last executing test programs: 1m48.016219617s ago: executing program 1 (id=75): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000003e40)=ANY=[@ANYBLOB="5401000010001307000000000000000000000000000000000000000000000000fe8000000000000000000000000000bb00000000000000400000000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="fe8000000000000000000000000000bb0000000032000000fe8800000000000000000000000000010000000000000000000000000000000000000000000000000000000000370000030000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000fdffffff000000000000000002000000000000000000000048000200656362286369706865725f6e756c6c29000000000000000009000000000000000000000000000000000000000000800000000000000000000000000000000000000000001c00040001"], 0x154}}, 0x0) 1m47.611384094s ago: executing program 1 (id=78): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000000)=@newlink={0x58, 0x10, 0x401, 0x4000, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x49108, 0x2020}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @vlan={{0x9}, {0x4}}}, @IFLA_IFNAME={0x14, 0x3, 'vlan0\x00'}, @IFLA_AF_SPEC={0x10, 0x1a, 0x0, 0x1, [@AF_INET6={0xc, 0xa, 0x0, 0x1, [@IFLA_INET6_ADDR_GEN_MODE={0x5, 0x8, 0x1}]}]}]}, 0x58}, 0x1, 0x0, 0x0, 0x4000040}, 0x0) 1m47.420164958s ago: executing program 1 (id=80): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000007c0)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x50) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000580)={r0, 0x64, 0xfffffffffffffffd}, 0x33) 1m47.228430912s ago: executing program 1 (id=84): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f00000007c0)=ANY=[@ANYBLOB="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"], 0x1, 0x1524, &(0x7f0000002280)="$eJzs3AuYTlXbOPD7XmvtMSbpaZLDsNa6N09yWCZJckiSQ5IkSZJTQtIkryQkhpyShiQkhyE5DCE5TEwa5/P5kJAkTZKE5JSs/yX8vb31fu/7fm/f67u+uX/XtS/rfva+1773cz+HvbeZ+a7zkBqNalZtQETwb8GL/yQDQCwADACA6wAgAICy8WXjL6zPKTH539sJ+3M9kna1K2BXE/c/e+P+Z2/c/+yN+5+9cf+zN+5/9sb9z964/4xlZ5umFbiel+y78P3/7Iy///8PySo15qs1pW7sAhDzz6Zw/7M37v//WcE/sxH3P3vj/mdXsVe7APa/AL//s4Mcf3cN9z974/4zlp1d7fvPV3uBSPZ+Dq72648xxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGWPZw2l+hAODy+GrXxRhjjDHGGGOMsT+Pz3G1K2CMMcYYY4wxxtj/PAQBEhQEEAM5IBZyQhwIALgWcsN1EIHrIR5ugDxwI+SFfJAfCkACFIRCoMGABYIQCkMRiMJNUBRuhmJQHEpASXBQChLhFigNt0IZuA3Kwu1QDu6A8lABKkIluBMqw11QBe6GqnAPVIPqUANqwr1QC+6D2nA/1IEHoC48CPXgIagPD0MDeAQawqPQCB6DxvA4NIGm0AyaQ4v/Vv5L0B1ehh7QE5KhF/SGV6AP9IV+0B8GwKswEF6DQfA6pMBgGAJvwFB4E4bBWzAcRsBIeBtGwTswGsbAWBgHqTAeJsC7MBHeg0kwGabAVEiDaTAd3ocZMBNmwQcwGz6EOTAX5sF8SIePYAEshAz4GBbBJ5AJi2EJLIVlsBxWwEpYBathDayFdbAeNsBG2ASbYQtshW2wHXbAp7ATPoNdsBv2wOewF774F/NP/U1+FwQEFChQocIYjMFYjMU4jMNcmAtzY26MYATjMR7zYB7Mi3kxP+bHBEzAQlgIDRokJCyMhTGKUSyKRbEYFsMSWAIdOkzERCyNt2IZLINlsSyWw3JYHitgBayElbAyVsYqWAWrYlWshtWwBtbAe/Fe7IW1sTbWwTpYF+tevj2FDbABNsSG2AgbYWNsjE2wCTbDZtgCW2BLbImtsBW2wTbYFttiO2yHSZiE7bE9dsAO2BE7YifshJ2xM3bBrtg166UcgC/jy9gTq4le2Bt7Yx9MydEP+2N/fBUH4mv4Gr6OKTgYh+Ab+Aa+icPwJA7HETgSR2Jl8Q6OxjFIYhymYipOwAk4ESfiJJyMk3EqpuE0nI7TcQbOxJn4Ac7GD/FDnItzcT6mYzouwIWYgRm4CE9hJi7GJbgUl+FyXIYrcRWuxDW4FtfgelyPG3EjbsbNuBW34nbcjp+iAsDPcDfuxhTci3txH+7D/bgfD+ABzMIsPIgH8RAewsN4GI/gETyKx/A4HsMTeAJP4ik8jafxLJ7Fc/hCwjcNPy2+OgXEBUooESNiRKyIFXEiTuQSuURukVtERETEi3iRR+QReUVekV/kFwkiQRQShYQRRpAIYwBAREVUFBVFRTFRTJQQJYQTTiSKRFFalBZlRBlRVtwuyok7RHlRQbR2lUQlUVm0cVXE3aKqqCqqieqihqgpaopaopaoLWqLOqKOqCvqinriIVFf9MJ++Ii40JlGYjA2FkOwiWgq5KVPsJZiGLYSrUUb8ZQYgcOxnWjpksSzor0YjR3EX8QYfF50EuOws3hRdBFdRTfxkuguWrkeoqeYhL1EbzEV+4i+op/oL2ZgdfEBzs5ZQ7wuUsRgMUS8Iebjm2KYeEsMFyPESPG2GCXeEaPFGDFWjBOpYryYIN4VE8V7YpKYLKaIqSJNTBPTxftihpgpZokPxGzxoZgj5op5Yr5IFx+JBWKhyBAfi0XiE5EpFoslYqlYJpaLFWKlWCVWizVirVgn1osNYqPYJDaLLWKr2Ca2ix3iU7FTfCZ2id1ij/hc7BVfiH3iS7FffCUOiK9FlvhGHBTfikPiO3FYfC+OiB/EUXFMHBc/ihPiJ3FSnBKnxRlxVvwszolfxHnhBUiUQkqpZCBjZA4ZK3PKOHmNzCWDS8/u9TJe3iDzyBtlXplP5pcFZIIsKAtJLY20kmQoC8siMipvkkXlzbKYLC5LyJLSyVIyUd4iS8tbZRl5mywrb5fl5B2yvKwgK8pK8k5ZWd4lIXJxH9VkdVlD1pT3ymS4T9aW98s68gFZVz4o68mHZH35sGwgH5EN5aOykXxMNpaPyyayqWwmm8sW8gnZUj4pW8nWso18SraVT8t28hmZJJ+V7aW/9BJ5XnaSL8jO8kXZRXaV3eQv8rz0sofsKaEXyN7yFdlH9pX9ZH85QL4qB8rX5CD5ukyRg+UQ+YYcKt+Uw+RbcrgcIUfKt+Uo+Y4cLcfIsXKcTJXj5QT5rpwo35OT5GQ5RU6VaXKa7HdppllS/sP8d/8gf9Cve98oN8nNcovcKrfJ7XKH/FTulDvlLrlL7pF75F65V+6T++R+uV8ekAdklsySB+VBeUgekoflYXlEHpFH5TF5Rv4oT8if5El5Sp6SZ+RZeVaeu/QcgEIllFRKBSpG5VCxKqeKU9eoXOpalVtdpyLqehWvblB51I0qr8qn8qsCKkEVVIWUVkZZRSpUhVURFVU34aUXjCqhSiqnSqlEdcu/kq+KqptVMVX8N/mX60v+O/W1UC1US9VStVKtVBvVRrVVbVU71U4lqSTVXrVXHVQH1VF1VJ1UJ9VZdVZdVBfVTXVT3VV31UP1UMkqWfVWr6g+qq/qp/qrAepVNVANVIPUIJWiUtQQNUQNVUPVMDVMDVfD1Ug1Uo1So9RoNVqNVWNVqkpVE9QENVFNVJPUJDVFTVFpKk1NV9PVDDVDzVKz1Gw1W81Rc9Q8NU+lq3S1QC1QGSpDLVKLVKZarBarpWqpWq6Wq5VqpVqtVqu1aq1ar9arTLVJbVJb1Ba1TW1TO9QOtVPtVLvULrVH7VF71V61T+1T+9V+dUAdUFkqSx1UB9UhdUgdVofVEXVEHVVH1XF1XJ1QJ9RJdVKdVqfVWXVWnVPn1Hl1/sJpXyACEahABTFBTBAbxAZxQVyQK8gV5A5yB5EgEsQH8UGe4MYgb5AvyB8UCBKCgkGhQAcmsIG41PRocFNQNLg5KBYUD0oEJQMXlAoSg1uC0sGtQZngtqBscHtQLrgjKB9UCCoGlYI7g8rBXUGV4O6ganBPUC2oHtQIagb3BrWC+4Lawf1BneCBoG7wYFAveCioHzwcNAgeCRoGjwaNgseCxsHjQZOgadAsaB60+FPn9/5kviddD91TJ+teurd+RffRfXU/3V8P0K/qgfo1PUi/rlP0YD1Ev6GH6jf1MP2WHq5H6JH6bT1Kv6NH6zF6rB6nU/V4PUG/qyfq9/QkPVlP0VN1mp6mp+v39Qw9U8/SH+jZ+kM9R8/V8/R8na4/0gv0Qp2hP9aL9Cc6Uy/WS/RSvUwv1yv0Sr1Kr9Zr9Fq9Tq/XG/RGvUlv1lv0Vr1Nb9c79Kd6p/5M79K79R79ud6rv9D79Jd6v/5KH9Bf6yz9jT6ov9WH9Hf6sP5eH9E/6KP6mD6uf9Qn9E/6pD6lT+sz+qz+WZ/Tv+jz2l84ub/w9W6UUSbGxJhYE2viTJzJZXKZ3Ca3iZiIiTfxJo/JY/KavCa/yW8STIIpZAqZC8iQKWwKm6iJmqKmqClmipkSpoRxxplEk2hKm9KmjCljypqyppwpZ8qb8qaiqWjuNHeau8xd5m5zt7nH3GOqm+qmpqlpaplaprapbeqYOqauqWvqmXqmvqlvGpgGpqFpaBqZRqaxaWyamCammWlmWpgWpqVpaVqZVqaNaWPamramnWlnkkySaW/amw6mg+loOppOppPpbDqbLqaL6Wa6me6mu+lhephkk2x6m96mj+lj+pl+ZoAZYAaagWaQGWRSTIoZYoaYoWaoGWaGmeFmhBl54UTVvGNGmzFmrBlnUk2qmWAmmIlmoplkJpkpZopJM2lmupluZpgZZpaZZWab2WaOmWPmmXkm3aSbBWaByTAZZpFZZDJNpllilphlZplZYVaYVWaVWWPWmHWwzmwwG8wms8lsMVvMNrPN7DA7zE6z0+wyu8wes8fsNXvNPrPP7Df7zQFzwGSZLHPQHDSHzCFz2Bw2R8wRc9QcNcfNcXPCnDAnzUlz2pw2Z02+S9+X3sTanDbOXmNz2Wttbnud/ds4vy1gE2xBW8hqm9fm+01srLXFbHFbwpa0zpayifaW38XlbQVb0Vayd9rK9i5b5XdxLXufrW3vt3XsA7amvfc3cV37oK1nH7P1EQFsU9vQNreN7GO2sX3cNrFNbTPb3La1T9t29hmbZJ+17e1zv4sX2IV2lV1t19i1dpfdbU/bM/aQ/c6etT/bHranHWBftQPta3aQfd2m2MG/i0fat+0o+44dbcfYsXbc7+IpdqpNs9PsdPu+nWFn/i5Otx/Z2TbDzrFz7Tw7/9f4Qk0Z9mO7yH5iM20AS+xSu8wutyvsyv9f61K73m6wG+1O+5ndYrfabXa73XH5RNjutnvs53av/cIetN/a/fYre8Aetln2m1/jC8d32H5vj9gf7FF7zB63P9oT9id1OfvCsf9of7HnrbdASECSFAUUQzkolnJSHF1Duehayk3XUYSup3i6gfLQjZSX8lF+KkAJVJAKkSZDlohCKkxFKEo30eXySlBJclSKEukWKk23Uhm6jcrS7VSO7qDyVIEqUiW6kyrTXVSF7qaqdA9Vo+pUg2rSvVSL7qPadD/VoQeoLj1I9eghqk8PUwN6hBrSo9SIHqPG9Dg1oabUjJpTC3qCWtKT1IpaUxt6itrS09SOnqEkepba03PUgf5CHel56kQvUGd6kbpQV+pGL1F3epl6UE9Kpl7Um16hPtSX+lF/GkCv0kB6jQbR65RCg2kIvUFD6U0aRm/RcBpBI+ltGkXv0GgaQ2NpHKXSeJpA79JEeo8m0WSaQlMpjabRdHqfZtBMmkUf0Gz6kObQXJpH8ymdPqIFtJAy6GNaRJ9QJi2mJbSUltFyWkEraRWtpjW0ltbRetpAG2kTbaYttJW20XbaQZ/STvqMdtFu2kOf0176gvbRl7SfvqID9DVl0Td0kL6lQ/QdHabvfU/6gY7SMTpOP9IJ+olO0ik6TWfoLP1M5+gXOk+eIMRQhDJUYRDGhDnC2DBnGBdeE+YKrw1zh9eFkfD6MD68IcwT3hjmDfOF+cMCYUJYMCwU6tCENqQwDAuHRcJoeFNYNLw5LBYWD0uEJUMXlgoTw1vC0uGtYZnwtrBseHtYLrwjLB9WCB97oFJ4Z1g5vCusEt4dVg3vCauF1cMaYc3w3rBWeF9YO7w/rBM+EJYJHwzrhQ+F9cOHwwbhI2HD8NGwUfhY2Dh8PGwSNg2bhc3DFuETYcvwybBV2DpsEz4Vtg2fDtuFz4RJ4bNh+/C5X9c/uPDvr08Oe4W9w1fCV0Lv75fzovOj6dGPoguiC6MZ0Y+ji6KfRDOji6NLokujy6LLoyuiK6Oroquja6Jro+ui66Mbohuj3tfMAQ6dcNIpF7gYl8PFupwuzl3jcrlrXW53nYu46128u8HlcTe6vC6fy+8KuARX0BVy2hlnHbnQFXZFXNTd5Iq6m10xV9yVcCWdc6VcomvuWrgWrqV70rVyrV0b95R7yj3tnnbPuGfcs669e851cH9xHd3zrpN7wb3gXnRdXFfXzb3kurvxuS++J5Ndb9fb9XF9XD/Xzw1wA9xAN9ANcoNciktxQ9wQN9QNdcPcMDfcDXcj3Ug3yo1yo91oN9aNdaku1U1wE9xEN9FNcpPcFDfFpbk0N91NdzPcDFd55sW9zHFz3Dw3z6W7dLfAXThnzHCL3CKX6TLdErfELXPL3Aq3wq1yq9wat8atc+vcBrfBbXKb3Ba3xW1z29wOt8PtdDvdLn/dxUndXrfP7XP73X53wH3tstw37qD71h1y37nD7nt3xP3gjrpj7rj70Z1wP7mT7pQ77c64s+5nd8794s4771Ij4yMTIu9GJkbei0yKTI5MiUyNpEWmRaZH3o/MiMyMzIp8EJkd+TAyJzI3Mi8yP5Ie+SiyILIwkhH5OLIo8kkkM7I4siSyNLIssjzifcEtoS/si/iov8kX9Tf7Yr64L+FLeudL+UR/iy/tb/Vl/G2+rL/dl/N3+PK+gq/oH/dNfFPfzDf3LfwTvqV/0rfyrX0b/5Rv65/27fwzPsk/69v753wH/xff0T/vO/kXfGf/ou/iu/pu/iXf3b/se/iePtn38r39K76P7+v7+f5+gH/VD/Sv+UH+dZ/iB/sh/g0/1L/ph/m3/HA/wo+MeduPunyJDON8qh/vJ/h3/UT/np/kJ/spfqpP89P8dP++n+Fn+ln+Az/bf+jn+Ll+np/v0/1HfoFf6DP8x36R/8Rn+sWXbyr7FX6lX+VX+zV+rV/n1/sNfqPf5Df7LX6r3+a3+x3+U7/Tf+Z3+d1+j//c7/Vf+H3+S7/ff+UP+K99lv/GH/Tf+kP+O3/Yf++P+B/8UX/MH/c/+hP+J3/Sn/Kn/Rl/1v/sz/lf/Hn+nTXGGGOMsX/K+CtD8ds1F2/n9/qDHPFXG/cGgGu3Fsj66/UXzijX5b047isS2kYA4NmenR+5vFSrlpycfGnbTAlBkbkAl/8n6IIYuBIvhjbwNCRBayj9h/X3FV3P0j+YP3o7QNxf5cTClfjK/F8CYPIfzP/EUyMXlAtPx/8X888FKFbkSk5OuBIvhja/3l9pDWX+Tv35Wv6D+nN+lQrQ6q9ycsGV+Er9ifAkPAdJv9mSMcYYY4wxxhi7qK+o2PHy9efln/j8o+vzBHUlJwdcif/R9TljjDHGGGOMMcauvue7dnvmiaSk1h3/9UGV/1bWPz1oDP9TM/PgDwfeA1x+RAHAvzkhwIWB/E8exeb/yL5SLr11/nbVsjM+gP8drfwzBlf5g4kxxhhjjDH2p7ty0v/bx9XVKogxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGMuG/hN/TuxqHyNjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDF2tf2/AAAA//9IVQM5") mount$bind(&(0x7f0000000100)='./file0\x00', &(0x7f0000000080)='./file0/../file0\x00', 0x0, 0x1adc51, 0x0) 1m46.80636847s ago: executing program 1 (id=88): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000015c0)={0x1c, 0x3b, 0x9, 0x0, 0x800, {0x1}, [@typed={0x4}, @nested={0x4, 0x1}]}, 0x1c}}, 0x0) 1m46.367703668s ago: executing program 1 (id=94): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="8c00000000020104000000000000000002000000300001802c00018014000300fe88000000000000000000000000000114000400fe800000000000000000000000000daa240003800c00028005000100890000001400018008000100e000000108000200ffffffff2400028014000180080001"], 0x8c}, 0x1, 0x0, 0x0, 0x4c050}, 0x4) 1m45.938068466s ago: executing program 32 (id=94): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)=ANY=[@ANYBLOB="8c00000000020104000000000000000002000000300001802c00018014000300fe88000000000000000000000000000114000400fe800000000000000000000000000daa240003800c00028005000100890000001400018008000100e000000108000200ffffffff2400028014000180080001"], 0x8c}, 0x1, 0x0, 0x0, 0x4c050}, 0x4) 2.237953538s ago: executing program 3 (id=1456): r0 = socket$inet(0xa, 0x1, 0x0) setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000000480)=@mangle={'mangle\x00', 0x44, 0x6, 0x418, 0x2b0, 0x2b0, 0x2b0, 0x138, 0x98, 0x380, 0x380, 0x380, 0x380, 0x380, 0x6, 0x0, {[{{@ip={@broadcast, @multicast1=0xe0007600, 0x0, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28}}, {{@ip={@initdev={0xac, 0x1e, 0x0, 0x0}, @local, 0x0, 0x0, 'batadv_slave_1\x00', 'veth1_virt_wifi\x00', {}, {}, 0x6}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @local}}}, {{@ip={@broadcast, @multicast2, 0x0, 0x0, 'vlan1\x00', 'nr0\x00'}, 0x0, 0xb0, 0xd8, 0x0, {}, [@common=@unspec=@connlimit={{0x40}}]}, @ECN={0x28}}, {{@ip={@loopback, @multicast2, 0x0, 0x0, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @empty}}}, {{@ip={@broadcast, @empty, 0x0, 0x0, 'lo\x00', 'batadv_slave_1\x00'}, 0x0, 0xa0, 0xd0, 0x0, {}, [@common=@unspec=@mac={{0x30}, {@multicast}}]}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x478) 2.069672542s ago: executing program 3 (id=1458): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=ANY=[@ANYBLOB="170000000000000004000000ff"], 0x48) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000400)={r0, 0x58, &(0x7f0000000380)}, 0x6) 1.954838384s ago: executing program 3 (id=1459): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={&(0x7f00000004c0)={0x50, 0x2, 0x6, 0x5, 0x0, 0x0, {}, [@IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_TIMEOUT={0x8}]}, @IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_TYPENAME={0xc, 0x3, 'hash:ip\x00'}]}, 0x50}}, 0x0) 1.702958479s ago: executing program 3 (id=1462): r0 = socket(0x1e, 0x1, 0x0) getsockopt$inet_tcp_TCP_REPAIR_WINDOW(r0, 0x10f, 0x1d, 0x0, &(0x7f0000000640)) 1.667985689s ago: executing program 4 (id=1463): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) write$RDMA_USER_CM_CMD_JOIN_MCAST(r0, &(0x7f0000000100)={0x16, 0x98, 0xfa00, {0x0, 0x3, 0xffffffffffffffff, 0x1c, 0x204, @in6={0xa, 0x4e23, 0x2, @mcast1, 0xd}}}, 0xa0) 1.529880882s ago: executing program 3 (id=1465): syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000440)='./file3\x00', 0x0, &(0x7f0000000480)=ANY=[], 0x2, 0x6276, &(0x7f0000003680)="$eJzs3c1vHGcdB/Df7JtfStOoh6pECLlteCmleS0hUKDtAQ5cOKBcUSLXrSJSQElAaRURV75w4I8AIXFBQogjJ/6AHrhy4w8gUoIE6qmD1n4eZzxde+2k3ln7+XwkZ+Y3z4z3mXx3vLueGT8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMQPf/Dj81VEXP1VWnAy4nPRj+hFLI3rlYhYWjmZ1x9ExPOx2RzPRcRwIaLKjc9EvBYRH52IePDw7up40YV99uP7f/nnH37y1I/+8efh2f/99Xb/9d3Wu3Pnt//9273H318AAAAoUV3XdZU+5p9Kn+97XXcKAJiJ/PpfJ3m5eu7q9Tnrj1qtVquPYN1UT3avWUTEenOb8XsGp+MB4IhZj4+77gIdkn/RBhHxVNedAOZa1XUHOBQPHt5drVK+VfP1YGWrPV8LsiP/9Wr7/o7dptO0rzGZ1fNrI/rx7C79WZpRH+ZJzr/Xzv/qVvsorXfY+c/KbvmPtm59Kk7Ov9/Ov+X45N+bmH+pcv6DA+Xflz8AAAAAAMyx/Pv/kx2f/1148l3Zl73O/67MqA8AAAAAAAAA8Fl70vH/tlXG/wMAAIB5Nf6sPva7E4+WNa/1H8XO5VeqiKdb6wOFSTfLLHfdDwAAAAAAAAAAAAAoyWDrGt4rVcQwIp5eXq7revzV1K4P6km3P+pK338oWdc/5AEAYMtHJ1r38lcRixFxJf2tv+Hy8nJdLy4t18v10kJ+PztaWKyXGp9r83S8bGG0jzfEg1E9/maLje2apn1entbe/n7jxxrV/X10bDY6DBwAImLr1eiBV6Rjpq6fia7f5XA0OP6PH8c/+9H18xQAAAA4fHVd11X6c96n0jn/XtedAgBmIr/+t88LqNVqtVqtPn51Uz3ZvWYREevNbcbvGQzHDwBHzHp83HUX6JD8izaIiOe77gQw16quO8ChePDw7mqV8q2arwdpfPd8LciO/Nerze3y9pOm07SvMZnV82sj+vHsLv15bkZ9mCc5/147/6tb7aO03mHnPyu75T/ez5Md9KdrOf9+O/+W45N/b2L+pcr5Dw6Uf1/+AAAAAAAwx/Lv/0/O1fnf0ePuzlR7nf9dObRHBQAAAAAAAIDD9eDh3dV832s+//+FCeu5//N4yvlX8i9Szr/Xyv+rrfX6jfn7bz3K/z8P767+8fa/P5+n+81/Ic9U6ZlVpWdElR6pGqTpk+zdp20M+6PxIw2rXn+Qrvmph+/E9bgRa3Fux7q99P/xqP38jvZxT4eb7XV/q/3CjvbBdnve/uKO9mG60qleyu1nYjV+Hjfi7c32cdvClP1fnNJeT2nP+fcd/0XK+Q8aX+P8l1N71ZqO3f+w96njvjmd9DhvXv/ib84d/u5MtRH97X1rGu/fix30Z/P/5KlR/PLW2s0zd67dvn3zfKTJjqUXIk0+Yzn/Yfra/vn/0lZ7/rnfPF7vfzg6cP7zYiMGu+b/UmN+vL8vz7hvXcj5j9JXzv/t1D75+D9A/r0/zWxf9mOv4/+VDvoDAAAAAAAAAAAAAAAAe6nrevMW0Tcj4lK6/6erezMBgNnKr/91kpfPqu7P+PHU6iNeV3PWn5nWn9Tz1R+1+ijWTfVkbzSLiPh7c5vxe4ZfT/pmAMA8+yQi/tV1J+iM/AuW/97feHq6684AM3Xr/Q9+eu3GjbWbt7ruCQAAAAAAAADwuPL4nyuN8Z9P13V9r7XejvFf34qVJx3/dZBntgcY3WWg6v7B92kvG71Rv9cYbvyF2G387+H23F7jfw+mPN5wSvtoSvvClPbFKe0Tb/RoyPm/0Bjv/HREnGoNv/7Y47/Omb3Gf22PeV+CnP+LjefzOP+vtNZr5l///ijn39uR/9nb7/3i7K33P3j1+nvX3l17d+1nF8+fP3fx0qXLly+ffef6jbVzW/922OPDlfPPY1+7DrQsOf+cufzLkvP/UqrlX5ac/5dTLf+y5Pzz+z35lyXnnz/7yL8sOf+XUy3/suT8v5Zq+Zcl5/9KquVflpz/11Mt/7Lk/F9NtfzLkvM/k2r5lyXnfzbV+8x/6bD7xWzk/PMZLsd/WXL++coG+Zcl538h1fIvS87/YqrlX5ac/2upln9Zcv7fSLX8y5Lzv5Rq+Zcl5//NVMu/LDn/y6mWf1ly/t9KtfzLkvP/dqrlX5ac/+upln9Zcv7fSbX8y5Lz/26q5V+WnP/3Ui3/suT830i1/Mvy6O//mzFjxkye6fonEwAAAAAAAAAAAADQNovLibveRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADg/+zAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhBw4EAAAAAID8XxuhqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqCnt3FyPXWd4B/Mx+eeNAYiCkTmrCxjHGOJvs+iP+oHUx4bPhqySEQj+wXe/aLPgLr10CjWpHgRIJo6KKtuGiLSDU5qbCqrigFaBcoFaVKkF7QW8QFSoXURVQQKrUVsBWM+d9352ZnZ3Z9Y7XZ875/ST78c6cmfedM++c2WfX/zkAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAANLv7DbOfqmVZVqvV8gs2ZdmL6vWmiU2NS157Y+cHAAAArN3PG3+/cGu64PAKbtS0zT/d9e2vLiwsLGTvG/7T0c8tLKQrJrJsdEOWNa6Lrv7g/bXmbYIns/HaUNPXQz2GH+5x/UiP60d7XD/W4/oNPa4f73H9kh2wxE1ZLd3ZtsY/N+W7NLstG21ct63DrZ6sbRiq77t026zWuM3C6IlsLjuVzWbTLdvn29Ya23/97vpYb83iWENNY22pr5CfPH48zqEW9vG2lrEW7zP60euziZ/+5PHjf33h+Ts61Z67oeX+8nnu2Fqf5yfCJflca9mGtE/iPIea5rmlw3My3DLPWuN29X+3z/OFFc5zeHGa66r9OR/Phhr//k5jP43Usg77aUu47H/uybLs8uK027dZMlY2lG1suWRo8fkZz1dk/T7qS+ml2Uj3dbpQa1mnd69gndbrzLbWddr+mojP/93hdiPLzKH5afrRE2NNz/vPFq5lnUb1R73ca6V9Dfb7tVKUNRjXxXcaD/qpjmtwW3j8j29ffg12XDsd1mB63E1rcGuvNTg0NtyYc3oSao3bLK7BXS3bDzdGqjXqc9u7r8GpC6fPTc1/7OP3zZ0+dnL25OyZPbt2Te/Zt+/AgQNTJ+ZOzU7nf1/j3i6+jdlQeg1sDfsuvgZe3bZt81Jd+OLYkuPvtb4Ox7u8Dje1bdvv1+FI+4Orrc8Lcumazl8b76nv9PErQ9kyr7HG87Nz7a/D9LibXocjTa/Dju8pHV6HIyt4Hda3ObdzZd+zjDT96TSH5d8L1rYGNzWtwfbvR9rXYL+/HynKGhwP6+J7O5d/L9gS5vvU5Gq/HxlesgbTww3Hnvol6fv98QON0mld3lm/4uax7OL87Pn7Hzt24cL5XVko6+JlTWulfb1ubHpM2ZL1OrTq9Xp47q6n7uxw+aawr8bvq/81vuxzVd9m7/3dn6vGu1vn/dly6e4slD4L+3Nhwzrtz07v5vX9OZZln//WEw9/4/HPv2HZ/VnvNz8xtfbvxVNf2nT8HV3m+Bv7/l/k46W7enJ4dCR//Q6nvTPacjxufapGGseuWmPsF6ZWdjweDX/W+3h8W5fj8ea2bft9PB5tf3DxeFzr9dOOtWl/PsfDOjk13f14XN9m8+7VrsmRrsfje0Kthf3/mtAppL6oae0st27TWCMjo+FxjcQRWtfpnpbtR0NvVh/rmd3Xtk533JPf13B6dIvWa51OtG3b73Wafva13Dqt9frp27Vpfz7Hw7q4bU/3