last executing test programs:

7m22.525344057s ago: executing program 2 (id=5892):
r0 = socket$kcm(0x10, 0x3, 0x10)
sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x14, &(0x7f00000000c0)=[{&(0x7f0000000180)="1400000017000b63d25a80648c2594f933a3c92b", 0x14}], 0x1}, 0x0)

7m22.215911378s ago: executing program 2 (id=5898):
r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0)
getsockopt(r0, 0x5, 0x80, 0x0, 0x0)

7m21.8205446s ago: executing program 2 (id=5904):
syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2000000, &(0x7f0000000240), 0x21, 0x4a6, &(0x7f0000000a40)="$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")
listxattr(&(0x7f0000000780)='./file1\x00', 0x0, 0x0)

7m21.218860117s ago: executing program 2 (id=5910):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f0000000100), 0x1, 0x58b, &(0x7f00000006c0)="$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")
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000003640)='./file0\x00', &(0x7f0000003680)='ext4\x00', 0x0, 0x0)

7m20.373092235s ago: executing program 2 (id=5923):
r0 = io_uring_setup(0x28fc, &(0x7f0000000080)={0x0, 0x0, 0x1000})
io_uring_register$IORING_REGISTER_IOWQ_MAX_WORKERS(r0, 0x11, 0x0, 0x2)

7m18.129208162s ago: executing program 2 (id=5943):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f0000000200)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000400)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}, {{&(0x7f0000000480)={0x11, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xa, &(0x7f0000000000)=[{&(0x7f0000000440)="08000000001f009e", 0x8}, {0x0}], 0x2}}], 0x2, 0x4000)

7m17.602000757s ago: executing program 32 (id=5943):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
sendmmsg$inet(r0, &(0x7f0000000340)=[{{&(0x7f0000000200)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000080)=[{&(0x7f0000000400)='\b\x00\x00\x00(\x00\x00\x00', 0x8}], 0x1}}, {{&(0x7f0000000480)={0x11, 0x4e21, @initdev={0xac, 0x1e, 0x1, 0x0}}, 0xa, &(0x7f0000000000)=[{&(0x7f0000000440)="08000000001f009e", 0x8}, {0x0}], 0x2}}], 0x2, 0x4000)

4m43.009334625s ago: executing program 6 (id=7534):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000780)={&(0x7f0000001cc0)=ANY=[@ANYBLOB="24000000180001000000f89af13e3e092d"], 0x24}}, 0x0)

4m42.514727664s ago: executing program 6 (id=7540):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$IOMMU_IOAS_IOVA_RANGES(r0, 0x3b84, &(0x7f0000000200)={0x20, 0x0, 0x0, 0x700, 0x0})

4m42.073556994s ago: executing program 6 (id=7545):
r0 = socket$l2tp(0x2, 0x2, 0x73)
setsockopt$inet_int(r0, 0x0, 0x2, &(0x7f0000000140)=0x1, 0x4)

