last executing test programs: 2m40.44203578s ago: executing program 3 (id=1733): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000140)=@getnexthop={0x18, 0x6a, 0x501, 0x0, 0x0, {0x0, 0x0, 0x0, 0x2}}, 0x18}}, 0x0) 2m40.223094829s ago: executing program 3 (id=1737): r0 = syz_init_net_socket$nfc_llcp(0x27, 0x1, 0x1) setsockopt$nfc_llcp_NFC_LLCP_RW(r0, 0x118, 0x0, 0x0, 0x0) 2m40.035860019s ago: executing program 3 (id=1740): r0 = socket$kcm(0x2, 0x1000000000000002, 0x0) sendmsg$inet(r0, &(0x7f0000000640)={&(0x7f00000005c0)={0x2, 0x4e20, @local}, 0x10, 0x0, 0x0, &(0x7f0000000340)=[@ip_retopts={{0x18, 0x0, 0x7, {[@noop, @timestamp={0x44, 0x4, 0x1f, 0x0, 0x5}]}}}], 0x18}, 0x0) 2m39.897040608s ago: executing program 3 (id=1743): syz_mount_image$msdos(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x2100c8, &(0x7f0000000100)=ANY=[@ANYBLOB='codepage=87\x00\x00nodots,dots,check=relaxed,check=relaxed,dots,dots,dots,nodots,check=strict,nodots,tz=UTC,nodots,nodots,sys_hmmutable,dos1xfloppy,nodots,dots,dots,nodots,nodots,nfs=nostale_ro,dots,\x00'], 0xfd, 0x1bf, &(0x7f0000000940)="$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") syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000040)='./file1\x00', 0x10c00, &(0x7f0000000100)=ANY=[], 0x3, 0x150c, &(0x7f0000002a80)="$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") 2m39.168046576s ago: executing program 3 (id=1748): syz_mount_image$squashfs(&(0x7f0000000200), &(0x7f0000000000)='./file0\x00', 0x10, &(0x7f0000000680)=ANY=[@ANYBLOB="005901e3fd18fb9c322293c67dcde48bfeffd1843c336e09b34af65ad26aafded7da5cfeeda2b8d8d900c2195f00f646f699eeb47813177405a6a6baf786c0d14f2079a9efa9db8973bcca25eb2973856c6760a483c41d0980c78a4cb096a5affa6b980600000000000000a1eacd2c820176737d4eb55dca564820dd769d8742f6d9ab243775a67afcdf845f978e95365cdf6f30aa43423b381881433e00ccbe6353b21300d8f0ca972589398eef9487db78486fcf174990c488031f8b39cc01bb509f3ea4bcde33d4c9e305ecb4dd88204c5d7bb5e469cabfda0feca3ce70c0acbc34d13e5a5c796eab23abfe3b717834f8e9d7120e1e925c4e210b4152c75210b3e979fbe8ddf23eef2d53733209b22206e0a4afc354c33d7ca2a00116a14d686e4aa86b6ec6a4130178c3ad8c723c0d8506bd7bff780000000000000000004b2ec61cfde813cc124715aaaf5508b93d8cf0860042108b660b74f94b1e4851eeec09fdb7a617eabeeeff8ce8bb99f4b1f9c2896cf31e19c3c24155b0ea7dc3cae1b56acb1946830cad94af3f1caf43ea03b38fc08a7e19480e283a4c0d", @ANYRESDEC, @ANYRESHEX, @ANYRESOCT, @ANYRES16, @ANYRES8, @ANYBLOB="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"], 0xfd, 0x200, &(0x7f00000002c0)="$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") open(&(0x7f0000000140)='./file2\x00', 0x0, 0x0) 2m38.007346932s ago: executing program 3 (id=1765): futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000048000), 0x0) 2m22.84813264s ago: executing program 32 (id=1765): futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0) futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000280)={0x77359400}, &(0x7f0000048000), 0x0) 1m49.406985385s ago: executing program 1 (id=2430): r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) lseek(r0, 0x851, 0x0) 1m49.242787234s ago: executing program 1 (id=2433): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x401, 0x0, 0x3, {0x0, 0x0, 0x0, 0x0, 0x18003}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}}}]}, 0x48}}, 0x0) 1m49.032797814s ago: executing program 1 (id=2437): r0 = socket$inet_dccp(0x2, 0x6, 0x0) setsockopt$inet_msfilter(r0, 0x10d, 0x2, 0x0, 0x14) 1m48.936355773s ago: executing program 1 (id=2438): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000040)={[{@norecovery}, {@grpquota}, {@debug}, {@discard}]}, 0xee, 0x498, &(0x7f0000001b40)="$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") mount(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) 1m48.311229651s ago: executing program 1 (id=2446): socketpair(0x1, 0x1, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8b06, &(0x7f0000000140)={'wlan1\x00', @random="0100000000eb"}) 1m47.532232758s ago: executing program 1 (id=2456): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000002000010000000000000000000a00000800000000000000d4060018"], 0x2c}}, 0x0) 1m47.039756227s ago: executing program 33 (id=2456): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=ANY=[@ANYBLOB="2c0000002000010000000000000000000a00000800000000000000d4060018"], 0x2c}}, 0x0) 2.829721639s ago: executing program 0 (id=3731): r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x20902, 0x0) write$sequencer(r0, &(0x7f0000000080)=[@v={0x93, 0x0, 0xa0, 0x0, @generic=0x77}], 0x8) 2.696793249s ago: executing program 2 (id=3733): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0xba, &(0x7f0000000000), &(0x7f0000000080)=0x4) 2.532277678s ago: executing program 0 (id=3737): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000000c0)=@mpls_newroute={0x140, 0x18, 0x601, 0x0, 0x0, {0x1c, 0x14, 0x0, 0x0, 0xfe, 0x0, 0x0, 0x1}, [@RTA_TTL_PROPAGATE={0x5}, @RTA_MULTIPATH={0xc}, @RTA_NEWDST={0x3b}, @RTA_NEWDST={0x84}, @RTA_TTL_PROPAGATE={0x5}]}, 0x140}}, 0x0) 2.429267158s ago: executing program 2 (id=3738): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x15, 0x10, 0x2, 0x0, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_ELEM(0x3, &(0x7f00000002c0)={r0, &(0x7f0000000180)}, 0x20) 2.255683927s ago: executing program 0 (id=3741): r0 = syz_open_dev$video(&(0x7f0000000040), 0x7, 0x0) ioctl$VIDIOC_ENUMINPUT(r0, 0xc050561a, &(0x7f0000000200)={0x4, "80a246be445c94f43a16d380ec570000aa2e5a000000000400", 0x2, 0x0, 0x2, 0x0, 0x506078e, 0x2}) 2.192158807s ago: executing program 2 (id=3742): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)={{0x14}, [@NFT_MSG_NEWSET={0x50, 0x9, 0xa, 0x3, 0x0, 0x0, {}, [@NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x2}, @NFTA_SET_ID={0x8}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_DESC={0x14, 0x9, 0x0, 0x1, [@NFTA_SET_DESC_CONCAT={0x7, 0x2, 0x0, 0x1, [{0xc, 0x1, 0x0, 0x1, [@NFTA_SET_FIELD_LEN={0x8}]}]}]}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}]}], {0x14}}, 0x78}}, 0x0) 2.093527487s ago: executing program 0 (id=3743): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000180)='/proc/bus/input/devices\x00', 0x0, 0x0) lseek(r0, 0x146e80000000000, 0x0) 1.988342716s ago: executing program 2 (id=3745): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)=@newsa={0x1a0, 0x10, 0x1, 0x0, 0x0, {{@in, @in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}, {@in=@dev={0xac, 0x14, 0x14, 0x13}, 0x0, 0x32}, @in6=@mcast1, {0x0, 0xb0a, 0x0, 0x0, 0x0, 0x0, 0x9}, {0x0, 0xffffffffffffffff}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xaf}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x0, 0x0, 0x0, 0x0, 0x70bd29}}, @algo_auth_trunc={0x4c, 0x14, {{'cmac(aes)\x00'}}}]}, 0x1a0}}, 0x0) 1.764208375s ago: executing program 4 (id=3749): alarm(0x8000000000000001) alarm(0x0) 1.763933305s ago: executing program 0 (id=3750): r0 = syz_usb_connect_ath9k(0x3, 0x5a, &(0x7f0000000780)={{0x12, 0x1, 0x200, 0xff, 0xff, 0xff, 0x40, 0xcf3, 0x9271, 0x108, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x48}}]}}, 0x0) syz_usb_ep_write$ath9k_ep2(r0, 0x83, 0x41, &(0x7f0000000800)=@generic={0x0, 0x0, 0x39, "fd10f80b", "e7f3561bc9c861a1b1c454e8d497b9760a3facb6ab9af5b60ed05bc1cf5ebd1e6c357aaac2624fd0bd5db6ff790a2a4f8012eadc78e99fb504"}) 1.599404555s ago: executing program 6 (id=3752): r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$EBT_SO_SET_ENTRIES(r0, 0x0, 0x80, &(0x7f0000000240)=@broute={'broute\x00', 0x20, 0x0, 0x90, [0x0, 0x0, 0x0, 0x0, 0x0, 0x20000180], 0x0, 0x0, &(0x7f0000000180)=[{0x0, '\x00', 0x0, 0xffffffffffffffff}, {0x0, '\x00', 0x0, 0xfffffffffffffffe}, {0x0, '\x00', 0x0, 0xfffffffffffffffe, 0x2}]}, 0x108) 1.555137105s ago: executing program 4 (id=3753): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f00000005c0)='./file1\x00', 0x1018ed8, &(0x7f0000000180)={[{@sysvgroups}, {@noload}, {@nobh}, {@noload}, {@journal_dev={'journal_dev', 0x3d, 0x4}}, {@norecovery}, {@errors_continue}, {@quota}]}, 0x6, 0x644, &(0x7f00000006c0)="$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") quotactl$Q_QUOTAOFF(0xffffffff80000700, &(0x7f0000000180)=@loop={'/dev/loop', 0x0}, 0x0, 0x8cffffff00000000) 1.460302455s ago: executing program 5 (id=3754): r0 = socket$nl_rdma(0x10, 0x3, 0x14) sendmsg$RDMA_NLDEV_CMD_NEWLINK(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000340)=ANY=[@ANYBLOB="38000000031401002abd7000fedbdf250900020073797a312469"], 0x38}, 0x1, 0x0, 0x0, 0x800}, 0x20000000) 1.427380344s ago: executing program 6 (id=3755): r0 = socket$inet_udp(0x2, 0x2, 0x0) setsockopt$IPT_SO_SET_ADD_COUNTERS(r0, 0x0, 0x41, &(0x7f0000000240)=ANY=[], 0x78) 1.305410194s ago: executing program 5 (id=3756): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000180)={r0, 0xffffffff, 0xfe36, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x1}, 0x50) 1.188118724s ago: executing program 2 (id=3757): r0 = socket$igmp(0x2, 0x3, 0x2) setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000040)={'filter\x00', 0x10, 0x4, 0x3f0, 0x1f8, 0x1f8, 0xe8, 0x308, 0x308, 0x308, 0x4, 0x0, {[{{@arp={@multicast1, @loopback, 0x0, 0x0, 0x0, 0x0, {@mac=@broadcast}, {}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'wlan0\x00', 'batadv_slave_0\x00'}, 0xc0, 0xe0}, @unspec=@NFQUEUE1={0x28, 'NFQUEUE\x00', 0x1, {0x0, 0x3}}}, {{@uncond, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@broadcast, @broadcast, @remote, 0x1, 0xfffffffe}}}, {{@arp={@multicast1, @empty, 0x0, 0x0, 0x0, 0x0, {}, {@mac=@remote}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 'syzkaller0\x00', 'ipvlan1\x00'}, 0xc0, 0x110}, @mangle={0x50, 'mangle\x00', 0x0, {@empty, @mac=@multicast, @multicast2, @broadcast}}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x440) 1.187983154s ago: executing program 6 (id=3758): r0 = socket$inet_dccp(0x2, 0x6, 0x0) getsockopt$inet_int(r0, 0x10d, 0xe0, &(0x7f0000000080), &(0x7f00000000c0)=0x4) 1.091692994s ago: executing program 5 (id=3759): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000380)='./bus\x00', 0x200880, &(0x7f0000000600), 0x3, 0x1509, &(0x7f0000000f80)="$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") rename(&(0x7f00000003c0)='./file0\x00', &(0x7f0000000740)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 952.491823ms ago: executing program 6 (id=3760): r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x2, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x40284504, &(0x7f0000000380)={0x0, 0x2, 0x0, 0x4, "040000007a37f3ba00"}) 910.076733ms ago: executing program 2 (id=3761): r0 = syz_mount_image$btrfs(&(0x7f0000000200), &(0x7f0000005600)='./file0\x00', 0x800, &(0x7f0000000240), 0x0, 0x559e, &(0x7f0000005680)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR") ioctl$BTRFS_IOC_SEND(r0, 0x40489426, 0x0) 852.951833ms ago: executing program 4 (id=3762): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) bind$bt_l2cap(r0, &(0x7f0000000000)={0x1f, 0x0, @any, 0x4000, 0x3}, 0xe) 664.283812ms ago: executing program 6 (id=3763): r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$TIPC_NL_UDP_GET_REMOTEIP(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000600)={0x24, 0x0, 0x0, 0x0, 0x0, {}, [@TIPC_NLA_BEARER={0x10, 0x1, 0x0, 0x1, [@TIPC_NLA_BEARER_DOMAIN={0x8}, @TIPC_NLA_BEARER_PROP={0x4}]}]}, 0x33fe0}}, 0x0) 620.853202ms ago: executing program 5 (id=3764): r0 = socket$qrtr(0x2a, 0x2, 0x0) ioctl$sock_qrtr_TIOCINQ(r0, 0x541b, &(0x7f0000000240)) 526.625931ms ago: executing program 4 (id=3765): r0 = socket$rds(0x15, 0x5, 0x0) setsockopt$RDS_RECVERR(r0, 0x114, 0x5, &(0x7f0000000340), 0x4) 464.209061ms ago: executing program 6 (id=3766): getrandom(&(0x7f0000000240)=""/286, 0xffffff9a, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 404.900371ms ago: executing program 5 (id=3767): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000000240), 0x2, 0x0) ioctl$VIDIOC_CREATE_BUFS(r0, 0xc100565c, &(0x7f0000000140)={0x0, 0x0, 0x1, {0xa, @raw_data="cd1bbe24cb522ca048535633897d147ce7f33897ef4f01481515e876dca85ca2f3c88130ec01da484f3a405da0fd93a65c2d08b14c8754b61863062895dd48f7c3766b4f623c36cc95b915e98996a44a6814be7f16e3ff6872356d5a1bd50703a4367c5c0e5f700404e5dd36f1873c0c2de2de2f15ad991d333be811f16e54842204bab7387615c5c03bdcda8640615529d87cdfb667ecacc24553f785af8899f26178c125bd07d22779316052f4150cbbb31a6f01420153738d759d2eca7818c5908933b18401eb"}}) 351.795201ms ago: executing program 4 (id=3768): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000200)=@ipv4_newrule={0x24, 0x20, 0x301, 0x0, 0x0, {0x2, 0x0, 0x20, 0x0, 0x0, 0x0, 0x0, 0x1, 0x1a}, [@FRA_SRC={0x8, 0x2, @private=0xa010101}]}, 0x24}, 0x1, 0x0, 0x0, 0x40001}, 0x0) 191.09809ms ago: executing program 5 (id=3769): r0 = add_key$keyring(&(0x7f0000000100), &(0x7f0000000180)={'syz', 0x1}, 0x0, 0x0, 0xfffffffffffffffe) add_key(&(0x7f00000003c0)='ceph\x00', 0x0, &(0x7f0000000400)="010000000037a788a11d1f00", 0xc, r0) 96.34008ms ago: executing program 4 (id=3770): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TIOCL_SETSEL(r0, 0x541c, 0x0) 0s ago: executing program 0 (id=3771): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000000f80)=ANY=[@ANYBLOB="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"/3112], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000007c0)={r0, 0x18000000000002a0, 0xf, 0x0, &(0x7f0000000100)="b9ff0b076859268cb89e14f088a847", 0x0, 0xf00, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) kernel console output (not intermixed with test programs): 99][ T4240] usb 1-1: New USB device found, idVendor=0582, idProduct=0005, bcdDevice= 0.88 [ 335.751464][ T4240] usb 1-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3 [ 335.767557][ T4957] snd-usb-audio: probe of 5-1:0.0 failed with error -2 [ 335.776163][ T4240] usb 1-1: Product: syz [ 335.780365][ T4240] usb 1-1: SerialNumber: syz [ 335.806451][ T4240] usb 1-1: config 0 descriptor?? [ 335.812153][T10165] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 335.827135][ T4966] usb 3-1: Using ep0 maxpacket: 16 [ 335.844769][ T4966] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 335.862306][ T4364] udevd[4364]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 335.864487][ T4966] usb 3-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 335.922409][ T4966] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 335.954490][ T4966] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 335.964669][ T4966] usb 3-1: Product: syz [ 335.968911][ T4966] usb 3-1: Manufacturer: syz [ 335.981694][ T4343] usb 5-1: USB disconnect, device number 17 [ 335.983800][ T4966] usb 3-1: SerialNumber: syz [ 336.005211][ T4966] r8152-cfgselector 3-1: config 0 descriptor?? [ 336.054278][ T4240] usb 1-1: invalid MIDI in EP 0 [ 336.154054][ T4240] snd-usb-audio: probe of 1-1:0.2 failed with error -22 [ 336.194597][ T4240] usb 1-1: USB disconnect, device number 20 [ 336.225129][ T4966] usbip-host 3-1: 3-1 is not in match_busid table... skip! [ 336.262551][ T46] usb 3-1: config 0 descriptor?? [ 336.279802][T10179] loop5: detected capacity change from 0 to 32768 [ 336.382280][T10179] ERROR: (device loop5): dbAlloc: the hint is outside the map [ 336.382280][T10179] [ 336.405144][T10179] ialloc: diAlloc returned -5! [ 336.435992][ T46] usb 3-1: can't set config #0, error -71 [ 336.436797][ T4959] usb 3-1: USB disconnect, device number 16 [ 336.465415][ T4363] udevd[4363]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.2/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 336.975141][T10203] loop1: detected capacity change from 0 to 1024 [ 336.982349][T10203] EXT4-fs: Ignoring removed orlov option [ 337.014502][T10203] EXT4-fs: Ignoring removed nomblk_io_submit option [ 337.066450][T10203] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a80ec018, mo2=0002] [ 337.084515][T10203] System zones: 0-1, 3-36 [ 337.122699][T10203] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 337.231744][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 337.612922][T10227] loop0: detected capacity change from 0 to 4096 [ 337.669752][T10221] loop1: detected capacity change from 0 to 4096 [ 337.712157][T10227] ntfs: volume version 3.1. [ 337.735326][T10221] __ntfs_warning: 45 callbacks suppressed [ 337.735343][T10221] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 337.956636][T10221] ntfs: (device loop1): parse_options(): NLS character set iso8(ê;3 not found. Using previous one utf8. [ 337.963159][T10240] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2296'. [ 337.987249][T10240] netlink: 60 bytes leftover after parsing attributes in process `syz.4.2296'. [ 337.988983][T10221] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 338.050610][T10221] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x0 because its location on disk could not be determined even after retrying (error code -5). [ 338.117528][T10221] ntfs: (device loop1): ntfs_mapping_pairs_decompress(): Corrupt mapping pairs array in non-resident attribute. [ 338.151773][T10221] ntfs: (device loop1): ntfs_read_block(): Failed to read from inode 0x1, attribute type 0x80, vcn 0x0, offset 0x800 because its location on disk could not be determined even after retrying (error code -5). [ 338.228489][T10221] ntfs: (device loop1): check_mft_mirror(): Failed to read $MFTMirr. [ 338.247239][T10221] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 338.260349][T10248] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=io+mem:owns=io+mem [ 338.319848][T10221] ntfs: volume