dVrf5tm9az923hT/2XTsHOu1BkeHx+pzHk2LsHG8zxZuimvw/ux4djY7lc00rh1rrKdaY6zJB1a2BsfCn/U+Vm7usgZ3tG3b7zWY3seWW3u1kaUPvg/an8/xsC6efqD7Gqxv88b9/f3edUe4JG3T9L1r+8/XlvuZ151tu+l6rZWRMM9v7e/+s9n6NqcOrLbP7L6f7g2X3NxhP7W/fpd7Tc1k67OfNod5Pn9g+f1Un099m88dXOF6Opxl2aWPPNj4eW/4/crfXfzuV1t+79LpdzqXPvLgj1984h9XM38ABt8v8rIxf69r+s3USn7/DwAAAAyE2PcPhZro/wEAAKA0Yt8f/1d4ov8HAACA0oh9/0ioSUX6/81vfH7uF5eylMxfCOL1aTc8lG8XM67T4euJhUX1yx/88ux//8OllY09lGXZzx76g47bb34ozis3EeZ59U2tly/x1ftWNPbRRy+lcZvz618I9x8fz0qXQacI7nSWZV+/9TONcSbef6VRn33oaKM+fPmpJ+vbvHAw/zre/rmX5dv/RQj/Hj5xrOX2z4X98MNQp9/WeX/E233lymu27H/v4njxdrWttzQe9tMfyO83fk7OZ5/Mt4/7ebn5f+PTz3ylvv1jr+o8/0tDnef/TLjfL4f6v6/It29+Dupfx9t9Msw/jhdvd/+Xvtlx/lc/lW9/7s35dkdDjePvCF9ve/Pzc83767HasZbHlb0l3y6OP/3dP25cH+8v3n/7/MePXGnZH+3r49l/y+9nqm37eHkcJ/r7tvHr99O8PuP4z/zR0Zb93Gv8qw8/94r6/baPf2/bduc+srMx/uL9tX5i019+8jMdx4vzOfy351oez+F3h9dxGP/pD4T1GK7/v6v5/bV/usLRd7cef+L2X9h0qeXxRG/9aT7+1dedbNQN4zdtvPlFL77l8ivr+y7LvrMhv79e45/8q7Mt8//i7fn+iNfHjH77+MuJ45//6OSZs/MX52bSXn381sZn57w9n0+c763h2Nr+9ZGzFz44e35iemI6yybK+xF61+xLof44L5e7b72w5Ai689HwfN7551/fuP1fPx0v//f35JdfeVv+vvXqsN1nw+WbwvO3uvGXevru2xuv79qzYYYLSz8veC22bPuvAyvaMDz+9u8L4no/9/IPNvZD/brG+0Z8Xa9x/t+fye/na2G/LoRPZt56++J4zdvHz0a48kj+el/z/guHufi8/k14vt/xw/z+47zi4/1++D7mm5tbj3dxfXzt0lD7/Tc+xeNyOJ5kl/Pr41Zxf1954faO04ufQ5JdvqPx9Z+k+7ljVQ9zOfMfm586NXfm4mNTF2bnL0zNf+zjR06fvXjmwpHGZ3ke+VCv2y8enzY2jk8zs/v2Zo2j1dm8XGc3ev7nHj0+s396+8zsiWMXT1x49Nzs+ZPH5+ePz87Mbz924sTsR3vdfm7m0K7dB/fs3z15cm7m0IGDB/ccnJw7c7Y+jXxSPeyb/vDkmfNHGjeZP7T34K4HHtg7PXn67Mzsof3T05MXe92+8d40Wb/170+enz117MLc6dnJ+bmPzx7adXDfvt09Pw3w9LkT8xNT5y+embo4P3t+Kn8sExcaF9ff+3rdnnKa/4/8+9l2tfyD+LJ33bsvfT5r3ZefWPau8k3aPkD0+fBZNP/8knMHVvJ17PtHQ00q0v8DAABAFcS+fyzURP8PAAAApRH7/g2hJvp/AAAAKI3Y94+HmlSk/y9d/n/zpRWNL/8v/9+8v+T/K5b/f6Ro+f/8eCH/3x9rzd/L/wfy//L/8v8Dk/9fCG9I8v8UUdHy/7HvvynLKtn/AwAAQBXEvn9jqIn+HwAAAEoj9v03h5ro/wEAAKA0Yt//olCTivT/8v/y//L/8v/y/53Hl/8fTPL/3cn/9yD/P5VVK/9/uZ/zd/5/+X+WKlr+P/b9Lw41qUj/DwAAAFUQ+/5bQk30/wAAAFAase+/NdRE/w8AAAClEfv+TaEmFen/5f/l/+X/5f/l/zuPL/8/mOT/u5P/70H+3/n/5f/l/+mrouX/Y9//klCTivT/AAAAUAWx739pqIn+HwAAAIpn5NpuFvv+l4WaLOn/r3EAAAAA4IaLff9tWVsQvCK//5f/l/8vfv5/Q7pO/l/+Pytk/n84k/8vDvn/7uT/e5D/l/+X/5f/p6+Klv9v9P3ZePbyUJOK9P8AAABQBbHvvz3URP8PAAAApRH7/l8KNdH/AwAAQGnEvn9zqElF+n/5f/n/G53/H22bu/P/L95O/j9X/Py/8/8Xifx/d/L/Pcj/y//L/8v/01dFy//Hvv+OUJOK9P8AAABQBbHvvzPURP8PAAAApRH7/l8ONdH/AwAAQGnEvn9LqElF+n/5/4Ln/2NytMT5/97n/5f/l/+X/5f/Xzn5/+7k/3uQ/5f/l/+X/6evipb/j33/K0JNKtL/AwAAQBXEvv+uUBP9PwAAAJRG7PtfGWqi/wcAAIDSiH3/RKhJRfp/+f+C5//zHPxYmc//L/8v/y//L//fT/L/3cn/9xAOcz/Kskz+X/5f/l/+n7UrWv4/9v13h5pUpP8HAACAKoh9/9ZQE/0/AAAAlEbs++8JNdH/AwAAQGnEvn9bqElF+n/5/4HI/2fy//L/8v/y//L/KyP/3538fw/O/y//L/8v/09fFS3/H/v+V4WaVKT/BwAAgCqIff/2UBP9PwAAAJRG7PtfHWqi/wcAAIDSiH3/jlCTivT/8v/y//L/8v/y/53Hl/8fTPL/3cn/9yD/L/8v/y//T18VLf8f+/7XhJpUpP8HAACAKoh9/85QE/0/AAAAlEbs++8NNdH/AwAAQGnEvn8y1KQi/b/8v/y//L/8v/x/5/Hl/weT/H938v89yP/L/8v/y//TV0XL/8e+/75Qk4r0/wAAAFAFse+/P9RE/w8AAAClEfv+qVAT/T8AAACURuz7p0NNKtL/y//L/8v/y/+vKv//ysX7lf/Pyf8Xi/x/d/L/Pcj/y//f8Pz/qPw/pVK0/H/s+3eFmqTGb+waHiUAAABQJLHv3x1qUpHf/wMAAEAVxL5/T6iJ/h8AAABKI/b9e0NNKtL/y//L/8v/y/87/3/n8eX/B5P8f3f9z//Hhyj/L/8v/+/8//L/LFW0/H/s+x8INalI/w8AAABVEPv+faEm+n8AAAAojdj37w810f8DAABAacS+/0CoSUX6f/l/+X/5f/l/+f/O48v/Dyb5/+6c/7+H4uX/X9d88/XM/9fHkv+X/5f/Z/Ue+cPmr4qW/499/8FQk4r0/wAAAFAFse9/baiJ/h8AAABKI/b9vxJq0r3/33B9ZwUAAAD0U+z7fzXUpCK//5f/l/+X/5f/l//vPL78/2CS/+9O/r+H4uX/Wzj/f7HnL/8v/89SRcv/x77/UKhJRfp/AAAAqILY9/9aqIn+HwAAAEoj9v2vCzXR/wMAAEBpxL7/cKhBpzh3Kcn/y/8PZv5/XP5f/r90+f+xeL/y/2si/9+d/H8P8v/y//L/8v/0VdHy/7Hvf32oid//AwAAQGnEvv/BUBP9PwAAAJRG7PvfEGqi/wcAAIDSiH3/G0NNKtL/y//L/w9m/t/5/zP5/9Ll/53/vz/k/7uT/+9B/l/+X/5f/p++Klr+P/b9bwo1qUj/DwAAAFUQ+/43h5ro/wEAAKA0Yt//llAT/T8AAACURuz73xpqUpH+X/5f/v9G5v9zl+X/5f8b5P/l//tB/r87+f8e5P/l/+X/5f/pq6Ll/2Pf/+uhJhXp/wEAAKAKYt//UKiJ/h8AAABKI/b9bws10f8DAABAacS+/+2hJhXp/+X/5f+d/1/+X/6/8/jy/4NJ/r+7Acv///yWcLn8f07+v9jzX23+f6Tt6+uS///Bcvn/hQ3tt5f/53ooWv4/9v3vCDWpSP8PAAAAVRD7/neGmuj/AQAAoDRi3/+uUJOm/r+v//EOAAAAWHex7/+NUJOK/P5f/r8+j8X0svy//H/jAvl/+X/5/4El/9/dgOX/nf+/jfx/sefv/P/y/yxVtPx/7PvfHWpSkf4fAAAAqiD2/Q+Hmuj/AQAAoDRi3/9IqIn+HwAAAEoj9v3vCTWpSP8v/+/8//L/8v/y/53Hl/8fTPL/3cn/9yD/L/9ftPz/f8r/M9iKlv+Pff+joSYV6f8BAACgCmLf/95QE/0/AAAAlEbs+38z1ET/DwAAAKUR+/73hZpUpP+X/x+U/P/EgOb/n5D/v475/7tuybeT/5f/Z5H8f3fy/z3I/8v/Fy3/7/z/DLii5f9j3//+UJOV9//jK94SAAAAuI5Glr0m9v2/FWpSkd//AwAAQBXEvv+3Q030/wAAAFAase//nVCTivT/8v+Dkv93/v9M/t/5/9sej/y//H8n65f/j0ce+X/5/2Ll/zet6gG3utH5+bW60fOvbv4/f2eU/6eTouX/Y9//u6EmFen/AQAAoApi3/+BUBP9PwAAAAyETv8nu13s+4+Emuj/AQAAoDRi33801KQi/b/8v/y//H9B8/9/tvVfvvftdx7dJf8v/y//vyrrev7/+ovf+f/l/wuW/1+LG52fX6/515Y5NZj8v/P/039Fy//Hvv9YqElF+n8AAACogtj3/16oif4fAAAASiP2/cdDTfT/AAAAUBqx758JNalI/y//L/8v/1/Q/P8An/8/7g/5/1Z9y//Hg678f0frmv9/72JOXP5/tfn/sY6Xyv/L/w/y/OX/5f9Zqmj5/9j3z4aaVKT/BwAAgCoIff/QibwuXqH/BwAAgNKIff/JUBP9PwAAAJRG7Ps/GGpSkf5f/l/+X/5f/t/5/zuP3y3/Xxtx/v+ikv/vrjj5/87k/+X/B3n+8v/y/yxVtPx/7PvnQk0q0v8DAABAFcS+/0OhJvp/AAAAKI3Y93841ET/DwAAAKUR+/5ToSYV6f/l/+X/5f/l/+X/O49f2PP/y/93Jf/fnfx/D/L/8v/y//L//8/enXxZWtd3HL8FDV19yCK7LLLJOVnmT2AR1sk+WWSTRXJOTs4JRFFxpnEeUVScFcVZwQEEERXnCZxQnEFFxXnECVFPe6j6fr9dw1P3VlXf6vs8v9/rteCbrlB9r31a6E9Xv31YqrH1/7n7/y9u6WT/AwAAQA9y918ct9j/AAAA0Izc/ZfELfY/AAAANCN3///HLZ3sf/2//r/Z/v+f9f97vb7+X//fMv3/fPr/BfT/+n/9v/6fpRpb/5+7/2FxSyf7HwAAAHqQu//hcYv9DwAAAM3I3X9p3GL/AwAAQDNy9z8ibulk/+/o/9dmffb/mfHq/1vq/z3/f8/X1/+fQf9/rv5/7M5u/3/FQ//k0//r//X/Qf+/r/7/+F6fr/+nRWPr/3P3PzJu6WT/AwAAQA9y9z8qbrH/AQAAoBm5+y+LW+x/AAAAaEbu/kfHLZ3s/+U9///Exscn2v8X/b/+f+MD+n/9/179/7HT39b/j5Pn/8/XU/9/6V0XXHz/zX9/y0FeX/+v//f8f/0/yzW2/j93/2Pilk72PwAAAPQgd/9j4xb7HwAAAJqRu/9xcYv9DwAAAM3I3f/4uKWT/b+8/n/Sz/8v+n/9/8YH9P/6/736/3/z/P+x0//P11P/f5jX1//r//X/+n+Wa9X9f37H+e3c/U+IWzrZ/wAAANCD3P1PjFvsfwAAAGhG7v7L4xb7HwAAAJqRu/9k3NLJ/tf/H33//xf9v/4/rv5f/6//P3r6//n0/wvo//X/+n/9P0u16v5/57dz918Rt3Sy/wEAAKAHufufFLfY/wAAANCM3P1PjlvsfwAAAGhG7v6nxC2d7H/9v+f/6//1//r/4dfX/0+T/n8+/f8C+v8z7efP0/9PsP+PX0jp/zkKB+z/H5zzj+2l9P+5+58at3Sy/wEAAKAHufufFrfY/wAAANCM3P1Pj1vsfwAAAGhG7v5nxC2d7H/9v/5f/6//P3T/v/un3gb9/zD9/9mh/59vNP3/2rHBD+v/J9//e/7/FPv/oP/nKIzt+f+5+58Zt3Sy/wEAAKAHufufFbfM2f8H/s18AAAAYKVy9z87bvH1fwAAAJi8rM5y9z8nbulk/+v/9f/6f/2/5/8Pv/68/v+WLe9P/z8u+v/5RtP/70H/r/+f8vvX/+v/2W1s/X/u/ufGLZ3sfwAAAOhB7v4r4xb7HwAAAJqRu/95cYv9DwAAAM3I3f/8uKWT/T/c/5/+/+v/90f/v/396/+Hf34sq//P71H/P7f/v8jz//uk/5/v7Pf/x/X/279//f8RWvX7b7z/P7Ho8/X/DBlb/5+7/6q4pZP9DwAAAD3I3f+CuMX+BwAAgGbk7n9h3GL/AwAAQDNy978obulk/6/4+f9XnL/X+9L/b9D/6/89/3+cz/+fnfX+/5j+f5/0//N5/v8C+n/9v/7f8/9ZqrH1/7n7r45bOtn/AAAA0IOrH5ht7P4Xz2b2PwAAAEzR1j87sPMPlIbc/S+JW+x/AAAAaEbu/pfGLZ3s/xX3/0f1/P/zFr22/l//v/XHS/+v/x96/XH1/57/v1/6//n0/wvo/4+inz/WWP9/zV6fP4b+/3L9PyOzrf+/7fTHV9X/5+5/WdzSyf4HAACAHuTuf3ncYv8DAABAM3L3vyJusf8BAACgGbn7Xxm3dLL/j7z/P7H3ax9h/7+Q/l//v/XHS/+v/x96ff3/NOn/59P/L6D/9/x/z//X/7NU2/r/LVbV/+fuf1Xc0sn+BwAAgB7k7n913GL/AwAAQDNy918Tt9j/AAAA0Izc/a+JWzrZ/40+/38h/b/+f+uPl/5f/z/0+vr/adL/z6f/X0D/r//X/y/u/3f+izro/xkytv4/d/9r45ZO9j8AAAD0IHf/tXGL/Q8AAADNyN3/urjF/gcAAIBm5O5/fdzSyf7X/x9t/58f1//r/2cH6f/jE/T/m/T/+v+DmFr/v/O/P4fu19eG/k202x79/x3/c/Jft39E/6//1//r/z3/nyUYRf9/6vSvLnP3vyFu6WT/AwAAQA9y978xbrH/AQAAoBm5+98Ut9j/AAAA0Izc/W+OWw64//92qe/q7NH/e/6//n+E/X/Q/2/S/+v/D2Jq/f9Onv+v/9f/T/f96//1/+w2iv5/y7dz978lbvH1fwAAAGhG7v63xi32PwAAADQjd//b4hb7HwAAAJqRu/+6uKWT/a//1//r//X/+v/h1z9s/78+G6b/Pzv0//Pp/xfQ/+v/9f/6f5ZqbP1/7v7r45ZO9j8AAAD0IHf/2+MW+x8AAACakbv/HXGL/Q8AAABTkunYoNz974xbOtn/+n/9v/5f/6//H359z/+fpon2//WPwan2/+dOqf+/Yc4bGOr/Tx3X/+v/9f/6fw5pbP1/7v53xS2d7H8AAADoQe7+G+IW+x8AAACakbv/xrjF/gcAAIBm5O5/d9zSyf7X/+v/9f/6f/3/8Ovr/6dpov1/mWr/7/n/+v+Z/l//r/9nwNj6/9z9N8Utnex/AAAA6EHu/pvjFvsfAAAAmpG7/z1xi/0PAAAAzcjdf0vc0sn+1//r//X/+n/9//Dr6/+n6ej6/9nq+v/7zjnod7Mn/f8C+n/9v/5f/89Sja3/z93/3rilk/0PAAAAPcjdf2vcYv8DAABAM3L3vy9usf8BAACgGbn73x+3dLL/9f/6/2n2/1etD71//b/+f6b/757n/8+n/19A/6//1//r/1mqsfX/ufs/ELd0sv8BAACgB7n7b4tb7H8AAABoRu7+D8Yt9j8AAAA0I3f/h+KWTva//l//v73/n82m0f97/v9M/99C/78+0/8vnf5/vv31/xfp//X/bfX/58wa6v9P7Pn5+n/GaGz9f+7+D8ctnex/AAAA6EHu/o/ELfY/AAAANGDzz87k7v9o3GL/AwAAwJgdO8jfnLv/Y3FLJ/t/+v3/8R2fqP+fzWZ3X9b88//1/zP9fwv9f/2o6v+XR/8/n+f/L6D/b7P/9/x//T8rM7b+P3f/x+OWTvY/AAAA9CB3/yfiFvsfAAAAmpG7/5Nxi/0PAAAAzcjd/6m4pZP9P/3+f+cn6v9nZ/T8f/3/xgf0//p//f9k6f/n0/8voP9f2M+v7fHrnpn+X/+v/2fA2Pr/3P2fjls62f8AAADQg9z9t8ct9j8AAAA0I3f/HXGL/Q8AAADNyN3/mbilk/2v/9f/6/+n2f+v6//1//r/QWPp/y+88F/u1P/r/1vs/+fR/+v/9f/sNLb+P3f/Z+OWTvY/AAAA9CB3/+fiFvsfAAAAmpG7//Nxi/0PAAAAzcjd/4W4pZP9v7v/P2+2WahuGur/o1HT/2+h/9/+/vX/wz8/PP9f/6//P3pj6f89//9w71//r/+f8vs/UP//D7s/X/9Pi8bW/+fuvzNu6WT/AwAAQA9y938xbrH/AQAAoBm5+78Ut9j/AAAA0Izc/XfFLZ3sf8//1//r//X/+v/h19f/T5P+fz79/wL6f/2/5/9f8l/n6v9ZnrH1/7n7vxy3bAy/f/ybQ/7HBAAAAEYkd/9X4pZOvv4PAAAAPcjd/9W4xf4HAACAZuTu/1rc0sn+1//r//X/+n/9//Dr6/+nSf8/n/5/gX76//WhD666nz9Tq37/zfT/nv/PEo2t/8/d//W4pZP9DwAAAD3I3f+NuMX+BwAAgGbk7v9m3GL/AwAAQDNy998dt3Sy//X/+v/2+///1P/veH39v/6/Zfr//Df6MP3/Av30/4NW3c9P/f3r//X/7Da2/j93/z1xSyf7HwAAAHqQu/9bcYv9DwAAAM3I3f/tuMX+BwAAgGbk7v9O3NLJ/tf/99X/r8167P89/1//r//vyXT6/2uPDX3U8//1//r/6b5//b/+n93G1v/n7r937ViX+x8AAACm6t//6X/v2e/fe+/GX9dn341b7H8AAABoRu7+78Ut9j8AAAA0I3f/9+OWTva//r+v/r/P5//r//X/+v+eTKf/H6b/1//r/6f7/vX/+n92G1v/n7v/vrhly/Ab/B/oAQAAACYjd/8P4pZOvv4PAAAAPcjd/8O4Zdf+P7XPP9UOAAAAjE3u/h/FLZ18/V//P/L+f3ZE/X/8ffr/Tfp//f/Q6+v/p6m1/v/4bFT9/6k1/b/+fw79v/5f/89OY+v/c/ffetOsy/0PAAAAjdr2Owo/3vjr+uwncYv9DwAAAM3I3f/TuMX+BwAAgGbk7v9Z3NLJ/tf/j7z/P9Tz/0/U/+X5/533/1euD76+/l//37LW+n/P/9/8uP5/k/5/3O9f/6//Z7cD9P8bg/So+//c/T+PWzrZ/wAAANCD3P2/iFvsfwAAAGhG7v5fxi32PwAAADQjd/+v4pZO9r/+fwX9/1XHZ7Mj7f/38fx//X8f/f8er99O//93F5y8/T/++8br9f+cdjb7//y5oP/X/6+g/78ufv7p/0f0/vX/+n92G9vz/3P3/zpu6WT/AwAAQA9y998ft9j/AAAA0Izc/b+JW+x/AAAAaEbu/t/GLZ3sf/1/i8//n2b/nz/WK+j/T06v/8+muPf+3/P/9f+7ef7/fPr/BabT/2982/P/x/X+9f/6f3YbW/+fu/93cUsn+x8AAAB6kLv/93FL7v+1A//WPQAAADAyufv/ELf4+j8AAAA0I3f/A3FLJ/tf/6//H0v/nzz///Tnef7/Jv2//v8g9P/z6f8X0P/r//X/+n+Wamz9f+7+P8Ytnex/AAAA6EHu/gfjFvsfAAAAmpG7/09xi/0PAAAAzcjd/+e4pZP9r//X/+v/9f/6/+HX1/9Pk/5/Pv3/Q87f+w3o//X/+n/9P0s1tv4/d/9fAwAA//+9M2Fu") creat(&(0x7f0000000e00)='./file3\x00', 0x19f) 1.418685284s ago: executing program 0 (id=1466): bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0x1e, 0x4, &(0x7f0000000040)=@framed={{}, [@ldst={0x1, 0x2, 0x3, 0x2, 0x1, 0x27}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x80) bpf$PROG_LOAD(0x1c, &(0x7f00000003c0)={0x3, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 1.319631746s ago: executing program 2 (id=1467): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0xfffffffc}, [@call={0x85, 0x0, 0x0, 0x41}, @call={0x85, 0x0, 0x0, 0x5}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x2100, 0x0, &(0x7f0000000100), 0x0, 0x500, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9}, 0x50) 1.151369709s ago: executing program 0 (id=1468): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'netdevsim0\x00', &(0x7f0000000000)=@ethtool_cmd={0x15, 0x4, 0x4, 0x0, 0x0, 0x0, 0x0, 0x0, 0xff}}) 1.09617083s ago: executing program 2 (id=1469): r0 = bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x1e, 0x3, &(0x7f0000000080)=ANY=[@ANYBLOB="1800000001000000000000000000000095"], &(0x7f0000000280)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x24}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x2, 0x0, 0xfffffffffffffe4a, 0x0, 0x0, 0x0, 0x0, 0x48, 0x0, &(0x7f0000000000)='\x00', 0x0}, 0x48) 1.001702162s ago: executing program 4 (id=1470): r0 = socket$packet(0x11, 0x3, 0x300) getsockopt$packet_int(r0, 0x107, 0x8, 0x0, &(0x7f0000000240)) 931.296303ms ago: executing program 0 (id=1471): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendmmsg$inet6(r0, &(0x7f0000000f00)=[{{&(0x7f0000000300)={0xa, 0x0, 0x0, @local, 0x3}, 0x1c, &(0x7f00000002c0)=[{&(0x7f0000000440)="83", 0x1}], 0x1}}, {{&(0x7f0000000040)={0xa, 0x4e23, 0x4, @local}, 0x1c, &(0x7f0000000140)=[{&(0x7f0000000080)="b6", 0x1}], 0x1}}], 0x2, 0x0) 844.202135ms ago: executing program 2 (id=1472): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_int(r0, 0x29, 0x5, 0x0, 0x0) 762.872256ms ago: executing program 4 (id=1473): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001380)=@base={0x12, 0x4, 0x8, 0x1}, 0x50) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000012c0)={0xe, 0xe, &(0x7f0000001440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000030000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0x6, 0x1006, &(0x7f0000002080)=""/4102}, 0x94) 685.039048ms ago: executing program 0 (id=1474): r0 = syz_open_dev$I2C(&(0x7f0000000180), 0x0, 0x0) ioctl$I2C_RDWR(r0, 0x707, &(0x7f00000000c0)={&(0x7f0000000240)=[{0x0, 0x3000, 0x0, 0x0}, {0xd, 0x9011, 0x1, &(0x7f0000000200)="05"}], 0x2}) 644.725119ms ago: executing program 2 (id=1475): r0 = socket$inet6_udp(0xa, 0x2, 0x0) ioctl$sock_inet6_SIOCADDRT(r0, 0x890b, &(0x7f0000000040)={@mcast1={0xff, 0x5}, @mcast2, @private1={0xfc, 0x1, '\x00', 0x5}, 0x2000000, 0x3, 0x1f, 0x100, 0x529f, 0x82d90202}) 591.346079ms ago: executing program 4 (id=1476): r0 = openat$vimc2(0xffffffffffffff9c, &(0x7f0000000640), 0x2, 0x0) ioctl$VIDIOC_CROPCAP(r0, 0xc02c563a, &(0x7f0000000680)={0x8, {0x80000001, 0x9, 0xfffffffe, 0x800}, {0x7, 0x303d, 0x10000, 0x4}, {0x3, 0xfab}}) 490.774101ms ago: executing program 0 (id=1477): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x29, &(0x7f0000001500)=[{&(0x7f0000001580)="d80000001a0081044e81f782db4cb904021d08007b490d4f1e81f8d815001b001105142603600e12080005007a010401a80016002000034004000000035c0461c9d67f6f940071342e875fab7cb6cec6cf6efb8000a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ce1b141993c034e653fe8efe7c9f8775730d16a4683f5aeb4edbb57a5025ccca9ee5350db798262f3d40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e", 0xd8}], 0x1}, 0x0) 384.347974ms ago: executing program 2 (id=1478): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000500)="d800000018008111e00212ba0d8105040a020000030f000b067c55a1bc000900b8000699030000000500160002008178a8001500070001400200000901ac040000d67f6f94007100a007a290457f0189b316277ce06bbace8017cbec4c2ee5a7cef4090000001fb791643a5ee4ec3350568b31937cbdce1b14d6d930dfe1d9d322fe04000000730d7a5025ccca262f3d40fad95667e04adcdf634c1f215ce3bb9ad809d5e1cace81ed0b7fece0b42a9ecbee5de6ccd40dd6e4edef3d839da9ee307f27260e97030000000000000000000000003341000000", 0xd8}], 0x1}, 0x0) 379.398943ms ago: executing program 4 (id=1479): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPSET_CMD_ADD(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000080)=ANY=[@ANYBLOB="50000000090601020000ffff00000000020000000900020073797a31000000000500010006000000280007"], 0x50}, 0x1, 0x0, 0x0, 0x10000082}, 0xc4) 187.984127ms ago: executing program 3 (id=1480): r0 = socket$kcm(0x2, 0x200000000000001, 0x106) sendmsg$kcm(r0, &(0x7f0000001900)={0x0, 0xffffffea, 0x0}, 0x20040005) 111.662459ms ago: executing program 4 (id=1481): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$sock_SIOCETHTOOL(r0, 0x89f1, &(0x7f0000000000)={'ip6_vti0\x00', &(0x7f0000000040)=@ethtool_cmd={0x2e, 0x0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0x80000045}}) 69.060689ms ago: executing program 0 (id=1482): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000004c0)={0x3, 0xc, &(0x7f0000000f80)=ANY=[@ANYBLOB="1802000001000000000000000000000085000000870000001801000020696c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000480)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x24}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000100)="e0b9547ed387dbe9abc89b6f5bec", 0x0, 0xcb7c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 0s ago: executing program 2 (id=1483): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_EXP_DELETE(r0, &(0x7f00000009c0)={0x0, 0x0, &(0x7f0000000300)={&(0x7f0000000840)=ANY=[@ANYBLOB="3800000002020102000000000000000002000003040002800c000280050001"], 0x38}, 0x1, 0x0, 0x0, 0x40840}, 0x4010) kernel console output (not intermixed with test programs): Warning: Permanently added '10.128.1.181' (ED25519) to the list of known hosts. [ 80.799125][ T5775] cgroup: Unknown subsys name 'net' [ 80.936180][ T5775] cgroup: Unknown subsys name 'rlimit' Setting up swapspace version 1, size = 127995904 bytes [ 82.670814][ T5775] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k [ 84.724898][ T5797] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 84.728177][ T5800] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 84.740495][ T5800] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 84.744841][ T5798] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 84.749496][ T5800] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 84.757806][ T5797] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 84.770568][ T5797] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 84.777920][ T5800] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 84.778990][ T5797] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 84.792235][ T5803] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 84.793220][ T5800] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 84.800791][ T5803] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 84.816562][ T5803] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 84.824627][ T5803] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 84.834352][ T5803] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 84.841591][ T5802] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 84.843954][ T5803] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 84.850672][ T5802] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 84.856954][ T5803] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 84.864300][ T5802] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 84.877605][ T5803] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 84.887023][ T5802] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 84.900992][ T5802] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 84.911116][ T5802] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 85.369085][ T5784] chnl_net:caif_netlink_parms(): no params data found [ 85.470130][ T5787] chnl_net:caif_netlink_parms(): no params data found [ 85.583842][ T5784] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.591658][ T5784] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.599624][ T5784] bridge_slave_0: entered allmulticast mode [ 85.607558][ T5784] bridge_slave_0: entered promiscuous mode [ 85.625235][ T5786] chnl_net:caif_netlink_parms(): no params data found [ 85.657859][ T5784] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.665079][ T5784] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.672542][ T5784] bridge_slave_1: entered allmulticast mode [ 85.679926][ T5784] bridge_slave_1: entered promiscuous mode [ 85.760018][ T5784] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 85.773778][ T5784] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 85.837099][ T5787] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.844306][ T5787] bridge0: port 1(bridge_slave_0) entered disabled state [ 85.851663][ T5787] bridge_slave_0: entered allmulticast mode [ 85.859890][ T5787] bridge_slave_0: entered promiscuous mode [ 85.868354][ T5787] bridge0: port 2(bridge_slave_1) entered blocking state [ 85.875522][ T5787] bridge0: port 2(bridge_slave_1) entered disabled state [ 85.882873][ T5787] bridge_slave_1: entered allmulticast mode [ 85.890946][ T5787] bridge_slave_1: entered promiscuous mode [ 85.910013][ T5785] chnl_net:caif_netlink_parms(): no params data found [ 85.959619][ T5784] team0: Port device team_slave_0 added [ 85.985388][ T5786] bridge0: port 1(bridge_slave_0) entered blocking state [ 85.992833][ T5786] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.000150][ T5786] bridge_slave_0: entered allmulticast mode [ 86.008650][ T5786] bridge_slave_0: entered promiscuous mode [ 86.018821][ T5784] team0: Port device team_slave_1 added [ 86.027471][ T5787] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.041098][ T5787] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.058963][ T5786] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.066174][ T5786] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.073795][ T5786] bridge_slave_1: entered allmulticast mode [ 86.081317][ T5786] bridge_slave_1: entered promiscuous mode [ 86.155231][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.162547][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.188706][ T5784] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.218722][ T5787] team0: Port device team_slave_0 added [ 86.243517][ T5784] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.250755][ T5784] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.277891][ T5784] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.298710][ T5787] team0: Port device team_slave_1 added [ 86.312011][ T5786] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.324538][ T5786] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.423030][ T5786] team0: Port device team_slave_0 added [ 86.433982][ T5786] team0: Port device team_slave_1 added [ 86.441051][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.448508][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.475624][ T5787] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.488832][ T5787] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.495845][ T5787] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.521895][ T5787] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.533951][ T5785] bridge0: port 1(bridge_slave_0) entered blocking state [ 86.541565][ T5785] bridge0: port 1(bridge_slave_0) entered disabled state [ 86.549215][ T5785] bridge_slave_0: entered allmulticast mode [ 86.556343][ T5785] bridge_slave_0: entered promiscuous mode [ 86.593396][ T5785] bridge0: port 2(bridge_slave_1) entered blocking state [ 86.600703][ T5785] bridge0: port 2(bridge_slave_1) entered disabled state [ 86.608394][ T5785] bridge_slave_1: entered allmulticast mode [ 86.615431][ T5785] bridge_slave_1: entered promiscuous mode [ 86.668107][ T5784] hsr_slave_0: entered promiscuous mode [ 86.674995][ T5784] hsr_slave_1: entered promiscuous mode [ 86.703749][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 86.710921][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.736932][ T5786] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 86.764707][ T5785] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 86.779296][ T5785] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 86.789136][ T5786] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 86.796113][ T5786] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 86.822321][ T5786] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 86.868542][ T5787] hsr_slave_0: entered promiscuous mode [ 86.875179][ T5787] hsr_slave_1: entered promiscuous mode [ 86.882341][ T5787] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 86.890565][ T5787] Cannot create hsr debugfs directory [ 86.937666][ T5795] Bluetooth: hci0: command tx timeout [ 86.946960][ T5802] Bluetooth: hci1: command tx timeout [ 86.952784][ T5795] Bluetooth: hci3: command tx timeout [ 86.960765][ T5785] team0: Port device team_slave_0 added [ 86.971013][ T5785] team0: Port device team_slave_1 added [ 87.020889][ T5795] Bluetooth: hci2: command tx timeout [ 87.091827][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 87.110101][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.142615][ T5785] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 87.155956][ T5785] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 87.168081][ T5785] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 87.199297][ T5785] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 87.221749][ T5786] hsr_slave_0: entered promiscuous mode [ 87.231103][ T5786] hsr_slave_1: entered promiscuous mode [ 87.241693][ T5786] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 87.251672][ T5786] Cannot create hsr debugfs directory [ 87.503952][ T5785] hsr_slave_0: entered promiscuous mode [ 87.511049][ T5785] hsr_slave_1: entered promiscuous mode [ 87.520187][ T5785] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 87.528091][ T5785] Cannot create hsr debugfs directory [ 87.842278][ T5784] netdevsim netdevsim1 netdevsim0: renamed from eth0 [ 87.856971][ T5784] netdevsim netdevsim1 netdevsim1: renamed from eth1 [ 87.868725][ T5784] netdevsim netdevsim1 netdevsim2: renamed from eth2 [ 87.889515][ T5784] netdevsim netdevsim1 netdevsim3: renamed from eth3 [ 87.942262][ T5787] netdevsim netdevsim2 netdevsim0: renamed from eth0 [ 87.958088][ T5787] netdevsim netdevsim2 netdevsim1: renamed from eth1 [ 87.968394][ T5787] netdevsim netdevsim2 netdevsim2: renamed from eth2 [ 87.986955][ T5787] netdevsim netdevsim2 netdevsim3: renamed from eth3 [ 88.056406][ T5786] netdevsim netdevsim0 netdevsim0: renamed from eth0 [ 88.097428][ T5786] netdevsim netdevsim0 netdevsim1: renamed from eth1 [ 88.110416][ T5786] netdevsim netdevsim0 netdevsim2: renamed from eth2 [ 88.130340][ T5786] netdevsim netdevsim0 netdevsim3: renamed from eth3 [ 88.214273][ T5785] netdevsim netdevsim3 netdevsim0: renamed from eth0 [ 88.247603][ T5785] netdevsim netdevsim3 netdevsim1: renamed from eth1 [ 88.258324][ T5785] netdevsim netdevsim3 netdevsim2: renamed from eth2 [ 88.274350][ T5785] netdevsim netdevsim3 netdevsim3: renamed from eth3 [ 88.395087][ T5787] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.468282][ T5787] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.490060][ T5784] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.515746][ T77] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.523156][ T77] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.544143][ T1031] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.551452][ T1031] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.600102][ T5786] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.624124][ T5784] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.650084][ T5785] 8021q: adding VLAN 0 to HW filter on device bond0 [ 88.678724][ T77] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.686038][ T77] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.711936][ T5785] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.724079][ T1031] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.731450][ T1031] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.751908][ T5786] 8021q: adding VLAN 0 to HW filter on device team0 [ 88.765755][ T3444] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.772970][ T3444] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.803717][ T3444] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.810925][ T3444] bridge0: port 2(bridge_slave_1) entered forwarding state [ 88.841146][ T3444] bridge0: port 1(bridge_slave_0) entered blocking state [ 88.848367][ T3444] bridge0: port 1(bridge_slave_0) entered forwarding state [ 88.869936][ T3444] bridge0: port 2(bridge_slave_1) entered blocking state [ 88.877162][ T3444] bridge0: port 2(bridge_slave_1) entered forwarding state [ 89.022665][ T5795] Bluetooth: hci3: command tx timeout [ 89.028321][ T5795] Bluetooth: hci1: command tx timeout [ 89.036090][ T5802] Bluetooth: hci0: command tx timeout [ 89.101196][ T5802] Bluetooth: hci2: command tx timeout [ 89.372314][ T5787] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.516163][ T5784] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.540874][ T5787] veth0_vlan: entered promiscuous mode [ 89.571643][ T5787] veth1_vlan: entered promiscuous mode [ 89.595407][ T5786] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.643404][ T5785] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 89.684562][ T5787] veth0_macvtap: entered promiscuous mode [ 89.702907][ T5784] veth0_vlan: entered promiscuous mode [ 89.720657][ T5787] veth1_macvtap: entered promiscuous mode [ 89.734064][ T5784] veth1_vlan: entered promiscuous mode [ 89.776419][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 89.820875][ T5787] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 89.843906][ T5785] veth0_vlan: entered promiscuous mode [ 89.862729][ T5787] netdevsim netdevsim2 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.871916][ T5787] netdevsim netdevsim2 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.881271][ T5787] netdevsim netdevsim2 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.890247][ T5787] netdevsim netdevsim2 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 89.909103][ T5786] veth0_vlan: entered promiscuous mode [ 89.929603][ T5784] veth0_macvtap: entered promiscuous mode [ 89.964439][ T5786] veth1_vlan: entered promiscuous mode [ 89.977390][ T5785] veth1_vlan: entered promiscuous mode [ 89.992417][ T5784] veth1_macvtap: entered promiscuous mode [ 90.045657][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.060707][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.073258][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.127435][ T137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.137427][ T137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.153413][ T5784] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.165338][ T5784] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.178003][ T5784] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.193865][ T5784] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.202860][ T5784] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.211782][ T5784] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.224171][ T5784] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.259042][ T5785] veth0_macvtap: entered promiscuous mode [ 90.273583][ T5786] veth0_macvtap: entered promiscuous mode [ 90.284408][ T42] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 90.302910][ T42] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 90.305456][ T5786] veth1_macvtap: entered promiscuous mode [ 90.332154][ T5785] veth1_macvtap: entered promiscuous mode [ 90.399431][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.410179][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.421427][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.434501][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.448954][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.483912][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.501865][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.512515][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.523864][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.533942][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 90.548093][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.560918][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 90.573520][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.584834][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.595709][ T5786] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.606681][ T5786] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.619704][ T5786] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.638259][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.666740][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.690559][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.710844][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.721425][ T5785] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 90.732409][ T5785] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 90.749173][ T5785] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 90.791166][ T5786] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.806849][ T5786] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.815629][ T5786] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.824981][ T5786] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.852090][ T5882] netlink: 'syz.2.5': attribute type 30 has an invalid length. [ 90.860958][ T5882] netlink: 32 bytes leftover after parsing attributes in process `syz.2.5'. [ 90.870941][ T5882] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0) [ 90.881407][ T5882] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255 [ 90.912543][ T5785] netdevsim netdevsim3 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.924858][ T5785] netdevsim netdevsim3 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.941612][ T5785] netdevsim netdevsim3 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.966753][ T5785] netdevsim netdevsim3 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 90.998678][ T137] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.006556][ T137] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.097129][ T5802] Bluetooth: hci1: command tx timeout [ 91.097589][ T5795] Bluetooth: hci0: command tx timeout [ 91.102586][ T5802] Bluetooth: hci3: command tx timeout [ 91.127098][ T48] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.134967][ T48] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.178526][ T5802] Bluetooth: hci2: command tx timeout [ 91.223871][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.241396][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.384672][ T77] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.413571][ T77] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.519318][ T48] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.560297][ T48] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.678038][ T3444] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 91.685941][ T3444] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 91.881677][ T5898] netlink: 152 bytes leftover after parsing attributes in process `syz.0.1'. [ 91.924431][ T5898] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1'. [ 92.252207][ T27] cfg80211: failed to load regulatory.db [ 93.180474][ T5793] Bluetooth: hci1: command tx timeout [ 93.180495][ T5795] Bluetooth: hci3: command tx timeout [ 93.192277][ T5802] Bluetooth: hci0: command tx timeout [ 93.242690][ T5946] ======================================================= [ 93.242690][ T5946] WARNING: The mand mount option has been deprecated and [ 93.242690][ T5946] and is ignored by this kernel. Remove the mand [ 93.242690][ T5946] option from the mount to silence this warning. [ 93.242690][ T5946] ======================================================= [ 93.280785][ T5802] Bluetooth: hci2: command tx timeout [ 93.287764][ T5946] overlayfs: conflicting options: userxattr,metacopy=on [ 93.778522][ T5963] syz.3.41[5963]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set [ 93.876532][ T5966] loop1: detected capacity change from 0 to 512 [ 93.928229][ T5966] EXT4-fs: Ignoring removed nomblk_io_submit option [ 93.971064][ T5966] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 93.981723][ T5970] loop2: detected capacity change from 0 to 256 [ 93.995993][ T5966] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 94.001581][ T5970] exfat: Deprecated parameter 'utf8' [ 94.007074][ T5966] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e128, mo2=0002] [ 94.026905][ T5966] System zones: 0-1, 15-15, 18-18, 34-34 [ 94.033113][ T5966] EXT4-fs (loop1): orphan cleanup on readonly fs [ 94.070442][ T5970] exfat: Deprecated parameter 'utf8' [ 94.101599][ T5966] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 94.111394][ T5970] exfat: Deprecated parameter 'namecase' [ 94.172253][ T5966] EXT4-fs warning (device loop1): ext4_enable_quotas:7175: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 94.232907][ T5966] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 94.256362][ T5970] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5f26ded4, utbl_chksum : 0xe619d30d) [ 94.268748][ T28] audit: type=1326 audit(1759249105.638:2): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5972 comm="syz.0.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 94.269050][ T28] audit: type=1326 audit(1759249105.658:3): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5972 comm="syz.0.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 94.322482][ T5966] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.42: bg 0: block 40: padding at end of block bitmap is not set [ 94.325159][ T28] audit: type=1326 audit(1759249105.708:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5972 comm="syz.0.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=61 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 94.372423][ T5966] EXT4-fs (loop1): Remounting filesystem read-only [ 94.392921][ T5966] EXT4-fs (loop1): 1 truncate cleaned up [ 94.417719][ T28] audit: type=1326 audit(1759249105.748:5): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5972 comm="syz.0.45" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 94.418770][ T5966] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 94.526236][ T5963] loop3: detected capacity change from 0 to 32768 [ 94.591732][ T5963] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.41 (5963) [ 94.675334][ T5963] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 94.714039][ T5963] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 94.750957][ T5963] BTRFS info (device loop3): using free space tree [ 94.774965][ T5784] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 94.790181][ T5981] netlink: 2 bytes leftover after parsing attributes in process `syz.2.47'. [ 94.800411][ T5981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.814622][ T5981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.824752][ T5981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.836702][ T5981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.846853][ T5981] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 94.857742][ T5981] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 94.869691][ T5981] batadv_slave_1: entered promiscuous mode [ 95.088209][ T5963] BTRFS info (device loop3): enabling ssd optimizations [ 95.098402][ T6001] loop1: detected capacity change from 0 to 16 [ 95.120699][ T5963] BTRFS info (device loop3): auto enabling async discard [ 95.145289][ T6009] netlink: 8 bytes leftover after parsing attributes in process `syz.0.52'. [ 95.179266][ T6001] erofs: (device loop1): mounted with root inode @ nid 36. [ 95.214956][ T6008] iwpm_register_pid: Unable to send a nlmsg (client = 2) [ 95.284118][ T6008] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98 [ 95.411300][ T5963] BTRFS warning (device loop3): get dev_stats failed, device not found [ 95.474591][ T6019] loop1: detected capacity change from 0 to 256 [ 95.558374][ T5785] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 96.588454][ T6056] netlink: 20 bytes leftover after parsing attributes in process `syz.3.63'. [ 96.885597][ T6073] loop2: detected capacity change from 0 to 2048 [ 96.946085][ T6073] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 97.058014][ T6085] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 97.075482][ T6073] syz.2.67: attempt to access beyond end of device [ 97.075482][ T6073] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 97.215320][ T6082] loop3: detected capacity change from 0 to 4096 [ 97.260350][ T6073] NILFS error (device loop2): nilfs_check_page: bad entry in directory #2: directory entry across blocks - offset=104, inode=16, rec_len=1816, name_len=0 [ 97.306877][ T6082] ntfs: volume version 3.1. [ 97.331703][ T6082] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 97.347854][ T6073] Remounting filesystem read-only [ 97.365770][ T6082] ntfs: (device loop3): load_and_init_quota(): Failed to find inode number for $Quota. [ 97.394502][ T6082] ntfs: (device loop3): load_system_files(): Failed to load $Quota. Mounting read-only. Run chkdsk. [ 97.424061][ T6082] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 97.449604][ T6082] ntfs: (device loop3): load_and_init_usnjrnl(): Failed to find inode number for $UsnJrnl. [ 97.537106][ T5794] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 97.760610][ T5794] usb 1-1: Using ep0 maxpacket: 32 [ 97.777267][ T6109] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 97.794082][ T5794] usb 1-1: config 4 has an invalid interface number: 128 but max is 0 [ 97.817065][ T5794] usb 1-1: config 4 has no interface number 0 [ 97.823263][ T5794] usb 1-1: config 4 interface 128 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 97.855161][ T5794] usb 1-1: config 4 interface 128 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 97.885750][ T5794] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 97.907783][ T5794] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 97.975012][ T5794] hub 1-1:4.128: USB hub found [ 98.187101][ T5794] hub 1-1:4.128: 2 ports detected [ 98.192282][ T5794] hub 1-1:4.128: Using single TT (err -22) [ 98.229139][ T6135] loop1: detected capacity change from 0 to 256 [ 98.255170][ T6135] exfat: Deprecated parameter 'utf8' [ 98.305942][ T6135] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36e00b20, utbl_chksum : 0xe619d30d) [ 98.396875][ T5794] hub 1-1:4.128: hub_hub_status failed (err = -71) [ 98.423521][ T5794] hub 1-1:4.128: config failed, can't get hub status (err -71) [ 98.520442][ T5794] usb 1-1: USB disconnect, device number 2 [ 99.045914][ T6180] overlayfs: option "workdir=./file0" is useless in a non-upper mount, ignore [ 99.070968][ T137] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.100424][ T6180] overlayfs: missing 'lowerdir' [ 99.255719][ T137] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.361533][ T137] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 99.503656][ T137] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 100.136774][ T23] usb 4-1: new high-speed USB device number 2 using dummy_hcd [ 100.333111][ T5793] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 100.343378][ T5793] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 100.352183][ T5793] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 100.362275][ T5793] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 100.372767][ T5793] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 100.383246][ T5793] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 100.394403][ T23] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 100.412366][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.420864][ T23] usb 4-1: Product: syz [ 100.425146][ T23] usb 4-1: Manufacturer: syz [ 100.430758][ T23] usb 4-1: SerialNumber: syz [ 100.457998][ T23] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 100.503625][ T27] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 100.507872][ T5794] usb 3-1: new high-speed USB device number 2 using dummy_hcd [ 100.792907][ T5794] usb 3-1: Using ep0 maxpacket: 32 [ 100.815718][ T5794] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 100.862719][ T5794] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 100.917296][ T5794] usb 3-1: New USB device found, idVendor=413c, idProduct=819b, bcdDevice=a7.c0 [ 100.937627][ T5794] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 100.945700][ T5794] usb 3-1: Product: syz [ 100.960872][ T5794] usb 3-1: Manufacturer: syz [ 100.965549][ T5794] usb 3-1: SerialNumber: syz [ 100.997655][ T5794] usb 3-1: config 0 descriptor?? [ 101.039513][ T5794] qmi_wwan 3-1:0.0: bogus CDC Union: master=101, slave=0 [ 101.067380][ T5794] qmi_wwan: probe of 3-1:0.0 failed with error -22 [ 101.067784][ T23] usb 4-1: USB disconnect, device number 2 [ 101.323749][ T3377] usb 3-1: USB disconnect, device number 2 [ 101.576955][ T27] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 101.601429][ T27] ath9k_htc: Failed to initialize the device [ 101.612859][ T23] usb 4-1: ath9k_htc: USB layer deinitialized [ 101.728745][ T6236] chnl_net:caif_netlink_parms(): no params data found [ 102.106232][ T6455] trusted_key: encrypted_key: keylen for the ecryptfs format must be equal to 64 bytes [ 102.163641][ T6459] loop2: detected capacity change from 0 to 8 [ 102.322079][ T6465] loop3: detected capacity change from 0 to 512 [ 102.377019][ T28] kauditd_printk_skb: 1 callbacks suppressed [ 102.377034][ T28] audit: type=1800 audit(1759249113.758:6): pid=6459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.118" name="file1" dev="loop2" ino=5 res=0 errno=0 [ 102.381791][ T6236] bridge0: port 1(bridge_slave_0) entered blocking state [ 102.466335][ T5793] Bluetooth: hci0: command tx timeout [ 102.490021][ T6465] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 102.506802][ T6236] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.507264][ T6465] ext4 filesystem being mounted at /23/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 102.514104][ T6236] bridge_slave_0: entered allmulticast mode [ 102.532975][ T6236] bridge_slave_0: entered promiscuous mode [ 102.541963][ T6236] bridge0: port 2(bridge_slave_1) entered blocking state [ 102.549259][ T6236] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.556470][ T6236] bridge_slave_1: entered allmulticast mode [ 102.563996][ T6236] bridge_slave_1: entered promiscuous mode [ 102.632290][ T6490] netlink: 'syz.0.121': attribute type 3 has an invalid length. [ 102.650231][ T137] hsr_slave_0: left promiscuous mode [ 102.658624][ T137] hsr_slave_1: left promiscuous mode [ 102.666945][ T6490] netlink: 'syz.0.121': attribute type 1 has an invalid length. [ 102.684301][ T137] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 102.692518][ T137] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 102.692579][ T6490] netlink: 216 bytes leftover after parsing attributes in process `syz.0.121'. [ 102.714042][ T137] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 102.727473][ T6490] NCSI netlink: No device for ifindex 33022 [ 102.733775][ T137] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 102.749697][ T137] bridge_slave_1: left allmulticast mode [ 102.755663][ T137] bridge_slave_1: left promiscuous mode [ 102.763803][ T137] bridge0: port 2(bridge_slave_1) entered disabled state [ 102.769400][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 102.784376][ T137] bridge_slave_0: left allmulticast mode [ 102.792520][ T137] bridge_slave_0: left promiscuous mode [ 102.800048][ T137] bridge0: port 1(bridge_slave_0) entered disabled state [ 102.889777][ T137] veth1_macvtap: left promiscuous mode [ 102.895928][ T137] veth0_macvtap: left promiscuous mode [ 102.925823][ T137] veth1_vlan: left promiscuous mode [ 102.955764][ T137] veth0_vlan: left promiscuous mode [ 103.802829][ T6530] loop3: detected capacity change from 0 to 2048 [ 103.828814][ T6530] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 103.876182][ T6535] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 103.944782][ T6538] loop0: detected capacity change from 0 to 256 [ 103.944844][ T6530] NILFS error (device loop3): __nilfs_read_inode: invalid file type bits in mode 0177777 for inode 12 [ 104.005036][ T6530] Remounting filesystem read-only [ 104.178562][ T6538] FAT-fs (loop0): Directory bread(block 64) failed [ 104.204909][ T6538] FAT-fs (loop0): Directory bread(block 65) failed [ 104.227958][ T6538] FAT-fs (loop0): Directory bread(block 66) failed [ 104.234558][ T6538] FAT-fs (loop0): Directory bread(block 67) failed [ 104.267504][ T6538] FAT-fs (loop0): Directory bread(block 68) failed [ 104.274114][ T6538] FAT-fs (loop0): Directory bread(block 69) failed [ 104.310033][ T6538] FAT-fs (loop0): Directory bread(block 70) failed [ 104.316896][ T6538] FAT-fs (loop0): Directory bread(block 71) failed [ 104.323572][ T6538] FAT-fs (loop0): Directory bread(block 72) failed [ 104.341170][ T6538] FAT-fs (loop0): Directory bread(block 73) failed [ 104.497001][ T137] team0 (unregistering): Port device team_slave_1 removed [ 104.536870][ T5793] Bluetooth: hci0: command tx timeout [ 104.659261][ T137] team0 (unregistering): Port device team_slave_0 removed [ 104.763069][ T137] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 104.832905][ T137] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 105.671798][ T137] bond0 (unregistering): Released all slaves [ 105.916846][ T6508] netlink: 12 bytes leftover after parsing attributes in process `syz.2.125'. [ 105.961373][ T6236] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 105.994741][ T6236] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 106.259516][ T6236] team0: Port device team_slave_0 added [ 106.289719][ T6236] team0: Port device team_slave_1 added [ 106.379427][ T6657] libceph: resolve '0' (ret=-3): failed [ 106.612712][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 106.616883][ T5793] Bluetooth: hci0: command tx timeout [ 106.630907][ T6694] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 