4m41.707345491s ago: executing program 6 (id=7550):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000000)='./file1\x00', 0x1000400, &(0x7f0000000280)={[{@quota}, {@discard_size={'discard', 0x3d, 0xaff9}}, {@iocharset={'iocharset', 0x3d, 'none'}}, {@errors_continue}, {@iocharset={'iocharset', 0x3d, 'maciceland'}}, {@usrquota}, {@nodiscard}, {@uid}, {@uid={'uid', 0x3d, 0xee01}}]}, 0x21, 0x61b6, &(0x7f00000075c0)="$eJzs3cuOHFcZB/Cv+jYXE8fKIgoWQpPEXEKIr8EYAiRZwIINC+QtsjWZRBYOINsgJ7LwRLNhwUOAkFgixJIVD5AFW3Y8AJZsJFAWKIVq5pxxTaV7esb2dHW7fj9pXPX1qZo+5X9XX6aq+gQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAED/8wY/PFRFx5VfphhMRn4t+RC9iparXImJl7UR9nRdiuzmej4jhUkS1/vY/z0a8HhEfH4+4/+DOenXz+QP24/t//scffnLsR3//0/DMf/9yq//GpOVu3/7tf/5699G3FwAAALqoLMuySB/zT0bEIH22BwCefvn1v0zy7eq5qzfnrD9qtVqtXsC6rhzvbr2IiM36OtV7BofjAWDBbMYnbXeBFsm/0wYRcaztTgBzrWi7AxyJ+w/urBcp36L+erC2057PBdmT/2axe33HpOk0zXNMZvX42op+PDehPysz6sM8yfn3mvlf2WkfpeWOOv9ZmZT/aOfSp87J+feb+Tc8Pfn3xubfVTn/waHy78sfAAAAAADmWP77/4mWj/8uPf6mHMh+x3/XZtQHAAAAAAAAAHjSDjv+36Ax/t8u4/8BAADA3Ko+q1d+d/zhbZO+i626/XIR8UxjeaBj0sUyq233AwAAAAAAAAAAAAC6ZLBzDu/lImIYEc+srpZlWf3UNevDetz1F13Xtx+6rO0neQAA2PHx8ca1/EXEckRcTt/1N1xdXS3L5ZXVcrVcWcrvZ0dLy+VK7XNtnla3LY0O8IZ4MCqrX7ZcW69u2uflae3N31fd16jsH6Bjs9Fi4AAQETuvRvcnvSL9z+vVYirLZ6PlNzksiH32fxaU/Z+DaPtxCgAAABy9sizLIn2d98l0zL/XdqcAgJnIr//N4wJqtVqtVqufvrquHO9uvYiIzfo61XsGw/EDwILZjE/a7gItkn+nDSLihbY7Acy1ou0OcCTuP7izXqR8i/rrQRrfPZ8Lsif/zWJ7vbz+uOk0zXNMZvX42op+PDehP8/PqA/zJOffa+Z/Zad9lJZ7/PzLPX8mbOsco0n5V9t5ooX+tC3n32/m33DU+/+sbEVvbP5dlfMfHCr/vvwBAAAAAGCO5b//n5ir47+jR92cqfY7/rs2do2j6wsAAAAAAAAAPCn3H9xZz9e95uP/XxiznOs/n045/0L+nZTz7zXy/2pjuX5t/t7bD/P/94M763+89a/P5+lB81/KM0V6ZBXpEVGkeyoGafo4W/dZW8P+qLqnYdHrD9I5P+Xw3bgW12Mjzu5Ztpf+Px62n9vTXvV0uN1e9nfaz+9pH+y25/Uv7GkfprOLypXcfjrW4+dxPd7Zbq/alqZs//KU9nJKe86/b//vpJz/oPZT5b+a2ovGtHLvo95n9vv6dNz9vHXti785e/SbM9VW9He3ra7avpda6M/2/8mxUfzy5saN07ev3rp141ykyZ5bz0eaPGE5/2H62X3+f3mnPT/v1/fXex+NDp3/vNiKwcT8X67NV9v7yoz71oac/yj95PzfSe3j9/9Fzn/y/v9qC/0BAAAAAAAAAAAAAACA/ZRluX2J6FsRcTFd/9PWtZkAwGzl1/8yybfPqu7P+P7U6gWviznrz0zrT8v56o9avYh1XTnem/UiIv5WX6d6z/Drcb8MAJhnn0bEP9vuBK2Rf4fl7/urpqfa7gwwUzc/+PCnV69f37hxs+2eAAAAAAAAAACPKo//uVYb//lUWZZ3G8vtGf/17Vh73PE/B3lmd4DRCQNV9w+/TfvZ6o36vdpw4y/GpPG/h7tz+43/PZhyf8Mp7aMp7UtT2pentI+90KMm5/9ibbzzUxFxsjH8ehfGf22Oed8FOf+Xao/nKv+vNJar51/+fpHz7+3J/8yt939x5uYHH7527f2r7228t/GzC+fOnb1w8eKlS5fOvHvt+sbZnX9b7PHRyvnnsa+dB9otOf+cufy7Jef/pVTLv1ty/l9Otfy7Jeef3+/Jv1ty/vmzj/y7Jef/Sqrl3y05/6+lWv7dkvN/NdXy75ac/9dTLf9uyfm/lmr5d0vO/3Sq5d8tOf8zqT5g/itH3S9mI+efj3DZ/7sl55/PbJB/t+T8z6da/t2S87+Qavl3S87/9VTLv1ty/t9Itfy7Jed/MdXy75ac/zdTLf9uyflfSrX8uyXn/61Uy79bcv7fTrX8uyXn/0aq5d8tOf/vpFr+3ZLz/26q5d8tOf/vpVr+3ZLzfzPV8u+Wh9//b8aMGTN5pu1nJgAAAAAAAAAAAACgaRanE7e9jQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA/9mBAwEAAAAAIP/XRqiqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqrCDhwIAAAAAAD5vzZCVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVFfbuLkaus74f+Jl989qBxEDI38nfwMYxISSb7NpO/EKbYsJrw1sJhEJfsF3v2iz4Da9dAo1k00CJhFFRRdtw0RYQanNTkQsuaAUoF6gVUiVoL+gNokLlIqoCCkiVaAXZas55nmdnZmdndu3x+sw5n4+U/LIzZ+acOXPm7H53850BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAoNWtr5//dCPLsuY/+b+2ZtkLmv+9eWprftlrrvUWAgAAAFfqV/m/n7shXXBwDTdqWeafX/7dry0tLS1l7xv98/HPLy2lK6aybHxTluXXRU/96P2N1mWCx7LJxkjL1yN9Vj/a5/qxPteP97l+os/1m/pcP9nn+hU7YIXNxe9j8jvbmf/n1mKXZjdm4/l1O7vc6rHGppGR+LucXCO/zdL4sWwhO5HNZ7NtyxfLNvLlv3Frc11vyeK6RlrWtb15hPzs0aNxGxphH+9sW9fyfUY/eV029fOfPXr0b889e3O32Xc3tN1fsZ137Ghu5yfDJcW2NrJNaZ/E7Rxp2c7tXZ6T0bbtbOS3a/5353Y+t8btHF3ezA3V+ZxPZiP5f38v309jrb/WS/tpe7jsF7dlWXZxebM7l1mxrmwk29J2ycjy8zNZHJHN+2geSi/OxtZ1nN66huO0Oed2th+nna+J+PzfGm43tso2tD5NP/nERMvz/sulyzlOo+ajXu210nkMDvq1UpZjMB4X38sf9ONdj8Gd4fE/evvqx2DXY6fLMZged8sxuKPfMTgyMZpvc3oSGvltlo/BXW3Lj+ZrauTzmdt7H4Mz506emVn82MfvXjh55Pj88flTe3btmt2zd+/+/ftnji2cmJ8t/n2Ze7v8tmQj6TWwI+y7+Bp4VceyrYfq0pcmVpx/L/d1ONnjdbi1Y9lBvw7HOh9cY2NekCuP6eK18Z7mTp+8NJKt8hrLn587r/x1mB53y+twrOV12PV7SpfX4dgaXofNZc7cubafWcZa/um2Dat/L7iyY3BryzHY+fNI5zE46J9HynIMTobj4gd3rv69YHvY3sen1/vzyOiKYzA93HDuaV6Sft6f3J+PbsflLc0rrpvIzi/On73nkSPnzp3dlYWxIV7Scqx0Hq9bWh5TtuJ4HVn38Xpw4eWP39Ll8q1hX03e3fzX5KrPVXOZe+/p/Vzl392678+2S3dnYQzYRu/Pbt/Nm/tzIsu+8O1PPPTNR7/w+lX3ZzNvfnLmyn8WT7m05fw7vsr5N+b+54v1pbt6bHR8rHj9jqa9M952Pm5/qsbyc1cjX/dzM2s7H4+Hfzb6fHxjj/Pxto5lB30+Hu98cPF83Oj3244r0/l8Tobj5MRs7/Nxc5ltu9d7TI71PB/fFmYj7P9Xh6SQclHLsbPacZvWNTY2Hh7XWFxD+3G6p2358ZDNmut6cnf4oTBt5dqO0ztuK5YfbbldtFHH6VTHsoM+TtPvvlY7Thv9fvt2eTqfz8lwXNy4p/dx2lzm6Xuv/Ny5Of5ny7lzot8xOD460dzm8XQQ5uf7bGlzPAbvyY5mp7MT2Vx+7UR+PDXydU3ft7Zz5UT4Z6PPldt6HIN3dCw76GMwfR9b7dhrjK188APQ+XxOhuPiift6H4PNZd6wb7A/u94RLknLtPzs2vn7tdV+53VLx266WsfKWNjOb+/r/bvZ5jIn9q83Z/beT3eFS67rsp86X7+rvabmso3ZT9vCdj67f/X91Nye5jKfP7DG4+lglmUXPvJA/vve8PeVC+e//7W2v7t0+5vOhY888NMXHvun9Ww/AMPv+WJsKb7Xtfxlai1//wcAAACGQsz9I2Em8j8AAABURsz98f8KT+R/AAAAqIyY+8fCTKqQ//+4/yLb3vDswvMXstTMXwri9Wk3PFgsFzuus+HrqaVlzcsf+Mr8f//jhbVt3kiWZb988I+6Lr/twbhdhamwnU+9sf3yFb5295rWffjhC2m9rf31L4b7j49nrYdBtwrubJZl37jhs/l6pt5/KZ9PP3g4nw9dfPyx5jLPHSi+jrd/5iXF8n8Vyr8Hjx1pu/0zYT/8OMzZt3bfH/F2X7306u373ru8vni7xo7r84f9xAeK+43vk/O5x4rl435ebfu/+Zknv9pc/pFXdt/+CyPdt//JcL9fCfN/XlYs3/ocNL+Ot/tU2P64vni7e778ra7b/9Sni+XPvKlY7nCYcf13hK93vunZhdb99UjjSNvjyt5cLBfXP/v9P82vj/cX779z+ycPXWrbH53Hx9P/VtzPTMfy8fK4nugfOtbfvJ/W4zOu/8k/Ody2n/ut/6mHnnlZ8347139Xx3JnPnJnvv7l+2t/x6a//tRnu64vbs/Bvz/T9ngOviu8jsP6n/hAOB7D9f/7VHF/ne+ucPhd7eefuPwXt15oezzRW35erP+p1x7P56bJzVuue8ELr7/4iua+y7LvbSrur9/6j//N6bbt/9JNxf6I18eOfuf6VxPXf/aj06dOL55fmEt79dEb8vfOeVuxPXF7bwjn1s6vD50+98H5s1OzU7NZNlXdt9C7bF8O86fFuNh76aUVZ9A7Hw7P5y1/+Y0tt//rZ+Ll//6e4vJLby2+b70qLPe5cPnW8Pytb/0rPXHrTfnru/F02MKlle8XfCW27/yv/WtaMDz+zp8L4vF+5qUfzPdD87r8+0Z8XV/h9v9wrrifr4f9uhTemXnHTcvra10+vjfCpXcXr/cr3n/hNBef178Lz/fbf1zcf9yu+Hh/GH6O+da29vNdPD6+fmGk8/7zd/G4GM4n2cXi+rhU3N+Xnrup6+bF9yHJLt6cf/1n6X5uXtfDXM3ixxZnTiycOv/IzLn5xXMzix/7+KGTp8+fOncofy/PQx/qd/vl89OW/Pw0N7/33iw/W50uxlV2rbf/zMNH5/bN3j43f+zI+WPnHj4zf/b40cXFo/Nzi7cfOXZs/qP9br8wd/+u3Qf27Ns9fXxh7v79Bw7sOTC9cOp0czOKjepj7+yHp0+dPZTfZPH+ew/suu++e2enT56em79/3+zs9Pl+t8+/N003b/2H02fnTxw5t3Byfnpx4ePz9+86sHfv7r7vBnjyzLHFqZmz50/NnF+cPztTPJapc/nFze99/W5PNS3+R/HzbKdG8UZ82Tvv2pven7XpK59Y9a6KRTreQPTZ8F4033nRmf1r+Trm/vEwkyrkfwAAACAXc/9EmIn8DwAAAJURc/+mMBP5HwAAACoj5v7JMNP/ElCT/F+5/v+2C2tav/6//n/r/tL/r1n//91l6/8X5wv9/8G40v69/n+g/6//r/+v/6//zwCUrf8fc//mLPP3fwAAAKiomPu3hJnI/wAAAFAZMfdfF2Yi/wMAAEBlxNz/gjCTmuR//X/9f/1//X/9/+7r1/8fTvr/ven/96H/P5PVq/9/cZDbfw36/5tbv9D/p4zK1v+Puf+FYSY1yf8AAABQBzH3Xx9mIv8DAABAZcTcf0OYifwPAAAAlRFz/9Ywk5rkf/3/K+r/p86V/n/79uv/t9P/D8eD/r/+/wbQ/+9N/78P/X+f/z9c/f82+v+UUdn6/zH3vyjMpCb5HwAAAOog5v4Xh5nI/wAAAFA+Y5d3s5j7XxJmsiL/X+YKAAAAgGsu5v4bs44ieE3+/q//7/P/9f/1//X/u69/7f3/0Uz/vzz0/3vT/+9D/1//X/9f/5+BKlv/P8/92WT20jCTmuR/AAAAqIOY+28KM5H/AQAAoDJi7v9/YSbyPwAAAFRGzP3bwkxqkv/1/yvT//9F61On/6//32v9+v8+/7/K9P970//vQ/9f/1//X/+fgSpb/z/m/pvDTGqS/wEAAKAOYu6/JcxE/gcAAIDKiLn//4eZyP8AAABQGTH3bw8zqUn+1/8vef8/Nkd9/r/+v/5/Kfv/k/r/paP/35v+fx/6//r/+v/6/wxU2fr/Mfe/LMykJvkfAAAA6iDm/peHmcj/AAAAUBkx978izET+BwAAgMqIuX8qzKQm+X89/f/GRf3/1Vzlz/+fWMPn/7fR/9f/77V+/X+f/19l+v+96f/3of+v/6//r//PQJWt/x9z/61hJjXJ/wAAAFAHMffvCDOR/wEAAKAyYu6/LcxE/gcAAIDKiLl/Z5hJTfK/z/8fiv5/pv+v/6//r/+v/782+v+96f/3of+v/6//r//PQJWt/x9z/yvDTGqS/wEAAKAOYu6/PcxE/gcAAIDKiLn/VWEm8j8AAABURsz9d4SZ1CT/6//r/+v/6//r/3dfv/7/cNL/703/vw/9f/1//X/9fwaqbP3/mPtfHWZSk/wPAAAAdRBz/51hJvI/AAAAVEbM/XeFmcj/AAAAUBkx90+HmdQk/+v/6//r/+v/6/93X7/+/3DS/+9N/78P/X/9f/1//X8Gqmz9/5j77w4zqUn+BwAAgDqIuf+eMBP5HwAAACoj5v6ZMBP5HwAAACoj5v7ZMJOa5H/9f/1//X/9/3X1/1+xfL/6/wX9/3LR/+9N/78P/X/9/2ve/x/X/6dSytb/j7l/V5hJTfI/AAAA1EHM/bvDTOR/AAAAqIyY+/eEmcj/AAAAUBkx998bZlKT/K//r/+v/6//7/P/u69f/3846f/3Nvj+f3yI+v/6//r/Pv9f/5+Vytb/j7n/vjCTmuR/AAAAqIOY+/eGmcj/AAAAUBkx9+8LM5H/AQAAoDJi7t8fZlKT/K//r/+v/6//r//fff36/8NJ/783n//fh/6//v8Q9/+bx5b+P2VTtv5/zP0Hwkxqkv8BAACgDmLuf02YifwPAAAAlRFz/6+Fmcj/AAAAUBkx9/96mElN8r/+v/6//r/+f9n7/xP6//r/66D/35v+fx/6//r/Q9z/9/n/lFHZ+v8x998fZlKT/A8AAAB1EHP/b4SZyP8AAABQGTH3vzbMRP4HAACAyoi5/2CYSU3yv/7/BvX/44X6//r/+v8+/1///6rS/+9N/78P/X/9f/1//X8Gqmz9/5j7XxdmUpP8DwAAAHUQc/8DYSbyPwAAAFRGzP2vDzOR/wEAAKAyYu5/Q5hJTfK//r/P/7/2/f/xtm3X/1++nf5/Qf9f/3899P970//vQ/9f/1//X/+fgSpb/z/m/jeGmdQk/wMAAEAdxNz/pjAT+R8AAAAqI+b+N4eZyP8AAABQGTH3vyXMpCb5X/9f///a9/99/r/+f0H/X/9/EPT/e9P/70P/X/9f/1//n4EqW/8/5v7fDDOpSf4HAACAOoi5/8EwE/kfAAAAKiPm/reGmcj/AAAAUBkx978tzKQm+V//X/9f/1//X/+/+/r1/4eT/n9vQ9b//9X14XL9/4L+f7m3f739/7GOr69K//9Hq/X/lzZ13l7/n6uhbP3/mPvfHmZSk/wPAAAAdRBz/zvCTOR/AAAAqIyY+98ZZiL/AwAAQGXE3P9bYSY1yf/6/83tWG4v6//r/+cX6P/r/+v/Dy39/96GrP/v8/876P+Xe/t9/r/+PyuVrf8fc/+7wkxqkv8BAACgDmLufyjMRP4HAACAyoi5/91hJvI/AAAAVEbM/e8JM6lJ/tf/9/n/+v/6//r/3dev/z+c9P970//vQ/9f/79s/f//1P9nuJWt/x9z/8NhJjXJ/wAAAFAHMfe/N8xE/gcAAIDKiLn/t8NM5H8AAACojJj73xdmUpP8r/8/LP3/Kf3/dfb/J8Jl+v/6//r/9aL/35v+fx/6//r/Zev/+/x/hlzZ+v8x978/zGTt+X9yzUsCAAAA10TM/b8TZlKTv/8DAABAHcTc/7thJvI/AAAAVEbM/b8XZlKT/K//Pyz9f5//n/n8f/3/jsej/6//383G9f/jmUf/X/9f/z/S/9f/1/+nU9n6/zH3/36YSU3yPwAAANRBzP0fCDOR/wEAAGAodPt/sjvF3H8ozET+BwAAgMqIuf9wmElN8r/+v/6//n9J+/9/seNffvDddxzepf+v/6//vy4b+vn/zRe/z//X/9f/T/T/9f/1/+lUtv5/zP1HwkyWg9/bfMA/AAAADLeY+/8gzKQmf/8HAACAOoi5/2iYifwPAAAAlRFz/1yYSU3yv/6//r/+f0n7/0P8+f9xfwxT/3960xD1/+NJV/+/qw3t/793uSeu/7/e/v9E10s7+/8N/f82+v/r3v7vZFmm/6//zzVUtv5/zP3zYSY1yf8AAABQByH3jxwr5vIV8j8AAABURsz9x8NM5H8AAACojJj7PxhmUpP8r/+v/6//r//v8/+7r7+0/X+f/9+T/n9v5en/d+fz//X/h3n79f/1/1mpbP3/mPsXwkxqkv8BAACgDmLu/1CYifwPAAAAlRFz/4fDTOR/AAAAqIyY+0+EmdQk/+v/6//r/+v/6/93X7/+/3DS/+9N/78P/X/9f/1//X8Gqmz9/5j7T4aZ1CT/AwAAQB3E3H8qzOT/2LuPJsvq847jt3FTzBQb77zwwt77JbAwa/sFeMHGC7vK5YWxjXNicI4454BtJRRQAAmhhHICJSSUhSSUc0AZSTUqmOd5Znr69LndM7e7z/0/n89CDzSMzkU1BfrRfDn2PwAAAAwjd//NcYv9DwAAAMPI3f/LcUuT/a//1/8P2///pP7/oOfr//X/I9P/z9P/r6H/1//r//X/bNTS+v/c/b8StzTZ/wAAANBB7v5fjVvsfwAAABhG7v5b4hb7HwAAAIaRu//X4pYm+/+y/n9n1bP/z4xX/z9S/+/9/wc+X/+v/x/Zyfb/tz3xZz79v/5f/x/0//p//T+XW1r/n7v/1+OWJvsfAAAAOsjd/xtxi/0PAAAAw8jd/5txi/0PAAAAw8jd/1txS5P97/3/3v+v/9f/6/+nn6//307e/z+vU/9/y8PX/9Jj9/7ofUd5vv5f/6//1/+zWUvr/3P3/3bc0mT/AwAAQAe5+38nbrH/AQAAYBi5+383brH/AQAAYAudnfxq7v7fi1ua7H/9v/5f/x/9/xn9v/5f/z8C/f+8Tv3/lTxf/6//1//r/9mspfX/uft/P25psv8BAACgg9z9fxC32P8AAACwXFP/IPaM3P23xi32PwAAAAwjd/+5uKXJ/tf/H3///339/3b0/97/r//X/w9B/z9P/7+G/l//r//X/7NRS+v/c/ffFrc02f8AAADQQe7+P4xb7H8AAAAYRu7+P4pb7H8AAAAYRu7+P45bmux//b/3/+v/9f/6/+nn6/+3k/5/nv5/Df3/1fbz1+r/9f/6fy51xP7/8Zk/bW+k/8/d/ydxS5P9DwAAAB3k7v/TuMX+BwAAgGHk7v+zuMX+BwAAgGHk7v/zuKXJ/tf/6//1//r/K+7/9//Ue5L+f5r+/2To/+ctpv/f2Z38sv5/6/t/7//X/+v/2WNp7//P3f8XcUuT/Q8AAAAd5O7/y7hlZv8f+W/mAwAAAKcqd/9fxS2+/w8AAABbL6uz3P1/Hbc02f/6f/2//l//7/3/08+f6//vu+Tz6f+XRf8/bzH9/wH0//r/bf78+n/9P/strf/P3f83cUuT/Q8AAAAd5O6/PW6x/wEAAGAYufv/Nm6x/wEAAGAYufv/Lm5psv+n+/+Lv13/fzj6/72fX/8//fNjU/1//jfq/2f7/xu9/78n/f88/f8a+n/9v/7/oP7/7Lofr/9nytL6/9z9fx+3NNn/AAAA0EHu/n+IW+x/AAAAGEbu/n+MW+x/AAAAGEbu/n+KW5rsf+//1//r/7ev//f+/wtO8/3/qxPv/3f1/4ek/5+n/19D/6//1//Pv/9/5t8CoP9nytL6/9z9/xy3NNn/AAAA0EHu/n+JW+x/AAAA2A6X/rMDl/8DpSF3/7/GLfY/AAAADCN3/7/FLePs/9l3der/9f/6f/2//n/6+cvq/73//7D0//P0/2vo/4+jn98drP+/46Afv4T+/9bj7v9n6P+Zsqf/v//i10+r/8/d/+9xyzj7HwAAANrL3f8fcYv9DwAAAMPI3f+fcYv9DwAAAMPI3f9fcUuT/X/s/f/Mv31A/6//1//r//X/+v9N0//P0/+vof/3/n/v/9f/s1F7+v9LnFb/n7v/v+OWJvsfAAAAOsjd/z9xi/0PAAAAw8jdf0fcYv8DAADAMHL3/2/c0mT/e/+//l//r//X/08/X/+/na6qv79G/1/0//p//b/+X//PBiyt/8/d/39xS5P9DwAAAB3k7v//uMX+BwAAgGHk7n9K3GL/AwAAwDBy9z81bmmy//X/x9v/59f1//r/lf5f/6//PxFt3/+/M/VXov0O6P8f/IVzP733K/p//b/+X/+v/+eQfnjmty2i/z9/8f9d5u5/WtzSZP8DAABAB7n7nx632P8AAAAwjNz9z4hb7H8AAAAYRu7+O+OWI+7/ueZhyfT/3v+v/9f/6/+nn6//305t+/9D8v7/NfT/+n/9v/6fjVpE/3/Jr+fuf2bc4vv/AAAAMIzc/c+KW+x/AAAAGEbu/mfHLfY/AAAADCN3/3Pilib7X/+v/9f/6//1/9PP1/9vJ/3/PP3/GtvU/995Ff3/7vSXT7ufv1qn/fn1//p/9lta/5+7/664pcn+BwAAgA5y9z83brH/AQAAYBi5+58Xt9j/AAAAMIzc/c+PW5rsf/2//l//r//X/08/X/+/nfT/8/T/q9Xq7pkPMNX/n79umf2/9/8v7vPr//X/7Le0/j93/wvilib7HwAAADrI3X933GL/AwAAwDBy998Tt9j/AAAAMIzc/S+MW5rsf/2//l//r//X/08/X/+/nfT/8/T/a2zT+//1/4v7/Pp//T/7La3/z93/orilyf4HAACADnL33xu32P8AAAAwjNz9L45b7H8AAAAYRu7+++KWJvtf/6//1//r//X/08/X/2+n4+v/V/p//b/+fw39v/5f/8/lltb/5+5/SdzSZP8DAABAB7n7Xxq32P8AAAAwjNz9L4tb7H8AAAAYRu7+l8ctTfa//l//r//X/+v/p5+v/99O3v8/T/+/hv5f/6//1/+zUdP9/62n1v/n7n9F3NJk/wMAAEAHufvvj1vsfwAAABhG7v5Xxi32PwAAAAwjd/+r4pYm+1//r//f2/+vVvp//b/+/4IT6P/PrPT/G6f/n6f/X0P/P2b/f81qoP7/7IE/Xv/PEi3t/f+5+18dtzTZ/wAAANBB7v7XxC32PwAAAAwjd/9r4xb7HwAAAIaRu/91cUuT/a//1/97/7/+X/8//Xzv/99O+v95+v819P9j9v/e/6//59Qsrf/P3f/6uKXJ/gcAAIAOcve/IW6x/wEAAGAYufvfGLfY/wAAADCM3P1vilua7H/9v/5f/6//1/9PP1//v530//P0/2vo//X/+n/9Pxu1tP4/d/+b45Ym+x8AAAA6yN3/QNxi/wMAAMAwcvc/GLfY/wAAADCM3P1viVua7H/9v/5f/7+d/f8Z/b/+X/8/aSn9/w03/NRD+n/9v/5f/6//1/93t7T+P3f/W+OWJvsfAAAAOsjd/7a4xf4HAACAYeTuf3vcYv8DAADAMHL3vyNuabL/9/f/164uFKoXTPX/0ajp/y+h/9/7+fX/0z8/vP9f/6//P35L6f+9///KPr/+X/+/zZ//SP3/j+//8fp/RrS0/j93/0NxS5P9DwAAAB3k7n9n3GL/AwAAwDBy978rbrH/AQAAYBi5+x+OW5rsf+//1//r//X/+v/p5+v/t5P+f57+fw39v/7f+/9v/rkf0v+zOUvr/3P3vztuabL/AQAAoIPc/e+JW+x/AAAAGEbu/vfGLfY/AAAADCN3//vilib7X/+v/9f/6//1/9PP1/9vJ/3/PP1/ufwP7YI+/f+ZqS+edj9/tU778w/T/3v/Pxu0tP4/d//745Ym+x8AAAA6yN3/gbjF/gcAAIBh5O7/YNxi/wMAAMAwcvd/KG5psv/1//r/8fv/n9X/X/Z8/b/+f2T6//wr+jT9/xp9+v9Jp93Pb/vn1//r/9lvaf1/7v5H4pYm+x8AAAA6yN3/4bjF/gcAAIBh5O7/SNxi/wMAAMAwcvd/NG5psv/1/736/51Vx/7f+//1//r/TvT/8/T/a+j/9f/6f/0/G7W0/j93/6M7uy33PwAAAGyrn/mJX3zksL/vo0/+55nVx+KWG1fnD/ltbAAAAGDhntj9O7ur1cef/DXf/wcAAIAR5e7/RNzSZP/r/3v1/z3f/6//1//r/zvR/8/T/6+h/9f/6//1/2zU0vr/3P2fjFsuGX67R/6jBAAAAJYkd/+n4pYm3/8HAACADnL3fzpu2bf//esAAQAAYFvl7v9M3NLk+//6/4X3/6tj6v/j99P/X6D/1/9PPV//v530//Ousv8/v6P/1//P0P/r//X/XG5p/X/u/s/GLU32PwAAAAxqz99RyN3/ubjF/gcAAIBh5O7/fNxi/wMAAMAwcvd/IW5psv/1/yfe/2eqfozv/z9bv+T9/837/9vPTD5f/6//H5n+f573/6+h/x+l/79O/6//ZxmW1v/n7v9i3NJk/wMAAEAHufu/FLfY/wAAADCM3P1fjlvsfwAAABhG7v6vxC1N9r/+f+Hv/7+i/v8Q7//X//fo/w94/jj9/49cf+6Bm37+nrv0/1x0kv1//lzQ/+v/9f8XLKj/9/5//T8Lsfn+f3fPF4/a/+fu/2rc0mT/AwAAQAe5+x+LW+x/AAAAGEbu/q/FLfY/AAAADCN3/9fjlib7X/+v/19K/5//W59C/3/uivv/s6vV6lT6/2yKu/f/3v+v/9/P+//n6f/X0P/r//X/+n82avP9/94vHrX/z93/jbilyf4HAACADnL3fzNuyf2/c+S/dQ8AAAAsTO7+b8Utvv8PAAAAw8jd/+24pcn+1//r/5fS/yfv/7/448Z6//9NFaf27P9/rH5J/3+89P/z9P9r6P/1//p//T8btbT+P3f/d+KWJvsfAAAAOsjd/3jcYv8DAADAMHL3fzdusf8BAABgGLn7vxe3NNn/+v9R+/8s4vX/+v+l9P/e/+/9/ydD/z9P/7+G/l//r//X/7NRS+v/c/f/IAAA//9GqnSo")
mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f0000000100)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

