][ T6722] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 208.217283][ T6722] usb 5-1: config 0 descriptor?? [ 208.230611][ T6722] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input14 [ 208.330374][ T7480] EXT4-fs error (device loop3): ext4_mb_mark_diskspace_used:3841: comm syz.3.995: Allocating blocks 497-513 which overlap fs metadata [ 208.355016][ T7480] EXT4-fs (loop3): Remounting filesystem read-only [ 208.375556][ T7480] EXT4-fs (loop3): pa ffff888075a49460: logic 8224, phys. 177, len 21 [ 208.383981][ T7480] EXT4-fs error (device loop3): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 208.425188][ T7480] EXT4-fs (loop3): Remounting filesystem read-only [ 208.434748][ T3607] bcm5974 5-1:0.0: could not read from device [ 208.461079][ T6722] bcm5974 5-1:0.0: could not read from device [ 208.474766][ T3607] bcm5974 5-1:0.0: could not read from device [ 208.504444][ T6722] input: failed to attach handler mousedev to device input14, error: -5 [ 208.525485][ T3607] bcm5974 5-1:0.0: could not read from device [ 208.552726][ T6722] usb 5-1: USB disconnect, device number 7 [ 208.598124][ T3607] bcm5974 5-1:0.0: could not read from device [ 208.720682][ T6475] EXT4-fs (loop3): unmounting filesystem. [ 208.803621][ T7492] loop0: detected capacity change from 0 to 2048 [ 208.813036][ T7494] loop1: detected capacity change from 0 to 47 [ 208.842372][ T7492] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 208.894189][ T7492] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 208.929067][ T7492] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 208.936766][ T7492] UDF-fs: Scanning with blocksize 512 failed [ 208.951185][ T7494] MINIX-fs: deleted inode referenced: 9 [ 208.984092][ T7492] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 209.222104][ T7502] misc userio: Can't change port type on an already running userio instance [ 209.449718][ T7514] loop3: detected capacity change from 0 to 256 [ 209.469924][ T7514] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 209.496474][ T7514] 9pnet_fd: p9_fd_create_unix (7514): problem connecting socket: ./file0: -13 [ 210.157789][ T7534] loop2: detected capacity change from 0 to 512 [ 210.196977][ T7534] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 210.329467][ T7517] loop0: detected capacity change from 0 to 32768 [ 210.388136][ T125] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 210.424368][ T7517] XFS (loop0): Mounting V5 Filesystem [ 210.575660][ T4260] EXT4-fs (loop2): unmounting filesystem. [ 210.577692][ T125] usb 2-1: Using ep0 maxpacket: 16 [ 210.599486][ T125] usb 2-1: config 0 has an invalid interface number: 214 but max is 0 [ 210.622296][ T125] usb 2-1: config 0 has no interface number 0 [ 210.640901][ T125] usb 2-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64 [ 210.673835][ T125] usb 2-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5 [ 210.692927][ T125] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 210.711511][ T125] usb 2-1: Product: syz [ 210.723137][ T125] usb 2-1: Manufacturer: syz [ 210.735532][ T125] usb 2-1: SerialNumber: syz [ 210.753673][ T125] usb 2-1: config 0 descriptor?? [ 210.772048][ T7517] XFS (loop0): Ending clean mount [ 210.782568][ T7517] XFS (loop0): Quotacheck needed: Please wait. [ 210.861523][ T7517] XFS (loop0): Quotacheck: Done. [ 211.026892][ T4250] XFS (loop0): Unmounting Filesystem [ 211.067769][ T6722] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 211.209801][ T7550] loop3: detected capacity change from 0 to 32768 [ 211.217128][ T7550] XFS: ikeep mount option is deprecated. [ 211.265215][ T7550] XFS (loop3): Mounting V5 Filesystem [ 211.271025][ T6722] usb 3-1: Using ep0 maxpacket: 16 [ 211.282168][ T6722] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 211.292666][ T6722] usb 3-1: New USB device found, idVendor=05ac, idProduct=0244, bcdDevice= 0.00 [ 211.302149][ T6722] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 211.313440][ T6722] usb 3-1: config 0 descriptor?? [ 211.333962][ T6722] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input18 [ 211.384046][ T125] usbtouchscreen: probe of 2-1:0.214 failed with error -71 [ 211.394390][ T125] usb 2-1: USB disconnect, device number 12 [ 211.404172][ T7550] XFS (loop3): Ending clean mount [ 211.413261][ T7550] XFS (loop3): Quotacheck needed: Please wait. [ 211.457425][ T7550] XFS (loop3): Quotacheck: Done. [ 211.494674][ T7563] loop4: detected capacity change from 0 to 512 [ 211.530297][ T3607] bcm5974 3-1:0.0: could not read from device [ 211.544549][ T6722] bcm5974 3-1:0.0: could not read from device [ 211.558178][ T3607] bcm5974 3-1:0.0: could not read from device [ 