106.652437][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.734093][ T6236] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 106.759397][ T6678] loop3: detected capacity change from 0 to 4096 [ 106.797440][ T6236] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 106.829850][ T6236] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 106.836365][ T6678] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 106.870265][ T6697] loop2: detected capacity change from 0 to 4096 [ 106.913273][ T6236] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 106.927174][ T6697] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 106.965689][ T6678] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 107.017635][ T6678] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 107.066700][ T6678] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 107.116670][ T6678] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 107.170499][ T6697] ntfs3: loop2: Failed to load $Extend (-22). [ 107.176483][ T6678] ntfs: volume version 3.1. [ 107.186358][ T6678] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 107.198579][ T6697] ntfs3: loop2: Failed to initialize $Extend. [ 107.239359][ T6678] ntfs: (device loop3): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 107.270970][ T6678] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 107.283715][ T6678] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 107.358388][ T6236] hsr_slave_0: entered promiscuous mode [ 107.381240][ T6236] hsr_slave_1: entered promiscuous mode [ 107.507901][ T6678] __ntfs_error: 5 callbacks suppressed [ 107.507919][ T6678] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 107.571400][ T6678] ntfs: (device loop3): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code 5. [ 108.300399][ T6236] netdevsim netdevsim4 netdevsim0: renamed from eth0 [ 108.394251][ T6236] netdevsim netdevsim4 netdevsim1: renamed from eth1 [ 108.445480][ T6236] netdevsim netdevsim4 netdevsim2: renamed from eth2 [ 108.489469][ T6852] loop0: detected capacity change from 0 to 1764 [ 108.500517][ T6236] netdevsim netdevsim4 netdevsim3: renamed from eth3 [ 108.615856][ T6852] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 108.697589][ T5793] Bluetooth: hci0: command tx timeout [ 108.851996][ T6236] 8021q: adding VLAN 0 to HW filter on device bond0 [ 109.008321][ T6236] 8021q: adding VLAN 0 to HW filter on device team0 [ 109.011673][ T28] audit: type=1326 audit(1759249120.398:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6881 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 109.072005][ T1031] bridge0: port 1(bridge_slave_0) entered blocking state [ 109.079280][ T1031] bridge0: port 1(bridge_slave_0) entered forwarding state [ 109.117338][ T28] audit: type=1326 audit(1759249120.428:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6881 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 109.144430][ T1031] bridge0: port 2(bridge_slave_1) entered blocking state [ 109.151716][ T1031] bridge0: port 2(bridge_slave_1) entered forwarding state [ 109.197264][ T28] audit: type=1326 audit(1759249120.438:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6881 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=267 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 109.326961][ T28] audit: type=1326 audit(1759249120.438:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6881 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 109.401608][ T6236] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 109.412468][ T28] audit: type=1326 audit(1759249120.438:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6881 comm="syz.0.174" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2014f8eec9 code=0x7ffc0000 [ 110.108495][ T6930] loop2: detected capacity change from 0 to 1024 [ 110.168031][ T6236] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 110.192885][ T6930] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 110.263001][ T6941] netlink: 'syz.0.186': attribute type 3 has an invalid length. [ 110.272079][ T6941] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.186'. [ 110.305823][ T6930] ext4 filesystem being mounted at /53/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 110.549072][ T5787] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 110.639271][ T6964] loop2: detected capacity change from 0 to 64 [ 110.693921][ T6963] netlink: 16 bytes leftover after parsing attributes in process `syz.3.189'. [ 111.066917][ T6979] netlink: 'syz.2.191': attribute type 3 has an invalid length. [ 111.449731][ T6236] veth0_vlan: entered promiscuous mode [ 111.503191][ T6236] veth1_vlan: entered promiscuous mode [ 111.605814][ T6236] veth0_macvtap: entered promiscuous mode [ 111.636841][ T7007] program syz.0.199 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 111.660788][ T6236] veth1_macvtap: entered promiscuous mode [ 111.752864][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.783282][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.836747][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.871984][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.899085][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 111.920894][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 111.955642][ T7018] binder: 7017:7018 ioctl 40046210 0 returned -14 [ 111.970270][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 112.025449][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.039411][ T7025] syz.3.204[7025] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 112.039563][ T7025] syz.3.204[7025] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 112.056372][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.107784][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.120207][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.131343][ T6236] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 112.143191][ T6236] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 112.159183][ T6236] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 112.189497][ T6236] netdevsim netdevsim4 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.209967][ T6236] netdevsim netdevsim4 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.246770][ T6236] netdevsim netdevsim4 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.255562][ T6236] netdevsim netdevsim4 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 112.477064][ T7045] xt_CT: You must specify a L4 protocol and not use inversions on it [ 112.500736][ T7033] loop2: detected capacity change from 0 to 4096 [ 112.607787][ T11] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.622194][ T11] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 112.751160][ T1031] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 112.786847][ T1031] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 113.424684][ T7095] loop2: detected capacity change from 0 to 512 [ 113.446462][ T7095] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 113.544698][ T7095] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 113.577644][ T7095] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548) [ 113.585868][ T7095] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 548) [ 113.772594][ T7111] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 113.913224][ T7116] loop4: detected capacity change from 0 to 512 [ 113.940436][ T7116] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 114.004168][ T7116] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 114.021914][ T7090] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 114.021974][ T7116] ext4 filesystem being mounted at /3/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 114.052852][ T7116] EXT4-fs error (device loop4): ext4_xattr_block_get:596: inode #15: comm syz.4.220: corrupted xattr block 19: overlapping e_value [ 114.062969][ T7090] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 114.094054][ T7090] Bluetooth: hci1: Opcode 0x0406 failed: -4 [ 114.108533][ T7090] Bluetooth: hci3: Opcode 0x0c1a failed: -4 [ 114.118740][ T7090] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 114.135498][ T7090] Bluetooth: hci3: Opcode 0x0406 failed: -4 [ 114.154171][ T7090] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 114.164966][ T7090] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 114.182348][ T6236] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.200624][ T7090] Bluetooth: hci2: Opcode 0x0406 failed: -4 [ 114.228991][ T7090] Bluetooth: hci0: Opcode 0x0c1a failed: -4 [ 114.247210][ T7090] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 114.294960][ T7090] Bluetooth: hci0: Opcode 0x0406 failed: -4 [ 114.490265][ T7147] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org. [ 114.607250][ T5794] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 114.615077][ T5861] usb 3-1: new high-speed USB device number 3 using dummy_hcd [ 114.695588][ T7158] loop4: detected capacity change from 0 to 1024 [ 114.806690][ T5794] usb 1-1: Using ep0 maxpacket: 8 [ 114.815597][ T5794] usb 1-1: config 0 has an invalid interface number: 56 but max is 0 [ 114.836984][ T5794] usb 1-1: config 0 has no interface number 0 [ 114.843313][ T5861] usb 3-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 114.852684][ T5861] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 114.873167][ T5794] usb 1-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76 [ 114.892296][ T5861] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 114.903773][ T5794] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.924276][ T5861] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 114.938513][ T5794] usb 1-1: Product: syz [ 114.942747][ T5794] usb 1-1: Manufacturer: syz [ 114.956745][ T5861] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 114.969333][ T5794] usb 1-1: SerialNumber: syz [ 114.976061][ T5861] usb 3-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 115.006378][ T5794] usb 1-1: config 0 descriptor?? [ 115.015811][ T5861] usb 3-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 115.041844][ T5861] usb 3-1: Product: syz [ 115.046083][ T5861] usb 3-1: Manufacturer: syz [ 115.109098][ T5861] cdc_wdm 3-1:1.0: skipping garbage [ 115.128062][ T5861] cdc_wdm 3-1:1.0: skipping garbage [ 115.145783][ T5861] cdc_wdm 3-1:1.0: cdc-wdm0: USB WDM device [ 115.152059][ T5861] cdc_wdm 3-1:1.0: Unknown control protocol [ 115.260269][ T5794] peak_usb 1-1:0.56: PEAK-System PCAN-USB X6 v134 fw v24.0.0 (2 channels) [ 115.457749][ T7117] cdc_wdm 3-1:1.0: Error submitting int urb - -90 [ 115.466309][ T5794] peak_usb 1-1:0.56 can0: unable to request usb[type=2 value=5] err=-71 [ 115.480737][ T7193] loop4: detected capacity change from 0 to 2048 [ 115.484548][ T5794] peak_usb 1-1:0.56: unable to tell PCAN-USB X6 driver is loaded (err -71) [ 115.497909][ T5793] Bluetooth: hci1: command 0x0c1a tx timeout [ 115.522166][ T5861] usb 3-1: USB disconnect, device number 3 [ 115.602779][ T7193] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 115.687349][ T5794] peak_usb: probe of 1-1:0.56 failed with error -71 [ 115.743994][ T5794] usb 1-1: USB disconnect, device number 3 [ 116.051843][ T7224] loop3: detected capacity change from 0 to 4096 [ 116.075579][ T7224] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 116.137105][ T5793] Bluetooth: hci3: command 0x0c1a tx timeout [ 116.216856][ T5793] Bluetooth: hci2: command 0x0c1a tx timeout [ 116.296799][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 116.681450][ T7253] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 116.992438][ T7253] syz.2.239 (7253) used greatest stack depth: 20936 bytes left [ 117.582405][ T5793] Bluetooth: hci1: command 0x0c1a tx timeout [ 117.675200][ T7246] loop4: detected capacity change from 0 to 32768 [ 117.692675][ T7304] xt_connbytes: Forcing CT accounting to be enabled [ 117.702176][ T7304] xt_CHECKSUM: CHECKSUM should be avoided. If really needed, restrict with "-p udp" and only use in OUTPUT [ 117.715701][ T7304] xt_bpf: check failed: parse error [ 117.719345][ T3377] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 117.732856][ T7246] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.236 (7246) [ 117.833808][ T7246] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 117.890864][ T7246] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 117.945413][ T7246] BTRFS info (device loop4): force zlib compression, level 3 [ 117.971310][ T7246] BTRFS info (device loop4): enabling auto defrag [ 117.997227][ T7246] BTRFS info (device loop4): setting nodatasum [ 118.003490][ T7246] BTRFS info (device loop4): allowing degraded mounts [ 118.047765][ T7246] BTRFS info (device loop4): disabling auto defrag [ 118.096670][ T7246] BTRFS info (device loop4): using free space tree [ 118.219695][ T5793] Bluetooth: hci3: command 0x0c1a tx timeout [ 118.286991][ T23] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 118.296702][ T5793] Bluetooth: hci2: command 0x0c1a tx timeout [ 118.351224][ T7246] BTRFS info (device loop4): auto enabling async discard [ 118.377029][ T5793] Bluetooth: hci0: command 0x0c1a tx timeout [ 118.398393][ T77] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 118.718504][ T7361] netlink: 4 bytes leftover after parsing attributes in process `syz.3.261'. [ 118.729135][ T6236] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 118.760496][ T7361] netlink: 1 bytes leftover after parsing attributes in process `syz.3.261'. [ 119.148947][ T5801] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 9 /dev/loop4 scanned by udevd (5801) [ 119.418560][ T1031] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 119.466297][ T1031] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 119.675868][ T5793] Bluetooth: hci1: command 0x0c1a tx timeout [ 120.298376][ T5861] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 120.306805][ T5793] Bluetooth: hci3: command 0x0c1a tx timeout [ 120.369654][ T28] audit: type=1326 audit(1759249131.738:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7429 comm="syz.3.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 120.380882][ T5793] Bluetooth: hci2: command 0x0c1a tx timeout [ 120.391777][ C1] vkms_vblank_simulate: vblank timer overrun [ 120.456769][ T5802] Bluetooth: hci0: command 0x0c1a tx timeout [ 120.479623][ T7437] ieee802154 phy0 wpan0: encryption failed: -22 [ 120.486392][ T28] audit: type=1326 audit(1759249131.738:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7429 comm="syz.3.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 120.597092][ T28] audit: type=1326 audit(1759249131.798:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7429 comm="syz.3.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 120.701981][ T28] audit: type=1326 audit(1759249131.798:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7429 comm="syz.3.