4m39.474308897s ago: executing program 6 (id=7569):
r0 = socket$kcm(0x22, 0x2, 0x21)
ioctl$sock_kcm_SIOCKCMCLONE(r0, 0x80044944, &(0x7f0000000200))

4m38.05938914s ago: executing program 6 (id=7583):
r0 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000040)=0x80000001)

4m37.211060896s ago: executing program 33 (id=7583):
r0 = openat$random(0xffffffffffffff9c, &(0x7f00000000c0), 0x0, 0x0)
ioctl$RNDADDTOENTCNT(r0, 0x40045201, &(0x7f0000000040)=0x80000001)

4.728715819s ago: executing program 7 (id=10323):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000001c0)=ANY=[@ANYBLOB="380000005500e502000000000000000007000000", @ANYRES32, @ANYBLOB="200001", @ANYRES32=0x0, @ANYBLOB="000000f1a0"], 0x38}}, 0x0)

4.302791124s ago: executing program 7 (id=10327):
syz_mount_image$jfs(&(0x7f0000000100), &(0x7f0000000040)='./file1\x00', 0x5010006, &(0x7f0000009100)={[{@quota}, {@nodiscard}, {@nodiscard}, {@iocharset={'iocharset', 0x3d, 'cp866'}}, {@iocharset={'iocharset', 0x3d, 'cp932'}}, {@gid}, {@discard_size={'discard', 0x3d, 0x5}}, {@noquota}, {@nointegrity}]}, 0x24, 0x61eb, &(0x7f0000000480)="$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")
syz_mount_image$fuse(0x0, &(0x7f0000000600)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x1000444, 0x0, 0x1, 0x0, 0x0)

3.999369955s ago: executing program 5 (id=10329):
r0 = syz_init_net_socket$nfc_raw(0x27, 0x5, 0x0)
writev(r0, &(0x7f00000011c0)=[{&(0x7f0000000d00)="a9a2bb47d29e5fd105bf5571dcff7d9c25ac66085d7cc13c", 0x18}], 0x1)

3.372103648s ago: executing program 5 (id=10332):
r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="9feb010018000000000000001c0000001c00000003000000010000000000000e0200000000000000000000000000000504000000002e"], 0x0, 0x37}, 0x20)
bpf$MAP_CREATE(0x0, &(0x7f0000000280)=@base={0x9, 0x4, 0x3, 0x807, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, r0, 0x2, 0x1}, 0x50)

2.882328808s ago: executing program 5 (id=10337):
syz_usb_connect(0x0, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000d8ca8d40d10521200030010203010902120001000000000904"], 0x0)
socketpair$unix(0x1, 0x3, 0x0, 0x0)

2.611463336s ago: executing program 1 (id=10338):
r0 = socket$packet(0x11, 0x3, 0x300)
ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f0000000140)={0x0, 'ipvlan0\x00', {}, 0x3ff})

2.520061101s ago: executing program 0 (id=10339):
r0 = socket$vsock_stream(0x28, 0x1, 0x0)
setsockopt$SO_VM_SOCKETS_BUFFER_MIN_SIZE(r0, 0x28, 0x1, &(0x7f0000000200), 0x8)

2.403019998s ago: executing program 4 (id=10340):
r0 = syz_open_dev$video(&(0x7f00000001c0), 0xa7, 0x0)
ioctl$VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000080)={0x1, @pix_mp={0x8000, 0x1, 0x32315241, 0x3, 0x9, [{0x7ca9, 0x10001}, {0x54, 0x5}, {0x4, 0x7}, {0x2, 0x6}, {0x4, 0x5}, {0x2, 0x80000000}, {0x5, 0x400}, {0xc}], 0xd, 0x3, 0x3, 0x0, 0x7}})

2.295717746s ago: executing program 3 (id=10341):
r0 = fsopen(&(0x7f00000000c0)='virtiofs\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000000)='dax\x00', &(0x7f0000000040)='\x00\x80', 0x0)

2.220436s ago: executing program 0 (id=10342):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000005c00)={&(0x7f0000000740)=@newtaction={0x1a0, 0x30, 0x9, 0x0, 0x0, {}, [{0x18c, 0x1, [@m_bpf={0x88, 0x1, 0x0, 0x0, {{0x8}, {0x60, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x7}, @TCA_ACT_BPF_OPS={0x3c, 0x4, [{}, {}, {0x3}, {}, {0x0, 0x0, 0xfe}, {}, {0x6}]}, @TCA_ACT_BPF_PARMS={0x18}]}, {0x4}, {0xc}, {0xc}}}, @m_bpf={0x100, 0x2, 0x0, 0x0, {{0x8}, {0x50, 0x2, 0x0, 0x1, [@TCA_ACT_BPF_OPS_LEN={0x6, 0x3, 0x3}, @TCA_ACT_BPF_FD={0x8}, @TCA_ACT_BPF_FD, @TCA_ACT_BPF_PARMS={0x18, 0x2, {0xc4, 0x81, 0x5, 0x9, 0x5}}, @TCA_ACT_BPF_NAME={0xc, 0x6, './file2\x00'}]}, {0x8b, 0x6, "34cd612c7a0ab41aeee4f2749c717405930291dd10c14ec41a0491357d7c632f458556e624bdab00958fafb08c18760601b0943a67d82a91d915c3984342a367d3b2e58cea49cb7452d570292ec56138e6a1ba36da3d664c8523216a7b39db943810932dbdc81b60f442a6febd49c70976736c5a483baea68dd16a08fa7222f24f93b11f380ddb"}, {0xc, 0x7, {0x0, 0x1}}, {0xc, 0x8, {0x0, 0x5}}}}]}]}, 0x1a0}}, 0x0)

2.161602498s ago: executing program 1 (id=10343):
r0 = socket$phonet_pipe(0x23, 0x5, 0x2)
getsockopt$PNPIPE_HANDLE(r0, 0x113, 0x3, 0x0, &(0x7f0000000140))

1.954275182s ago: executing program 3 (id=10344):
r0 = openat$vimc1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$SCSI_IOCTL_GET_PCI(r0, 0x5387, 0x0)

1.899517293s ago: executing program 4 (id=10345):
r0 = syz_open_dev$sg(&(0x7f00000060c0), 0x0, 0x8002)
ioctl$SCSI_IOCTL_BENCHMARK_COMMAND(r0, 0x3)

1.871884282s ago: executing program 7 (id=10346):
r0 = socket(0x200000000000011, 0x2, 0x0)
getsockopt$sock_timeval(r0, 0x1, 0x42, 0x0, &(0x7f00000000c0))