211.571981][ T7563] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 211.588909][ T6722] input: failed to attach handler mousedev to device input18, error: -5 [ 211.591642][ T7563] ext4 filesystem being mounted at /225/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 211.606742][ T6722] usb 3-1: USB disconnect, device number 10 [ 211.657931][ T6475] XFS (loop3): Unmounting Filesystem [ 211.692367][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 211.953667][ T7569] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1033'. [ 212.027606][ T5808] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 212.234425][ T5808] usb 5-1: New USB device found, idVendor=1c40, idProduct=0534, bcdDevice=6d.cc [ 212.249405][ T5808] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 212.257471][ T5808] usb 5-1: Product: syz [ 212.269121][ T5808] usb 5-1: Manufacturer: syz [ 212.273849][ T5808] usb 5-1: SerialNumber: syz [ 212.282385][ T5808] usb 5-1: config 0 descriptor?? [ 212.299999][ T5808] i2c-tiny-usb 5-1:0.0: version 6d.cc found at bus 005 address 008 [ 212.535522][ T7580] loop2: detected capacity change from 0 to 4096 [ 212.568794][ T7580] ntfs3: loop2: Different NTFS' sector size (1024) and media sector size (512) [ 212.612284][ T7580] ntfs3: loop2: Failed to load $Extend. [ 212.697716][ T5808] (null): failure reading functionality [ 212.753268][ T5808] i2c i2c-1: connected i2c-tiny-usb device [ 212.788758][ T26] audit: type=1804 audit(1736772908.738:59): pid=7588 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.1041" name=2F6E6577726F6F742F3230312F131377C5FC35D41454D5D41D29AD1A6029598146E6BE166E41AD0DBD4054033C9F33BBDA8224A2F3D772E7636E48B33CBF708372E8F1B9933EC5127743BE2206209EF02DF9CBF2F6E880D3382F66696C6531 dev="loop2" ino=30 res=1 errno=0 [ 212.824589][ C1] vkms_vblank_simulate: vblank timer overrun [ 212.901863][ T26] audit: type=1800 audit(1736772908.778:60): pid=7580 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1041" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 212.942396][ T5808] usb 5-1: USB disconnect, device number 8 [ 213.172672][ T7596] loop1: detected capacity change from 0 to 256 [ 213.178697][ T7594] loop2: detected capacity change from 0 to 2048 [ 213.189312][ T7596] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 213.242683][ T7596] FAT-fs (loop1): Directory bread(block 64) failed [ 213.258104][ T7596] FAT-fs (loop1): Directory bread(block 65) failed [ 213.265448][ T7594] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 213.270788][ T7596] FAT-fs (loop1): Directory bread(block 66) failed [ 213.295335][ T7596] FAT-fs (loop1): Directory bread(block 67) failed [ 213.307136][ T7596] FAT-fs (loop1): Directory bread(block 68) failed [ 213.322515][ T7594] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 213.336125][ T7596] FAT-fs (loop1): Directory bread(block 69) failed [ 213.352854][ T7596] FAT-fs (loop1): Directory bread(block 70) failed [ 213.388620][ T7596] FAT-fs (loop1): Directory bread(block 71) failed [ 213.395300][ T7596] FAT-fs (loop1): Directory bread(block 72) failed [ 213.418988][ T7596] FAT-fs (loop1): Directory bread(block 73) failed [ 214.551834][ T7608] loop2: detected capacity change from 0 to 32768 [ 214.575453][ T7608] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop2 scanned by syz.2.1049 (7608) [ 214.632747][ T7608] BTRFS info (device loop2): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 214.657437][ T7608] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 214.686955][ T7608] BTRFS info (device loop2): enabling disk space caching [ 214.717296][ T7608] BTRFS info (device loop2): force clearing of disk cache [ 214.749071][ T7614] loop1: detected capacity change from 0 to 32768 [ 214.765966][ T7608] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 214.795047][ T7608] BTRFS info (device loop2): use zstd compression, level 3 [ 214.803205][ T7614] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 scanned by syz.1.1052 (7614) [ 214.825784][ T7608] BTRFS info (device loop2): disk space caching is enabled [ 214.850184][ T7614] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 214.877844][ T7614] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 214.897843][ T7614] BTRFS info (device loop1): use zlib compression, level 3 [ 214.905300][ T7614] BTRFS info (device loop1): using free space tree [ 215.074781][ T7608] BTRFS info (device loop2): enabling ssd optimizations [ 215.082078][ T7614] BTRFS info (device loop1): enabling ssd optimizations [ 215.103097][ T7608] BTRFS info (device loop2): rebuilding free space tree [ 215.135919][ T26] audit: type=1800 audit(1736772911.088:61): pid=7614 