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 120.816902][ T28] audit: type=1326 audit(1759249131.798:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7429 comm="syz.3.279" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 121.622775][ T7434] loop4: detected capacity change from 0 to 32768 [ 121.648933][ T7434] XFS: ikeep mount option is deprecated. [ 121.728157][ T5861] XFS (loop4): filesystem is marked as having an internal log; do not specify logdev on the mount command line. [ 121.775501][ T7507] netlink: 'syz.3.292': attribute type 1 has an invalid length. [ 121.784804][ T7507] netlink: 244 bytes leftover after parsing attributes in process `syz.3.292'. [ 122.192846][ T7521] netlink: 'syz.4.296': attribute type 7 has an invalid length. [ 122.219963][ T7519] loop0: detected capacity change from 0 to 1024 [ 122.345751][ T7492] loop2: detected capacity change from 0 to 32768 [ 122.355186][ T7519] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none. [ 122.407525][ T7519] ext4 filesystem being mounted at /92/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 122.620947][ T7538] netlink: 28 bytes leftover after parsing attributes in process `syz.3.299'. [ 122.690696][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 123.176852][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 123.281055][ T7571] netlink: 12 bytes leftover after parsing attributes in process `syz.4.307'. [ 123.490295][ T7582] tmpfs: Bad value for 'mpol' [ 123.663501][ T7590] netlink: 'syz.2.315': attribute type 10 has an invalid length. [ 123.803973][ T7590] team0: Port device wlan1 added [ 124.258762][ T7622] netlink: 152 bytes leftover after parsing attributes in process `syz.2.325'. [ 124.450633][ T7631] netlink: 8 bytes leftover after parsing attributes in process `syz.2.328'. [ 124.715400][ T7647] netlink: 180 bytes leftover after parsing attributes in process `syz.0.333'. [ 125.175416][ T7673] 8021q: adding VLAN 0 to HW filter on device bond1 [ 125.424997][ T7716] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 125.818650][ T0] NOHZ tick-stop error: local softirq work is pending, handler #200!!! [ 126.240591][ T7748] sctp: [Deprecated]: syz.3.353 (pid 7748) Use of struct sctp_assoc_value in delayed_ack socket option. [ 126.240591][ T7748] Use struct sctp_sack_info instead [ 126.812253][ T7783] netlink: 3 bytes leftover after parsing attributes in process `syz.2.363'. [ 126.837175][ T7783] 0X: renamed from caif0 [ 126.846677][ T7783] 0X: entered allmulticast mode [ 126.852010][ T7783] A link change request failed with some changes committed already. Interface 60X may have been left with an inconsistent configuration, please check. [ 126.869162][ T7788] netlink: 4 bytes leftover after parsing attributes in process `syz.0.364'. [ 127.461081][ T7821] loop3: detected capacity change from 0 to 256 [ 127.511542][ T7821] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0xda218cab, utbl_chksum : 0xe619d30d) [ 127.660842][ T7821] exFAT-fs (loop3): error, invalid access to FAT free cluster (entry 0x00000008) [ 127.986075][ T7847] loop3: detected capacity change from 0 to 512 [ 128.013960][ T7847] EXT4-fs: Warning: mounting with data=journal disables delayed allocation, dioread_nolock, O_DIRECT and fast_commit support! [ 128.076039][ T7847] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 128.140053][ T7847] EXT4-fs (loop3): 1 truncate cleaned up [ 128.208477][ T7847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 128.490759][ T5785] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 128.673301][ T5802] Bluetooth: hci2: Malformed HCI Event [ 129.058006][ T7894] kernel read not supported for file / ԢW)S- (pid: 7894 comm: syz.3.391) [ 129.069468][ T7897] netlink: 'syz.0.394': attribute type 49 has an invalid length. [ 129.102207][ T28] audit: type=1800 audit(1759249140.488:17): pid=7894 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.391" name=20019CCFFCD4A25729EB5393A7C72DEB dev="mqueue" ino=10208 res=0 errno=0 [ 129.281944][ T7902] warning: `syz.2.395' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 129.789109][ T7924] loop4: detected capacity change from 0 to 4096 [ 129.836725][ T7924] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 129.957002][ T7942] netlink: 8 bytes leftover after parsing attributes in process `syz.2.407'. [ 130.033649][ T7924] ntfs3: loop4: failed to convert "c46c" to cp865 [ 130.103119][ T7948] loop3: detected capacity change from 0 to 128 [ 130.133750][ T7948] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 130.234414][ T7948] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 130.616803][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 130.635891][ T7973] loop0: detected capacity change from 0 to 256 [ 130.665614][ T7973] FAT-fs (loop0): Directory bread(block 1285) failed [ 130.721534][ T7973] FAT-fs (loop0): Directory bread(block 1285) failed [ 130.766978][ T7973] FAT-fs (loop0): Directory bread(block 1285) failed [ 130.785582][ T7973] FAT-fs (loop0): Directory bread(block 1285) failed [ 131.263132][ T8003] loop0: detected capacity change from 0 to 512 [ 131.308344][ T8003] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 131.345527][ T8012] loop4: detected capacity change from 0 to 136 [ 131.398790][ T8003] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 131.506894][ T8003] ext4 filesystem being mounted at /124/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 131.524775][ T8012] syz.4.424: attempt to access beyond end of device [ 131.524775][ T8012] loop4: rw=524288, sector=164, nr_sectors = 64 limit=136 [ 131.575928][ T8027] xt_l2tp: v2 sid > 0xffff: 262144 [ 131.625708][ T8012] syz.4.424: attempt to access beyond end of device [ 131.625708][ T8012] loop4: rw=524288, sector=228, nr_sectors = 128 limit=136 [ 131.670578][ T8012] syz.4.424: attempt to access beyond end of device [ 131.670578][ T8012] loop4: rw=0, sector=164, nr_sectors = 8 limit=136 [ 131.737450][ T28] audit: type=1800 audit(1759249143.128:18): pid=8012 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.424" name="file0" dev="loop4" ino=1542 res=0 errno=0 [ 131.824386][ T8015] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 41 vs 39667 free clusters [ 131.872578][ T8036] delete_channel: no stack [ 131.904638][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 132.229292][ T8055] geneve2: entered promiscuous mode [ 132.549894][ T8086] loop4: detected capacity change from 0 to 4096 [ 132.609339][ T8086] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 132.713335][ T8086] EXT4-fs error (device loop4): ext4_empty_dir:3154: inode #12: block 80: comm syz.4.436: bad entry in directory: rec_len is smaller than minimal - offset=12, inode=6, rec_len=0, size=4096 fake=0 [ 132.834593][ T8086] EXT4-fs warning (device loop4): ext4_empty_dir:3156: inode #12: comm syz.4.436: directory missing '..' [ 132.973243][ T8116] loop0: detected capacity change from 0 to 256 [ 133.006089][ T8116] exfat: Deprecated parameter 'namecase' [ 133.039031][ T8116] exfat: Deprecated parameter 'utf8' [ 133.051271][ T6236] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 133.140498][ T8116] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d) [ 133.183826][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.196864][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.336747][ T5802] Bluetooth: hci3: command tx timeout [ 133.535708][ T8141] No such timeout policy "syz1" [ 133.784492][ T28] audit: type=1326 audit(1759249145.168:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 133.792506][ T8145] loop0: detected capacity change from 0 to 4096 [ 133.857788][ T28] audit: type=1326 audit(1759249145.168:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 133.880778][ T8145] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 133.973938][ T28] audit: type=1326 audit(1759249145.198:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 134.090684][ T28] audit: type=1326 audit(1759249145.198:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 134.171157][ T28] audit: type=1326 audit(1759249145.198:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8150 comm="syz.3.452" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f992178eec9 code=0x7ffc0000 [ 134.230346][ T8170] loop4: detected capacity change from 0 to 1024 [ 134.320567][ T7199] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 134.634462][ T8192] capability: warning: `syz.3.461' uses deprecated v2 capabilities in a way that may be insecure [ 134.872928][ T8204] loop0: detected capacity change from 0 to 512 [ 134.893828][ T8204] EXT4-fs (loop0): Test dummy encryption mode enabled [ 134.937877][ T8204] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 134.962492][ T8204] EXT4-fs (loop0): Errors on filesystem, clearing orphan list. [ 134.988098][ T8204] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 135.463509][ T8237] loop3: detected capacity change from 0 to 64 [ 135.486434][ T8236] netlink: 64 bytes leftover after parsing attributes in process `syz.4.471'. [ 135.547057][ T8204] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 135.607737][ T8204] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 212 vs 220 free clusters [ 135.823523][ T5786] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 136.035485][ T8265] loop4: detected capacity change from 0 to 8 [ 136.063692][ T8265] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 136.176008][ T5801] udevd[5801]: incorrect cramfs checksum on /dev/loop4 [ 136.183408][ T8265] process 'syz.4.478' launched './file2' with NULL argv: empty string added [ 136.207332][ T8274] netlink: 'syz.2.480': attribute type 5 has an invalid length. [ 136.240113][ T8265] cramfs: bad data blocksize 4293972856 [ 136.270789][ T8265] cramfs: bad data blocksize 4293972856 [ 136.328720][ T5801] udevd[5801]: incorrect cramfs checksum on /dev/loop4 [ 136.423582][ T5801] udevd[5801]: incorrect cramfs checksum on /dev/loop4 [ 137.018285][ T8304] bond1: entered promiscuous mode [ 137.039620][ T8304] bond1: entered allmulticast mode [ 137.271718][ T8263] loop0: detected capacity change from 0 to 32768 [ 137.382592][ T8263] jfs: Unrecognized mount option "1844674407370955161501777777777777777777777V?Cp~'~8pٻ젌|^(coM)0177777777777777777777718446744073709551615" or missing value [ 137.457334][ T8359] tc_dump_action: action bad kind [ 137.497344][ T8361] loop4: detected capacity change from 0 to 164 [ 138.889606][ T8422] loop0: detected capacity change from 0 to 4096 [ 138.922563][ T8422] ntfs3: loop0: Different NTFS sector size (1024) and media sector size (512). [ 139.362465][ T8445] xt_TCPMSS: Only works on TCP SYN packets [ 139.412191][ T8449] netlink: 220 bytes leftover after parsing attributes in process `syz.4.514'. [ 139.423128][ T8450] netlink: 128 bytes leftover after parsing attributes in process `syz.3.515'. [ 139.460104][ T8450] netlink: 20 bytes leftover after parsing attributes in process `syz.3.515'. [ 140.466027][ T8510] netlink: 12 bytes leftover after parsing attributes in process `syz.2.532'. [ 141.563408][ T8570] netlink: 14 bytes leftover after parsing attributes in process `syz.0.547'. [ 141.812654][ T8584] xt_cgroup: xt_cgroup: no path or classid specified [ 141.912737][ T8591] netlink: 16 bytes leftover after parsing attributes in process `syz.4.553'. [ 142.413012][ T8616] xt_CONNSECMARK: only valid in 'mangle' or 'security' table, not 'raw' [ 143.052331][ T8638] netlink: 'syz.0.566': attribute type 32 has an invalid length. [ 143.338559][ T8614] loop2: detected capacity change from 0 to 32768 [ 143.442215][ T8614] ERROR: (device loop2): dbAlloc: the hint is outside the map [ 143.442215][ T8614] [ 143.497983][ T8614] ERROR: (device loop2): remounting filesystem as read-only [ 144.056807][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 144.377561][ T8699] netlink: 16 bytes leftover after parsing attributes in process `syz.4.580'. [ 144.576880][ T8709] binder: BC_ATTEMPT_ACQUIRE not supported [ 144.583301][ T8709] binder: 8708:8709 ioctl c0306201 2000000003c0 returned -22 [ 146.165187][ T8802] netlink: 9 bytes leftover after parsing attributes in process `syz.4.613'. [ 146.380747][ T8813] IPv6: sit1: Disabled Multicast RS [ 146.687751][ T5860] usb 5-1: new full-speed USB device number 2 using dummy_hcd [ 146.775874][ T8842] netlink: 8 bytes leftover after parsing attributes in process `syz.2.626'. [ 146.889110][ T5860] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid maxpacket 1024, setting to 64 [ 146.917793][ T5860] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 42769, setting to 64 [ 146.946432][ T5860] usb 5-1: config 0 interface 0 has no altsetting 0 [ 146.962505][ T5860] usb 5-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 146.983899][ T5860] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 147.016811][ T5860] usb 5-1: Product: syz [ 147.021058][ T5860] usb 5-1: Manufacturer: syz [ 147.043740][ T5860] usb 5-1: SerialNumber: syz [ 147.071004][ T5860] usb 5-1: config 0 descriptor?? [ 147.102731][ T5860] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 found [ 147.339591][ T5860] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 now disconnected [ 147.372896][ T5860] snd_usb_toneport: probe of 5-1:0.0 failed with error -22 [ 147.545337][ T8880] loop3: detected capacity change from 0 to 2048 [ 147.623262][ T3377] usb 5-1: USB disconnect, device number 2 [ 147.656371][ T8890] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 149.439348][ T8979] RDS: rds_bind could not find a transport for 0:0:200::1, load rds_tcp or rds_rdma? [ 149.806538][ T8992] loop0: detected capacity change from 0 to 2048 [ 149.892123][ T8992] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=4294963200, location=4294963200 [ 149.967112][ T8992] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 150.034730][ T9008] xt_TCPMSS: Only works on TCP SYN packets [ 150.226915][ T9017] netlink: 12 bytes leftover after parsing attributes in process `syz.4.679'. [ 151.167045][ T3377] usb 1-1: new full-speed USB device number 4 using dummy_hcd [ 151.233273][ T9075] loop2: detected capacity change from 0 to 4096 [ 151.248717][ T9075] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 151.280690][ T9083] netlink: 148 bytes leftover after parsing attributes in process `syz.4.697'. [ 151.381679][ T3377] usb 1-1: config 1 has an invalid interface number: 105 but max is 0 [ 151.409537][ T3377] usb 1-1: config 1 has no interface number 0 [ 151.415727][ T3377] usb 1-1: config 1 interface 105 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 151.445622][ T9083] netlink: 148 bytes leftover after parsing attributes in process `syz.4.697'. [ 151.454897][ T9075] ntfs3: loop2: failed to convert "c46c" to cp950 [ 151.474689][ T3377] usb 1-1: config 1 interface 105 has no altsetting 0 [ 151.489081][ T3377] usb 1-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d [ 151.500680][ T3377] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 151.511374][ T3377] usb 1-1: Product: syz [ 151.515603][ T3377] usb 1-1: Manufacturer: syz [ 151.520825][ T3377] usb 1-1: SerialNumber: syz [ 151.787498][ T3377] aqc111: probe of 1-1:1.105 failed with error -22 [ 152.009689][ T5860] usb 1-1: USB disconnect, device number 4 [ 152.168405][ T9129] openvswitch: netlink: Actions may not be safe on all matching packets [ 152.182563][ T9126] loop4: detected capacity change from 0 to 1024 [ 152.253404][ T9126] tmpfs: Bad value for 'mpol' [ 152.351595][ T77] hfsplus: b-tree write err: -5, ino 4 [ 152.841930][ T9164] mac80211_hwsim hwsim10 wlan0: entered promiscuous mode [ 153.338004][ T9191] overlay: ./file0 is not a directory [ 153.715654][ T9208] netlink: 4 bytes leftover after parsing attributes in process `syz.2.732'. [ 153.799903][ T9168] loop3: detected capacity change from 0 to 32768 [ 153.904399][ T9215] netlink: 4 bytes leftover after parsing attributes in process `syz.2.735'. [ 153.948535][ T9220] netlink: 'syz.4.736': attribute type 5 has an invalid length. [ 153.974745][ T9221] netlink: 'syz.0.737': attribute type 29 has an invalid length. [ 154.002462][ T9221] netlink: 'syz.0.737': attribute type 29 has an invalid length. [ 154.035617][ T9168] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 154.069647][ T9224] loop2: detected capacity change from 0 to 2048 [ 154.119738][ T9168] (syz.3.720,9168,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len % 4 != 0 - offset=0, inode=0, rec_len=49, name_len=1 [ 154.149174][ T9224] loop2: p1 < > p4 < > [ 154.163744][ T9168] (syz.3.720,9168,0):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 154.193461][ T9168] (syz.3.720,9168,0):ocfs2_symlink:1867 ERROR: status = -2 [ 154.229454][ T9168] (syz.3.720,9168,0):ocfs2_symlink:2068 ERROR: status = -2 [ 154.550943][ T5801] udevd[5801]: inotify_add_watch(7, /dev/loop2p1, 10) failed: No such file or directory [ 154.583218][ T5785] ocfs2: Unmounting device (7,3) on (node local) [ 154.591478][ T7199] udevd[7199]: inotify_add_watch(7, /dev/loop2p4, 10) failed: No such file or directory [ 156.181387][ T9333] netlink: 'syz.2.770': attribute type 5 has an invalid length. [ 156.212566][ T9333] ip6erspan0: entered allmulticast mode [ 156.769940][ T9404] loop0: detected capacity change from 0 to 128 [ 156.848356][ T9404] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=256, location=256 [ 156.907982][ T9404] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 157.162723][ T9423] Illegal XDP return value 4294967274 on prog (id 46) dev N/A, expect packet loss! [ 157.259595][ T9431] loop2: detected capacity change from 0 to 2048 [ 157.312053][ T9431] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 157.370263][ T9433] bond2: entered promiscuous mode [ 157.403533][ T9433] 8021q: adding VLAN 0 to HW filter on device bond2 [ 157.958916][ T9497] loop4: detected capacity change from 0 to 256 [ 159.047207][ T9542] loop4: detected capacity change from 0 to 8192 [ 159.282551][ T9573] xt_TPROXY: Can be used only with -p tcp or -p udp [ 160.290727][ T9628] loop4: detected capacity change from 0 to 256 [ 160.574055][ T9640] netlink: 212912 bytes leftover after parsing attributes in process `syz.0.841'. [ 160.596424][ T9640] openvswitch: netlink: Key type 29 is not supported [ 160.660917][ T9649] netlink: 'syz.4.844': attribute type 16 has an invalid length. [ 160.697058][ T9649] netlink: 'syz.4.844': attribute type 17 has an invalid length. [ 161.346682][ T5794] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 161.576720][ T5794] usb 4-1: Using ep0 maxpacket: 16 [ 161.597199][ T5794] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 161.616871][ T5794] usb 4-1: config 0 descriptor has 1 excess byte, ignoring [ 161.634381][ T5794] usb 4-1: config 0 has no interface number 0 [ 161.649538][ T5794] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 161.666968][ T5794] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 161.675035][ T5794] usb 4-1: Product: syz [ 161.697121][ T5794] usb 4-1: Manufacturer: syz [ 161.701898][ T5794] usb 4-1: SerialNumber: syz [ 161.718483][ T5794] usb 4-1: config 0 descriptor?? [ 161.755243][ T5794] usb 4-1: Found UVC 0.00 device syz (046d:08f3) [ 161.772064][ T5794] usb 4-1: No valid video chain found. [ 162.032085][ T5794] usb 4-1: USB disconnect, device number 3 [ 162.173154][ T9690] loop2: detected capacity change from 0 to 32768 [ 162.336191][ T9730] geneve2: entered promiscuous mode [ 162.371201][ T9730] geneve2: entered allmulticast mode [ 162.566868][ T9743] xt_hashlimit: max too large, truncated to 1048576 [ 162.808036][ T9751] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only [ 163.080814][ T9767] (unnamed net_device) (uninitialized): option updelay: invalid value (18446744073709510581) [ 163.118642][ T9767] (unnamed net_device) (uninitialized): option updelay: allowed values 0 - 2147483647 [ 163.152778][ T9770] netlink: 'syz.3.879': attribute type 21 has an invalid length. [ 163.162873][ T9770] netlink: 132 bytes leftover after parsing attributes in process `syz.3.879'. [ 163.342421][ T9777] loop2: detected capacity change from 0 to 256 [ 163.417551][ T9777] FAT-fs (loop2): Directory bread(block 64) failed [ 163.444244][ T9777] FAT-fs (loop2): Directory bread(block 65) failed [ 163.470049][ T9777] FAT-fs (loop2): Directory bread(block 66) failed [ 163.503675][ T9777] FAT-fs (loop2): Directory bread(block 67) failed [ 163.513893][ T9777] FAT-fs (loop2): Directory bread(block 68) failed [ 163.562954][ T9777] FAT-fs (loop2): Directory bread(block 69) failed [ 163.586826][ T9777] FAT-fs (loop2): Directory bread(block 70) failed [ 163.593440][ T9777] FAT-fs (loop2): Directory bread(block 71) failed [ 163.641180][ T9777] FAT-fs (loop2): Directory bread(block 72) failed [ 163.649402][ T9777] FAT-fs (loop2): Directory bread(block 73) failed [ 163.815428][ T9801] loop3: detected capacity change from 0 to 1024 [ 163.825942][ T9803] netlink: 'syz.0.890': attribute type 2 has an invalid length. [ 163.833921][ T9803] netlink: 5356 bytes leftover after parsing attributes in process `syz.0.890'. [ 163.892009][ T12] hfsplus: b-tree write err: -5, ino 4 [ 164.323746][ T9828] netlink: 132 bytes leftover after parsing attributes in process `syz.2.897'. [ 164.995902][ T9867] usb usb1: usbfs: process 9867 (syz.4.910) did not claim interface 0 before use [ 165.520279][ T9901] loop4: detected capacity change from 0 to 256 [ 166.138332][ T9935] Cannot find set identified by id 65534 to match [ 167.175040][ T9991] bridge0: port 1(bridge_slave_0) entered forwarding state [ 167.246493][ T9995] loop0: detected capacity change from 0 to 1024 [ 167.764772][ T9981] loop3: detected capacity change from 0 to 32768 [ 168.241802][T10037] netlink: 24 bytes leftover after parsing attributes in process `syz.3.964'. [ 169.451255][T10103] loop3: detected capacity change from 0 to 16 [ 169.481657][T10103] erofs: (device loop3): mounted with root inode @ nid 36. [ 169.628691][T10114] netlink: 40 bytes leftover after parsing attributes in process `syz.4.989'. [ 170.517205][T10164] netlink: 60 bytes leftover after parsing attributes in process `syz.4.1003'. [ 170.658148][T10172] tmpfs: Bad value for 'mpol' [ 170.664080][T10169] C: renamed from team_slave_0 (while UP) [ 170.719040][T10169] netlink: 'syz.3.1005': attribute type 3 has an invalid length. [ 170.732911][T10169] netlink: 152 bytes leftover after parsing attributes in process `syz.3.1005'. [ 170.747300][T10169] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 170.936828][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 172.796758][T10292] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1045'. [ 172.836675][ T23] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 173.046721][ T23] usb 4-1: Using ep0 maxpacket: 8 [ 173.053938][ T23] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 173.072429][ T23] usb 4-1: New USB device found, idVendor=0e8d, idProduct=2000, bcdDevice=21.c6 [ 173.092088][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 173.126964][ T23] usb 4-1: config 0 descriptor?? [ 173.391091][ T5861] usb 4-1: USB disconnect, device number 4 [ 174.032558][T10357] loop4: detected capacity change from 0 to 4096 [ 174.082282][T10357] ntfs3: loop4: Different NTFS sector size (4096) and media sector size (512). [ 174.154360][T10357] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 174.200409][T10357] ntfs3: loop4: mft corrupted [ 174.205255][T10357] ntfs3: loop4: Failed to load $Extend (-22). [ 174.239104][T10357] ntfs3: loop4: Failed to initialize $Extend. [ 174.421540][T10379] netlink: 'syz.3.1071': attribute type 1 has an invalid length. [ 174.431781][T10380] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1072'. [ 174.480269][T10380] netlink: zone id is out of range [ 174.501784][T10380] netlink: del zone limit has 4 unknown bytes [ 174.693226][T10392] loop3: detected capacity change from 0 to 256 [ 174.802448][T10392] FAT-fs (loop3): Directory bread(block 64) failed [ 174.836716][T10392] FAT-fs (loop3): Directory bread(block 65) failed [ 174.876841][T10392] FAT-fs (loop3): Directory bread(block 66) failed [ 174.888698][T10392] FAT-fs (loop3): Directory bread(block 67) failed [ 174.901021][T10392] FAT-fs (loop3): Directory bread(block 68) failed [ 174.908092][T10392] FAT-fs (loop3): Directory bread(block 69) failed [ 174.915735][T10392] FAT-fs (loop3): Directory bread(block 70) failed [ 174.925917][T10392] FAT-fs (loop3): Directory bread(block 71) failed [ 174.933256][T10392] FAT-fs (loop3): Directory bread(block 72) failed [ 174.940368][T10392] FAT-fs (loop3): Directory bread(block 73) failed [ 175.136475][T10412] netlink: 288 bytes leftover after parsing attributes in process `syz.4.1082'. [ 175.253286][T10414] netlink: 'syz.2.1083': attribute type 9 has an invalid length. [ 175.267829][T10414] netlink: 126588 bytes leftover after parsing attributes in process `syz.2.1083'. [ 175.736801][ T5861] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 175.824072][T10447] loop4: detected capacity change from 0 to 1024 [ 175.976867][ T5861] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 175.997300][ T5861] usb 4-1: config 0 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 176.026527][ T5861] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 has an invalid bInterval 0, changing to 7 [ 176.058582][ T5861] usb 4-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 176.115299][ T5861] usb 4-1: New USB device found, idVendor=091e, idProduct=0003, bcdDevice=d7.3b [ 176.136378][ T5861] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 176.161171][ T5861] usb 4-1: Product: syz [ 176.165976][ T5861] usb 4-1: Manufacturer: syz [ 176.177288][ T5861] usb 4-1: SerialNumber: syz [ 176.194936][ T5861] usb 4-1: config 0 descriptor?? [ 176.231896][ T5861] garmin_gps 4-1:0.0: Garmin GPS usb/tty converter detected [ 176.258572][ T5861] garmin_gps ttyUSB0: garmin_write_bulk - usb_submit_urb(write bulk) failed with status = -8 [ 176.265701][T10461] syz.0.1096 (10461) used greatest stack depth: 20688 bytes left [ 176.305210][ T5861] garmin_gps: probe of ttyUSB0 failed with error -8 [ 176.432792][T10476] netlink: 'syz.4.1099': attribute type 16 has an invalid length. [ 176.521594][ T5794] usb 4-1: USB disconnect, device number 5 [ 176.551068][ T5794] garmin_gps 4-1:0.0: device disconnected [ 177.236943][T10512] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1109'. [ 177.246243][T10515] netlink: 'syz.0.1110': attribute type 21 has an invalid length. [ 177.258414][T10515] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1110'. [ 177.617478][T10525] loop2: detected capacity change from 0 to 4096 [ 177.647707][T10525] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 177.731963][T10525] ntfs3: loop2: Failed to load $Extend (-22). [ 177.763013][T10525] ntfs3: loop2: Failed to initialize $Extend. [ 177.923752][T10506] loop4: detected capacity change from 0 to 32768 [ 177.967881][T10506] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.1107 (10506) [ 178.079280][T10506] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 178.110902][T10547] loop3: detected capacity change from 0 to 256 [ 178.125749][T10506] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 178.184948][T10506] BTRFS info (device loop4): using free space tree [ 178.271207][T10547] FAT-fs (loop3): Directory bread(block 64) failed [ 178.296734][T10547] FAT-fs (loop3): Directory bread(block 65) failed [ 178.321049][T10547] FAT-fs (loop3): Directory bread(block 66) failed [ 178.346823][T10547] FAT-fs (loop3): Directory bread(block 67) failed [ 178.380751][T10547] FAT-fs (loop3): Directory bread(block 68) failed [ 178.415730][T10547] FAT-fs (loop3): Directory bread(block 69) failed [ 178.446842][T10547] FAT-fs (loop3): Directory bread(block 70) failed [ 178.453655][T10506] BTRFS info (device loop4): enabling ssd optimizations [ 178.466151][T10547] FAT-fs (loop3): Directory bread(block 71) failed [ 178.476462][T10506] BTRFS info (device loop4): auto enabling async discard [ 178.497707][T10547] FAT-fs (loop3): Directory bread(block 72) failed [ 178.514992][T10547] FAT-fs (loop3): Directory bread(block 73) failed [ 178.631947][T10579] netlink: 'syz.0.1124': attribute type 12 has an invalid length. [ 178.716702][T10579] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1124'. [ 178.770709][ T6236] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 179.942630][T10635] netlink: 56 bytes leftover after parsing attributes in process `syz.3.1141'. [ 179.966850][T10635] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1141'. [ 180.220939][T10653] loop3: detected capacity change from 0 to 1024 [ 180.349938][T10653] hfsplus: invalid extended attribute record [ 180.427181][ T23] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 180.472656][ T11] hfsplus: b-tree write err: -5, ino 4 [ 180.548453][ T5794] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 180.626158][ T23] usb 1-1: Using ep0 maxpacket: 32 [ 180.655922][ T23] usb 1-1: config 0 has an invalid interface number: 51 but max is 0 [ 180.673312][ T23] usb 1-1: config 0 has no interface number 0 [ 180.680776][T10677] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1153'. [ 180.694354][ T23] usb 1-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 180.716225][ T23] usb 1-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 180.729790][ T23] usb 1-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 180.740470][ T23] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 180.752219][ T23] usb 1-1: Product: syz [ 180.756443][ T23] usb 1-1: Manufacturer: syz [ 180.763409][ T23] usb 1-1: SerialNumber: syz [ 180.777481][ T23] usb 1-1: config 0 descriptor?? [ 180.799668][ T23] quatech2 1-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 180.986880][ T8] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 181.038117][ T23] usb 1-1: qt2_setup_urbs - submit read urb failed -90 [ 181.056417][ T23] quatech2: probe of 1-1:0.51 failed with error -90 [ 181.177556][ T11] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 181.249578][ T5794] kernel write not supported for file /456/net/ip6_tables_matches (pid: 5794 comm: kworker/0:3) [ 181.275656][ T3377] usb 1-1: USB disconnect, device number 5 [ 181.432333][T10674] loop3: detected capacity change from 0 to 32768 [ 181.459865][T10674] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.1151 (10674) [ 181.503842][T10674] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 181.524847][T10674] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 181.545397][T10674] BTRFS info (device loop3): force zlib compression, level 3 [ 181.566721][T10674] BTRFS info (device loop3): setting nodatasum [ 181.583020][T10674] BTRFS info (device loop3): max_inline at 0 [ 181.595434][T10674] BTRFS info (device loop3): using free space tree [ 181.753729][T10674] BTRFS info (device loop3): auto enabling async discard [ 182.017445][ T5785] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 182.228990][ T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 182.263426][ T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 182.887048][ T3377] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 183.057564][T10799] netlink: 44 bytes leftover after parsing attributes in process `syz.3.1181'. [ 183.423796][T10818] bridge2: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 183.489089][T10818] bridge2: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 184.850548][T10900] loop2: detected capacity change from 0 to 64 [ 185.053927][T10900] Trying to free block not in datazone [ 185.222495][T10920] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1218'. [ 185.371531][T10929] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1221'. [ 185.466696][ T5861] usb 5-1: new high-speed USB device number 3 using dummy_hcd [ 185.648798][ T5861] usb 5-1: config 220 has an invalid interface number: 76 but max is 2 [ 185.664209][ T5861] usb 5-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 185.711836][ T5861] usb 5-1: config 220 has no interface number 2 [ 185.736027][ T5861] usb 5-1: config 220 interface 1 altsetting 5 endpoint 0x81 has invalid wMaxPacketSize 0 [ 185.756933][ T5861] usb 5-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12 [ 185.773238][ T5861] usb 5-1: config 220 interface 0 has no altsetting 0 [ 185.780441][ T5861] usb 5-1: config 220 interface 76 has no altsetting 0 [ 185.791299][ T5861] usb 5-1: config 220 interface 1 has no altsetting 0 [ 185.820183][ T5861] usb 5-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 185.841474][ T5861] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.856961][ T5861] usb 5-1: Product: syz [ 185.861290][ T5861] usb 5-1: Manufacturer: syz [ 185.865925][ T5861] usb 5-1: SerialNumber: syz [ 185.872380][T10950] loop3: detected capacity change from 0 to 128 [ 185.896954][T10950] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 185.948491][T10950] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: writeback. [ 186.048706][T10950] EXT4-fs error (device loop3): __ext4_find_entry:1696: inode #2: comm syz.3.1227: checksumming directory block 0 [ 186.140516][ T5785] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 186.157943][ T5861] usb 5-1: selecting invalid altsetting 0 [ 186.165882][ T5861] usb 5-1: Found UVC 7.01 device syz (8086:0b07) [ 186.196657][ T5861] usb 5-1: No valid video chain found. [ 186.263919][ T5861] usb 5-1: selecting invalid altsetting 0 [ 186.307053][ T5861] usbtest: probe of 5-1:220.1 failed with error -22 [ 186.343659][ T5861] usb 5-1: USB disconnect, device number 3 [ 186.629126][T10994] mmap: syz.0.1236 (10994) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 186.697104][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 187.209612][T11025] netlink: 'syz.4.1245': attribute type 3 has an invalid length. [ 187.235729][T11025] netlink: 80 bytes leftover after parsing attributes in process `syz.4.1245'. [ 187.378238][T11027] netlink: 'syz.0.1246': attribute type 21 has an invalid length. [ 187.781575][T11086] loop4: detected capacity change from 0 to 128 [ 187.867209][T11086] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 187.982405][T11086] ext4 filesystem being mounted at /248/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 188.201318][ T6236] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 188.396714][ T5860] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 188.604564][ T5860] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 188.616316][ T5860] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 188.636715][ T5860] usb 3-1: Product: syz [ 188.656631][ T5860] usb 3-1: Manufacturer: syz [ 188.661307][ T5860] usb 3-1: SerialNumber: syz [ 188.686293][ T5860] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 188.723900][ T23] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 188.826786][ T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 189.025239][ T9] usb 4-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 189.056684][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 189.080414][ T9] usb 4-1: config 0 descriptor?? [ 189.102530][ T9] gspca_main: spca508-2.14.0 probing 8086:0110 [ 189.262352][ T3377] usb 3-1: USB disconnect, device number 4 [ 189.382839][T11168] netlink: 'syz.0.1276': attribute type 10 has an invalid length. [ 189.405886][T11168] veth0_macvtap: left promiscuous mode [ 189.430726][T11168] batman_adv: batadv0: Adding interface: macvtap0 [ 189.438245][T11168] batman_adv: batadv0: The MTU of interface macvtap0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 189.464790][T11168] batman_adv: batadv0: Not using interface macvtap0 (retrying later): interface not active [ 189.530054][ T9] gspca_spca508: reg_read err -71 [ 189.544807][ T9] gspca_spca508: reg_read err -71 [ 189.557216][ T9] gspca_spca508: reg_read err -71 [ 189.567935][ T9] gspca_spca508: reg_read err -71 [ 189.593191][ T9] gspca_spca508: reg write: error -71 [ 189.615205][ T9] spca508: probe of 4-1:0.0 failed with error -71 [ 189.639604][ T9] usb 4-1: USB disconnect, device number 6 [ 189.816990][ T23] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 189.837051][ T23] ath9k_htc: Failed to initialize the device [ 189.850687][ T3377] usb 3-1: ath9k_htc: USB layer deinitialized [ 190.189502][T11213] (unnamed net_device) (uninitialized): option packets_per_slave: mode dependency failed, not supported in mode balance-tlb(5) [ 190.732383][T11245] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1298'. [ 191.132061][T11262] loop4: detected capacity change from 0 to 4096 [ 191.173613][T11262] ntfs3: loop4: Different NTFS sector size (2048) and media sector size (512). [ 191.334426][T11262] ntfs3: loop4: Failed to initialize $Extend/$ObjId. [ 192.076154][T11310] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1318'. [ 192.112720][T11310] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 192.586133][T11299] loop4: detected capacity change from 0 to 32768 [ 193.416680][ T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 193.607062][ T9] usb 3-1: Using ep0 maxpacket: 8 [ 193.619830][ T9] usb 3-1: config 6 has an invalid interface number: 2 but max is 0 [ 193.636718][ T9] usb 3-1: config 6 has no interface number 0 [ 193.651606][ T9] usb 3-1: config 6 interface 2 altsetting 0 endpoint 0xB has invalid wMaxPacketSize 0 [ 193.676761][ T9] usb 3-1: config 6 interface 2 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 193.696315][T11383] block device autoloading is deprecated and will be removed. [ 193.723471][ T9] usb 3-1: New USB device found, idVendor=0af0, idProduct=7271, bcdDevice=88.91 [ 193.739335][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 193.749516][ T9] usb 3-1: Product: syz [ 193.754260][ T9] usb 3-1: Manufacturer: syz [ 193.779366][ T9] usb 3-1: SerialNumber: syz [ 193.818912][ T9] hso 3-1:6.2: Failed to find INT IN ep [ 194.092117][ T5794] usb 3-1: USB disconnect, device number 5 [ 194.621657][ T1287] ieee802154 phy0 wpan0: encryption failed: -22 [ 194.636747][ T1287] ieee802154 phy1 wpan1: encryption failed: -22 [ 194.970076][T11458] netlink: 36 bytes leftover after parsing attributes in process `syz.0.1361'. [ 195.125884][T11461] loop4: detected capacity change from 0 to 4096 [ 195.256768][ C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 195.324230][T11461] ntfs: (device loop4): parse_options(): NLS character set cp8 Oone_multiplier=0x0000000000000001gid=0 not found. Using previous one cp862. [ 195.401267][T11461] ntfs: (device loop4): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 195.446653][T11461] ntfs: (device loop4): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 195.489150][T11461] ntfs: (device loop4): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 195.527476][T11461] ntfs: (device loop4): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 195.570014][T11461] ntfs: (device loop4): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 195.628827][T11461] ntfs: volume version 3.1. [ 195.676459][T11461] ntfs: (device loop4): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 195.726017][T11461] ntfs: (device loop4): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 195.815666][T11461] ntfs: (device loop4): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 195.858455][T11461] ntfs: (device loop4): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 195.872077][T11488] overlayfs: empty lowerdir [ 196.080016][T11460] loop2: detected capacity change from 0 to 32768 [ 196.204003][T11460] ERROR: (device loop2): diAllocAG: error reading iag [ 196.204003][T11460] [ 196.262617][T11460] ialloc: diAlloc returned -5! [ 196.592138][T11517] loop4: detected capacity change from 0 to 1024 [ 196.758823][ T5861] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 196.798403][ T3444] hfsplus: b-tree write err: -5, ino 4 [ 196.953296][T11534] netlink: 212412 bytes leftover after parsing attributes in process `syz.4.1381'. [ 196.994578][ T5861] usb 1-1: New USB device found, idVendor=0c45, idProduct=60a8, bcdDevice=b5.55 [ 197.024299][ T5861] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 197.046353][ T5861] usb 1-1: Product: syz [ 197.065780][ T5861] usb 1-1: Manufacturer: syz [ 197.076940][ T5861] usb 1-1: SerialNumber: syz [ 197.097192][ T5861] usb 1-1: config 0 descriptor?? [ 197.109239][ T5861] gspca_main: sonixb-2.14.0 probing 0c45:60a8 [ 197.538779][ T5861] sonixb 1-1:0.0: Error writing register 01: -71 [ 197.562900][ T5861] sonixb: probe of 1-1:0.0 failed with error -71 [ 197.584203][ T5861] usb 1-1: USB disconnect, device number 6 [ 197.600383][ T77] hfsplus: b-tree write err: -5, ino 4 [ 199.355606][T11672] kAFS: No cell specified [ 199.945327][T11707] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1428'. [ 199.996048][T11707] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1428'. [ 200.076641][T11707] netlink: 56 bytes leftover after parsing attributes in process `syz.2.1428'. [ 200.682592][T11747] loop2: detected capacity change from 0 to 256 [ 200.718648][T11747] exFAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 200.754781][T11747] exFAT-fs (loop2): Medium has reported failures. Some data may be lost. [ 200.835643][T11747] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 201.465410][T11788] netlink: zone id is out of range [ 201.486822][T11788] netlink: zone id is out of range [ 201.492020][T11788] netlink: zone id is out of range [ 201.536788][T11788] netlink: zone id is out of range [ 201.546140][T11788] netlink: zone id is out of range [ 201.560559][T11788] netlink: zone id is out of range [ 201.584776][T11788] netlink: zone id is out of range [ 201.590530][T11788] netlink: zone id is out of range [ 201.621309][T11788] netlink: zone id is out of range [ 201.631037][T11788] netlink: zone id is out of range [ 202.215378][T11776] loop3: detected capacity change from 0 to 32768 [ 202.247119][T11776] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 202.343497][T11776] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 202.348429][ T9] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 202.406982][T11776] (syz.3.1444,11776,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len is too small for name_len - offset=0, inode=65, rec_len=16, name_len=9 [ 202.454187][T11776] (syz.3.1444,11776,1):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 202.476192][T11776] (syz.3.1444,11776,1):ocfs2_mknod:298 ERROR: status = -2 [ 202.496447][T11776] (syz.3.1444,11776,1):ocfs2_mknod:502 ERROR: status = -2 [ 202.518602][T11776] (syz.3.1444,11776,1):ocfs2_mkdir:659 ERROR: status = -2 [ 202.611571][ T5785] ocfs2: Unmounting device (7,3) on (node local) [ 202.618500][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 202.662860][ T9] usb 3-1: unable to get BOS descriptor or descriptor too short [ 202.685585][ T9] usb 3-1: config 7 has an invalid interface number: 187 but max is 0 [ 202.696812][ T9] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 202.726731][ T9] usb 3-1: config 7 has no interface number 0 [ 202.736747][ T9] usb 3-1: config 7 interface 187 altsetting 6 endpoint 0x7 has invalid wMaxPacketSize 0 [ 202.756665][ T9] usb 3-1: config 7 interface 187 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 202.789757][ T9] usb 3-1: config 7 interface 187 has no altsetting 0 [ 202.809687][ T9] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 202.819827][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 202.839922][ T9] usb 3-1: Product: syz [ 202.844151][ T9] usb 3-1: Manufacturer: syz [ 202.859825][T11800] loop4: detected capacity change from 0 to 32768 [ 202.866522][ T9] usb 3-1: SerialNumber: syz [ 202.923626][T11800] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 203.161336][T11837] xt_TPROXY: Can be used only with -p tcp or -p udp [ 203.171309][ T9] usb 3-1: Limiting number of CPorts to U8_MAX [ 203.201105][ T9] usb 3-1: Unknown endpoint type found, address 0x07 [ 203.208059][ T9] usb 3-1: Not enough endpoints found in device, aborting! [ 203.215425][T11800] XFS (loop4): Ending clean mount [ 203.264142][T11800] XFS (loop4): Quotacheck needed: Please wait. [ 203.417745][ T9] usb 3-1: USB disconnect, device number 6 [ 203.449271][T11800] XFS (loop4): Quotacheck: Done. [ 203.674450][ T6236] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 204.804262][T11873] loop3: detected capacity change from 0 to 32768 [ 204.835581][T11873] [ 204.835581][T11873] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 204.835581][T11873] [ 204.895550][T11873] [ 204.895550][T11873] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 204.895550][T11873] [ 204.926693][T11873] [ 204.926693][T11873] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 204.926693][T11873] [ 204.937664][T11873] [ 204.937664][T11873] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 204.937664][T11873] [ 204.956818][T11873] [ 204.956818][T11873] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 204.956818][T11873] [ 204.974134][T11873] [ 204.974134][T11873] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 204.974134][T11873] [ 205.035159][ T111] [ 205.035159][ T111] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 205.035159][ T111] [ 205.065504][T11915] netlink: 'syz.0.1477': attribute type 27 has an invalid length. [ 205.120762][T11915] netlink: 'syz.0.1477': attribute type 3 has an invalid length. [ 205.122709][T11920] IPv6: NLM_F_CREATE should be specified when creating new route [ 205.149327][T11920] netlink: 1 bytes leftover after parsing attributes in process `syz.2.1478'. [ 205.158379][T11915] netlink: 132 bytes leftover after parsing attributes in process `syz.0.1477'. [ 205.193560][ T12] [ 205.193560][ T12] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 205.193560][ T12] [ 205.227668][ T12] [ 205.227668][ T12] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 205.227668][ T12] [ 205.271576][ T5785] [ 205.271576][ T5785] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 205.271576][ T5785] [ 205.310148][ T5785] [ 205.310148][ T5785] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 205.310148][ T5785] [ 205.346751][ T111] general protection fault, probably for non-canonical address 0xdffffc0000000008: 0000 [#1] PREEMPT SMP KASAN [ 205.358531][ T111] KASAN: null-ptr-deref in range [0x0000000000000040-0x0000000000000047] [ 205.366988][ T111] CPU: 1 PID: 111 Comm: jfsCommit Not tainted syzkaller #0 [ 205.374217][ T111] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 205.384320][ T111] RIP: 0010:lmLogSync+0xfc/0x9c0 [ 205.389110][T11928] netlink: 20 bytes leftover after parsing attributes in process `syz.2.1483'. [ 205.389275][ T111] Code: af 85 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 62 fa dc fe 4d 8b 3f 49 83 c7 40 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 46 fa dc fe 49 8b 3f e8 1e 1a b3 fe [ 205.417860][ T111] RSP: 0018:ffffc90002cf7c40 EFLAGS: 00010202 [ 205.423965][ T111] RAX: 0000000000000008 RBX: dffffc0000000000 RCX: 0000000000000000 [ 205.431966][ T111] RDX: ffff888018f6da00 RSI: 0000000000000001 RDI: 0000000000000000 [ 205.439967][ T111] RBP: ffffc90002cf7d48 R08: 0000000000000003 R09: 0000000000000000 [ 205.447972][ T111] R10: ffffc90002cf7ca0 R11: fffff5200059ef98 R12: ffff888023328000 [ 205.455978][ T111] R13: dffffc0000000000 R14: ffff888023a66238 R15: 0000000000000040 [ 205.463974][ T111] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 205.472917][ T111] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 205.479506][ T111] CR2: 00007f1c321b2d58 CR3: 000000002b8ee000 CR4: 00000000003506e0 [ 205.487489][ T111] Call Trace: [ 205.490775][ T111] [ 205.493717][ T111] ? lmWriteRecord+0x1ac0/0x1ac0 [ 205.498670][ T111] ? __rwlock_init+0x150/0x150 [ 205.503467][ T111] jfs_syncpt+0x7b/0x90 [ 205.507651][ T111] txEnd+0x2e5/0x520 [ 205.511565][ T111] jfs_lazycommit+0x5a6/0xa60 [ 205.516251][ T111] ? txFreelock+0x5a0/0x5a0 [ 205.520763][ T111] ? do_task_dead+0xd0/0xd0 [ 205.525270][ T111] ? __kthread_parkme+0x7a/0x1c0 [ 205.530231][ T111] kthread+0x2fa/0x390 [ 205.534308][ T111] ? txFreelock+0x5a0/0x5a0 [ 205.538820][ T111] ? kthread_blkcg+0xd0/0xd0 [ 205.543419][ T111] ret_from_fork+0x48/0x80 [ 205.547843][ T111] ? kthread_blkcg+0xd0/0xd0 [ 205.552445][ T111] ret_from_fork_asm+0x11/0x20 [ 205.557313][ T111] [ 205.560369][ T111] Modules linked in: [ 205.627211][ T111] ---[ end trace 0000000000000000 ]--- [ 205.633514][ T111] RIP: 0010:lmLogSync+0xfc/0x9c0 [ 205.639490][ T111] Code: af 85 fe 4d 8d 7e d8 4c 89 f8 48 c1 e8 03 80 3c 18 00 74 08 4c 89 ff e8 62 fa dc fe 4d 8b 3f 49 83 c7 40 4c 89 f8 48 c1 e8 03 <80> 3c 18 00 74 08 4c 89 ff e8 46 fa dc fe 49 8b 3f e8 1e 1a b3 fe [ 205.660309][ T111] RSP: 0018:ffffc90002cf7c40 EFLAGS: 00010202 [ 205.666505][ T111] RAX: 0000000000000008 RBX: dffffc0000000000 RCX: 0000000000000000 [ 205.675753][ T111] RDX: ffff888018f6da00 RSI: 0000000000000001 RDI: 0000000000000000 [ 205.686979][ T111] RBP: ffffc90002cf7d48 R08: 0000000000000003 R09: 0000000000000000 [ 205.694997][ T111] R10: ffffc90002cf7ca0 R11: fffff5200059ef98 R12: ffff888023328000 [ 205.703412][ T111] R13: dffffc0000000000 R14: ffff888023a66238 R15: 0000000000000040 [ 205.711842][ T111] FS: 0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 205.720886][ T111] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 205.727607][ T111] CR2: 00007f1c321b4198 CR3: 000000000cb30000 CR4: 00000000003506f0 [ 205.736176][ T111] Kernel panic - not syncing: Fatal exception [ 205.742589][ T111] Kernel Offset: disabled [ 205.746917][ T111] Rebooting in 86400 seconds..