1.711971084s ago: executing program 1 (id=10347):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x7, 0x2)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05605, &(0x7f0000000cc0)={0x1, @pix_mp={0x4, 0x500, 0x20363159, 0x1, 0xb, [{}, {0x0, 0xffffffff}, {0x4}, {0x2}, {}, {}, {0xefe}, {0x55b}], 0x4, 0x0, 0x0, 0x0, 0x6}})

1.607673242s ago: executing program 0 (id=10348):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0xa, 0x0, &(0x7f0000000340)={&(0x7f0000001780)={0x2, 0x3, 0x0, 0x2, 0xf, 0x0, 0xfffffffd, 0x25dfdbff, [@sadb_address={0x3, 0x6, 0x0, 0x20, 0x0, @in={0x2, 0x0, @rand_addr=0x64010100}}, @sadb_sa={0x2, 0x1, 0x4d6, 0x7, 0x0, 0xfb, 0x3}, @sadb_address={0x3, 0x5, 0x0, 0x0, 0x0, @in={0x2, 0x0, @local}}, @sadb_key={0x1, 0x8}, @sadb_lifetime={0x4, 0x3, 0xa, 0xffffffffffffffff, 0x3, 0xa}]}, 0x78}, 0x1, 0x7}, 0x0)

1.476457572s ago: executing program 3 (id=10349):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
ioctl$sock_inet_SIOCGARP(r0, 0x8954, &(0x7f0000001600)={{0x2, 0x4e23, @multicast1}, {0x6, @remote}, 0x0, {0x2, 0x4e23, @multicast1}, 'pimreg\x00'})

1.392570292s ago: executing program 4 (id=10350):
r0 = socket$netlink(0x10, 0x3, 0x10)
setsockopt$sock_int(r0, 0x1, 0x2b, &(0x7f0000000000), 0x4)

1.258210022s ago: executing program 7 (id=10351):
syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000240)='./file0\x00', 0xc02, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'macturkish'}}, {}, {@errors_continue}, {@fmask={'fmask', 0x3d, 0x4}}, {@zero_size_dir}, {@keep_last_dots}, {@keep_last_dots}, {@namecase}, {@keep_last_dots}, {}]}, 0x1, 0x151e, &(0x7f0000007640)="$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")
syz_mount_image$vfat(&(0x7f0000000000), &(0x7f0000000040)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x802053, 0x0, 0xfc, 0x0, &(0x7f0000000140))

1.183353174s ago: executing program 1 (id=10352):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x5c, 0x10, 0x439, 0x70bd2a, 0xffffffea, {0x0, 0x0, 0xe403, 0x0, 0x3, 0x610c3}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @sit={{0x8}, {0x30, 0x2, 0x0, 0x1, [@IFLA_IPTUN_6RD_PREFIX={0x14, 0xb, @loopback}, @IFLA_IPTUN_REMOTE={0x8, 0x3, @remote}, @IFLA_IPTUN_LOCAL={0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x2d}}, @IFLA_IPTUN_FLAGS={0x6, 0x8, 0x2d}]}}}]}, 0x5c}, 0x1, 0x0, 0x0, 0x8000}, 0x4008040)

1.146450616s ago: executing program 0 (id=10353):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000080)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x18, 0x18, 0x4, [@struct={0x2, 0x1, 0x0, 0x4, 0x0, 0x6, [{0x7, 0x3, 0x9}]}]}, {0x0, [0x5f, 0x5f]}}, &(0x7f0000000f40)=""/4077, 0x34, 0xfed, 0x2}, 0x28)

1.120820289s ago: executing program 3 (id=10354):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x50)
bpf$BPF_PROG_WITH_BTFID_LOAD(0x5, &(0x7f00000003c0)=@bpf_lsm={0x6, 0x6, &(0x7f00000001c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018200000", @ANYRES32=r0, @ANYBLOB="0000000000000000c30000000001000095"], &(0x7f0000000180)='GPL\x00', 0x8}, 0x94)

951.616765ms ago: executing program 4 (id=10355):
r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f00000002c0), 0x60800, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)

886.118286ms ago: executing program 3 (id=10356):
r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000100)='\x00', 0x89901)
fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0)

751.970514ms ago: executing program 0 (id=10357):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000002340), 0x40800)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000002380)={{0x1, 0x1}, 0x0, 0xfffffffe, 0x6c, {0x44, 0x1}, 0x8, 0x803})

741.661965ms ago: executing program 5 (id=10358):
r0 = socket$igmp6(0xa, 0x3, 0x2)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000b00)=@raw={'raw\x00', 0x8, 0x3, 0x420, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x350, 0xffffffff, 0xffffffff, 0x350, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @empty}, @mcast2, [0x0, 0x0, 0x0, 0xff], [], 'veth0_macvtap\x00', 'dvmrp1\x00', {}, {}, 0x0, 0x0, 0x6, 0x35}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@remote, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'ip6tnl0\x00'}, 0x0, 0x258, 0x280, 0x0, {}, [@common=@inet=@hashlimit1={{0x58}, {'pim6reg\x00', {0x0, 0x0, 0x5, 0xa1, 0x0, 0x7, 0x3ff}}}, @common=@inet=@hashlimit3={{0x158}, {'\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@inet=@SYNPROXY={0x28, 'SYNPROXY\x00', 0x0, {0x1, 0x80, 0x1}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x480)

719.918546ms ago: executing program 7 (id=10359):
r0 = socket$inet_sctp(0x2, 0x1, 0x84)
sendmsg$inet_sctp(r0, &(0x7f0000001180)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB="200000000000000084"], 0x50, 0x810}, 0x4000040)

522.30726ms ago: executing program 4 (id=10360):
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x0, 0x0)
ioctl$SNDRV_CTL_IOCTL_ELEM_UNLOCK(r0, 0x40405515, &(0x7f0000000000)={0x1, 0x6, 0x3, 0x401, '\x00', 0x3})

510.237315ms ago: executing program 1 (id=10361):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000000c0)=[{&(0x7f0000000100)="d80000001e0081054e81f782dbe8abd22d267e8e1c007c09e8fe08a104000e800a00142603600e1208000fc01e000402a80016c008000e400400027c035c0461c1d67f6f94007134cff6d26efb8000a0ffa290457f0189c129f509c1c9d8c87017eeadc9c809b316277ce06bba0000001fb791643a5ee4ce1b14d6d930dfe1d9d322fe7c9f8775730d16a4683f5aeb4edbb57a5025ccce9500360db7e5167fda40fad95667e006dcdf63951f215ce3bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd6e4edef3d93452a92954b43370e970392", 0xd8}], 0x1}, 0x40400)

452.571038ms ago: executing program 3 (id=10362):
r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000400)={{0x12, 0x1, 0x0, 0xce, 0xf8, 0xbd, 0x8, 0xe41, 0x4142, 0xbc76, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x2, 0x0, 0x6a, 0x2f, 0xf6}}]}}]}}, 0x0)
syz_usb_control_io$cdc_ncm(r0, 0x0, 0x0)

333.802801ms ago: executing program 5 (id=10363):
r0 = openat$dma_heap(0xffffffffffffff9c, &(0x7f0000000040), 0x100, 0x0)
ioctl$MEDIA_IOC_DEVICE_INFO(r0, 0xc1007c00, 0x0)

328.972417ms ago: executing program 7 (id=10364):
syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000040)='./file1\x00', 0x0, &(0x7f0000000200)={[{@part}, {@nodecompose}, {@force}, {@uid}, {@part={'part', 0x3d, 0xc}}, {@barrier}, {@gid={'gid', 0x3d, 0xee00}}, {@nls={'nls', 0x3d, 'cp950'}}, {@part={'part', 0x3d, 0xc}}]}, 0x3, 0x5f4, &(0x7f0000000640)="$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")
symlink(&(0x7f0000000800)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00')

328.642445ms ago: executing program 0 (id=10365):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_SYNC_PTR(r0, 0xc0884123, &(0x7f0000000040)={0x0, "978ecb5cea46a8fbca158168d717ca8a427de59cb6ac24e2ed1e9265f391ef214f784f1304a9c3e607595dae65960313cc4d694635b59f5d87db6169bfa42fd4", {0x80000000}})

160.804522ms ago: executing program 1 (id=10366):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
getsockopt$IP_VS_SO_GET_SERVICES(r0, 0x0, 0x33, 0x0, &(0x7f0000000200)=0x2)

114.950646ms ago: executing program 4 (id=10367):
r0 = syz_open_dev$sndpcmc(&(0x7f0000004240), 0x0, 0x0)
ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0x40084149, &(0x7f0000000080))

0s ago: executing program 5 (id=10368):
syz_open_dev$usbmon(&(0x7f0000000080), 0x0, 0x20400)
syz_usb_connect(0x2, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000014da2108ab12a390eb1e000000010902240001b30000040904410017ff5d810009050f1f01040000000905830300b3"], 0x0)

kernel console output (not intermixed with test programs):