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1052" name="file1" dev="loop1" ino=260 res=0 errno=0 [ 215.233490][ T7608] BTRFS info (device loop2): disabling free space tree [ 215.257704][ T7608] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 215.294638][ T7608] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 215.399671][ T7668] bridge0: port 2(bridge_slave_1) entered disabled state [ 215.408239][ T7668] bridge0: port 1(bridge_slave_0) entered disabled state [ 215.441724][ T4258] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 215.924016][ T4260] BTRFS info (device loop2): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 216.304133][ T7681] loop3: detected capacity change from 0 to 512 [ 216.438435][ T7681] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=2802c028, mo2=0002] [ 216.466950][ T7681] System zones: 0-2, 18-18, 34-35 [ 216.493850][ T7689] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1072'. [ 216.497178][ T7681] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 216.524083][ T7681] ext4 filesystem being mounted at /45/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 216.605520][ T7692] io-wq is not configured for unbound workers [ 216.706028][ T7681] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #2: comm syz.3.1066: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 216.761801][ T7681] EXT4-fs (loop3): Remounting filesystem read-only [ 216.784344][ T7695] EXT4-fs error (device loop3): ext4_search_dir:1549: inode #2: block 3: comm syz.3.1066: bad entry in directory: rec_len is smaller than minimal - offset=16444, inode=113, rec_len=0, size=2048 fake=0 [ 216.848044][ T7699] loop0: detected capacity change from 0 to 2048 [ 216.861694][ T7699] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 216.870771][ T7695] EXT4-fs (loop3): Remounting filesystem read-only [ 216.948800][ T7699] UDF-fs: error (device loop0): udf_rename: failed to find renamed entry again in directory (ino 1376) [ 216.981355][ T6475] EXT4-fs (loop3): unmounting filesystem. [ 217.133557][ T7706] loop6: detected capacity change from 0 to 524287999 [ 217.185409][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.194690][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.213961][ T7711] loop4: detected capacity change from 0 to 256 [ 217.227980][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.237233][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.266713][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.275987][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.300316][ C0] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.309580][ C0] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.331484][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.340836][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.369844][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.379128][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.413353][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.422652][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.457198][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.466475][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.474618][ T7706] ldm_validate_partition_table(): Disk read failed. [ 217.501463][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.510713][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.537465][ C1] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 217.546818][ C1] Buffer I/O error on dev loop6, logical block 0, async page read [ 217.562067][ T7706] Dev loop6: unable to read RDB block 0 [ 217.582851][ T7706] loop6: unable to read partition table [ 217.590355][ T7706] loop_reread_partitions: partition scan of loop6 (3Ÿ ¾‚³˜) failed (rc=-5) [ 217.620285][ T7709] ldm_validate_partition_table(): Disk read failed. [ 217.640576][ T7709] Dev loop6: unable to read RDB block 0 [ 217.665471][ T7709] loop6: unable to read partition table [ 217.827666][ T5803] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 218.026831][ T7735] loop3: detected capacity change from 0 to 1024 [ 218.035606][ T5803] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 218.056811][ T5803] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 218.096270][ T5803] usb 1-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 218.125964][ T5803] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 218.160143][ T5803] usb 1-1: config 0 descriptor?? [ 218.197389][ T7735] hfsplus: request for non-existent node 1280 in B*Tree [ 218.223395][ T7735] hfsplus: request for non-existent node 1280 in B*Tree [ 218.333163][ T7742] loop4: detected capacity change from 0 to 2048 [ 218.442899][ T7742] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 