version 3.1. [ 338.348052][T10221] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Index entry with child node found in a leaf node in directory inode 0x5. [ 338.404578][T10221] ntfs: (device loop1): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 338.892031][T10264] loop0: detected capacity change from 0 to 4096 [ 338.923504][T10264] ntfs3: loop0: Different NTFS' sector size (2048) and media sector size (512) [ 338.955910][T10272] loop4: detected capacity change from 0 to 128 [ 338.987765][T10264] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 338.995982][T10272] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 339.043829][T10272] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 339.045296][T10264] ntfs3: loop0: Failed to load $Extend. [ 339.103870][T10272] FAT-fs (loop4): Filesystem has been set read-only [ 339.226829][ T4253] FAT-fs (loop4): error, invalid access to FAT (entry 0x00000100) [ 339.271680][T10278] capability: warning: `syz.2.2315' uses 32-bit capabilities (legacy support in use) [ 339.824807][T10266] loop5: detected capacity change from 0 to 32768 [ 339.852866][T10266] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 scanned by syz.5.2311 (10266) [ 339.956821][T10266] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 340.003142][T10266] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 340.026432][T10266] BTRFS info (device loop5): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 340.066674][T10266] BTRFS info (device loop5): force zstd compression, level 3 [ 340.108990][T10266] BTRFS info (device loop5): turning on sync discard [ 340.133884][T10266] BTRFS info (device loop5): enabling ssd optimizations [ 340.176686][T10266] BTRFS info (device loop5): using spread ssd allocation scheme [ 340.208920][T10266] BTRFS info (device loop5): max_inline at 0 [ 340.221530][T10266] BTRFS info (device loop5): force clearing of disk cache [ 340.248982][T10266] BTRFS info (device loop5): setting nodatacow [ 340.282495][T10266] BTRFS info (device loop5): using free space tree [ 340.321414][T10311] block nbd0: NBD_DISCONNECT [ 340.399865][T10319] syz.2.2333 (10319): /proc/10318/oom_adj is deprecated, please use /proc/10318/oom_score_adj instead. [ 340.507832][T10266] BTRFS info (device loop5): rebuilding free space tree [ 340.681945][ T9538] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 341.158141][T10350] IPVS: set_ctl: invalid protocol: 41 127.0.0.1:20003 [ 341.451695][T10360] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2347'. [ 341.606467][T10364] loop0: detected capacity change from 0 to 1024 [ 341.674113][T10364] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 341.729112][T10364] ext4 filesystem being mounted at /480/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 341.949456][ T4254] EXT4-fs (loop0): unmounting filesystem. [ 342.186782][T10385] futex_wake_op: syz.2.2358 tries to shift op by -1; fix this program [ 342.308454][T10389] loop4: detected capacity change from 0 to 256 [ 342.622700][T10371] loop5: detected capacity change from 0 to 32768 [ 342.793142][T10403] loop1: detected capacity change from 0 to 64 [ 342.998890][T10405] loop4: detected capacity change from 0 to 2048 [ 343.066148][T10405] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 343.134673][T10405] UDF-fs: error (device loop4): udf_verify_fi: directory (ino 1376) has entry at pos 232 with incorrect tag 0 [ 343.195276][T10408] loop0: detected capacity change from 0 to 8192 [ 343.250506][T10408] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 343.281939][T10408] REISERFS (device loop0): found reiserfs format "3.6" with non-standard journal [ 343.303484][T10408] REISERFS (device loop0): using ordered data mode [ 343.320620][T10408] reiserfs: using flush barriers [ 343.345004][T10408] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 343.415004][T10408] REISERFS (device loop0): checking transaction log (loop0) [ 343.493703][T10422] loop4: detected capacity change from 0 to 64 [ 343.781146][T10408] REISERFS (device loop0): Using tea hash to sort names [ 344.198241][T10444] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2387'. [ 344.277852][T10448] loop4: detected capacity change from 0 to 128 [ 344.334126][T10450] loop5: detected capacity change from 0 to 256 [ 344.414720][ T5032] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 344.609006][ T5032] usb 2-1: Using ep0 maxpacket: 16 [ 344.618653][ T5032] usb 2-1: New USB device found, idVendor=0471, idProduct=0327, bcdDevice=61.a4 [ 344.653374][ T5032] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 344.685629][ T5032] usb 2-1: config 0 descriptor?? [ 344.720807][ T5032] gspca_main: sonixj-2.14.0 probing 0471:0327 [ 344.745516][T10462] VFS: Can't find a Minix filesystem V1 | V2 | V3 on device nullb0. [ 345.099354][ T5032] gspca_sonixj: reg_r err -71 [ 345.104985][ T5032] sonixj: probe of 2-1:0.0 failed with error -71 [ 345.134675][ T5032] usb 2-1: USB disconnect, device number 13 [ 345.197854][T10476] loop5: detected capacity change from 0 to 1024 [ 345.219955][T10482] netlink: 'syz.2.2404': attribute type 21 has an invalid length. [ 345.234718][T10482] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2404'. [ 345.312361][T10476] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 345.326674][T10476] ext4 filesystem being mounted at /56/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 345.591362][ T9538] EXT4-fs (loop5): unmounting filesystem. [ 346.073668][T10512] netlink: 52 bytes leftover after parsing attributes in process `syz.5.2419'. [ 346.753670][T10501] loop0: detected capacity change from 0 to 32768 [ 346.813991][T10536] x_tables: ip6_tables: rpfilter match: used from hooks INPUT, but only valid from PREROUTING [ 346.839883][T10501] (syz.0.2413,10501,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 346.891645][T10501] (syz.0.2413,10501,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 346.950615][T10501] JBD2: Ignoring recovery information on journal [ 347.048448][T10501] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 347.220540][T10552] loop1: detected capacity change from 0 to 512 [ 347.275363][T10552] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 347.322291][ T4254] ocfs2: Unmounting device (7,0) on (node local) [ 347.325180][T10552] EXT4-fs (loop1): invalid journal inode [ 347.380660][T10552] EXT4-fs (loop1): can't get journal size [ 347.444976][T10552] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=e016c118, mo2=0002] [ 347.512760][T10552] System zones: 1-12, 13-13 [ 347.560707][T10559] loop0: detected capacity change from 0 to 512 [ 347.585154][T10559] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 347.625950][T10552] EXT4-fs (loop1): 1 truncate cleaned up [ 347.631667][T10552] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 347.661992][T10559] EXT4-fs (loop0): orphan cleanup on readonly fs [ 347.676448][T10559] __quota_error: 3 callbacks suppressed [ 347.676467][T10559] Quota error (device loop0): dq_insert_tree: Quota tree root isn't allocated! [ 347.714552][T10559] Quota error (device loop0): qtree_write_dquot: Error -5 occurred while creating quota [ 347.738706][T10565] loop5: detected capacity change from 0 to 764 [ 347.766222][ T4249] EXT4-fs error (device loop1): __ext4_iget:5055: inode #11: block 1828716567: comm syz-executor: invalid block [ 347.780704][T10559] EXT4-fs error (device loop0): ext4_acquire_dquot:6795: comm syz.0.2441: Failed to acquire dquot type 1 [ 347.830948][ T4249] EXT4-fs error (device loop1): __ext4_iget:5055: inode #11: block 1828716567: comm syz-executor: invalid block [ 347.866155][T10559] EXT4-fs error (device loop0): ext4_validate_block_bitmap:438: comm syz.0.2441: bg 0: block 40: padding at end of block bitmap is not set [ 347.933120][T10559] EXT4-fs error (device loop0) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 348.015762][T10559] EXT4-fs (loop0): 1 truncate cleaned up [ 348.032236][T10559] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 348.067175][T10574] Scaler: ================= START STATUS ================= [ 348.102948][T10574] Scaler: ================== END STATUS ================== [ 348.178989][ T4254] EXT4-fs (loop0): unmounting filesystem. [ 348.400289][ T4249] EXT4-fs (loop1): unmounting filesystem. [ 348.513088][T10585] loop0: detected capacity change from 0 to 128 [ 348.553998][ T5639] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 348.562373][T10587] loop4: detected capacity change from 0 to 256 [ 348.624535][T10585] vxfs: WRONG superblock magic 7b3185b5 at 1 [ 348.653671][T10585] vxfs: WRONG superblock magic 7b318cb5 at 8 [ 348.675835][T10585] vxfs: can't find superblock. [ 348.720861][T10589] loop5: detected capacity change from 0 to 16 [ 348.745135][T10589] erofs: (device loop5): mounted with root inode @ nid 36. [ 348.769351][T10585] loop0: detected capacity change from 0 to 256 [ 348.797211][T10589] erofs: (device loop5): init_inode_xattrs: xattr_isize 12 of nid 86 is not supported yet [ 348.816127][T10585] exfat: Deprecated parameter 'debug' [ 348.873301][T10585] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011bf5, chksum : 0xcea91b8a, utbl_chksum : 0xe619d30d) [ 348.898368][ T5639] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 348.929396][T10585] exFAT-fs (loop0): bogus allocation bitmap size(need : 2, cur : 17179869186) [ 349.074120][ T5639] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.256508][ T5639] netdevsim netdevsim1 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 349.558570][T10580] loop2: detected capacity change from 0 to 32768 [ 349.612829][T10580] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.2452 (10580) [ 349.712464][T10580] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 349.755988][T10580] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 349.824983][T10580] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 349.859848][T10580] BTRFS info (device loop2): force zstd compression, level 3 [ 349.877875][T10580] BTRFS info (device loop2): turning on sync discard [ 349.898133][T10580] BTRFS info (device loop2): enabling ssd optimizations [ 349.941060][T10580] BTRFS info (device loop2): using spread ssd allocation scheme [ 349.970947][T10580] BTRFS info (device loop2): max_inline at 0 [ 350.013673][T10580] BTRFS info (device loop2): force clearing of disk cache [ 350.037403][ T4262] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 350.047566][ T4262] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 350.056561][ T4262] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 350.058418][T10596] Bluetooth: hci2: Opcode 0x0c1a failed: -4 [ 350.069827][T10580] BTRFS info (device loop2): setting nodatacow [ 350.077566][ T4262] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 350.085466][ T4262] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 350.092732][ T4262] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 350.135959][T10580] BTRFS info (device loop2): using free space tree [ 350.588404][T10580] BTRFS info (device loop2): rebuilding free space tree [ 350.898517][ T4259] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 351.273660][T10669] loop0: detected capacity change from 0 to 256 [ 351.305083][ T4257] Bluetooth: hci2: command 0x0c1a tx timeout [ 351.321597][T10669] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 351.515020][T10611] chnl_net:caif_netlink_parms(): no params data found [ 351.800787][T10677] netlink: 'syz.0.2492': attribute type 21 has an invalid length. [ 351.800859][T10677] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2492'. [ 351.800888][T10677] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2492'. [ 351.882308][ T26] audit: type=1326 audit(1738434977.875:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.2.2477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 351.883881][ T26] audit: type=1326 audit(1738434977.875:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.2.2477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=77 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 351.883992][ T26] audit: type=1326 audit(1738434977.875:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10687 comm="syz.2.2477" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 352.184874][ T4257] Bluetooth: hci0: command 0x0409 tx timeout [ 352.221521][T10611] bridge0: port 1(bridge_slave_0) entered blocking state [ 352.270946][T10611] bridge0: port 1(bridge_slave_0) entered disabled state [ 352.289762][T10611] device bridge_slave_0 entered promiscuous mode [ 352.310850][T10698] netlink: 16 bytes leftover after parsing attributes in process `syz.2.2489'. [ 352.373735][T10611] bridge0: port 2(bridge_slave_1) entered blocking state [ 352.393571][T10611] bridge0: port 2(bridge_slave_1) entered disabled state [ 352.427413][T10611] device bridge_slave_1 entered promiscuous mode [ 352.915292][T10611] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 353.075492][T10611] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 353.199108][ T5639] device hsr_slave_0 left promiscuous mode [ 353.234948][ T5639] device hsr_slave_1 left promiscuous mode [ 353.303251][ T5639] device bridge_slave_1 left promiscuous mode [ 353.341449][ T5639] bridge0: port 2(bridge_slave_1) entered disabled state [ 353.415078][ T5639] device bridge_slave_0 left promiscuous mode [ 353.421494][ T5639] bridge0: port 1(bridge_slave_0) entered disabled state [ 353.620919][ T5639] device veth1_macvtap left promiscuous mode [ 353.656098][ T5639] device veth0_macvtap left promiscuous mode [ 353.680660][ T5639] device veth1_vlan left promiscuous mode [ 353.882343][T10753] loop5: detected capacity change from 0 to 4096 [ 353.946182][T10754] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 353.958454][T10753] NILFS error (device loop5): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=0, inode=18158232222581129218, rec_len=65535, name_len=1 [ 353.983099][T10753] Remounting filesystem read-only [ 354.015041][ T5639] bond1 (unregistering): Released all slaves [ 354.264757][ T4257] Bluetooth: hci0: command 0x041b tx timeout [ 354.526654][ T5639] team0 (unregistering): Port device team_slave_1 removed [ 354.574133][ T5639] team0 (unregistering): Port device team_slave_0 removed [ 354.624640][ T5639] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 354.671547][ T5639] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 355.151450][ T5639] bond0 (unregistering): Released all slaves [ 355.234545][T10737] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2505'. [ 355.243448][T10737] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2505'. [ 355.297988][T10756] netlink: 'syz.5.2513': attribute type 5 has an invalid length. [ 355.310568][T10756] netlink: 'syz.5.2513': attribute type 11 has an invalid length. [ 355.365034][T10611] team0: Port device team_slave_0 added [ 355.410045][T10758] netlink: 60 bytes leftover after parsing attributes in process `syz.0.2514'. [ 355.415886][T10611] team0: Port device team_slave_1 added [ 355.554608][T10611] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 355.589973][T10611] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 355.703187][T10765] loop5: detected capacity change from 0 to 2048 [ 355.724459][T10611] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 355.768161][T10611] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 355.782529][T10611] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 355.835748][T10765] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 355.837511][T10767] loop4: detected capacity change from 0 to 4096 [ 355.904894][T10611] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 355.937203][T10775] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 356.045389][T10767] NILFS (loop4): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 356.066115][T10767] NILFS error (device loop4): nilfs_bmap_truncate: broken bmap (inode number=12) [ 356.157483][T10611] device hsr_slave_0 entered promiscuous mode [ 356.161094][T10767] Remounting filesystem read-only [ 356.170401][T10767] NILFS (loop4): error -5 truncating bmap (ino=12) [ 356.222410][T10611] device hsr_slave_1 entered promiscuous mode [ 356.237721][T10611] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 356.263996][T10611] Cannot create hsr debugfs directory [ 356.344580][ T4257] Bluetooth: hci0: command 0x040f tx timeout [ 356.446652][ T4253] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 356.472185][ T4253] NILFS (loop4): discard dirty page: offset=0, ino=2 [ 356.523398][ T4253] NILFS (loop4): discard dirty block: blocknr=14, size=4096 [ 356.554899][ T4253] NILFS (loop4): discard dirty page: offset=0, ino=6 [ 356.562610][ T4253] NILFS (loop4): discard dirty block: blocknr=23, size=4096 [ 356.612841][ T4253] NILFS (loop4): discard dirty page: offset=4096, ino=6 [ 356.643983][ T4253] NILFS (loop4): discard dirty block: blocknr=24, size=4096 [ 356.688874][T10791] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2528'. [ 356.698152][ T4253] NILFS (loop4): discard dirty page: offset=8192, ino=6 [ 356.708176][ T4253] NILFS (loop4): discard dirty block: blocknr=25, size=4096 [ 356.716473][T10791] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2528'. [ 356.828076][T10611] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 356.871078][T10611] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 