 1267.909077][T26860] loop0: detected capacity change from 0 to 64
[ 1267.972488][T26860] hfs: unable to locate alternate MDB
[ 1268.002988][T26860] hfs: continuing without an alternate MDB
[ 1268.145435][T26869] xt_recent: Unsupported userspace flags (000000de)
[ 1268.578678][T26879] netlink: 'syz.1.8912': attribute type 11 has an invalid length.
[ 1269.000884][ T5848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1269.138433][T26896] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1269.202070][T26897] loop3: detected capacity change from 0 to 1024
[ 1269.515327][T19994] hfsplus: b-tree write err: -5, ino 4
[ 1270.284614][T26924] loop1: detected capacity change from 0 to 4096
[ 1270.420903][T26924] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1270.464536][T26924] ntfs3(loop1): Failed to load $Extend (-22).
[ 1270.518446][T26924] ntfs3(loop1): Failed to initialize $Extend.
[ 1270.889316][    T9] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1270.901276][   T37] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1270.909664][T26947] netlink: 'syz.3.8940': attribute type 10 has an invalid length.
[ 1271.067531][T26947] : (slave bridge0): Enslaving as an active interface with an up link
[ 1271.076083][T10469] usb 6-1: new high-speed USB device number 16 using dummy_hcd
[ 1271.279983][T26956] netlink: 28 bytes leftover after parsing attributes in process `syz.0.8943'.
[ 1271.308178][T10469] usb 6-1: Using ep0 maxpacket: 16
[ 1271.343379][T10469] usb 6-1: config 0 has an invalid interface number: 126 but max is 0
[ 1271.383085][T10469] usb 6-1: config 0 has an invalid descriptor of length 116, skipping remainder of the config
[ 1271.436221][T10469] usb 6-1: config 0 has no interface number 0
[ 1271.455683][T10469] usb 6-1: config 0 interface 126 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[ 1271.502519][T10469] usb 6-1: config 0 interface 126 altsetting 0 endpoint 0x87 has invalid maxpacket 34328, setting to 1024
[ 1271.563885][T10469] usb 6-1: config 0 interface 126 altsetting 0 endpoint 0xA has invalid maxpacket 512, setting to 64
[ 1271.618181][T10469] usb 6-1: config 0 interface 126 altsetting 0 endpoint 0x4 has invalid maxpacket 29797, setting to 1024
[ 1271.660849][T10469] usb 6-1: config 0 interface 126 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 1024
[ 1271.690341][T10469] usb 6-1: config 0 interface 126 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 4
[ 1271.751559][T10469] usb 6-1: New USB device found, idVendor=0763, idProduct=1015, bcdDevice=56.88
[ 1271.817403][T10469] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1271.847074][T10469] usb 6-1: config 0 descriptor??
[ 1271.876564][T26944] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1271.884621][T26944] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1271.926596][T10469] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1272.169224][T26977] loop1: detected capacity change from 0 to 2048
[ 1272.264712][T26977] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1272.321284][   T44] usb 6-1: USB disconnect, device number 16
[ 1272.372473][   T31] audit: type=1800 audit(2000525412.905:182): pid=26977 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8953" name="file1" dev="loop1" ino=1367 res=0 errno=0
[ 1273.164400][T26999] loop1: detected capacity change from 0 to 256
[ 1273.218495][T27003] netlink: 'syz.7.8966': attribute type 10 has an invalid length.
[ 1273.226967][T27002] netlink: 'syz.4.8967': attribute type 1 has an invalid length.
[ 1273.241418][T26999] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1273.270556][T27002] netlink: 80 bytes leftover after parsing attributes in process `syz.4.8967'.
[ 1273.274941][T26999] exFAT-fs (loop1): Medium has reported failures. Some data may be lost.
[ 1273.408447][T27003] team0: Port device dummy0 added
[ 1273.424043][T26999] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d)
[ 1274.017935][T27022] dlm: no local IP address has been set
[ 1274.040002][T27016] loop7: detected capacity change from 0 to 2048
[ 1274.059212][T27022] dlm: cannot start dlm midcomms -107
[ 1274.167241][T27016] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1274.578995][T26996] loop0: detected capacity change from 0 to 32768
[ 1274.585707][T27029] warn_alloc: 1 callbacks suppressed
[ 1274.585731][T27029] syz.5.8979: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1
[ 1274.633103][T27029] CPU: 0 UID: 0 PID: 27029 Comm: syz.5.8979 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[ 1274.633158][T27029] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1274.633182][T27029] Call Trace:
[ 1274.633196][T27029]  <TASK>
[ 1274.633210][T27029]  dump_stack_lvl+0x16c/0x1f0
[ 1274.633270][T27029]  warn_alloc+0x248/0x3a0
[ 1274.633334][T27029]  ? __pfx_warn_alloc+0x10/0x10
[ 1274.633388][T27029]  ? __pfx_stack_trace_save+0x10/0x10
[ 1274.633448][T27029]  ? stack_depot_save_flags+0x28/0xa40
[ 1274.633503][T27029]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1274.633560][T27029]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1274.633607][T27029]  ? kasan_save_stack+0x42/0x60
[ 1274.633661][T27029]  ? kasan_save_stack+0x33/0x60
[ 1274.633715][T27029]  ? kasan_save_track+0x14/0x30
[ 1274.633769][T27029]  ? xskq_create+0x52/0x1d0
[ 1274.633812][T27029]  ? xsk_setsockopt+0x640/0x840
[ 1274.633850][T27029]  ? do_sock_setsockopt+0xf3/0x1d0
[ 1274.633916][T27029]  ? xskq_create+0xfb/0x1d0
[ 1274.633970][T27029]  __vmalloc_node_range_noprof+0xff5/0x14b0
[ 1274.634037][T27029]  ? xskq_create+0xfb/0x1d0
[ 1274.634094][T27029]  ? __pfx___vmalloc_node_range_noprof+0x10/0x10
[ 1274.634160][T27029]  ? xskq_create+0xfb/0x1d0
[ 1274.634205][T27029]  vmalloc_user_noprof+0x9e/0xe0
[ 1274.634254][T27029]  ? xskq_create+0xfb/0x1d0
[ 1274.634301][T27029]  xskq_create+0xfb/0x1d0
[ 1274.634351][T27029]  xsk_setsockopt+0x640/0x840
[ 1274.634397][T27029]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1274.634439][T27029]  ? __pfx_aa_sk_perm+0x10/0x10
[ 1274.634501][T27029]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1274.634560][T27029]  ? __pfx_xsk_setsockopt+0x10/0x10
[ 1274.634605][T27029]  do_sock_setsockopt+0xf3/0x1d0
[ 1274.634675][T27029]  __sys_setsockopt+0x1a0/0x230
[ 1274.634737][T27029]  __x64_sys_setsockopt+0xbd/0x160
[ 1274.634787][T27029]  ? do_syscall_64+0x91/0x4c0
[ 1274.634840][T27029]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1274.634887][T27029]  ? lockdep_hardirqs_on+0x7c/0x110
[ 1274.634938][T27029]  do_syscall_64+0xcd/0x4c0
[ 1274.635001][T27029]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1274.635041][T27029] RIP: 0033:0x7ff232d8e9a9
[ 1274.635072][T27029] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1274.635111][T27029] RSP: 002b:00007ff233c61038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 1274.635147][T27029] RAX: ffffffffffffffda RBX: 00007ff232fb5fa0 RCX: 00007ff232d8e9a9
[ 1274.635175][T27029] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[ 1274.635200][T27029] RBP: 00007ff232e10d69 R08: 0000000000000052 R09: 0000000000000000
[ 1274.635225][T27029] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1274.635250][T27029] R13: 0000000000000000 R14: 00007ff232fb5fa0 R15: 00007ffe600060d8
[ 1274.635302][T27029]  </TASK>
[ 1274.635418][T27029] Mem-Info:
[ 1274.894265][T26996] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.8962 (26996)
[ 1275.014232][T27029] active_anon:17791 inactive_anon:0 isolated_anon:0
[ 1275.014232][T27029]  active_file:8086 inactive_file:43856 isolated_file:0
[ 1275.014232][T27029]  unevictable:768 dirty:512 writeback:0
[ 1275.014232][T27029]  slab_reclaimable:11573 slab_unreclaimable:108907
[ 1275.014232][T27029]  mapped:36332 shmem:9732 pagetables:1850
[ 1275.014232][T27029]  sec_pagetables:0 bounce:0
[ 1275.014232][T27029]  kernel_misc_reclaimable:0
[ 1275.014232][T27029]  free:1270965 free_pcp:11224 free_cma:0
[ 1275.098965][T27029] Node 0 active_anon:71164kB inactive_anon:0kB active_file:32344kB inactive_file:175224kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:145328kB dirty:2048kB writeback:0kB shmem:37392kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:13256kB pagetables:7364kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1275.107048][T26996] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1275.175290][T27029] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:48kB pagetables:136kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB
[ 1275.268912][T26996] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1275.306465][T27029] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 1275.336200][T26996] BTRFS info (device loop0): using free-space-tree
[ 1275.390420][T27029] lowmem_reserve[]: 0 2480 2481 2481 2481
[ 1275.432649][T27029] Node 0 DMA32 free:1149300kB boost:0kB min:34076kB low:42592kB high:51108kB reserved_highatomic:0KB free_highatomic:0KB active_anon:70900kB inactive_anon:0kB active_file:32344kB inactive_file:174040kB unevictable:1536kB writepending:2064kB present:3129332kB managed:2540032kB mlocked:0kB bounce:0kB free_pcp:40820kB local_pcp:20300kB free_cma:0kB
[ 1275.552152][T27029] lowmem_reserve[]: 0 0 1 1 1
[ 1275.557022][T27029] Node 0 Normal free:8kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB free_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1316kB unevictable:0kB writepending:0kB present:1048580kB managed:1388kB mlocked:0kB bounce:0kB free_pcp:16kB local_pcp:8kB free_cma:0kB
[ 1275.640949][T27029] lowmem_reserve[]: 0 0 0 0 0
[ 1275.645818][T27029] Node 1 Normal free:3918844kB boost:0kB min:55804kB low:69752kB high:83700kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194300kB managed:4111164kB mlocked:0kB bounce:0kB free_pcp:4256kB local_pcp:4256kB free_cma:0kB
[ 1275.681466][T27029] lowmem_reserve[]: 0 0 0 0 0
[ 1275.686377][T27029] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 1275.703700][T27029] Node 0 DMA32: 513*4kB (UME) 38*8kB (UE) 16*16kB (UME) 36*32kB (UM) 1047*64kB (UME) 764*128kB (UM) 493*256kB (UM) 371*512kB (UME) 199*1024kB (UME) 3*2048kB (M) 111*4096kB (M) = 1149300kB
[ 1275.723409][T27029] Node 0 Normal: 0*4kB 1*8kB (M) 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 8kB
[ 1275.735635][T27029] Node 1 Normal: 193*4kB (UME) 51*8kB (UME) 50*16kB (UME) 212*32kB (UME) 105*64kB (UME) 27*128kB (UME) 6*256kB (UME) 4*512kB (UM) 3*1024kB (UME) 1*2048kB (E) 950*4096kB (M) = 3918844kB
[ 1275.757734][T27029] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1275.757823][T27058] netlink: 'syz.7.8987': attribute type 3 has an invalid length.
[ 1275.767364][T27029] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1275.784519][T27029] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 1275.794203][T27029] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 1275.803736][T27029] 61483 total pagecache pages