218.508332][ T7750] IPVS: ovf: UDP 127.0.0.1:19999 - no destination available [ 218.596674][ T5803] hid-thrustmaster 0003:044F:B65D.0007: unknown main item tag 0x0 [ 218.625262][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 218.635746][ T5803] hid-thrustmaster 0003:044F:B65D.0007: hidraw0: USB HID v0.00 Device [HID 044f:b65d] on usb-dummy_hcd.0-1/input0 [ 218.666740][ T125] hid-generic 0005:046D:1010.0008: item fetching failed at offset 0/1 [ 218.683703][ T5803] hid-thrustmaster 0003:044F:B65D.0007: Wrong number of endpoints? [ 218.688728][ T125] hid-generic: probe of 0005:046D:1010.0008 failed with error -22 [ 218.812157][ C1] hid-thrustmaster 0003:044F:B65D.0007: Unknown packet type 0x0, unable to proceed further with wheel init [ 219.025126][ T6722] usb 1-1: USB disconnect, device number 7 [ 219.147652][ T5803] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 219.190854][ T7768] loop4: detected capacity change from 0 to 2048 [ 219.237115][ T7768] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 219.287824][ T7769] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 219.327943][ T5803] usb 3-1: Using ep0 maxpacket: 16 [ 219.336949][ T5803] usb 3-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 219.376046][ T5803] usb 3-1: config 0 interface 0 has no altsetting 0 [ 219.386413][ T5803] usb 3-1: New USB device found, idVendor=0458, idProduct=0138, bcdDevice= 0.00 [ 219.397219][ T5803] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 219.427013][ T5803] usb 3-1: config 0 descriptor?? [ 219.807661][ T4704] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 219.854263][ T5803] kye 0003:0458:0138.0009: unknown main item tag 0x0 [ 219.865967][ T5803] kye 0003:0458:0138.0009: unknown main item tag 0x0 [ 219.876118][ T5803] kye 0003:0458:0138.0009: unexpected long global item [ 219.888278][ T5803] kye 0003:0458:0138.0009: parse failed [ 219.893962][ T5803] kye: probe of 0003:0458:0138.0009 failed with error -22 [ 220.001797][ T7778] loop1: detected capacity change from 0 to 32768 [ 220.010416][ T4704] usb 5-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 220.020879][ T7778] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.1105 (7778) [ 220.033265][ T4704] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 220.041691][ T4704] usb 5-1: Product: syz [ 220.045900][ T4704] usb 5-1: Manufacturer: syz [ 220.051256][ T4704] usb 5-1: SerialNumber: syz [ 220.056338][ T5803] usb 3-1: USB disconnect, device number 11 [ 220.069196][ T4704] usb 5-1: config 0 descriptor?? [ 220.074366][ T7778] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 220.095431][ T7778] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 220.116117][ T7778] BTRFS info (device loop1): enabling auto defrag [ 220.128482][ T7778] BTRFS info (device loop1): doing ref verification [ 220.135163][ T7778] BTRFS info (device loop1): use no compression [ 220.141612][ T7778] BTRFS info (device loop1): force clearing of disk cache [ 220.148994][ T7778] BTRFS info (device loop1): max_inline at 4096 [ 220.155592][ T7778] BTRFS info (device loop1): disabling free space tree [ 220.188599][ T7778] BTRFS info (device loop1): enabling ssd optimizations [ 220.203600][ T7778] BTRFS info (device loop1): rebuilding free space tree [ 220.227446][ T7778] BTRFS info (device loop1): disabling free space tree [ 220.236379][ T7778] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 220.250642][ T7778] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 220.300832][ T4704] usb 5-1: USB disconnect, device number 9 [ 220.316448][ T4258] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 220.537744][ T5624] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 220.546665][ T5288] udevd[5288]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 220.739377][ T5624] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 220.756693][ T5624] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 220.784882][ T5624] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 220.802358][ T5624] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 220.841165][ T5624] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 220.902822][ T5624] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 220.927566][ T5624] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 220.955954][ T5624] usb 1-1: Product: syz [ 220.973255][ T5624] usb 1-1: Manufacturer: syz [ 221.014149][ T5624] cdc_wdm 1-1:1.0: skipping garbage [ 221.032110][ T5624] cdc_wdm 1-1:1.0: skipping garbage [ 221.042828][ T5624] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 221.049059][ T5624] cdc_wdm 1-1:1.0: Unknown control protocol [ 