356.945121][T10611] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 356.990812][T10611] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 357.274918][T10814] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2535'. [ 357.304930][T10814] (unnamed net_device) (uninitialized): option resend_igmp: invalid value (511) [ 357.314028][T10814] (unnamed net_device) (uninitialized): option resend_igmp: allowed values 0 - 255 [ 357.494593][T10611] 8021q: adding VLAN 0 to HW filter on device bond0 [ 357.561146][T10611] 8021q: adding VLAN 0 to HW filter on device team0 [ 357.630928][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 357.651397][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 357.693912][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 357.731121][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 357.745348][ T5639] bridge0: port 1(bridge_slave_0) entered blocking state [ 357.752525][ T5639] bridge0: port 1(bridge_slave_0) entered forwarding state [ 357.780819][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 357.811549][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 357.851715][ T5639] bridge0: port 2(bridge_slave_1) entered blocking state [ 357.859023][ T5639] bridge0: port 2(bridge_slave_1) entered forwarding state [ 357.880836][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 357.930576][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 357.949734][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 357.972970][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 357.995252][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 358.004257][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 358.014083][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 358.024019][ T5639] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 358.052318][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 358.075241][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 358.139073][T10835] device geneve2 entered promiscuous mode [ 358.188601][T10611] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 358.227949][T10611] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 358.252550][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 358.261920][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 358.424701][ T4257] Bluetooth: hci0: command 0x0419 tx timeout [ 358.543126][T10853] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2551'. [ 358.579607][T10856] loop5: detected capacity change from 0 to 256 [ 358.655387][T10856] exFAT-fs (loop5): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 358.925057][T10864] loop4: detected capacity change from 0 to 512 [ 358.932295][T10864] EXT4-fs: Ignoring removed mblk_io_submit option [ 358.994181][T10864] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 359.052427][T10871] (unnamed net_device) (uninitialized): option lacp_rate: mode dependency failed, not supported in mode balance-rr(0) [ 359.069052][T10864] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=b002c128, mo2=0002] [ 359.104655][T10864] System zones: 1-12 [ 359.131160][T10864] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.2555: corrupted in-inode xattr [ 359.159610][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 359.169474][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 359.214629][T10864] EXT4-fs (loop4): Remounting filesystem read-only [ 359.221812][T10864] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.2555: couldn't read orphan inode 15 (err -117) [ 359.254775][T10611] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 359.310295][T10864] EXT4-fs (loop4): Remounting filesystem read-only [ 359.332447][T10864] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 359.598944][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 360.211884][T10912] netlink: 220 bytes leftover after parsing attributes in process `syz.5.2570'. [ 360.469448][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 360.484720][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 360.534644][ T4340] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 360.572664][T10920] loop5: detected capacity change from 0 to 4096 [ 360.580100][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 360.598827][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 360.629070][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 360.653105][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 360.674550][T10926] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 360.719283][T10611] device veth0_vlan entered promiscuous mode [ 360.722533][T10920] NILFS (loop5): DAT doesn't have a block to manage vblocknr = 648518346341351424 [ 360.757706][T10920] NILFS error (device loop5): nilfs_bmap_truncate: broken bmap (inode number=12) [ 360.762403][T10611] device veth1_vlan entered promiscuous mode [ 360.773047][ T4340] usb 1-1: Using ep0 maxpacket: 16 [ 360.783522][ T4340] usb 1-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 360.813588][T10920] Remounting filesystem read-only [ 360.819016][ T4340] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 360.833251][T10920] NILFS (loop5): error -5 truncating bmap (ino=12) [ 360.857858][ T4340] usb 1-1: Product: syz [ 360.862841][ T4340] usb 1-1: Manufacturer: syz [ 360.873943][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 360.888292][ T4340] usb 1-1: SerialNumber: syz [ 360.900115][ T4340] usb 1-1: config 0 descriptor?? [ 360.926543][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 360.936965][ T4340] ssu100 1-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 360.956617][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 361.013780][ T4300] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 361.036647][ T9538] NILFS (loop5): disposed unprocessed dirty file(s) when detaching log writer [ 361.067802][T10611] device veth0_macvtap entered promiscuous mode [ 361.094091][T10611] device veth1_macvtap entered promiscuous mode [ 361.106990][ T9538] NILFS (loop5): discard dirty page: offset=0, ino=2 [ 361.107055][ T9538] NILFS (loop5): discard dirty block: blocknr=14, size=4096 [ 361.107397][ T9538] NILFS (loop5): discard dirty page: offset=0, ino=6 [ 361.107418][ T9538] NILFS (loop5): discard dirty block: blocknr=23, size=4096 [ 361.107442][ T9538] NILFS (loop5): discard dirty page: offset=4096, ino=6 [ 361.107460][ T9538] NILFS (loop5): discard dirty block: blocknr=24, size=4096 [ 361.107484][ T9538] NILFS (loop5): discard dirty page: offset=8192, ino=6 [ 361.107502][ T9538] NILFS (loop5): discard dirty block: blocknr=25, size=4096 [ 361.117260][T10908] loop2: detected capacity change from 0 to 32768 [ 361.219451][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.250063][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.270402][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.299241][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.322626][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.348353][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.368671][T10908] (syz.2.2568,10908,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 361.387021][ T4340] ssu100: probe of 1-1:0.0 failed with error -71 [ 361.411741][ T4340] usb 1-1: USB disconnect, device number 21 [ 361.413909][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.434925][T10908] (syz.2.2568,10908,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 361.475568][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.513105][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 361.534080][T10908] JBD2: Ignoring recovery information on journal [ 361.576908][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.612096][T10611] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 361.628853][T10939] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2578'. [ 361.639117][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 361.653113][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 361.661534][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 361.673329][T10908] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 361.679123][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 361.699525][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 361.723733][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.784943][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 361.804506][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.822724][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 361.833727][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.843642][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 361.854223][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.864097][T10611] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 361.875059][T10611] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 361.887645][T10611] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 361.911201][T10611] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 361.930368][ T4259] ocfs2: Unmounting device (7,2) on (node local) [ 361.939723][T10611] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 361.954696][ T5017] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 361.967752][T10611] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 361.976564][T10611] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 361.989895][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 361.999735][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 362.148806][ T5017] usb 6-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 362.171353][ T5017] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 362.213664][ T5017] usb 6-1: Product: syz [ 362.224318][ T4300] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 362.235123][ T5017] usb 6-1: Manufacturer: syz [ 362.239785][ T5017] usb 6-1: SerialNumber: syz [ 362.257378][ T5017] usb 6-1: config 0 descriptor?? [ 362.270402][ T4300] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 362.303447][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 362.411127][ T4300] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 362.434245][ T4300] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 362.472277][ T5017] hso 6-1:0.0: Can't find BULK IN endpoint [ 362.473994][ T66] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 362.485008][ T5017] usb-storage 6-1:0.0: USB Mass Storage device detected [ 362.722671][ T5017] usb 6-1: USB disconnect, device number 2 [ 363.856701][T11016] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (31) [ 364.182360][T11027] netlink: 16 bytes leftover after parsing attributes in process `syz.0.2609'. [ 364.200344][T11026] loop2: detected capacity change from 0 to 1024 [ 364.258269][T11026] EXT4-fs (loop2): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 364.312762][T11026] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 364.349134][T11026] jbd2_journal_init_inode: Cannot locate journal superblock [ 364.376783][T11026] EXT4-fs (loop2): Could not load journal inode [ 364.542759][T11026] loop2: detected capacity change from 0 to 512 [ 364.569318][T11029] loop4: detected capacity change from 0 to 8192 [ 364.619159][T11029] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 364.632571][T11026] EXT4-fs (loop2): failed to initialize system zone (-117) [ 364.646258][T11026] EXT4-fs (loop2): mount failed [ 364.692716][T11029] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 364.706664][T11029] REISERFS (device loop4): using ordered data mode [ 364.713338][T11029] reiserfs: using flush barriers [ 364.720326][T11029] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 364.738246][T11029] REISERFS (device loop4): checking transaction log (loop4) [ 365.121160][T11059] (unnamed net_device) (uninitialized): Removing last ns target with arp_interval on [ 365.170774][T11029] REISERFS (device loop4): Using tea hash to sort names [ 365.243831][T11067] netlink: 12 bytes leftover after parsing attributes in process `syz.6.2622'. [ 365.455561][T11074] 9pnet_virtio: no channels available for device syz [ 366.669809][T11117] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2641'. [ 366.732222][T11118] xt_cgroup: invalid path, errno=-2 [ 367.320112][T11101] loop4: detected capacity change from 0 to 32768 [ 367.367302][T11101] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 scanned by syz.4.2634 (11101) [ 367.432480][T11101] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 367.516324][T11101] BTRFS info (device loop4): using crc32c (crc32c-intel) checksum algorithm [ 367.564145][T11101] BTRFS info (device loop4): using free space tree [ 367.856901][T11101] BTRFS info (device loop4): enabling ssd optimizations [ 368.253569][ T4253] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 368.723660][T11205] loop5: detected capacity change from 0 to 16 [ 368.766857][T11205] erofs: (device loop5): mounted with root inode @ nid 36. [ 368.866124][T11205] erofs: (device loop5): z_erofs_read_folio: failed to read, err [-117] [ 369.044814][T11212] netlink: 3 bytes leftover after parsing attributes in process `syz.0.2668'. [ 369.155057][ T4957] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 369.348794][ T4957] usb 7-1: New USB device found, idVendor=09e1, idProduct=5121, bcdDevice=40.c1 [ 369.394708][ T4957] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 369.402778][ T4957] usb 7-1: Product: syz [ 369.421349][ T4957] usb 7-1: Manufacturer: syz [ 369.444797][ T4957] usb 7-1: SerialNumber: syz [ 369.482194][ T4957] usb 7-1: config 0 descriptor?? [ 369.738024][ T4957] int51x1: probe of 7-1:0.0 failed with error -22 [ 369.966954][ T4957] usb 7-1: USB disconnect, device number 2 [ 370.242491][T11252] loop2: detected capacity change from 0 to 256 [ 370.330016][T11252] FAT-fs (loop2): Directory bread(block 64) failed [ 370.344718][T11252] FAT-fs (loop2): Directory bread(block 65) failed [ 370.364731][T11252] FAT-fs (loop2): Directory bread(block 66) failed [ 370.390711][T11252] FAT-fs (loop2): Directory bread(block 67) failed [ 370.420214][T11252] FAT-fs (loop2): Directory bread(block 68) failed [ 370.448014][T11252] FAT-fs (loop2): Directory bread(block 69) failed [ 370.488729][T11252] FAT-fs (loop2): Directory bread(block 70) failed [ 370.511988][T11252] FAT-fs (loop2): Directory bread(block 71) failed [ 370.530713][T11252] FAT-fs (loop2): Directory bread(block 72) failed [ 370.551119][T11252] FAT-fs (loop2): Directory bread(block 73) failed [ 370.814667][ T5028] usb 5-1: new full-speed USB device number 18 using dummy_hcd [ 371.006137][ T5028] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 371.016959][ T5028] usb 5-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 371.048098][ T5028] usb 5-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66 [ 371.104610][ T4240] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 371.106324][ T5028] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 371.134569][ T5028] usb 5-1: Product: syz [ 371.138797][ T5028] usb 5-1: Manufacturer: syz [ 371.143516][ T5028] usb 5-1: SerialNumber: syz [ 371.169991][ T5028] usb 5-1: config 0 descriptor?? [ 371.191220][ T5028] snd-usb-audio: probe of 5-1:0.0 failed with error -22 [ 371.326110][ T4240] usb 7-1: New USB device found, idVendor=0c45, idProduct=608f, bcdDevice=b5.55 [ 371.339626][ T4240] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 371.347531][T11260] loop5: detected capacity change from 0 to 32768 [ 371.362959][ T4240] usb 7-1: Product: syz [ 371.371725][ T4240] usb 7-1: Manufacturer: syz [ 371.371723][T11260] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.2688 (11260) [ 371.396871][ T4240] usb 7-1: SerialNumber: syz [ 371.411506][ T4240] usb 7-1: config 0 descriptor?? [ 371.420429][ T4240] gspca_main: sonixb-2.14.0 probing 0c45:608f [ 371.427162][T11260] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 371.475622][T11260] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 371.484325][T11260] BTRFS info (device loop5): using free space tree [ 371.494762][ T5257] usb 5-1: USB disconnect, device number 18 [ 371.598328][ T5028] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 371.727608][T11260] BTRFS info (device loop5): enabling ssd optimizations [ 371.794534][ T5028] usb 3-1: Using ep0 maxpacket: 32 [ 371.805577][ T5028] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 371.853544][ T4240] usb 7-1: USB disconnect, device number 3 [ 371.859382][ T5028] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 576 [ 371.859416][ T5028] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 371.860714][ T5028] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 371.962643][ T5028] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 371.972457][ T5028] usb 3-1: SerialNumber: syz [ 371.979129][ T9538] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 371.990355][T11282] raw-gadget.2 gadget.2: fail, usb_ep_enable returned -22 [ 372.032873][ T5028] cdc_acm 3-1:1.0: Control and data interfaces are not separated! [ 372.259940][T11282] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 372.410096][T11282] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 372.458322][ T5028] cdc_acm 3-1:1.0: ttyACM0: USB ACM device [ 372.505180][ T5028] usb 3-1: USB disconnect, device number 17 [ 373.095102][T11336] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2715'. [ 373.895737][T11330] loop5: detected capacity change from 0 to 32768 [ 373.902498][T11361] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2727'. [ 374.091292][T11368] loop0: detected capacity change from 0 to 256 [ 374.179845][T11368] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 374.310708][T11376] loop6: detected capacity change from 0 to 1764 [ 374.340855][T11378] netlink: 168 bytes leftover after parsing attributes in process `syz.4.2735'. [ 374.534573][T11381] netlink: 44 bytes leftover after parsing attributes in process `syz.2.2737'. [ 374.574207][T11381] netlink: 43 bytes leftover after parsing attributes in process `syz.2.2737'. [ 374.648227][T11381] netlink: 'syz.2.2737': attribute type 6 has an invalid length. [ 374.687077][T11381] netlink: 'syz.2.2737': attribute type 5 has an invalid length. [ 374.697537][T11381] netlink: 43 bytes leftover after parsing attributes in process `syz.2.2737'. [ 374.850136][T11392] netlink: 40 bytes leftover after parsing attributes in process `syz.4.2740'. [ 375.795992][T11428] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2755'. [ 375.802463][T11427] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2756'. [ 375.813783][T11428] netlink: 8 bytes leftover after parsing attributes in process `syz.4.2755'. [ 375.955228][ T26] audit: type=1326 audit(1738435001.955:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11431 comm="syz.6.