[ 1275.808450][T27029] 0 pages in swap cache
[ 1275.816268][T27029] Free swap  = 124996kB
[ 1275.821046][T27029] Total swap = 124996kB
[ 1275.825233][T27029] 2097051 pages RAM
[ 1275.830212][T27058] netlink: 199836 bytes leftover after parsing attributes in process `syz.7.8987'.
[ 1275.839674][T27029] 0 pages HighMem/MovableOnly
[ 1275.844785][T27029] 430065 pages reserved
[ 1275.848980][T27029] 0 pages cma reserved
[ 1276.030743][T27063] loop5: detected capacity change from 0 to 2048
[ 1276.108257][T27063] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1276.260383][T27072] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1276.320678][ T5850] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1276.343822][   T31] audit: type=1326 audit(2000525416.590:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27073 comm="syz.7.8992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1276.371898][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1276.394159][   T31] audit: type=1326 audit(2000525416.590:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27073 comm="syz.7.8992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1276.437215][   T31] audit: type=1326 audit(2000525416.590:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27073 comm="syz.7.8992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=256 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1276.546478][   T31] audit: type=1326 audit(2000525416.590:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27073 comm="syz.7.8992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1276.644686][   T31] audit: type=1326 audit(2000525416.590:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27073 comm="syz.7.8992" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1277.104582][T27086] netlink: 'syz.4.8998': attribute type 21 has an invalid length.
[ 1277.450574][T27088] loop3: detected capacity change from 0 to 4096
[ 1277.866847][T27098] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1278.077897][T27067] loop1: detected capacity change from 0 to 32768
[ 1278.280570][T27106] wireguard0: entered promiscuous mode
[ 1278.286198][T27106] wireguard0: entered allmulticast mode
[ 1278.298604][T27067] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1278.568243][T27115] sctp: [Deprecated]: syz.7.9011 (pid 27115) Use of int in max_burst socket option deprecated.
[ 1278.568243][T27115] Use struct sctp_assoc_value instead
[ 1278.878540][ T5851] ocfs2: Unmounting device (7,1) on (node local)
[ 1279.412250][T27137] netlink: 44 bytes leftover after parsing attributes in process `syz.3.9022'.
[ 1279.583785][T27145] IPVS: sync thread started: state = MASTER, mcast_ifn = geneve0, syncid = 10802, id = 0
[ 1280.570231][   T44] usb 5-1: new high-speed USB device number 9 using dummy_hcd
[ 1280.593666][T27170] loop0: detected capacity change from 0 to 2048
[ 1280.680980][T27170] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1280.693272][T27176] loop1: detected capacity change from 0 to 1024
[ 1280.762010][   T44] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1280.816956][   T44] usb 5-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1280.886819][   T44] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1280.948145][   T44] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1281.013181][   T44] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1281.070314][   T44] usb 5-1: invalid MIDI out EP 0
[ 1281.318321][   T44] snd-usb-audio 5-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1281.381980][   T44] usb 5-1: USB disconnect, device number 9
[ 1281.405265][T27190] batadv2: entered promiscuous mode
[ 1281.451458][ T6126] udevd[6126]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1281.520979][T27194] loop3: detected capacity change from 0 to 16
[ 1281.589765][T27194] erofs (device loop3): mounted with root inode @ nid 36.
[ 1281.923919][   T59] batman_adv: batadv2: adding TT local entry 33:33:00:00:00:01 to non-existent VLAN -1
[ 1282.343989][T27207] netlink: 4 bytes leftover after parsing attributes in process `syz.3.9053'.
[ 1282.524959][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1282.768656][T27218] netlink: 'syz.4.9063': attribute type 8 has an invalid length.
[ 1282.879935][T27224] affs: No valid root block on device nbd0
[ 1283.075098][T27227] xt_recent: Unsupported userspace flags (000000de)
[ 1283.461037][T27241] loop1: detected capacity change from 0 to 64
[ 1284.377701][T27269] loop0: detected capacity change from 0 to 256
[ 1284.442789][T27269] exfat: Deprecated parameter 'utf8'
[ 1284.468227][T27269] exfat: Deprecated parameter 'namecase'
[ 1284.474128][T27269] exfat: Deprecated parameter 'namecase'
[ 1284.519177][T27269] exfat: Deprecated parameter 'utf8'
[ 1284.582112][T27269] exFAT-fs (loop0): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffad0, utbl_chksum : 0xe619d30d)
[ 1284.757425][T27269] exFAT-fs (loop0): start_clu is invalid cluster(0x400)
[ 1284.952914][T27277] loop1: detected capacity change from 0 to 4096
[ 1285.002793][T27277] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512).
[ 1285.115828][T27287] loop4: detected capacity change from 0 to 2048
[ 1285.191015][T27291] loop7: detected capacity change from 0 to 764
[ 1285.198566][T27287] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1285.943861][T27306] hsr_slave_0: hsr_addr_subst_dest: Unknown node
[ 1285.951177][T27306] hsr_slave_1: hsr_addr_subst_dest: Unknown node
[ 1286.181571][T27315] loop3: detected capacity change from 0 to 256
[ 1286.485682][T27315] FAT-fs (loop3): Directory bread(block 64) failed
[ 1286.502836][T27315] FAT-fs (loop3): Directory bread(block 65) failed
[ 1286.509517][T27315] FAT-fs (loop3): Directory bread(block 66) failed
[ 1286.582870][T27315] FAT-fs (loop3): Directory bread(block 67) failed
[ 1286.631326][T27315] FAT-fs (loop3): Directory bread(block 68) failed
[ 1286.681114][T27315] FAT-fs (loop3): Directory bread(block 69) failed
[ 1286.688511][T27315] FAT-fs (loop3): Directory bread(block 70) failed
[ 1286.731556][T27315] FAT-fs (loop3): Directory bread(block 71) failed
[ 1286.766847][T27315] FAT-fs (loop3): Directory bread(block 72) failed
[ 1286.773516][T27315] FAT-fs (loop3): Directory bread(block 73) failed
[ 1287.127113][T27337] loop0: detected capacity change from 0 to 1024
[ 1287.237136][T27337] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[ 1287.301468][T27337] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1287.311138][T27337] EXT4-fs error (device loop0): ext4_acquire_dquot:6931: comm syz.0.9112: Failed to acquire dquot type 0
[ 1287.351004][T27341] loop4: detected capacity change from 0 to 2048
[ 1287.385574][T27337] EXT4-fs (loop0): 1 truncate cleaned up
[ 1287.458922][T27337] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1287.591668][T27337] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 4 index 0
[ 1287.688951][T27337] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 0
[ 1287.761014][T27337] EXT4-fs error (device loop0): ext4_acquire_dquot:6931: comm syz.0.9112: Failed to acquire dquot type 0
[ 1287.987433][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1288.089923][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1288.712215][   T31] audit: type=1107 audit(2000525428.189:188): pid=27377 uid=0 auid=4294967295 ses=4294967295 subj=unconfined msg=''
[ 1288.845731][T27381] loop7: detected capacity change from 0 to 2048
[ 1288.929569][T27381] NILFS (loop7): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1289.107809][T27392] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1289.241486][T27390] loop1: detected capacity change from 0 to 2048
[ 1289.260286][T27395] loop4: detected capacity change from 0 to 16
[ 1289.338950][T27395] erofs (device loop4): mounted with root inode @ nid 36.
[ 1289.374562][T27390] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1289.415371][T27395] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36
[ 1289.539520][T27395] erofs (device loop4): read error -117 @ 43 of nid 36
[ 1289.714297][T27352] loop5: detected capacity change from 0 to 32768
[ 1289.915621][T27352] JBD2: Ignoring recovery information on journal
[ 1290.234080][T27413] loop1: detected capacity change from 0 to 2048
[ 1290.253639][T27352] ocfs2: Mounting device (7,5) on (node local, slot 0) with writeback data mode.
[ 1290.356683][T27405] loop7: detected capacity change from 0 to 4096
[ 1290.369855][   T44] usb 4-1: new full-speed USB device number 8 using dummy_hcd
[ 1290.416737][T27352] (syz.5.9117,27352,0):ocfs2_inode_is_valid_to_delete:885 ERROR: Skipping delete of system file 22
[ 1290.438550][T27419] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1290.545176][T27352] ocfs2: Unmounting device (7,5) on (node local)
[ 1290.634725][   T44] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xD6, changing to 0x86
[ 1290.683222][   T44] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has an invalid bInterval 0, changing to 10
[ 1290.727051][   T44] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x86 has invalid wMaxPacketSize 0
[ 1290.793183][   T44] usb 4-1: New USB device found, idVendor=077d, idProduct=0410, bcdDevice=ec.c1
[ 1290.850494][   T44] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1290.850766][T27419] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1290.886275][   T44] usb 4-1: Product: syz
[ 1290.890537][   T44] usb 4-1: Manufacturer: syz
[ 1290.956294][   T44] usb 4-1: SerialNumber: syz
[ 1290.963059][T27419] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1290.984588][   T44] usb 4-1: config 0 descriptor??
[ 1291.035146][T27419] Remounting filesystem read-only
[ 1291.067131][ T5851] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer
[ 1291.331730][   T44] powermate: Expected payload of 3--6 bytes, found 0 bytes!
[ 1291.339387][   T44] powermate 4-1:0.0: probe with driver powermate failed with error -5
[ 1291.406548][T10469] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1291.546007][   T44] usb 4-1: USB disconnect, device number 8
[ 1291.850383][T27446] loop0: detected capacity change from 0 to 256
[ 1291.962646][T27446] FAT-fs (loop0): Directory bread(block 64) failed
[ 1291.977964][T27452] Lens A: =================  START STATUS  =================
[ 1291.987915][T27446] FAT-fs (loop0): Directory bread(block 65) failed
[ 1291.995659][ T5860] usb 8-1: new high-speed USB device number 4 using dummy_hcd
[ 1292.029055][T27452] Lens A: Focus, Absolute: 0
[ 1292.054915][T27446] FAT-fs (loop0): Directory bread(block 66) failed
[ 1292.068442][T27452] Lens A: ==================  END STATUS  ==================
[ 1292.126189][T27446] FAT-fs (loop0): Directory bread(block 67) failed