221.254489][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 221.261447][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 221.270966][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 221.273762][ T7828] loop1: detected capacity change from 0 to 2048 [ 221.277583][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 221.287988][ C1] cdc_wdm 1-1:1.0: nonzero urb status received: -71 [ 221.296807][ C1] cdc_wdm 1-1:1.0: wdm_int_callback - 0 bytes [ 221.303851][ T5624] usb 1-1: USB disconnect, device number 8 [ 221.336702][ T7828] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 221.568148][ T4294] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 221.640313][ T7840] loop2: detected capacity change from 0 to 1024 [ 221.640502][ T7841] program syz.4.1127 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 221.757816][ T4294] usb 4-1: Using ep0 maxpacket: 16 [ 221.771292][ T4294] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 221.783801][ T7843] loop4: detected capacity change from 0 to 512 [ 221.798950][ T7843] EXT4-fs: Ignoring removed mblk_io_submit option [ 221.809198][ T4294] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 221.824577][ T7843] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 221.851551][ T7843] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c119, mo2=0082] [ 221.864177][ T4294] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 221.873848][ T4294] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 221.896983][ T7843] System zones: 1-12 [ 221.913929][ T4294] usb 4-1: Product: syz [ 221.932021][ T4294] usb 4-1: Manufacturer: syz [ 221.933950][ T7843] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.1128: corrupted in-inode xattr [ 221.936653][ T4294] usb 4-1: SerialNumber: syz [ 221.990182][ T7843] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.1128: couldn't read orphan inode 15 (err -117) [ 222.012991][ T7843] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 222.032700][ T7843] EXT4-fs (loop4): shut down requested (2) [ 222.108339][ T4256] EXT4-fs (loop4): unmounting filesystem. [ 222.229368][ T7852] loop0: detected capacity change from 0 to 512 [ 222.277087][ T7852] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 222.376351][ T7852] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 222.391852][ T4294] usb 4-1: 0:2 : does not exist [ 222.400241][ T7861] loop2: detected capacity change from 0 to 512 [ 222.414280][ T7861] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended [ 222.464067][ T7852] ext4 filesystem being mounted at /228/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 222.487950][ T7861] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 222.583816][ T7861] EXT4-fs (loop2): warning: checktime reached, running e2fsck is recommended [ 222.605592][ T7861] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 222.631547][ T7852] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 222.637891][ T7861] System zones: 0-2, 18-18, 34-34 [ 222.659069][ T7861] EXT4-fs warning (device loop2): ext4_update_dynamic_rev:1086: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 222.696633][ T7861] EXT4-fs (loop2): 1 truncate cleaned up [ 222.715570][ T7861] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 222.784584][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 222.808316][ T4294] usb 4-1: 5:0: failed to get current value for ch 0 (-22) [ 222.929456][ T4294] usb 4-1: USB disconnect, device number 9 [ 223.049721][ T4260] EXT4-fs (loop2): unmounting filesystem. [ 223.159240][ T4262] udevd[4262]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 223.255479][ T7875] loop0: detected capacity change from 0 to 512 [ 223.306482][ T7875] EXT4-fs (loop0): feature flags set on rev 0 fs, running e2fsck is recommended [ 223.353493][ T7875] EXT4-fs error (device loop0): ext4_orphan_get:1400: inode #17: comm syz.0.1139: iget: bad i_size value: -6917529027641081756 [ 223.403789][ T7875] EXT4-fs error (device loop0): ext4_orphan_get:1405: comm syz.0.1139: couldn't read orphan inode 17 (err -117) [ 223.447610][ T7875] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 223.541409][ T7881] loop1: detected capacity change from 0 to 16 [ 223.554369][ T7875] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.1139: bg 0: block 65: padding at end of block bitmap is not set [ 223.573289][ T7883] loop3: detected capacity change from 0 to 64 [ 223.589134][ T7881] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 223.621243][ T7875] Quota error (device loop0): write_blk: dquota write failed [ 223.676775][ T7881] cramfs: Error -3 while decompressing! [ 223.685392][ T7875] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 