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 376.064611][ T26] audit: type=1326 audit(1738435002.005:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11431 comm="syz.6.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=140 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 376.174768][ T26] audit: type=1326 audit(1738435002.005:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11431 comm="syz.6.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 376.272200][ T26] audit: type=1326 audit(1738435002.005:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11431 comm="syz.6.2757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 376.467363][T11453] netlink: 'syz.6.2768': attribute type 49 has an invalid length. [ 376.673319][T11459] xt_TCPMSS: Only works on TCP SYN packets [ 376.924105][T11471] loop6: detected capacity change from 0 to 256 [ 376.980254][T11471] exFAT-fs (loop6): failed to load upcase table (idx : 0x00017f3e, chksum : 0x84cb8d72, utbl_chksum : 0xe619d30d) [ 377.107685][T11477] loop4: detected capacity change from 0 to 764 [ 377.204461][ T4957] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 377.400361][T11489] loop0: detected capacity change from 0 to 256 [ 377.414651][ T4957] usb 6-1: Using ep0 maxpacket: 8 [ 377.424010][ T4957] usb 6-1: New USB device found, idVendor=0ccd, idProduct=10a3, bcdDevice=23.a2 [ 377.457789][ T4957] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 377.484909][ T4957] usb 6-1: Product: syz [ 377.500342][ T4957] usb 6-1: Manufacturer: syz [ 377.521608][T11489] FAT-fs (loop0): Directory bread(block 64) failed [ 377.543603][ T4957] usb 6-1: SerialNumber: syz [ 377.564463][T11489] FAT-fs (loop0): Directory bread(block 65) failed [ 377.573622][ T4957] usb 6-1: config 0 descriptor?? [ 377.579385][T11493] device bond6 entered promiscuous mode [ 377.590996][T11493] 8021q: adding VLAN 0 to HW filter on device bond6 [ 377.594667][T11489] FAT-fs (loop0): Directory bread(block 66) failed [ 377.644603][T11489] FAT-fs (loop0): Directory bread(block 67) failed [ 377.660488][T11489] FAT-fs (loop0): Directory bread(block 68) failed [ 377.684632][T11489] FAT-fs (loop0): Directory bread(block 69) failed [ 377.691410][T11489] FAT-fs (loop0): Directory bread(block 70) failed [ 377.754480][T11489] FAT-fs (loop0): Directory bread(block 71) failed [ 377.761554][T11489] FAT-fs (loop0): Directory bread(block 72) failed [ 377.798052][T11489] FAT-fs (loop0): Directory bread(block 73) failed [ 377.833624][ T4957] usb 6-1: dvb_usb_v2: found a 'Terratec H7' in warm state [ 378.044252][ T4957] usb write operation failed. (-71) [ 378.074891][ T4957] usb 6-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 378.101602][ T4957] dvbdev: DVB: registering new adapter (Terratec H7) [ 378.115986][ T4957] usb 6-1: media controller created [ 378.144277][ T4957] usb read operation failed. (-71) [ 378.155641][ T4957] usb write operation failed. (-71) [ 378.204662][ T4957] dvb_usb_az6007: probe of 6-1:0.0 failed with error -5 [ 378.266178][ T4957] usb 6-1: USB disconnect, device number 3 [ 378.604765][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 378.611112][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 378.757951][T11502] loop2: detected capacity change from 0 to 40427 [ 378.792727][T11502] F2FS-fs (loop2): project quota file already specified [ 378.878311][T11526] 8021q: adding VLAN 0 to HW filter on device bond0 [ 378.946644][T11526] bond0: (slave rose0): Enslaving as an active interface with an up link [ 378.964622][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready [ 379.604650][ T5241] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 379.804514][ T5241] usb 1-1: Using ep0 maxpacket: 16 [ 379.813267][ T5241] usb 1-1: config 1 interface 0 altsetting 1 endpoint 0x81 has invalid maxpacket 26195, setting to 1024 [ 379.859764][ T5241] usb 1-1: config 1 interface 0 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 379.913995][ T5241] usb 1-1: config 1 interface 0 has no altsetting 0 [ 379.955495][ T5241] usb 1-1: string descriptor 0 read error: -22 [ 379.961804][ T5241] usb 1-1: New USB device found, idVendor=05ac, idProduct=030b, bcdDevice= 0.40 [ 380.011919][ T5241] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 380.054732][T11547] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 380.083749][T11571] netlink: 'syz.4.2819': attribute type 2 has an invalid length. [ 380.509576][ T5241] appletouch 1-1:1.0: Failed to request geyser raw mode [ 380.521482][ T5241] appletouch: probe of 1-1:1.0 failed with error -5 [ 380.567321][ T5241] usb 1-1: USB disconnect, device number 22 [ 381.021322][T11560] loop6: detected capacity change from 0 to 40427 [ 381.106548][T11560] F2FS-fs (loop6): Invalid log blocks per segment (83886089) [ 381.113998][T11560] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock [ 381.160977][T11560] F2FS-fs (loop6): invalid crc value [ 381.252661][T11574] loop5: detected capacity change from 0 to 32768 [ 381.261690][T11560] F2FS-fs (loop6): Found nat_bits in checkpoint [ 381.271455][T11606] loop4: detected capacity change from 0 to 128 [ 381.285103][T11605] device gre0 entered promiscuous mode [ 381.311347][T11574] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.2821 (11574) [ 381.339222][T11606] befs: (loop4): invalid magic header [ 381.439102][T11574] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 381.530571][T11574] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm [ 381.585201][T11560] F2FS-fs (loop6): Start checkpoint disabled! [ 381.592082][T11574] BTRFS info (device loop5): using free space tree [ 381.684823][T11560] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0 [ 381.694584][T11560] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6 [ 381.804293][T11574] BTRFS info (device loop5): enabling ssd optimizations [ 382.084938][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 382.110553][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): tunl0: link becomes ready [ 382.135936][ T9538] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 382.193924][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): gre0: link becomes ready [ 382.241042][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): gretap0: link becomes ready [ 382.353399][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): erspan0: link becomes ready [ 382.406804][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): ip_vti0: link becomes ready [ 382.465882][T11640] IPv6: ADDRCONF(NETDEV_CHANGE): ip6_vti0: link becomes ready [ 383.059360][T11666] loop4: detected capacity change from 0 to 256 [ 383.231130][T11666] FAT-fs (loop4): Directory bread(block 64) failed [ 383.255842][T11672] netlink: 'syz.0.2845': attribute type 21 has an invalid length. [ 383.260447][T11666] FAT-fs (loop4): Directory bread(block 65) failed [ 383.263756][T11672] __nla_validate_parse: 3 callbacks suppressed [ 383.263773][T11672] netlink: 132 bytes leftover after parsing attributes in process `syz.0.2845'. [ 383.304652][T11666] FAT-fs (loop4): Directory bread(block 66) failed [ 383.315860][T11666] FAT-fs (loop4): Directory bread(block 67) failed [ 383.332780][T11666] FAT-fs (loop4): Directory bread(block 68) failed [ 383.373255][T11676] usb usb8: usbfs: process 11676 (syz.2.2847) did not claim interface 0 before use [ 383.373262][T11666] FAT-fs (loop4): Directory bread(block 69) failed [ 383.373372][T11666] FAT-fs (loop4): Directory bread(block 70) failed [ 383.398037][T11672] netlink: 'syz.0.2845': attribute type 1 has an invalid length. [ 383.415804][T11666] FAT-fs (loop4): Directory bread(block 71) failed [ 383.424909][T11666] FAT-fs (loop4): Directory bread(block 72) failed [ 383.440239][T11666] FAT-fs (loop4): Directory bread(block 73) failed [ 383.695120][T11683] device vlan1 entered promiscuous mode [ 384.233111][T11709] binder: BC_ATTEMPT_ACQUIRE not supported [ 384.269999][T11709] binder: 11707:11709 ioctl c0306201 20000380 returned -22 [ 384.379437][T11715] loop6: detected capacity change from 0 to 512 [ 384.435154][T11715] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 384.506592][T11715] EXT4-fs (loop6): 1 truncate cleaned up [ 384.512317][T11715] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 384.538329][T11721] loop0: detected capacity change from 0 to 64 [ 384.642395][T11721] syz.0.2863: attempt to access beyond end of device [ 384.642395][T11721] loop0: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 384.704536][T11721] buffer_io_error: 14 callbacks suppressed [ 384.704554][T11721] Buffer I/O error on dev loop0, logical block 1295, async page read [ 384.768342][T11721] syz.0.2863: attempt to access beyond end of device [ 384.768342][T11721] loop0: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 384.784911][T10611] EXT4-fs (loop6): unmounting filesystem. [ 384.814838][T11721] Buffer I/O error on dev loop0, logical block 1295, async page read [ 384.865523][ T26] audit: type=1800 audit(1738435010.855:37): pid=11721 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.2863" name="file2" dev="loop0" ino=6 res=0 errno=0 [ 384.911871][T11721] Trying to free block not in datazone [ 384.944763][T11721] minix_free_block (loop0:21): bit already cleared [ 385.130214][T11713] loop5: detected capacity change from 0 to 32768 [ 385.570737][T11752] netlink: 8 bytes leftover after parsing attributes in process `syz.6.2877'. [ 385.686075][T11752] netlink: 4 bytes leftover after parsing attributes in process `syz.6.2877'. [ 385.845779][ T4240] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 386.066835][ T4240] usb 3-1: Using ep0 maxpacket: 16 [ 386.081159][ T4240] usb 3-1: New USB device found, idVendor=0d49, idProduct=7010, bcdDevice= c.90 [ 386.131013][ T4240] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 386.183173][ T4240] usb 3-1: Product: syz [ 386.193362][ T4240] usb 3-1: Manufacturer: syz [ 386.204519][ T4240] usb 3-1: SerialNumber: syz [ 386.233808][ T4240] usb 3-1: config 0 descriptor?? [ 386.267670][T11776] xt_l2tp: v2 doesn't support IP mode [ 386.268347][ T4240] ums-onetouch 3-1:0.0: USB Mass Storage device detected [ 386.517445][ T5257] usb 3-1: USB disconnect, device number 18 [ 386.648721][T11787] loop6: detected capacity change from 0 to 128 [ 386.736839][T11787] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 386.736929][T11756] loop4: detected capacity change from 0 to 32768 [ 386.758148][T11791] bond0: Error: Cannot enslave bond to itself. [ 386.775539][T11756] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.2878 (11756) [ 386.796962][T11787] ext4 filesystem being mounted at /58/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 386.815765][T11756] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 386.839948][T11756] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 386.883372][T11756] BTRFS info (device loop4): force zlib compression, level 3 [ 386.934908][T11756] BTRFS info (device loop4): force clearing of disk cache [ 386.948256][T11787] EXT4-fs warning (device loop6): verify_group_input:151: Cannot add at group 1029 (only 1 groups) [ 386.987489][T11756] BTRFS info (device loop4): setting nodatasum [ 386.993806][T11756] BTRFS info (device loop4): use zlib compression, level 3 [ 387.021433][T11756] BTRFS info (device loop4): allowing degraded mounts [ 387.040280][T11756] BTRFS info (device loop4): enabling disk space caching [ 387.085626][T11756] BTRFS info (device loop4): disk space caching is enabled [ 387.150511][T10611] EXT4-fs (loop6): unmounting filesystem. [ 387.556686][T11756] BTRFS info (device loop4): enabling ssd optimizations [ 387.582229][T11756] BTRFS info (device loop4): rebuilding free space tree [ 387.665790][T11756] BTRFS info (device loop4): disabling free space tree [ 387.692341][T11756] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 387.761147][T11756] BTRFS info (device loop4): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 387.941441][T11756] BTRFS info (device loop4): balance: start -f -ssoft,usage=9223372041149743104,usage=0..2147483649,devid=0,vrange=5..4294967296,stripes=1831..0 [ 388.016011][T11756] BTRFS info (device loop4): balance: ended with status: 0 [ 388.275368][ T4253] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 388.286214][T11856] netlink: 'syz.6.2903': attribute type 2 has an invalid length. [ 388.634556][T11867] netlink: 'syz.6.2910': attribute type 5 has an invalid length. [ 388.927757][T11873] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2912'. [ 388.968634][T11878] loop2: detected capacity change from 0 to 64 [ 389.052974][T11878] syz.2.2913: attempt to access beyond end of device [ 389.052974][T11878] loop2: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 389.100754][T11878] Buffer I/O error on dev loop2, logical block 1295, async page read [ 389.164161][T11878] syz.2.2913: attempt to access beyond end of device [ 389.164161][T11878] loop2: rw=0, sector=2590, nr_sectors = 2 limit=64 [ 389.178232][T11881] netlink: 'syz.6.2924': attribute type 10 has an invalid length. [ 389.214765][T11878] Buffer I/O error on dev loop2, logical block 1295, async page read [ 389.258129][ T26] audit: type=1800 audit(1738435015.255:38): pid=11878 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2913" name="file2" dev="loop2" ino=6 res=0 errno=0 [ 389.277352][T11881] team0: Device veth0_macvtap failed to register rx_handler [ 389.278763][T11878] Trying to free block not in datazone [ 389.352105][T11878] minix_free_block (loop2:21): bit already cleared [ 389.765249][ T26] audit: type=1326 audit(1738435015.765:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.2.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 389.864314][ T26] audit: type=1326 audit(1738435015.795:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.2.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=310 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 389.979502][T11904] binfmt_misc: register: failed to install interpreter file ./file0/../file0 [ 389.988600][ T26] audit: type=1326 audit(1738435015.795:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.2.