223.715097][ T7881] cramfs: ffffffff974e2568(27)->ffff8880518e3000(4096) [ 223.743033][ T7884] Quota error (device loop0): do_check_range: Getting block 16777216 out of range 0-7 [ 223.773799][ T7881] cramfs: Error -3 while decompressing! [ 223.776614][ T7875] EXT4-fs error (device loop0): ext4_acquire_dquot:6794: comm syz.0.1139: Failed to acquire dquot type 0 [ 223.796729][ T7881] cramfs: ffffffff974e6568(27)->ffff8880518e3000(4096) [ 223.853581][ T26] audit: type=1800 audit(1736772919.808:62): pid=7881 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.1141" name="file2" dev="loop1" ino=348 res=0 errno=0 [ 223.955856][ T4250] EXT4-fs (loop0): unmounting filesystem. [ 224.823753][ T7908] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1153'. [ 225.023653][ T7896] loop4: detected capacity change from 0 to 32768 [ 225.110751][ T7896] JBD2: Ignoring recovery information on journal [ 225.156952][ T7912] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1154'. [ 225.193345][ T7896] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 225.500878][ T4256] ocfs2: Unmounting device (7,4) on (node local) [ 330.777456][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 330.784544][ C1] rcu: 0-...!: (1 ticks this GP) idle=c204/1/0x4000000000000000 softirq=26712/26712 fqs=2 [ 330.796195][ C1] (detected by 1, t=10503 jiffies, g=35909, q=179 ncpus=2) [ 330.803518][ C1] Sending NMI from CPU 1 to CPUs 0: [ 330.808928][ C0] NMI backtrace for cpu 0 [ 330.808949][ C0] CPU: 0 PID: 125 Comm: kworker/0:2 Not tainted 6.1.124-syzkaller #0 [ 330.808967][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 330.808986][ C0] Workqueue: events_freezable_power_ sync_hw_clock [ 330.809026][ C0] RIP: 0010:__lock_acquire+0xf20/0x1f80 [ 330.809053][ C0] Code: 48 c1 e5 20 48 c7 c0 78 40 9b 8e 48 c1 e8 03 0f b6 04 38 84 c0 0f 85 6d 0b 00 00 48 09 dd 83 3d 4d 89 30 0d 00 4c 8b 7c 24 30 <45> 89 ee 4c 8b 6c 24 48 0f 85 1a 03 00 00 48 83 7c 24 40 00 0f 84 [ 330.809068][ C0] RSP: 0018:ffffc90000007a80 EFLAGS: 00000046 [ 330.809081][ C0] RAX: 0000000000000000 RBX: 00000000db16ba9e RCX: 000000000018fa7d [ 330.809093][ C0] RDX: 00000000faf9e11e RSI: 0000000029bd22a8 RDI: dffffc0000000000 [ 330.809104][ C0] RBP: 4b21b045db16ba9e R08: dffffc0000000000 R09: fffffbfff2249c4e [ 330.809117][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88801cb9a898 [ 330.809129][ C0] R13: 0000000000000001 R14: ffff88801cb9a910 R15: 1ffff11003973522 [ 330.809141][ C0] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 330.809156][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 330.809167][ C0] CR2: 0000000020001000 CR3: 0000000059d51000 CR4: 00000000003506f0 [ 330.809182][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 330.809192][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 330.809203][ C0] Call Trace: [ 330.809209][ C0] [ 330.809217][ C0] ? nmi_cpu_backtrace+0x3de/0x560 [ 330.809246][ C0] ? read_lock_is_recursive+0x10/0x10 [ 330.809272][ C0] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 330.809307][ C0] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 330.809324][ C0] ? nmi_handle+0x12e/0x440 [ 330.809350][ C0] ? nmi_handle+0x25/0x440 [ 330.809375][ C0] ? __lock_acquire+0xf20/0x1f80 [ 330.809399][ C0] ? default_do_nmi+0x62/0x150 [ 330.809415][ C0] ? exc_nmi+0xa8/0x100 [ 330.809431][ C0] ? end_repeat_nmi+0x16/0x31 [ 330.809451][ C0] ? __lock_acquire+0xf20/0x1f80 [ 330.809482][ C0] ? __lock_acquire+0xf20/0x1f80 [ 330.809507][ C0] ? __lock_acquire+0xf20/0x1f80 [ 330.809531][ C0] [ 330.809536][ C0] [ 330.809547][ C0] lock_acquire+0x1f8/0x5a0 [ 330.809571][ C0] ? __hrtimer_run_queues+0x6d3/0xe50 [ 330.809595][ C0] ? read_lock_is_recursive+0x10/0x10 [ 330.809619][ C0] ? advance_sched+0x6d0/0x970 [ 330.809641][ C0] ? __lock_acquire+0x1f80/0x1f80 [ 330.809667][ C0] ? do_raw_spin_unlock+0x137/0x8a0 [ 330.809685][ C0] ? advance_sched+0x6d0/0x970 [ 330.809706][ C0] _raw_spin_lock_irq+0xcf/0x110 [ 330.809729][ C0] ? __hrtimer_run_queues+0x6d3/0xe50 [ 330.809750][ C0] ? _raw_spin_lock_irqsave+0x120/0x120 [ 330.809777][ C0] __hrtimer_run_queues+0x6d3/0xe50 [ 330.809805][ C0] ? hrtimer_interrupt+0x980/0x980 [ 330.809825][ C0] ? ktime_get_update_offsets_now+0x407/0x420 [ 330.809853][ C0] hrtimer_interrupt+0x392/0x980 [ 330.809883][ C0] __sysvec_apic_timer_interrupt+0x158/0x5b0 [ 330.809909][ C0] sysvec_apic_timer_interrupt+0x9b/0xc0 [ 330.809929][ C0] [ 330.809933][ C0] [ 330.809938][ C0] asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 330.809966][ C0] RIP: 0010:_raw_spin_unlock_irqrestore+0xd4/0x130 [ 330.809990][ C0] Code: 9c 8f 44 24 20 42 80 3c 23 00 74 08 4c 89 f7 e8 92 22 25 f7 f6 44 24 21 02 75 4e 41 