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 390.065334][ T26] audit: type=1326 audit(1738435015.795:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11896 comm="syz.2.2919" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 390.570531][T11917] netlink: 202920 bytes leftover after parsing attributes in process `syz.4.2926'. [ 390.906436][T11912] could not allocate digest TFM handle sha256-arm64-neon [ 390.942620][T11893] loop0: detected capacity change from 0 to 32768 [ 391.059005][T11899] loop6: detected capacity change from 0 to 32768 [ 391.067332][T11899] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop6 scanned by syz.6.2920 (11899) [ 391.085320][T11899] BTRFS info (device loop6): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 391.104731][T11899] BTRFS info (device loop6): using xxhash64 (xxhash64-generic) checksum algorithm [ 391.119443][T11899] BTRFS info (device loop6): force zlib compression, level 3 [ 391.136874][T11935] loop5: detected capacity change from 0 to 8 [ 391.147535][T11893] XFS (loop0): Mounting V5 Filesystem [ 391.173808][T11899] BTRFS info (device loop6): force clearing of disk cache [ 391.181917][ T26] audit: type=1326 audit(1738435017.175:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11938 comm="syz.2.2931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 391.207500][T11899] BTRFS info (device loop6): setting nodatasum [ 391.224863][T11899] BTRFS info (device loop6): allowing degraded mounts [ 391.231707][T11899] BTRFS info (device loop6): enabling disk space caching [ 391.315282][T11899] BTRFS info (device loop6): disk space caching is enabled [ 391.357842][ T26] audit: type=1326 audit(1738435017.205:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11938 comm="syz.2.2931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 391.437289][T11893] XFS (loop0): Ending clean mount [ 391.457936][T11958] loop4: detected capacity change from 0 to 512 [ 391.509419][ T26] audit: type=1326 audit(1738435017.225:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11938 comm="syz.2.2931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 391.610037][T11958] Quota error (device loop4): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 391.621008][T11958] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 391.625683][ T26] audit: type=1326 audit(1738435017.625:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11938 comm="syz.2.2931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 391.633313][T11958] EXT4-fs error (device loop4): ext4_acquire_dquot:6795: comm syz.4.2934: Failed to acquire dquot type 1 [ 391.679005][T11958] EXT4-fs (loop4): 1 truncate cleaned up [ 391.714596][T11958] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 391.762632][ T4254] XFS (loop0): Unmounting Filesystem [ 391.849102][T11958] ext4 filesystem being mounted at /617/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 391.860259][ T26] audit: type=1326 audit(1738435017.625:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11971 comm="syz.2.2931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f306b3bf665 code=0x7ffc0000 [ 391.865398][T11899] BTRFS info (device loop6): rebuilding free space tree [ 391.884231][T11958] EXT4-fs (loop4): unmounting filesystem. [ 391.920748][ T26] audit: type=1326 audit(1738435017.815:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11971 comm="syz.2.2931" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 392.058664][T11899] BTRFS info (device loop6): disabling free space tree [ 392.074834][T11899] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 392.123512][T11899] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 392.289742][T11899] BTRFS info (device loop6): balance: start -sprofiles=NONE,usage=43..0,devid=0,drange=0..0,vrange=0..0,limit=0,limit=0..0,stripes=0..4294967293 [ 392.342050][T11899] BTRFS info (device loop6): balance: ended with status: 0 [ 392.568324][T10611] BTRFS info (device loop6): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 393.282756][T12013] device vti0 entered promiscuous mode [ 393.689207][T12032] libceph: resolve '40.' (ret=-3): failed [ 394.438296][T12058] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2966'. [ 394.948589][T12065] loop2: detected capacity change from 0 to 8192 [ 394.999227][T12065] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 395.032913][T12065] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 395.057398][T12065] REISERFS (device loop2): using ordered data mode [ 395.125980][T12065] reiserfs: using flush barriers [ 395.154542][T12065] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 395.265487][T12065] REISERFS (device loop2): checking transaction log (loop2) [ 395.503973][T12092] netlink: 'syz.5.2978': attribute type 4 has an invalid length. [ 395.524490][T12092] netlink: 128124 bytes leftover after parsing attributes in process `syz.5.2978'. [ 395.577455][T12065] REISERFS (device loop2): Using tea hash to sort names [ 395.615620][T12065] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 395.706575][T12042] loop6: detected capacity change from 0 to 40427 [ 395.743163][T12042] F2FS-fs (loop6): invalid crc value [ 395.790789][T12042] F2FS-fs (loop6): Found nat_bits in checkpoint [ 395.986525][T12042] F2FS-fs (loop6): recover fsync data on readonly fs [ 396.019831][T12042] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 396.181764][T12108] netlink: 'syz.2.2981': attribute type 1 has an invalid length. [ 396.205700][T12042] F2FS-fs (loop6): Corrupted max_depth of 3: 1025 [ 396.231831][T12108] netlink: 'syz.2.2981': attribute type 3 has an invalid length. [ 396.246224][T12042] F2FS-fs (loop6): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 396.274519][T12108] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2981'. [ 396.609909][T12090] loop0: detected capacity change from 0 to 32768 [ 396.743137][T12090] ERROR: (device loop0): diWrite: ixpxd invalid [ 396.743137][T12090] [ 396.788749][T12090] ERROR: (device loop0): remounting filesystem as read-only [ 396.838174][T12090] ERROR: (device loop0): txCommit: [ 396.838174][T12090] [ 396.955087][T12128] loop5: detected capacity change from 0 to 4096 [ 396.992219][T12128] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 397.158228][T12128] ntfs3: loop5: ino=1e, "file1" encrypted i/o not supported [ 397.182651][ T26] audit: type=1800 audit(1738435023.175:49): pid=12128 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.2989" name="file1" dev="loop5" ino=30 res=0 errno=0 [ 397.581225][T12145] overlayfs: conflicting options: userxattr,redirect_dir=follow [ 397.915387][T12159] loop5: detected capacity change from 0 to 1024 [ 398.650533][T12184] loop4: detected capacity change from 0 to 4096 [ 398.695965][T12184] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 398.744992][T12192] No such timeout policy "syz1" [ 399.054625][T12201] netlink: 12 bytes leftover after parsing attributes in process `syz.0.3018'. [ 399.063985][T12201] netlink: 24 bytes leftover after parsing attributes in process `syz.0.3018'. [ 399.176093][T12208] netlink: 'syz.2.3022': attribute type 10 has an invalid length. [ 399.282006][T12208] team0: Device veth0_macvtap failed to register rx_handler [ 399.291734][T12210] loop4: detected capacity change from 0 to 64 [ 399.388522][T12216] loop5: detected capacity change from 0 to 256 [ 399.448028][T12216] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 399.582389][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.601997][T12220] loop6: detected capacity change from 0 to 1024 [ 399.621779][T12216] FAT-fs (loop5): Filesystem has been set read-only [ 399.655698][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.664813][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.674270][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.690884][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.701165][T12220] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 399.746585][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.755614][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.764533][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.784888][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.793497][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.875415][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.893477][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.897247][T10611] EXT4-fs (loop6): unmounting filesystem. [ 399.948493][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.958093][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 399.984624][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.040194][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.078555][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.098274][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.133984][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.154657][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.224517][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.315909][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.353391][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.383300][T12216] FAT-fs (loop5): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 400.408964][ T26] audit: type=1800 audit(1738435026.405:50): pid=12216 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.3025" name="file1" dev="loop5" ino=1048644 res=0 errno=0 [ 400.770672][T12252] netlink: 'syz.5.3041': attribute type 2 has an invalid length. [ 400.916283][T12230] loop0: detected capacity change from 0 to 32768 [ 400.946932][T12230] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.3031 (12230) [ 401.037535][T12230] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 401.064645][T12230] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 401.093732][T12230] BTRFS info (device loop0): using free space tree [ 401.374617][T12279] netlink: 5 bytes leftover after parsing attributes in process `syz.4.3049'. [ 401.595622][T12230] BTRFS info (device loop0): enabling ssd optimizations [ 401.700108][T12290] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3052'. [ 401.709956][T12230] BTRFS warning (device loop0): can't clear the compress_lzo,compress_zstd feature bits while mounted [ 401.881532][ T4254] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 402.090621][ T26] audit: type=1326 audit(1738435028.085:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12302 comm="syz.6.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 402.215942][ T26] audit: type=1326 audit(1738435028.085:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12302 comm="syz.6.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 402.330268][ T26] audit: type=1326 audit(1738435028.135:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12302 comm="syz.6.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=113 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 402.474505][ T26] audit: type=1326 audit(1738435028.135:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12302 comm="syz.6.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 402.574754][ T26] audit: type=1326 audit(1738435028.135:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12302 comm="syz.6.3059" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 402.978818][T12331] ebt_among: wrong size: 1048 against expected 1006634004, rounded to 1006634008 [ 403.223865][T12335] loop0: detected capacity change from 0 to 4096 [ 403.326328][T12335] ntfs: volume version 3.1. [ 403.428052][ T26] audit: type=1400 audit(1738435029.425:56): apparmor="DENIED" operation="change_profile" info="label not found" error=-2 profile="unconfined" name=26260A3AF6EFF374925873ECE44CF3460B0BA260624F2A08BDBB6D3C92592016EA4E0F401876B1958B3F9AA5153386EED838C49D3A pid=12341 comm="syz.5.3074" [ 403.702467][T12350] ecryptfs_parse_options: You must supply at least one valid auth tok signature as a mount parameter; see the eCryptfs README [ 403.718297][T12351] loop4: detected capacity change from 0 to 256 [ 403.743256][T12351] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d16cac, utbl_chksum : 0xe619d30d) [ 403.757289][T12350] Error parsing options; rc = [-22] [ 403.777318][T12355] netlink: 'syz.0.3076': attribute type 10 has an invalid length. [ 403.813018][T12351] exFAT-fs (loop4): error, invalid access to exfat cache (entry 0x00000000) [ 403.855270][T12355] team0: Device veth0_macvtap failed to register rx_handler [ 403.884550][T12351] exFAT-fs (loop4): Filesystem has been set read-only [ 403.926041][T12351] exFAT-fs (loop4): error, failed to bmap (inode : ffff888071cac260 iblock : 1, err : -5) [ 404.023699][T12359] device ip6gretap1 entered promiscuous mode [ 404.204574][ T26] audit: type=1326 audit(1738435030.205:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.4.3083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3067f8cda9 code=0x7ffc0000 [ 404.272067][T12366] loop2: detected capacity change from 0 to 64 [ 404.311532][ T26] audit: type=1326 audit(1738435030.245:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.4.3083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7f3067f8cda9 code=0x7ffc0000 [ 404.401976][ T26] audit: type=1326 audit(1738435030.245:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.4.3083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3067f8cda9 code=0x7ffc0000 [ 404.424343][ C1] vkms_vblank_simulate: vblank timer overrun [ 404.467938][ T26] audit: type=1326 audit(1738435030.245:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12363 comm="syz.4.3083" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3067f8cda9 code=0x7ffc0000 [ 404.902712][T12357] loop6: detected capacity change from 0 to 32768 [ 404.931448][T12357] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.3080 (12357) [ 405.015804][T12357] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 405.035086][T12357] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm [ 405.106372][T12357] BTRFS info (device loop6): metadata ratio 2 [ 405.112574][T12357] BTRFS info (device loop6): force zlib compression, level 3 [ 405.162808][T12357] BTRFS info (device loop6): use zlib compression, level 3 [ 405.215371][T12357] BTRFS info (device loop6): turning on async discard [ 405.222225][T12357] BTRFS info (device loop6): enabling ssd optimizations [ 405.283643][T12357] BTRFS info (device loop6): using spread ssd allocation scheme [ 405.329469][T12357] BTRFS info (device loop6): using free space tree [ 405.584885][T12398] loop4: detected capacity change from 0 to 4096 [ 406.278474][T10611] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 406.751719][ T26] audit: type=1326 audit(1738435032.745:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12459 comm="syz.0.3123" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a3db8cda9 code=0x7ffc0000 [ 406.905934][T12466] netlink: 'syz.2.3126': attribute type 1 has an invalid length. [ 406.934552][T12466] netlink: 'syz.2.3126': attribute type 2 has an invalid length. [ 406.942635][T12466] netlink: 4 bytes leftover after parsing attributes in process `syz.2.3126'. [ 407.096370][T12471] loop0: detected capacity change from 0 to 512 [ 407.229348][T12471] EXT4-fs (loop0): revision level too high, forcing read-only mode [ 407.258263][T12480] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3132'. [ 407.264990][T12476] netlink: 24 bytes leftover after parsing attributes in process `syz.2.3130'. [ 407.294627][T12471] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a802c019, mo2=0002] [ 407.322487][T12481] loop6: detected capacity change from 0 to 256 [ 407.342365][T12471] System zones: 0-2, 18-18, 34-35 [ 407.375485][T12471] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 407.497471][T12471] EXT4-fs (loop0): shut down requested (0) [ 407.519195][T12482] loop5: detected capacity change from 0 to 4096 [ 407.545853][T12482] ntfs3: loop5: Different NTFS' sector size (4096) and media sector size (512) [ 407.628918][ T4254] EXT4-fs (loop0): unmounting filesystem. [ 408.096547][T12504] loop4: detected capacity change from 0 to 64 [ 408.536753][T12518] xt_NFQUEUE: number of total queues is 0 [ 408.836741][T12492] loop2: detected capacity change from 0 to 32768 [ 408.860031][T12511] infiniband syz1: set active [ 408.875899][T12511] infiniband syz1: added syz_tun [ 408.919415][T12492] [ 408.919415][T12492] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 408.919415][T12492] [ 408.984320][T12492] jfs_lookup: dtSearch returned -5 [ 409.084734][ T4259] [ 409.084734][ T4259] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 409.084734][ T4259] [ 409.165632][ T4259] [ 409.165632][ T4259] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 409.165632][ T4259] [ 409.266329][T12511] RDS/IB: syz1: added [ 409.271791][T12511] smc: adding ib device syz1 with port count 1 [ 409.345921][T12511] smc: ib device syz1 port 1 has pnetid [ 409.764874][ T4987] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 409.974583][ T4987] usb 5-1: Using ep0 maxpacket: 8 [ 409.984455][ T4987] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 410.028359][ T4987] usb 5-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b [ 410.044596][ T4987] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 410.060664][ T4987] usb 5-1: Product: syz [ 410.074500][ T4987] usb 5-1: Manufacturer: syz [ 410.079383][ T4987] usb 5-1: SerialNumber: syz [ 410.131999][ T4987] usb 5-1: config 0 descriptor?? [ 410.193144][ T4987] gspca_main: stk014-2.14.0 probing 05e1:0893 [ 410.194734][T12563] loop6: detected capacity change from 0 to 256 [ 410.204509][ T4987] usb 5-1: selecting invalid altsetting 1 [ 410.328169][T12563] exFAT-fs (loop6): failed to load upcase table (idx : 0x00011f41, chksum : 0xf6e84b2e, utbl_chksum : 0xe619d30d) [ 410.359062][ T4987] gspca_stk014: init reg: 0x00 [ 410.365196][T12569] netlink: 132 bytes leftover after parsing attributes in process `syz.2.3172'. [ 410.381535][ T4987] stk014: probe of 5-1:0.0 failed with error -5 [ 410.510119][T12571] loop5: detected capacity change from 0 to 256 [ 410.618867][ T5026] usb 5-1: USB disconnect, device number 19 [ 411.362600][T12598] bridge0: port 3(netdevsim0) entered blocking state [ 411.422162][T12598] bridge0: port 3(netdevsim0) entered disabled state [ 411.453343][T12598] device netdevsim0 entered promiscuous mode [ 411.484211][T12598] bridge0: port 3(netdevsim0) entered blocking state [ 411.491681][T12598] bridge0: port 3(netdevsim0) entered forwarding state [ 411.523104][T12603] netlink: 65051 bytes leftover after parsing attributes in process `syz.6.3185'. [ 411.867189][T12615] loop2: detected capacity change from 0 to 64 [ 412.236448][T12627] netlink: 24 bytes leftover after parsing attributes in process `syz.6.3196'. [ 412.294662][T12627] netlink: 8 bytes leftover after parsing attributes in process `syz.6.3196'. [ 414.041576][T12685] netlink: 80 bytes leftover after parsing attributes in process `syz.0.3225'. [ 414.070881][T12681] loop2: detected capacity change from 0 to 4096 [ 414.091616][T12681] __ntfs_warning: 3 callbacks suppressed [ 414.091633][T12681] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 414.248041][T12681] ntfs: volume version 3.1. [ 414.344289][T12689] loop6: detected capacity change from 0 to 4096 [ 414.389701][T12689] ntfs: (device loop6): check_mft_mirror(): Incomplete multi sector transfer detected in mft record 2. [ 414.420047][T12695] loop4: detected capacity change from 0 to 2048 [ 414.421162][T12689] ntfs: (device loop6): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 414.510121][T12689] ntfs: volume version 3.1. [ 414.528991][T12695] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 414.558013][T12689] ntfs: (device loop6): map_mft_record_page(): Mft record 0x2 is corrupt. Run chkdsk. [ 414.604804][T12689] ntfs: (device loop6): map_mft_record(): Failed with error code 5. [ 414.606223][T12699] loop5: detected capacity change from 0 to 512 [ 414.651225][T12689] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0x2 as bad. Run chkdsk. [ 414.674926][T12699] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 414.717386][T12689] ntfs: (device loop6): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 414.754827][T12699] EXT4-fs error (device loop5): ext4_orphan_get:1400: inode #17: comm syz.5.3235: iget: bad i_size value: -6917529027641081756 [ 414.833462][T12699] EXT4-fs error (device loop5): ext4_orphan_get:1405: comm syz.5.3235: couldn't read orphan inode 17 (err -117) [ 414.853983][T12699] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 414.874496][T12689] ntfs: (device loop6): ntfs_read_locked_inode(): Index block size (0) < NTFS_BLOCK_SIZE (512) is not supported. Sorry. [ 414.888690][T12689] ntfs: (device loop6): ntfs_read_locked_inode(): Failed with error code -95. Marking corrupt inode 0x40 as bad. Run chkdsk. [ 415.042249][ T9538] EXT4-fs (loop5): unmounting filesystem. [ 415.251118][ T26] audit: type=1326 audit(1738435041.245:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12719 comm="syz.6.3241" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 415.334294][T12716] loop5: detected capacity change from 0 to 4096 [ 415.431420][T12721] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 415.486433][T12716] NILFS error (device loop5): nilfs_dotdot: directory #12 missing '.' [ 415.535222][T12716] Remounting filesystem read-only [ 415.552533][T12723] loop6: detected capacity change from 0 to 1764 [ 415.602421][T12723] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 415.824905][T12731] loop2: detected capacity change from 0 to 256 [ 416.138735][T12742] loop2: detected capacity change from 0 to 256 [ 416.813090][T12767] loop6: detected capacity change from 0 to 128 [ 416.820303][T12766] netlink: 44 bytes leftover after parsing attributes in process `syz.0.3264'. [ 416.854329][T12767] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 417.066105][ T11] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 417.520140][T12791] netlink: 'syz.5.3277': attribute type 6 has an invalid length. [ 418.036135][T12811] loop4: detected capacity change from 0 to 8 [ 418.060828][T12810] xt_TPROXY: Can be used only with -p tcp or -p udp [ 419.100933][ T26] kauditd_printk_skb: 6 callbacks suppressed [ 419.100951][ T26] audit: type=1326 audit(1738435045.095:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12821 comm="syz.0.3292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a3db8cda9 code=0x7ffc0000 [ 419.129482][ C0] vkms_vblank_simulate: vblank timer overrun [ 419.193515][T12846] loop4: detected capacity change from 0 to 8192 [ 419.232130][T12846] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 419.270333][ T26] audit: type=1326 audit(1738435045.095:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12821 comm="syz.0.3292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3a3db8cda9 code=0x7ffc0000 [ 419.310829][T12846] REISERFS (device loop4): found reiserfs format "3.5" with non-standard journal [ 419.343006][T12846] REISERFS (device loop4): using ordered data mode [ 419.364869][ T26] audit: type=1326 audit(1738435045.115:74): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12848 comm="syz.0.3292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f3a3dbbf665 code=0x7ffc0000 [ 419.391227][T12846] reiserfs: using flush barriers [ 419.424575][T12846] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 419.451702][ T26] audit: type=1326 audit(1738435045.265:75): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12848 comm="syz.0.3292" exe="/root/syz-executor" sig=0 arch=c000003e syscall=60 compat=0 ip=0x7f3a3db8cda9 code=0x7ffc0000 [ 419.508409][T12846] REISERFS (device loop4): checking transaction log (loop4) [ 419.554676][ T4987] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 419.565017][T12846] REISERFS (device loop4): Using tea hash to sort names [ 419.582605][T12846] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 419.599309][T12855] bridge0: port 3(netdevsim0) entered blocking state [ 419.645603][T12855] bridge0: port 3(netdevsim0) entered disabled state [ 419.660666][T12855] device netdevsim0 entered promiscuous mode [ 419.685882][T12855] bridge0: port 3(netdevsim0) entered blocking state [ 419.692694][T12855] bridge0: port 3(netdevsim0) entered forwarding state [ 419.754621][ T4987] usb 3-1: Using ep0 maxpacket: 32 [ 419.765038][ T4987] usb 3-1: New USB device found, idVendor=1d50, idProduct=60a1, bcdDevice=a1.4f [ 419.791272][ T4987] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 419.822104][ T4987] usb 3-1: Product: syz [ 419.839576][ T4987] usb 3-1: Manufacturer: syz [ 419.859033][ T4987] usb 3-1: SerialNumber: syz [ 419.876008][ T4987] usb 3-1: config 0 descriptor?? [ 420.292467][T12863] netlink: 4 bytes leftover after parsing attributes in process `syz.5.3311'. [ 420.304088][ T4987] airspy 3-1:0.0: usb_control_msg() failed -71 request 0a [ 420.307720][ T5026] usb 5-1: new high-speed USB device number 20 using dummy_hcd [ 420.329321][ T4987] airspy 3-1:0.0: Could not detect board [ 420.349636][ T4987] airspy: probe of 3-1:0.0 failed with error -71 [ 420.372071][ T4987] usb 3-1: USB disconnect, device number 19 [ 420.502919][T12857] loop0: detected capacity change from 0 to 32768 [ 420.509917][ T5026] usb 5-1: Using ep0 maxpacket: 32 [ 420.520464][ T5026] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 420.546660][ T5026] usb 5-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 420.556727][ T5026] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 420.567244][ T5026] usb 5-1: Product: syz [ 420.571454][ T5026] usb 5-1: Manufacturer: syz [ 420.577200][ T5026] usb 5-1: SerialNumber: syz [ 420.583810][ T5026] usb 5-1: config 0 descriptor?? [ 420.594174][ T5026] cdc_ether 5-1:0.0: skipping garbage [ 420.600250][ T5026] usb 5-1: bad CDC descriptors [ 420.630580][ T5026] usb 5-1: unsupported MDLM descriptors [ 420.707799][T12859] loop6: detected capacity change from 0 to 32768 [ 420.734205][T12857] XFS (loop0): Mounting V5 filesystem in no-recovery mode. Filesystem will be inconsistent. [ 420.782452][T12857] XFS (loop0): Quotacheck needed: Please wait. [ 420.811525][T12859] ocfs2: Mounting device (7,6) on (node local, slot 0) with writeback data mode. [ 420.896798][ T4300] XFS (loop0): Metadata CRC error detected at xfs_rmapbt_read_verify+0x39/0xc0, xfs_rmapbt block 0x14 [ 420.926451][ T5028] usb 5-1: USB disconnect, device number 20 [ 420.949838][ T4300] XFS (loop0): Unmount and run xfs_repair [ 420.972996][ T4300] XFS (loop0): First 128 bytes of corrupted metadata buffer: [ 421.002336][ T4300] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 421.026870][ T4300] 00000010: 00 00 02 00 00 00 00 14 00 00 00 01 00 00 00 80 ................ [ 421.043824][ T4300] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 421.053299][ T4300] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;......... [ 421.083312][ T4300] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................ [ 421.093203][ T4300] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 421.102387][ T4300] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 421.112278][ T4300] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................ [ 421.123356][ T4300] XFS (loop0): metadata I/O error in "xfs_btree_read_buf_block+0x26e/0x370" at daddr 0x14 len 4 error 74 [ 421.146948][ T4300] XFS (loop0): Metadata I/O Error (0x1) detected at xfs_trans_read_buf_map+0x6a5/0xb80 (fs/xfs/xfs_trans_buf.c:296). Shutting down filesystem. [ 421.167471][ T4300] XFS (loop0): Please unmount the filesystem and rectify the problem(s) [ 421.182099][T12857] XFS (loop0): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 421.247772][T10611] ocfs2: Unmounting device (7,6) on (node local) [ 421.400513][ T4254] XFS (loop0): Unmounting Filesystem [ 421.717082][T12898] netlink: 10 bytes leftover after parsing attributes in process `syz.6.3326'. [ 421.753708][T12899] netlink: 'syz.4.3324': attribute type 10 has an invalid length. [ 421.815433][T12899] device veth0_macvtap left promiscuous mode [ 421.863550][T12899] device veth0_macvtap entered promiscuous mode [ 421.977891][T12899] team0: Device macvtap0 failed to register rx_handler [ 422.018688][T12899] device veth0_macvtap left promiscuous mode [ 422.394617][T12915] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 422.720632][T12923] block device autoloading is deprecated and will be removed. [ 423.247432][T12949] rdma_rxe: rxe_register_device failed with error -23 [ 423.271042][T12949] rdma_rxe: failed to add syz_tun [ 423.727365][T12965] netlink: zone id is out of range [ 423.732548][T12965] netlink: zone id is out of range [ 423.754624][T12965] netlink: zone id is out of range [ 423.772561][T12965] netlink: zone id is out of range [ 423.821652][T12965] netlink: zone id is out of range [ 423.839122][T12965] netlink: zone id is out of range [ 423.854432][T12965] netlink: zone id is out of range [ 423.871598][T12963] loop4: detected capacity change from 0 to 8192 [ 423.874458][T12965] netlink: zone id is out of range [ 423.897553][T12963] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 423.910956][T12963] REISERFS (device loop4): found reiserfs format "3.6" with non-standard journal [ 423.920459][T12963] REISERFS (device loop4): using ordered data mode [ 423.927453][T12963] reiserfs: using flush barriers [ 423.935434][T12965] netlink: zone id is out of range [ 423.945024][T12965] netlink: zone id is out of range [ 423.953394][T12963] REISERFS (device loop4): journal params: device loop4, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 423.971200][T12963] REISERFS (device loop4): checking transaction log (loop4) [ 424.240867][T12982] loop2: detected capacity change from 0 to 65 [ 424.268578][T12982] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway [ 424.287939][T12963] REISERFS (device loop4): Using tea hash to sort names [ 424.345071][T12963] REISERFS (device loop4): Created .reiserfs_priv - reserved for xattr storage. [ 424.790149][T12996] loop5: detected capacity change from 0 to 256 [ 425.602655][T13015] rdma_rxe: rxe_register_device failed with error -23 [ 425.613278][T12994] loop0: detected capacity change from 0 to 32768 [ 425.636602][T13015] rdma_rxe: failed to add syz_tun [ 425.663494][T12994] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.3372 (12994) [ 425.732268][T12994] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 425.754592][T12994] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 425.844791][T12994] BTRFS info (device loop0): force zlib compression, level 3 [ 425.852303][T12994] BTRFS info (device loop0): force clearing of disk cache [ 425.869478][T12998] loop2: detected capacity change from 0 to 32768 [ 425.904581][T12994] BTRFS info (device loop0): setting nodatasum [ 425.910859][T12994] BTRFS info (device loop0): allowing degraded mounts [ 425.943452][T12998] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by syz.2.3374 (12998) [ 425.984608][T12994] BTRFS info (device loop0): enabling disk space caching [ 425.992031][T12994] BTRFS info (device loop0): disk space caching is enabled [ 426.043656][ T4241] BTRFS warning: duplicate device /dev/loop2 devid 1 generation 8 scanned by udevd (4241) [ 426.469917][T12994] BTRFS info (device loop0): rebuilding free space tree [ 426.539771][T13045] loop6: detected capacity change from 0 to 8192 [ 426.575622][T12994] BTRFS info (device loop0): disabling free space tree [ 426.582734][T12994] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 426.610082][T12994] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 426.657479][T13045] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 426.711123][T13053] netlink: 'syz.5.3392': attribute type 21 has an invalid length. [ 426.724586][T13045] REISERFS (device loop6): found reiserfs format "3.6" with non-standard journal [ 426.740039][T13053] netlink: 152 bytes leftover after parsing attributes in process `syz.5.3392'. [ 426.748435][T12994] BTRFS info (device loop0): balance: start -sprofiles=NONE,usage=43..0,devid=0,drange=0..0,vrange=0..0,limit=0,limit=0..0,stripes=0..4294967293 [ 426.796941][T13045] REISERFS (device loop6): using ordered data mode [ 426.803531][T13045] reiserfs: using flush barriers [ 426.835895][T12994] BTRFS info (device loop0): balance: ended with status: 0 [ 426.860841][T13045] REISERFS (device loop6): journal params: device loop6, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 426.973307][T13045] REISERFS (device loop6): checking transaction log (loop6) [ 427.003633][ T4254] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 427.071180][T13063] netlink: 216 bytes leftover after parsing attributes in process `syz.2.3395'. [ 427.329930][T13045] REISERFS (device loop6): Using tea hash to sort names [ 427.356864][T13045] REISERFS (device loop6): Created .reiserfs_priv - reserved for xattr storage. [ 427.622044][T13070] x_tables: ip_tables: osf match: only valid for protocol 6 [ 427.828674][T13043] loop4: detected capacity change from 0 to 32768 [ 428.000139][T13043] XFS (loop4): Mounting V5 Filesystem [ 428.238084][T13043] XFS (loop4): Ending clean mount [ 428.260602][T13099] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3406'. [ 428.270074][T13099] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3406'. [ 428.279162][T13099] netlink: 12 bytes leftover after parsing attributes in process `syz.2.3406'. [ 428.303154][T13043] XFS (loop4): Quotacheck needed: Please wait. [ 428.417557][T13043] XFS (loop4): Quotacheck: Done. [ 428.558352][ T4253] XFS (loop4): Unmounting Filesystem [ 428.580526][T13109] loop6: detected capacity change from 0 to 16 [ 428.593897][T13109] erofs: (device loop6): mounted with root inode @ nid 36. [ 428.606052][T13109] erofs: (device loop6): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 428.617665][T13109] erofs: (device loop6): z_erofs_lz4_decompress_mem: failed to decompress -38 in[52, 4044] out[1851] [ 428.669606][T13109] erofs: (device loop6): z_erofs_read_folio: failed to read, err [-117] [ 430.016118][T13138] loop2: detected capacity change from 0 to 32768 [ 430.044817][T13151] netlink: 40 bytes leftover after parsing attributes in process `syz.6.3432'. [ 430.100768][T13138] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 430.134568][ T4976] usb 6-1: new full-speed USB device number 4 using dummy_hcd [ 430.329931][T13131] loop0: detected capacity change from 0 to 32768 [ 430.343328][ T4976] usb 6-1: New USB device found, idVendor=093a, idProduct=2601, bcdDevice=21.1f [ 430.353901][ T4976] usb 6-1: New USB device strings: Mfr=28, Product=2, SerialNumber=3 [ 430.360897][ T4259] ocfs2: Unmounting device (7,2) on (node local) [ 430.366041][ T4976] usb 6-1: Product: syz [ 430.372521][ T4976] usb 6-1: Manufacturer: syz [ 430.406550][T13131] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.3425 (13131) [ 430.415615][T13162] loop4: detected capacity change from 0 to 512 [ 430.445029][ T4976] usb 6-1: SerialNumber: syz [ 430.450834][T13162] EXT4-fs: Ignoring removed orlov option [ 430.477407][ T4976] usb 6-1: config 0 descriptor?? [ 430.503054][T13131] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 430.517518][ T4976] gspca_main: pac7311-2.14.0 probing 093a:2601 [ 430.542020][T13162] EXT4-fs error (device loop4): dx_probe:823: inode #2: comm syz.4.3437: Attempting to read directory block (0) that is past i_size (256) [ 430.569762][T13162] EXT4-fs (loop4): Remounting filesystem read-only [ 430.576622][T13162] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -117 [ 430.585057][T13162] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 430.586861][T13131] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm [ 430.615569][T13162] EXT4-fs (loop4): unmounting filesystem. [ 430.674461][T13131] BTRFS info (device loop0): force zlib compression, level 3 [ 430.681942][T13131] BTRFS info (device loop0): force clearing of disk cache [ 430.744724][T13131] BTRFS info (device loop0): setting nodatasum [ 430.751164][T13131] BTRFS info (device loop0): use zlib compression, level 3 [ 430.783435][T13131] BTRFS info (device loop0): allowing degraded mounts [ 430.802144][T13131] BTRFS info (device loop0): enabling disk space caching [ 430.858071][T13131] BTRFS info (device loop0): disk space caching is enabled [ 430.902526][ T4976] gspca_pac7311: reg_w() failed index 0x78, value 0x40, error -71 [ 430.923955][ T4976] pac7311: probe of 6-1:0.0 failed with error -71 [ 430.946950][ T4976] usb 6-1: USB disconnect, device number 4 [ 431.212037][T13131] BTRFS info (device loop0): enabling ssd optimizations [ 431.235514][T13131] BTRFS info (device loop0): rebuilding free space tree [ 431.316765][T13131] BTRFS info (device loop0): disabling free space tree [ 431.342163][T13131] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 