f7 c7 00 02 00 00 74 01 fb bf 01 00 00 00 f7 7f a1 f6 65 8b 05 98 5f 45 75 85 c0 74 3f 48 c7 04 24 0e 36 [ 330.810004][ C0] RSP: 0018:ffffc90002d27aa0 EFLAGS: 00000206 [ 330.810018][ C0] RAX: 132c0818b1c16c00 RBX: 1ffff920005a4f58 RCX: ffffffff816b126a [ 330.810031][ C0] RDX: dffffc0000000000 RSI: ffffffff8b0c0340 RDI: 0000000000000001 [ 330.810042][ C0] RBP: ffffc90002d27b30 R08: dffffc0000000000 R09: fffffbfff2249c86 [ 330.810055][ C0] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 330.810067][ C0] R13: 1ffff920005a4f54 R14: ffffc90002d27ac0 R15: 0000000000000246 [ 330.810082][ C0] ? mark_lock+0x9a/0x340 [ 330.810110][ C0] ? _raw_spin_unlock+0x40/0x40 [ 330.810135][ C0] sync_hw_clock+0x418/0x520 [ 330.810158][ C0] ? __do_adjtimex+0x1290/0x1290 [ 330.810182][ C0] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 330.810210][ C0] ? do_raw_spin_unlock+0x137/0x8a0 [ 330.810230][ C0] ? process_one_work+0x7a9/0x11d0 [ 330.810263][ C0] process_one_work+0x8a9/0x11d0 [ 330.810288][ C0] ? worker_detach_from_pool+0x260/0x260 [ 330.810308][ C0] ? _raw_spin_lock_irqsave+0x120/0x120 [ 330.810330][ C0] ? kthread_data+0x4e/0xc0 [ 330.810355][ C0] ? wq_worker_running+0x97/0x190 [ 330.810371][ C0] worker_thread+0xa47/0x1200 [ 330.810394][ C0] ? _raw_spin_unlock+0x40/0x40 [ 330.810420][ C0] kthread+0x28d/0x320 [ 330.810434][ C0] ? worker_clr_flags+0x190/0x190 [ 330.810452][ C0] ? kthread_blkcg+0xd0/0xd0 [ 330.810467][ C0] ret_from_fork+0x1f/0x30 [ 330.810501][ C0] [ 330.810912][ C1] rcu: rcu_preempt kthread starved for 10495 jiffies! g35909 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 331.298303][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 331.308289][ C1] rcu: RCU grace-period kthread stack dump: [ 331.314184][ C1] task:rcu_preempt state:R running task stack:26712 pid:16 ppid:2 flags:0x00004000 [ 331.324988][ C1] Call Trace: [ 331.328282][ C1] [ 331.331233][ C1] __schedule+0x143f/0x4570 [ 331.335763][ C1] ? _raw_spin_unlock+0x40/0x40 [ 331.340648][ C1] ? __mod_timer+0x956/0xee0 [ 331.345276][ C1] ? release_firmware_map_entry+0x186/0x186 [ 331.351192][ C1] ? lockdep_softirqs_off+0x420/0x420 [ 331.356592][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 331.362514][ C1] ? _raw_spin_unlock+0x40/0x40 [ 331.367400][ C1] schedule+0xbf/0x180 [ 331.371493][ C1] schedule_timeout+0x1b9/0x300 [ 331.376366][ C1] ? console_conditional_schedule+0x40/0x40 [ 331.382292][ C1] ? update_process_times+0x1b0/0x1b0 [ 331.387694][ C1] ? prepare_to_swait_event+0x329/0x350 [ 331.393289][ C1] rcu_gp_fqs_loop+0x2d2/0x1150 [ 331.398169][ C1] ? dyntick_save_progress_counter+0x2b0/0x2b0 [ 331.404347][ C1] ? lockdep_hardirqs_on+0x94/0x130 [ 331.409564][ C1] ? rcu_gp_init+0x15f0/0x15f0 [ 331.414350][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 331.420279][ C1] ? finish_swait+0xcf/0x1e0 [ 331.424897][ C1] rcu_gp_kthread+0xa3/0x3b0 [ 331.429522][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 331.434653][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 331.440578][ C1] ? __kthread_parkme+0x168/0x1c0 [ 331.445640][ C1] kthread+0x28d/0x320 [ 331.449723][ C1] ? rcu_report_qs_rsp+0x1a0/0x1a0 [ 331.454857][ C1] ? kthread_blkcg+0xd0/0xd0 [ 331.459481][ C1] ret_from_fork+0x1f/0x30 [ 331.463954][ C1] [ 331.467004][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 331.473344][ C1] CPU: 1 PID: 7925 Comm: syz.1.1161 Not tainted 6.1.124-syzkaller #0 [ 331.481438][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 331.491534][ C1] RIP: 0010:smp_call_function_many_cond+0x1fae/0x3460 [ 331.498338][ C1] Code: 2f 44 89 ee 83 e6 01 31 ff e8 0e 44 0b 00 41 83 e5 01 49 bd 00 00 00 00 00 fc ff df 75 0a e8 99 40 0b 00 e9 1b ff ff ff f3 90 <42> 0f b6 04 2b 84 c0 75 14 41 f7 07 01 00 00 00 0f 84 fe fe ff ff [ 331.517959][ C1] RSP: 0018:ffffc9000c53f100 EFLAGS: 00000293 [ 331.524050][ C1] RAX: ffffffff817f5b89 RBX: 1ffff110171c8595 RCX: ffff88802ca25940 [ 331.532036][ C1] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 331.540019][ C1] RBP: ffffc9000c53f4e0 R08: ffffffff817f5b52 R09: ffffed10171e7753 [ 331.548006][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000800000000 [ 331.555997][ C1] R13: dffffc0000000000 R14: 0000000000000000 R15: ffff8880b8e42ca8 [ 331.563989][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 331.572936][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 331.579533][ C1] CR2: 0000555575b91808 CR3: 000000005ff28000 CR4: 00000000003506e0 [ 331.587526][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 331.595514][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 331.603509][ C1] Call Trace: [ 331.606801][ C1] [ 331.609658][ C1] ? rcu_check_gp_kthread_starvation+0x1b8/0x220 [ 331.616014][ C1] ? print_other_cpu_stall+0x150c/0x1640 [ 331.621695][ C1] ? print_cpu_stall+0x5f0/0x5f0 [ 331.626716][ C1] ? rcu_sched_clock_irq+0xaf6/0x1200 [ 331.632115][ C1] ? rcutree_dead_cpu+0x20/0x20 [ 331.636985][ C1] ? hrtimer_run_queues+0x163/0x450 [ 331.642205][ C1] ? acct_account_cputime+0x26e/0x270 [ 331.647606][ C1] ? update_process_times+0x147/0x1b0 [ 331.653085][ C1] ? tick_sched_timer+0x386/0x550 [ 331.658130][ C1] ? tick_setup_sched_timer+0x2f0/0x2f0 [ 331.663702][ C1] ? __hrtimer_run_queues+0x5a7/0xe50 [ 331.669207][ C1] ? hrtimer_interrupt+0x980/0x980 [ 331.674341][ C1] ? ktime_get_update_offsets_now+0x407/0x420 [ 331.680446][ C1] ? hrtimer_interrupt+0x392/0x980 [ 331.685603][ C1] ? __sysvec_apic_timer_interrupt+0x158/0x5b0 [ 331.691788][ C1] ? sysvec_apic_timer_interrupt+0x9b/0xc0 [ 331.697616][ C1] [ 331.700564][ C1] [ 331.703510][ C1] ? asm_sysvec_apic_timer_interrupt+0x16/0x20 [ 331.709786][ C1] ? smp_call_function_many_cond+0x1f92/0x3460 [ 331.715963][ C1] ? smp_call_function_many_cond+0x1fc9/0x3460 [ 331.722151][ C1] ? smp_call_function_many_cond+0x1fae/0x3460 [ 331.728336][ C1] ? mark_lock+0x9a/0x340 [ 331.732702][ C1] ? cgroup_rstat_updated+0xca/0x350 [ 331.738031][ C1] ? native_flush_tlb_multi+0xd0/0xd0 [ 331.743437][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 331.749447][ C1] ? smp_call_function_many+0x30/0x30 [ 331.754848][ C1] ? pgtable_pmd_page_dtor+0x1b1/0x2e0 [ 331.760357][ C1] ? lockdep_hardirqs_on+0x94/0x130 [ 331.766016][ C1] ? pgtable_pmd_page_dtor+0x227/0x2e0 [ 331.771495][ C1] ? tlb_remove_page+0xe/0x20 [ 331.776191][ C1] ? ___pmd_free_tlb+0x90/0x90 [ 331.780977][ C1] ? pte_alloc_one+0x360/0x360 [ 331.785765][ C1] ? __tlb_remove_page_size+0x19f/0x3e0 [ 331.791329][ C1] ? __tlb_remove_page_size+0x19f/0x3e0 [ 331.796918][ C1] ? tlb_remove_page+0xe/0x20 [ 331.801615][ C1] ? free_pgd_range+0xd4e/0xdc0 [ 331.806503][ C1] ? rcu_is_watching+0x11/0xb0 [ 331.811282][ C1] ? native_flush_tlb_multi+0xd0/0xd0 [ 331.816684][ C1] on_each_cpu_cond_mask+0x3b/0x80 [ 331.821821][ C1] flush_tlb_mm_range+0x353/0x590 [ 331.826876][ C1] ? flush_tlb_multi+0x50/0x50 [ 331.831676][ C1] ? free_pgtables+0x49a/0x4f0 [ 331.836547][ C1] tlb_flush_mmu_tlbonly+0x1ab/0x410 [ 331.841868][ C1] tlb_flush_mmu+0x28/0x210 [ 331.846403][ C1] tlb_finish_mmu+0xce/0x1f0 [ 331.851018][ C1] exit_mmap+0x3b3/0x980 [ 331.855285][ C1] ? vm_brk+0x20/0x20 [ 331.859287][ C1] ? memset+0x1f/0x40 [ 331.863327][ C1] ? uprobe_clear_state+0x271/0x280 [ 331.868565][ C1] ? mm_update_next_owner+0x51b/0x640 [ 331.873978][ C1] __mmput+0x115/0x3c0 [ 331.878091][ C1] exit_mm+0x226/0x300 [ 331.882200][ C1] ? do_exit+0x26a0/0x26a0 [ 331.886649][ C1] ? taskstats_exit+0x399/0x920 [ 331.891526][ C1] ? tty_audit_exit+0x150/0x1f0 [ 331.896416][ C1] do_exit+0x9f1/0x26a0 [ 331.900618][ C1] ? put_task_struct+0x80/0x80 [ 331.905422][ C1] ? get_signal+0x137e/0x17d0 [ 331.910565][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 331.916590][ C1] ? print_irqtrace_events+0x210/0x210 [ 331.922083][ C1] ? _raw_spin_lock_irq+0xdb/0x110 [ 331.927226][ C1] do_group_exit+0x202/0x2b0 [ 331.931847][ C1] ? _raw_spin_unlock_irq+0x1f/0x40 [ 331.937071][ C1] ? lockdep_hardirqs_on+0x94/0x130 [ 331.942291][ C1] get_signal+0x16f7/0x17d0 [ 331.946840][ C1] ? ptrace_notify+0x370/0x370 [ 331.951642][ C1] ? futex_wake+0x4ea/0x590 [ 331.956178][ C1] arch_do_signal_or_restart+0xb0/0x1a10 [ 331.961852][ C1] ? do_futex+0x375/0x490 [ 331.966298][ C1] ? get_sigframe_size+0x10/0x10 [ 331.971258][ C1] ? _raw_spin_lock_irq+0xdb/0x110 [ 331.976411][ C1] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 331.982522][ C1] ? exit_to_user_mode_loop+0x39/0x100 [ 331.988012][ C1] exit_to_user_mode_loop+0x6a/0x100 [ 331.993344][ C1] exit_to_user_mode_prepare+0xb1/0x140 [ 331.998928][ C1] syscall_exit_to_user_mode+0x60/0x270 [ 332.004596][ C1] do_syscall_64+0x47/0xb0 [ 332.009056][ C1] ? clear_bhb_loop+0x45/0xa0 [ 332.013765][ C1] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 332.019690][ C1] RIP: 0033:0x7f706f985d29 [ 332.024139][ C1] Code: Unable to access opcode bytes at 0x7f706f985cff. [ 332.031169][ C1] RSP: 002b:00007f70708140e8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca [ 332.039605][ C1] RAX: 0000000000000001 RBX: 00007f706fb75fa8 RCX: 00007f706f985d29 [ 332.047685][ C1] RDX: 00000000000f4240 RSI: 0000000000000081 RDI: 00007f706fb75fac [ 332.055688][ C1] RBP: 00007f706fb75fa0 R08: 0000000000000010 R09: 0000000000000000 [ 332.063953][ C1] R10: ffffffffffffffff R11: 0000000000000246 R12: 00007f706fb75fac [ 332.071948][ C1] R13: 0000000000000000 R14: 00007ffdf78e5360 R15: 00007ffdf78e5448 [ 332.079958][ C1]