431.362569][T13131] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 431.407774][T13173] loop2: detected capacity change from 0 to 32768 [ 431.463804][T13131] BTRFS info (device loop0): balance: start -f -ssoft,usage=9223372041149743104,usage=0..2147483649,devid=0,vrange=5..4294967296,stripes=1831..0 [ 431.540691][T13173] JBD2: Ignoring recovery information on journal [ 431.634564][T13131] BTRFS info (device loop0): balance: ended with status: 0 [ 431.701775][T13173] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 431.749194][ T4254] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 431.863340][T13207] loop5: detected capacity change from 0 to 256 [ 432.023581][T13209] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3450'. [ 432.044575][T13209] netlink: 28 bytes leftover after parsing attributes in process `syz.6.3450'. [ 432.201954][T13211] loop4: detected capacity change from 0 to 1024 [ 432.296795][T13211] hfsplus: bad catalog entry type [ 432.321695][ T4259] ocfs2: Unmounting device (7,2) on (node local) [ 432.429053][T13217] loop0: detected capacity change from 0 to 64 [ 432.565081][ T11] hfsplus: b-tree write err: -5, ino 4 [ 433.026240][T13232] IPv6: NLM_F_CREATE should be specified when creating new route [ 434.062171][T13270] loop6: detected capacity change from 0 to 128 [ 434.102224][T13270] UDF-fs: error (device loop6): udf_read_tagged: read failed, block=256, location=256 [ 434.164109][T13270] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 434.204492][ T5257] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 434.414607][ T5257] usb 6-1: Using ep0 maxpacket: 8 [ 434.424049][T13279] netlink: 156 bytes leftover after parsing attributes in process `syz.6.3480'. [ 434.431798][ T5257] usb 6-1: New USB device found, idVendor=1737, idProduct=0039, bcdDevice=af.02 [ 434.463021][ T5257] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 434.492364][ T5257] usb 6-1: config 0 descriptor?? [ 434.584935][T13282] loop0: detected capacity change from 0 to 4096 [ 434.701316][T13287] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 434.718005][ T5257] asix 6-1:0.0 (unnamed net_device) (uninitialized): invalid hw address, using random [ 434.744960][T13282] NILFS error (device loop0): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 434.799819][T13282] Remounting filesystem read-only [ 434.845103][T13289] loop6: detected capacity change from 0 to 512 [ 434.872469][T13289] EXT4-fs: Ignoring removed orlov option [ 434.918605][ T5257] asix 6-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 434.939044][ T5257] asix 6-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 434.955394][T13289] EXT4-fs error (device loop6): dx_probe:823: inode #2: comm syz.6.3485: Attempting to read directory block (0) that is past i_size (256) [ 434.972137][T13272] loop2: detected capacity change from 0 to 32768 [ 434.981426][T13272] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop2 scanned by syz.2.3477 (13272) [ 435.014290][T13272] BTRFS info (device loop2): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 435.017701][ T5257] asix: probe of 6-1:0.0 failed with error -71 [ 435.025376][T13272] BTRFS info (device loop2): using xxhash64 (xxhash64-generic) checksum algorithm [ 435.040471][T13272] BTRFS info (device loop2): force zlib compression, level 3 [ 435.048678][T13272] BTRFS info (device loop2): force clearing of disk cache [ 435.056065][T13272] BTRFS info (device loop2): setting nodatasum [ 435.059265][T13289] EXT4-fs (loop6): Remounting filesystem read-only [ 435.062237][T13272] BTRFS info (device loop2): allowing degraded mounts [ 435.062261][T13272] BTRFS info (device loop2): enabling disk space caching [ 435.083130][T13272] BTRFS info (device loop2): disk space caching is enabled [ 435.120368][ T5257] usb 6-1: USB disconnect, device number 5 [ 435.141477][T13289] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -117 [ 435.172574][T13301] loop0: detected capacity change from 0 to 512 [ 435.183235][T13289] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 435.184714][T13301] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 435.228099][T13289] EXT4-fs (loop6): unmounting filesystem. [ 435.269894][T13301] EXT4-fs (loop0): 1 truncate cleaned up [ 435.326764][T13301] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 435.365756][T13272] BTRFS info (device loop2): rebuilding free space tree [ 435.447107][T13272] BTRFS info (device loop2): disabling free space tree [ 435.474900][T13272] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 435.524527][T13272] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 435.635333][ T4254] EXT4-fs (loop0): unmounting filesystem. [ 435.786178][T13272] BTRFS info (device loop2): balance: start -sprofiles=NONE,usage=43..0,devid=0,drange=0..0,vrange=0..0,limit=0,limit=0..0,stripes=0..4294967293 [ 435.860950][T13272] BTRFS info (device loop2): balance: ended with status: 0 [ 435.986043][ T4259] BTRFS info (device loop2): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 436.471027][T13343] netlink: 20 bytes leftover after parsing attributes in process `syz.5.3513'. [ 436.762067][T13352] netlink: 'syz.5.3505': attribute type 1 has an invalid length. [ 436.779505][ T26] audit: type=1326 audit(1738435062.775:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.2.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 436.833333][T13356] IPv6: ADDRCONF(NETDEV_CHANGE): lo: link becomes ready [ 436.857939][ T26] audit: type=1326 audit(1738435062.805:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.2.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=196 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 436.939777][ T26] audit: type=1326 audit(1738435062.805:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.2.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 436.985219][ T4257] Bluetooth: hci5: command 0x0406 tx timeout [ 437.036737][ T26] audit: type=1326 audit(1738435062.805:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13353 comm="syz.2.3506" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f306b38cda9 code=0x7ffc0000 [ 437.390792][T13366] netlink: 'syz.6.3512': attribute type 21 has an invalid length. [ 437.428866][T13366] netlink: 132 bytes leftover after parsing attributes in process `syz.6.3512'. [ 437.587563][T13372] netlink: 40 bytes leftover after parsing attributes in process `syz.0.3515'. [ 437.917902][T13381] loop6: detected capacity change from 0 to 256 [ 437.945899][T13381] exfat: Deprecated parameter 'utf8' [ 437.951278][T13381] exfat: Deprecated parameter 'namecase' [ 437.978458][T13381] exfat: Deprecated parameter 'namecase' [ 437.988559][T13381] exfat: Deprecated parameter 'utf8' [ 438.065978][T13381] exFAT-fs (loop6): failed to load upcase table (idx : 0x00012153, chksum : 0x6bdff97b, utbl_chksum : 0xe619d30d) [ 438.266348][T13364] loop5: detected capacity change from 0 to 32768 [ 438.311969][T13364] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 scanned by syz.5.3509 (13364) [ 438.381355][T13364] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 438.434656][T13364] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm [ 438.443984][T13364] BTRFS info (device loop5): force zlib compression, level 3 [ 438.511429][T13364] BTRFS info (device loop5): force clearing of disk cache [ 438.554434][T13364] BTRFS info (device loop5): setting nodatasum [ 438.560721][T13364] BTRFS info (device loop5): allowing degraded mounts [ 438.626013][T13364] BTRFS info (device loop5): enabling disk space caching [ 438.657239][T13364] BTRFS info (device loop5): disk space caching is enabled [ 438.682346][T13404] loop2: detected capacity change from 0 to 256 [ 438.698816][T13404] exFAT-fs (loop2): bogus fat length [ 438.704756][T13404] exFAT-fs (loop2): failed to read boot sector [ 438.782669][T13404] exFAT-fs (loop2): failed to recognize exfat type [ 439.052882][T13364] BTRFS info (device loop5): rebuilding free space tree [ 439.109764][T13364] BTRFS info (device loop5): disabling free space tree [ 439.128371][T13429] loop4: detected capacity change from 0 to 4096 [ 439.159956][T13364] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 439.212261][T13364] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 439.264927][T13433] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 439.314623][T13429] NILFS error (device loop4): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1 [ 439.372315][T13429] Remounting filesystem read-only [ 439.399179][T13436] loop6: detected capacity change from 0 to 764 [ 439.411426][T13364] BTRFS info (device loop5): balance: start -sprofiles=NONE,usage=43..0,devid=0,drange=0..0,vrange=0..0,limit=0,limit=0..0,stripes=0..4294967293 [ 439.474929][T13364] BTRFS info (device loop5): balance: ended with status: 0 [ 439.653934][T13440] loop4: detected capacity change from 0 to 128 [ 439.676537][ T9538] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 439.704756][T13440] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 439.768223][T13440] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 440.029255][ T1267] ieee802154 phy0 wpan0: encryption failed: -22 [ 440.035663][ T1267] ieee802154 phy1 wpan1: encryption failed: -22 [ 440.332946][T13454] netlink: 'syz.2.3548': attribute type 4 has an invalid length. [ 440.740258][T13464] loop5: detected capacity change from 0 to 256 [ 440.853192][T13464] exFAT-fs (loop5): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d) [ 440.979142][T13447] loop6: detected capacity change from 0 to 32768 [ 440.995412][T13470] netlink: 4 bytes leftover after parsing attributes in process `syz.0.3555'. [ 441.156841][T13452] loop4: detected capacity change from 0 to 32768 [ 441.213298][T13452] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 scanned by syz.4.3546 (13452) [ 441.310765][T13452] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 441.322460][T13476] SET target dimension over the limit! [ 441.349484][T13452] BTRFS info (device loop4): using sha256 (sha256-avx2) checksum algorithm [ 441.374733][T13452] BTRFS info (device loop4): using free space tree [ 441.539322][ T26] audit: type=1326 audit(1738435067.535:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13495 comm="syz.6.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 441.577887][T13499] net_ratelimit: 5 callbacks suppressed [ 441.577907][T13499] openvswitch: netlink: EtherType 0 is less than min 600 [ 441.678343][ T26] audit: type=1326 audit(1738435067.535:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13495 comm="syz.6.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=206 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 441.698826][T13452] BTRFS info (device loop4): enabling ssd optimizations [ 441.801161][ T26] audit: type=1326 audit(1738435067.535:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13495 comm="syz.6.3559" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc07758cda9 code=0x7ffc0000 [ 441.877589][T13507] loop0: detected capacity change from 0 to 128 [ 442.006123][ T4253] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 442.191263][T13513] netlink: 32 bytes leftover after parsing attributes in process `syz.6.3568'. [ 442.213410][T13507] loop0: detected capacity change from 0 to 4096 [ 442.221434][T13513] netlink: 9 bytes leftover after parsing attributes in process `syz.6.3568'. [ 442.233214][T13513] netlink: 9 bytes leftover after parsing attributes in process `syz.6.3568'. [ 442.275211][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option numtail. [ 442.321909][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option uni_xlate. [ 442.365267][T13507] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 442.372817][T13513] A link change request failed with some changes committed already. Interface batadv0 may have been left with an inconsistent configuration, please check. [ 442.438636][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option uni_xlate. [ 442.454744][T13507] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 442.482600][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option uni_xlate. [ 442.498346][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option nonumtail. [ 442.523391][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option dos1xfloppy. [ 442.537068][T13507] ntfs: (device loop0): parse_options(): Unrecognized mount option rodir. [ 443.686935][T13552] loop5: detected capacity change from 0 to 64 [ 444.485625][T13587] loop4: detected capacity change from 0 to 64 [ 444.805961][T13596] loop4: detected capacity change from 0 to 512 [ 444.813062][T13596] EXT4-fs: Ignoring removed orlov option [ 444.917339][T13596] EXT4-fs warning (device loop4): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 444.977257][T13596] EXT4-fs warning (device loop4): dx_probe:881: Enable large directory feature to access it [ 445.041673][T13596] EXT4-fs warning (device loop4): dx_probe:966: inode #2: comm syz.4.3608: Corrupt directory, running e2fsck is recommended [ 445.203841][T13596] EXT4-fs (loop4): Cannot turn on journaled quota: type 1: error -2 [ 445.280916][T13596] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2186: inode #15: comm syz.4.3608: corrupted in-inode xattr [ 445.305471][T13596] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.3608: couldn't read orphan inode 15 (err -117) [ 445.312704][T13597] loop5: detected capacity change from 0 to 32768 [ 445.326611][T13596] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 445.393216][T13597] ocfs2: Slot 0 on device (7,5) was already allocated to this node! [ 445.495559][T13597] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 445.544575][T13593] loop6: detected capacity change from 0 to 32768 [ 445.579350][T13593] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop6 scanned by syz.6.3607 (13593) [ 445.591427][T13596] EXT4-fs error (device loop4): ext4_xattr_set_entry:1619: inode #2: comm syz.4.3608: corrupted xattr entries [ 445.696310][T13593] BTRFS info (device loop6): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 445.729277][ T9538] ocfs2: Unmounting device (7,5) on (node local) [ 445.734985][T13593] BTRFS info (device loop6): using sha256 (sha256-avx2) checksum algorithm [ 445.756363][T13593] BTRFS info (device loop6): enabling auto defrag [ 445.763304][T13593] BTRFS info (device loop6): doing ref verification [ 445.773108][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 445.815251][T13593] BTRFS info (device loop6): use no compression [ 445.873022][T13593] BTRFS info (device loop6): force clearing of disk cache [ 445.901662][T13593] BTRFS info (device loop6): max_inline at 4096 [ 445.924458][T13593] BTRFS info (device loop6): disabling free space tree [ 446.289400][T13593] BTRFS info (device loop6): enabling ssd optimizations [ 446.334744][T13593] BTRFS info (device loop6): rebuilding free space tree [ 446.420758][T13593] BTRFS info (device loop6): disabling free space tree [ 446.460797][T13593] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 446.492858][T13593] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 446.536948][T13593] BTRFS info (device loop6): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 447.140811][T13653] loop2: detected capacity change from 0 to 32768 [ 447.283745][T13653] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 447.389075][T13653] (syz.2.3622,13653,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: rec_len % 4 != 0 - offset=0, inode=18446744073708961857, rec_len=65535, name_len=1 [ 447.490620][T13653] (syz.2.3622,13653,0):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -2 [ 447.531691][T13653] (syz.2.3622,13653,0):ocfs2_mknod:298 ERROR: status = -2 [ 447.554574][T13653] (syz.2.3622,13653,1):ocfs2_mknod:502 ERROR: status = -2 [ 447.585780][T13653] (syz.2.3622,13653,1):ocfs2_create:676 ERROR: status = -2 [ 447.844257][ T4259] ocfs2: Unmounting device (7,2) on (node local) [ 448.014666][T13697] loop0: detected capacity change from 0 to 2048 [ 448.048240][T13697] loop0: p2 < > [ 448.086706][ T3622] loop0: p2 < > [ 448.224653][T13700] loop4: detected capacity change from 0 to 4096 [ 448.232527][ T4364] udevd[4364]: inotify_add_watch(7, /dev/loop0p2, 10) failed: No such file or directory [ 448.263221][T13700] ntfs3: loop4: Different NTFS' sector size (4096) and media sector size (512) [ 448.412485][T13700] ntfs3: loop4: failed to convert "c46c" to koi8-r [ 448.498815][T13710] loop2: detected capacity change from 0 to 4096 [ 448.953969][ T52] block nbd4: Attempted send on invalid socket [ 448.960499][ T52] I/O error, dev nbd4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 448.974592][T13727] hfs: can't find a HFS filesystem on dev nbd4 [ 449.201901][T13739] netlink: 12 bytes leftover after parsing attributes in process `syz.4.3664'. [ 449.900047][T13768] loop6: detected capacity change from 0 to 256 [ 449.956483][T13768] MINIX-fs: mounting file system with errors, running fsck is recommended [ 450.589406][T13793] netlink: 4 bytes leftover after parsing attributes in process `syz.4.3692'. [ 450.656424][T13796] loop6: detected capacity change from 0 to 512 [ 450.663391][T13796] EXT4-fs: Ignoring removed orlov option [ 450.787145][T13796] EXT4-fs warning (device loop6): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 450.844913][T13796] EXT4-fs warning (device loop6): dx_probe:881: Enable large directory feature to access it [ 450.944506][T13796] EXT4-fs warning (device loop6): dx_probe:966: inode #2: comm syz.6.3691: Corrupt directory, running e2fsck is recommended [ 451.110466][T13796] EXT4-fs (loop6): Cannot turn on journaled quota: type 1: error -2 [ 451.147970][T13796] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2186: inode #15: comm syz.6.3691: corrupted in-inode xattr [ 451.196789][T13796] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.3691: couldn't read orphan inode 15 (err -117) [ 451.264487][T13796] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 451.361337][T13822] loop4: detected capacity change from 0 to 512 [ 451.410336][T13796] EXT4-fs error (device loop6): ext4_xattr_set_entry:1619: inode #2: comm syz.6.3691: corrupted xattr entries [ 451.486164][T13822] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 451.530968][T10611] EXT4-fs (loop6): unmounting filesystem. [ 451.559672][T13830] loop5: detected capacity change from 0 to 1024 [ 451.584812][T13822] ext4 filesystem being mounted at /773/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 451.615403][T13830] hfsplus: failed to load root directory [ 451.698304][ T4364] I/O error, dev loop5, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 451.765975][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 452.203811][T13844] loop0: detected capacity change from 0 to 512 [ 452.233773][T13844] EXT4-fs: Ignoring removed mblk_io_submit option [ 452.272137][T13847] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3715'. [ 452.297970][T13844] EXT4-fs error (device loop0): ext4_get_branch:178: inode #13: block 2: comm syz.0.3713: invalid block [ 452.318240][T13844] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3713: invalid indirect mapped block 10 (level 1) [ 452.348096][T13847] netlink: 16 bytes leftover after parsing attributes in process `syz.4.3715'. [ 452.384504][T13844] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #13: comm syz.0.3713: invalid indirect mapped block 8 (level 1) [ 452.399675][T13844] EXT4-fs (loop0): 1 truncate cleaned up [ 452.405429][T13844] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 452.429533][T13844] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.3713: unexpected EA_INODE flag [ 452.482841][T13852] loop2: detected capacity change from 0 to 512 [ 452.501643][T13851] [U]  [ 452.549710][ T4254] EXT4-fs (loop0): unmounting filesystem. [ 452.567216][T13852] EXT4-fs: Ignoring removed orlov option [ 452.598782][T13855] device ip6gre1 entered promiscuous mode [ 452.678850][T13852] EXT4-fs warning (device loop2): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 452.734734][T13852] EXT4-fs warning (device loop2): dx_probe:881: Enable large directory feature to access it [ 452.754534][T13852] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.3718: Corrupt directory, running e2fsck is recommended [ 452.905884][T13852] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 452.941519][T13852] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2186: inode #15: comm syz.2.3718: corrupted in-inode xattr [ 452.977131][T13852] EXT4-fs error (device loop2): ext4_orphan_get:1405: comm syz.2.3718: couldn't read orphan inode 15 (err -117) [ 453.024485][T13852] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 453.162803][T13852] EXT4-fs error (device loop2): ext4_xattr_set_entry:1619: inode #2: comm syz.2.3718: corrupted xattr entries [ 453.365279][ T4259] EXT4-fs (loop2): unmounting filesystem. [ 453.562403][T13888] loop5: detected capacity change from 0 to 256 [ 453.622404][T13890] netlink: 212 bytes leftover after parsing attributes in process `syz.0.3737'. [ 453.640065][T13888] FAT-fs (loop5): Directory bread(block 64) failed [ 453.657463][T13888] FAT-fs (loop5): Directory bread(block 65) failed [ 453.686846][T13888] FAT-fs (loop5): Directory bread(block 66) failed [ 453.727773][T13888] FAT-fs (loop5): Directory bread(block 67) failed [ 453.754805][T13888] FAT-fs (loop5): Directory bread(block 68) failed [ 453.766676][T13896] loop6: detected capacity change from 0 to 16 [ 453.777601][T13888] FAT-fs (loop5): Directory bread(block 69) failed [ 453.787238][T13896] erofs: (device loop6): mounted with root inode @ nid 36. [ 453.854645][T13888] FAT-fs (loop5): Directory bread(block 70) failed [ 453.870824][T13888] FAT-fs (loop5): Directory bread(block 71) failed [ 453.886302][T13888] FAT-fs (loop5): Directory bread(block 72) failed [ 453.919877][T13888] FAT-fs (loop5): Directory bread(block 73) failed [ 454.434073][T13922] xt_TCPMSS: Only works on TCP SYN packets [ 454.604485][ T4292] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 454.625414][T13929] loop4: detected capacity change from 0 to 1024 [ 454.645232][T13929] EXT4-fs: Ignoring removed nobh option [ 454.711027][T13929] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz.4.3753: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 454.746420][T13929] EXT4-fs error (device loop4): ext4_orphan_get:1405: comm syz.4.3753: couldn't read orphan inode 11 (err -117) [ 454.778099][T13929] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 454.813819][ T4292] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 454.830094][ T4292] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 454.846152][T13929] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.3753: Invalid block bitmap block 0 in block_group 0 [ 454.874109][ T4292] usb 1-1: Product: syz [ 454.879090][ T4292] usb 1-1: Manufacturer: syz [ 454.883743][ T4292] usb 1-1: SerialNumber: syz [ 454.928679][ T4292] usb 1-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 454.944817][T13929] __quota_error: 3 callbacks suppressed [ 454.944836][T13929] Quota error (device loop4): write_blk: dquota write failed [ 454.991953][T13929] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 455.003604][T13929] EXT4-fs error (device loop4): ext4_acquire_dquot:6795: comm syz.4.3753: Failed to acquire dquot type 0 [ 455.035464][ T4292] usb 1-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 455.062007][T13946] loop5: detected capacity change from 0 to 256 [ 455.147971][T13946] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 455.190825][ T4253] EXT4-fs (loop4): unmounting filesystem. [ 455.253418][T13946] exFAT-fs (loop5): error, found bogus dentry(12) beyond unused empty group(11) (start_clu : 5, cur_clu : 5) [ 455.333255][T13946] exFAT-fs (loop5): Filesystem has been set read-only [ 455.484457][ T4976] usb 1-1: USB disconnect, device number 23 [ 456.025198][ T28] INFO: task syz-executor:4263 blocked for more than 143 seconds. [ 456.033185][ T28] Not tainted 6.1.128-syzkaller #0 [ 456.040451][T13949] loop2: detected capacity change from 0 to 32768 [ 456.079572][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 456.081844][T13949] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.3761 (13949) [ 456.104717][ T4292] ath9k_htc 1-1:1.0: ath9k_htc: Target is unresponsive [ 456.112010][ T4292] ath9k_htc: Failed to initialize the device [ 456.137785][ T4976] usb 1-1: ath9k_htc: USB layer deinitialized [ 456.139925][ T28] task:syz-executor state:D stack:20176 pid:4263 ppid:1 flags:0x00004006 [ 456.210816][ T28] Call Trace: [ 456.218426][ T28] [ 456.230826][T13949] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 456.239288][ T28] __schedule+0x143f/0x4570 [ 456.266971][ T28] ? release_firmware_map_entry+0x186/0x186 [ 456.279863][ T28] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 456.290963][T13949] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 456.292686][ T28] ? print_irqtrace_events+0x210/0x210 [ 456.320455][ T28] ? _raw_spin_lock_irq+0xdb/0x110 [ 456.328155][T13949] BTRFS info (device loop2): using free space tree [ 456.331652][ T28] schedule+0xbf/0x180 [ 456.347303][ T28] io_schedule+0x88/0x100 [ 456.356381][ T28] folio_wait_bit_common+0x878/0x1290 [ 456.367701][ T28] ? folio_wait_bit+0x20/0x20 [ 456.383099][ T28] ? find_get_entries+0x188/0x710 [ 456.404149][ T28] ? migration_entry_wait_on_locked+0x1160/0x1160 [ 456.426653][ T28] ? __lock_acquire+0x125b/0x1f80 [ 456.442027][ T28] truncate_inode_pages_range+0xbb5/0x1340 [ 456.467628][ T28] ? read_lock_is_recursive+0x10/0x10 [ 456.492702][ T28] ? mapping_evict_folio+0x5b0/0x5b0 [ 456.515896][ T28] ? lockdep_hardirqs_on_prepare+0x438/0x7a0 [ 456.538384][T13949] BTRFS info (device loop2): enabling ssd optimizations [ 456.546684][ T28] ? _raw_spin_unlock_irq+0x1f/0x40 [ 456.570466][ T28] ? lockdep_hardirqs_on+0x94/0x130 [ 456.604386][ T28] evict+0x53c/0x930 [ 456.609879][ T28] ? proc_nr_inodes+0x310/0x310 [ 456.621965][ T28] ? do_raw_spin_unlock+0x137/0x8a0 [ 456.647265][ T28] evict_inodes+0x668/0x700 [ 456.683465][ T28] ? clear_inode+0x150/0x150 [ 456.688292][ T28] ? sync_filesystem+0x103/0x220 [ 456.693282][ T28] generic_shutdown_super+0x94/0x340 [ 456.719933][ T28] kill_block_super+0x7a/0xe0 [ 456.732961][ T28] deactivate_locked_super+0xa0/0x110 [ 456.743506][ T28] cleanup_mnt+0x490/0x520 [ 456.751559][ T28] ? lockdep_hardirqs_on+0x94/0x130 [ 456.767700][ T28] task_work_run+0x246/0x300 [ 456.778668][ T28] ? task_work_cancel+0x2e0/0x2e0 [ 456.784741][ T28] ? exit_to_user_mode_loop+0x39/0x100 [ 456.790352][ T28] exit_to_user_mode_loop+0xde/0x100 [ 456.796348][ T28] exit_to_user_mode_prepare+0xb1/0x140 [ 456.802096][ T28] syscall_exit_to_user_mode+0x60/0x270 [ 456.810026][ T28] do_syscall_64+0x47/0xb0 [ 456.819724][ T28] ? clear_bhb_loop+0x45/0xa0 [ 456.827938][ T28] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 456.833980][ T28] RIP: 0033:0x7f0c8978e0d7 [ 456.841597][ T28] RSP: 002b:00007ffde93bb318 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 456.852449][ T28] RAX: 0000000000000000 RBX: 00007f0c8980e08c RCX: 00007f0c8978e0d7 [ 456.862568][ T28] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffde93bb3d0 [ 456.870691][ T28] RBP: 00007ffde93bb3d0 R08: 0000000000000000 R09: 0000000000000000 [ 456.878857][ T28] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffde93bc460 [ 456.886983][ T28] R13: 00007f0c8980e08c R14: 0000000000048b57 R15: 00007ffde93bc4a0 [ 456.895857][ T28] [ 456.898982][ T28] [ 456.898982][ T28] Showing all locks held in the system: [ 456.907298][ T28] 1 lock held by rcu_tasks_kthre/12: [ 456.912622][ T28] #0: ffffffff8d32b290 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 456.924406][ T28] 1 lock held by rcu_tasks_trace/13: [ 456.929767][ T28] #0: ffffffff8d32ba90 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xe30 [ 456.951291][ T28] 1 lock held by khungtaskd/28: [ 456.957471][ T28] #0: ffffffff8d32b0c0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x290 [ 456.974434][ T28] 2 locks held by getty/4016: [ 456.979202][ T28] #0: ffff88814d0cc098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x21/0x70 [ 457.004509][ T28] #1: ffffc9000325e2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a7/0x1db0 [ 457.017558][ T28] 1 lock held by syz-executor/4259: [ 457.022806][ T28] #0: ffffffff8d3306b8 (rcu_state.exp_mutex){+.+.}-{3:3}, at: synchronize_rcu_expedited+0x4f0/0x930 [ 457.033935][ T28] 1 lock held by syz-executor/4263: [ 457.039261][ T28] #0: ffff888053fa40e0 (&type->s_umount_key#92){+.+.}-{3:3}, at: deactivate_super+0xa9/0xe0 [ 457.050302][ T28] 2 locks held by kworker/0:17/4976: [ 457.061862][ T28] #0: ffff888017c72138 ((wq_completion)rcu_gp){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 457.073569][ T28] #1: ffffc9001c8bfd20 ((work_completion)(&rew->rew_work)){+.+.}-{0:0}, at: process_one_work+0x7a9/0x11d0 [ 457.092060][ T28] 2 locks held by udevadm/13990: [ 457.097447][ T4259] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 457.111251][ T28] [ 457.113613][ T28] ============================================= [ 457.113613][ T28] [ 457.127453][ T28] NMI backtrace for cpu 0 [ 457.131821][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.1.128-syzkaller #0 [ 457.139729][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 457.149806][ T28] Call Trace: [ 457.153100][ T28] [ 457.156050][ T28] dump_stack_lvl+0x1e3/0x2cb [ 457.160761][ T28] ? nf_tcp_handle_invalid+0x642/0x642 [ 457.166271][ T28] ? panic+0x764/0x764 [ 457.170366][ T28] ? vprintk_emit+0x622/0x740 [ 457.175077][ T28] ? preempt_schedule_irq+0x136/0x1c0 [ 457.180493][ T28] ? nmi_cpu_backtrace+0x252/0x560 [ 457.185636][ T28] nmi_cpu_backtrace+0x4e1/0x560 [ 457.190591][ T28] ? print_irqtrace_events+0x210/0x210 [ 457.196086][ T28] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 457.202363][ T28] ? asm_sysvec_reschedule_ipi+0x16/0x20 [ 457.208049][ T28] ? lockdep_hardirqs_on+0x94/0x130 [ 457.213283][ T28] ? nmi_trigger_cpumask_backtrace+0xe0/0x3f0 [ 457.219381][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 457.225483][ T28] nmi_trigger_cpumask_backtrace+0x1ae/0x3f0 [ 457.231495][ T28] watchdog+0xf88/0xfd0 [ 457.235772][ T28] ? watchdog+0x1f8/0xfd0 [ 457.240140][ T28] kthread+0x28d/0x320 [ 457.244251][ T28] ? hungtask_pm_notify+0x50/0x50 [ 457.249306][ T28] ? kthread_blkcg+0xd0/0xd0 [ 457.253948][ T28] ret_from_fork+0x1f/0x30 [ 457.258400][ T28] [ 457.262152][ T28] Sending NMI from CPU 0 to CPUs 1: [ 457.267941][ C1] NMI backtrace for cpu 1 [ 457.267967][ C1] CPU: 1 PID: 4292 Comm: kworker/1:4 Not tainted 6.1.128-syzkaller #0 [ 457.267984][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 457.267996][ C1] Workqueue: events pwq_unbound_release_workfn [ 457.268021][ C1] RIP: 0010:zap_class+0x36c/0x830 [ 457.268039][ C1] Code: 89 d8 48 c1 e8 06 48 8b 2c 24 48 8d 7c c5 00 be 08 00 00 00 e8 25 59 76 00 48 0f ab 5d 00 48 ff 05 a9 2f bd 11 4c 8b 64 24 08 <49> 83 c7 08 4c 89 f8 48 c1 e8 03 42 80 3c 30 00 0f 84 bd fd ff ff [ 457.268053][ C1] RSP: 0018:ffffc900043b7ae8 EFLAGS: 00000046 [ 457.268066][ C1] RAX: 0000000000048a4c RBX: 0000000000048a4c RCX: 0000000000048a43 [ 457.268078][ C1] RDX: 0000000000000001 RSI: 0000000000000008 RDI: ffffffff91222240 [ 457.268089][ C1] RBP: ffffffff902295b6 R08: dffffc0000000000 R09: fffffbfff2244449 [ 457.268101][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: 0000000000000ec9 [ 457.268112][ C1] R13: 1ffffffff228978c R14: dffffc0000000000 R15: ffffffff9144bc60 [ 457.268125][ C1] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 457.268139][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 457.268151][ C1] CR2: 00005567f7b1ead8 CR3: 000000005c046000 CR4: 00000000003506e0 [ 457.268166][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 457.268175][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 457.268186][ C1] Call Trace: [ 457.268190][ C1] [ 457.268197][ C1] ? nmi_cpu_backtrace+0x3de/0x560 [ 457.268214][ C1] ? read_lock_is_recursive+0x10/0x10 [ 457.268251][ C1] ? nmi_trigger_cpumask_backtrace+0x3f0/0x3f0 [ 457.268276][ C1] ? nmi_cpu_backtrace_handler+0x8/0x10 [ 457.268292][ C1] ? nmi_handle+0x12e/0x440 [ 457.268318][ C1] ? nmi_handle+0x25/0x440 [ 457.268343][ C1] ? zap_class+0x36c/0x830 [ 457.268358][ C1] ? default_do_nmi+0x62/0x150 [ 457.268376][ C1] ? exc_nmi+0xa8/0x100 [ 457.268391][ C1] ? end_repeat_nmi+0x16/0x31 [ 457.268413][ C1] ? zap_class+0x36c/0x830 [ 457.268428][ C1] ? zap_class+0x36c/0x830 [ 457.268444][ C1] ? zap_class+0x36c/0x830 [ 457.268459][ C1] [ 457.268464][ C1] [ 457.268471][ C1] lockdep_unregister_key+0x3c8/0x600 [ 457.268500][ C1] ? lockdep_reset_lock+0x3f0/0x3f0 [ 457.268526][ C1] ? print_irqtrace_events+0x210/0x210 [ 457.268550][ C1] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 457.268577][ C1] pwq_unbound_release_workfn+0x23d/0x290 [ 457.268599][ C1] ? process_one_work+0x7a9/0x11d0 [ 457.268618][ C1] process_one_work+0x8a9/0x11d0 [ 457.268644][ C1] ? worker_detach_from_pool+0x260/0x260 [ 457.268666][ C1] ? _raw_spin_lock_irqsave+0x120/0x120 [ 457.268689][ C1] ? kthread_data+0x4e/0xc0 [ 457.268716][ C1] ? wq_worker_running+0x97/0x190 [ 457.268732][ C1] worker_thread+0xa47/0x1200 [ 457.268752][ C1] ? _raw_spin_unlock+0x40/0x40 [ 457.268775][ C1] ? release_firmware_map_entry+0x186/0x186 [ 457.268795][ C1] ? _raw_spin_unlock+0x40/0x40 [ 457.268822][ C1] kthread+0x28d/0x320 [ 457.268837][ C1] ? worker_clr_flags+0x190/0x190 [ 457.268855][ C1] ? kthread_blkcg+0xd0/0xd0 [ 457.268871][ C1] ret_from_fork+0x1f/0x30 [ 457.268899][ C1] [ 457.583964][ C1] vkms_vblank_simulate: vblank timer overrun [ 457.603125][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 457.610044][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.1.128-syzkaller #0 [ 457.618047][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 457.628114][ T28] Call Trace: [ 457.631428][ T28] [ 457.634360][ T28] dump_stack_lvl+0x1e3/0x2cb [ 457.639081][ T28] ? nf_tcp_handle_invalid+0x642/0x642 [ 457.644557][ T28] ? panic+0x764/0x764 [ 457.648652][ T28] ? llist_add_batch+0x160/0x1d0 [ 457.653596][ T28] ? vscnprintf+0x59/0x80 [ 457.657927][ T28] panic+0x318/0x764 [ 457.661857][ T28] ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0 [ 457.668030][ T28] ? memcpy_page_flushcache+0xfc/0xfc [ 457.673430][ T28] ? nmi_trigger_cpumask_backtrace+0x2bf/0x3f0 [ 457.679585][ T28] ? nmi_trigger_cpumask_backtrace+0x338/0x3f0 [ 457.685758][ T28] ? nmi_trigger_cpumask_backtrace+0x33d/0x3f0 [ 457.691913][ T28] watchdog+0xfc7/0xfd0 [ 457.696079][ T28] ? watchdog+0x1f8/0xfd0 [ 457.700424][ T28] kthread+0x28d/0x320 [ 457.704496][ T28] ? hungtask_pm_notify+0x50/0x50 [ 457.709527][ T28] ? kthread_blkcg+0xd0/0xd0 [ 457.714138][ T28] ret_from_fork+0x1f/0x30 [ 457.718576][ T28] [ 457.721908][ T28] Kernel Offset: disabled [ 457.726259][ T28] Rebooting in 86400 seconds..