[ 1292.163557][T27446] FAT-fs (loop0): Directory bread(block 68) failed
[ 1292.175020][T27446] FAT-fs (loop0): Directory bread(block 69) failed
[ 1292.199019][ T5860] usb 8-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1292.212622][T27446] FAT-fs (loop0): Directory bread(block 70) failed
[ 1292.219413][ T5860] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1292.251370][T27446] FAT-fs (loop0): Directory bread(block 71) failed
[ 1292.258120][T27446] FAT-fs (loop0): Directory bread(block 72) failed
[ 1292.273856][ T5860] usb 8-1: config 0 descriptor??
[ 1292.305228][T27446] FAT-fs (loop0): Directory bread(block 73) failed
[ 1292.520630][T27457] netlink: 'syz.3.9158': attribute type 1 has an invalid length.
[ 1292.528458][T27457] netlink: 224 bytes leftover after parsing attributes in process `syz.3.9158'.
[ 1292.741218][T27461] netlink: 'syz.1.9161': attribute type 10 has an invalid length.
[ 1292.770162][ T5860] ath6kl: Failed to submit usb control message: -71
[ 1292.783781][ T5860] ath6kl: unable to send the bmi data to the device: -71
[ 1292.795836][T27461] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1292.803365][T27461] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1292.809434][ T5860] ath6kl: Unable to send get target info: -71
[ 1292.841710][ T5860] ath6kl: Failed to init ath6kl core: -71
[ 1292.849029][ T5860] ath6kl_usb 8-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1292.897600][T27461] bridge0: port 2(bridge_slave_1) entered blocking state
[ 1292.904952][T27461] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 1292.912612][T27461] bridge0: port 1(bridge_slave_0) entered blocking state
[ 1292.919902][T27461] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 1292.969007][ T5860] usb 8-1: USB disconnect, device number 4
[ 1293.022169][T27461] bond0: (slave bridge0): Enslaving as an active interface with an up link
[ 1293.076400][T27463] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9160'.
[ 1293.086229][T27463] netlink: 28 bytes leftover after parsing attributes in process `syz.4.9160'.
[ 1293.104580][T27463] netlink: 'syz.4.9160': attribute type 6 has an invalid length.
[ 1293.410109][T27473] loop3: detected capacity change from 0 to 16
[ 1293.426205][T27473] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1293.512781][T27476] netlink: 76 bytes leftover after parsing attributes in process `syz.4.9167'.
[ 1293.635992][T27480] ªªªªªª: renamed from dummy0 (while UP)
[ 1294.014528][T27490] netlink: 'syz.0.9174': attribute type 7 has an invalid length.
[ 1294.151863][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1295.573958][T27540] netlink: 24 bytes leftover after parsing attributes in process `syz.7.9194'.
[ 1295.591996][T27544] loop3: detected capacity change from 0 to 1024
[ 1295.982386][ T1132] hfsplus: b-tree write err: -5, ino 4
[ 1296.112444][T27552] batadv1: entered promiscuous mode
[ 1296.716867][T27570] netdevsim netdevsim1 : set [1, 1] type 2 family 0 port 20000 - 0
[ 1296.726115][T27572] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9210'.
[ 1296.761059][T27572] netlink: 8 bytes leftover after parsing attributes in process `syz.4.9210'.
[ 1296.768576][T27570] netdevsim netdevsim1 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[ 1296.837112][T27570] netdevsim netdevsim1 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[ 1296.867639][T27574] loop0: detected capacity change from 0 to 1024
[ 1296.878760][T27570] netdevsim netdevsim1 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[ 1296.900312][T27570] geneve2: entered promiscuous mode
[ 1296.922671][T27570] geneve2: entered allmulticast mode
[ 1297.250141][T27585] xt_ipcomp: unknown flags 12
[ 1297.325488][   T12] hfsplus: b-tree write err: -5, ino 4
[ 1297.423327][T27584] loop7: detected capacity change from 0 to 2048
[ 1297.489533][ T5860] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1297.503188][T27590] NILFS (loop7): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1297.656587][T27584] syz.7.9214: attempt to access beyond end of device
[ 1297.656587][T27584] loop7: rw=0, sector=5629499534213190, nr_sectors = 2 limit=2048
[ 1297.722061][ T5860] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1297.755064][ T5860] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1297.783925][T27584] NILFS (loop7): I/O error reading meta-data file (ino=6, block-offset=0)
[ 1297.794133][ T5860] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1297.844036][ T5860] usb 4-1: Product: syz
[ 1297.876022][ T5860] usb 4-1: Manufacturer: syz
[ 1297.902454][ T5860] usb 4-1: SerialNumber: syz
[ 1297.993064][ T5860] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1298.040473][   T44] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1298.066881][T27590] NILFS (loop7): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3)
[ 1298.120273][T27590] NILFS error (device loop7): nilfs_bmap_propagate: broken bmap (inode number=4)
[ 1298.241091][T27590] Remounting filesystem read-only
[ 1298.268507][T23699] NILFS (loop7): disposed unprocessed dirty file(s) when stopping log writer
[ 1298.303910][T27607] netlink: 12 bytes leftover after parsing attributes in process `syz.5.9227'.
[ 1298.376658][T27607] netlink: 'syz.5.9227': attribute type 2 has an invalid length.
[ 1298.384658][T27607] netlink: 'syz.5.9227': attribute type 1 has an invalid length.
[ 1298.629052][    T9] usb 4-1: USB disconnect, device number 9
[ 1298.755774][   T31] audit: type=1326 audit(2000525437.580:189): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297338e9a9 code=0x7ffc0000
[ 1298.823852][   T31] audit: type=1326 audit(2000525437.618:190): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297338e9a9 code=0x7ffc0000
[ 1298.896967][   T31] audit: type=1326 audit(2000525437.618:191): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f297338e9a9 code=0x7ffc0000
[ 1299.019894][   T31] audit: type=1326 audit(2000525437.618:192): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297338e9a9 code=0x7ffc0000
[ 1299.117776][   T31] audit: type=1326 audit(2000525437.618:193): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27616 comm="syz.4.9231" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f297338e9a9 code=0x7ffc0000
[ 1299.295959][   T44] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 1299.309898][   T44] ath9k_htc: Failed to initialize the device
[ 1299.321554][    T9] usb 4-1: ath9k_htc: USB layer deinitialized
[ 1299.416733][T27632] netlink: 132 bytes leftover after parsing attributes in process `syz.7.9239'.
[ 1299.553454][T27638] loop4: detected capacity change from 0 to 64
[ 1299.632265][   T59] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1300.673970][T27672] overlayfs: conflicting options: nfs_export=on,index=off
[ 1301.122272][T27686] loop4: detected capacity change from 0 to 1024
[ 1301.151568][T27687] loop0: detected capacity change from 0 to 64
[ 1301.219374][T27689] netlink: 8 bytes leftover after parsing attributes in process `syz.5.9267'.
[ 1301.344540][   T12] hfsplus: b-tree write err: -5, ino 4
[ 1301.999232][T27704] loop0: detected capacity change from 0 to 4096
[ 1302.051246][T27704] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1302.214411][T27704] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[ 1302.225511][T27715] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9278'.
[ 1302.279177][T27715] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9278'.
[ 1303.190833][T27741] loop1: detected capacity change from 0 to 1024
[ 1303.430758][T27741] hfsplus: can't free extent
[ 1303.441695][T27696] loop7: detected capacity change from 0 to 32768
[ 1304.095494][T27759] loop4: detected capacity change from 0 to 64
[ 1304.791585][T27773] loop4: detected capacity change from 0 to 512
[ 1304.815778][T27776] loop0: detected capacity change from 0 to 1024
[ 1304.880101][T27773] EXT4-fs (loop4): revision level too high, forcing read-only mode
[ 1304.936974][T27773] EXT4-fs (loop4): orphan cleanup on readonly fs
[ 1304.946238][T27776] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1304.954857][T27785] loop5: detected capacity change from 0 to 1024
[ 1304.994250][T27773] Quota error (device loop4): v2_read_file_info: Block with free entry 1 out of range (1, 6).
[ 1305.046733][T27776] EXT4-fs warning (device loop0): ext4_empty_dir:3086: inode #11: comm syz.0.9303: directory missing '.'
[ 1305.084394][T27773] EXT4-fs warning (device loop4): ext4_enable_quotas:7164: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix.
[ 1305.121341][ T1132] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1305.150956][T27785] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1305.182856][T27773] EXT4-fs (loop4): Cannot turn on quotas: error -117
[ 1305.263553][T27773] EXT4-fs error (device loop4): ext4_validate_block_bitmap:440: comm syz.4.9302: bg 0: block 40: padding at end of block bitmap is not set
[ 1305.351738][T27773] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6548: Corrupt filesystem
[ 1305.386233][T27792] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9307'.
[ 1305.407412][T27773] EXT4-fs (loop4): 1 truncate cleaned up
[ 1305.436409][T27773] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1305.470460][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1305.486058][T27790] loop7: detected capacity change from 0 to 1764
[ 1305.613763][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1305.665403][T27773] EXT4-fs error (device loop4): ext4_get_link:106: inode #16: comm syz.4.9302: bad symlink.
[ 1306.066322][ T5858] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1306.962025][T27831] loop7: detected capacity change from 0 to 512
[ 1306.981677][T27831] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1307.000639][T10469] usb 2-1: new high-speed USB device number 100 using dummy_hcd
[ 1307.034230][T27831] EXT4-fs (loop7): mounting ext3 file system using the ext4 subsystem
[ 1307.109146][T27836] loop4: detected capacity change from 0 to 64
[ 1307.153876][T27831] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[ 1307.176253][T27831] System zones: 1-12
[ 1307.181900][T27831] EXT4-fs error (device loop7): ext4_iget_extra_inode:5029: inode #15: comm syz.7.9327: corrupted in-inode xattr: e_value size too large
[ 1307.218165][T10469] usb 2-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1307.235133][T27831] EXT4-fs error (device loop7): ext4_orphan_get:1396: comm syz.7.9327: couldn't read orphan inode 15 (err -117)
[ 1307.266411][T10469] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1307.320070][T27831] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1307.338171][T10469] usb 2-1: New USB device found, idVendor=05f3, idProduct=0240, bcdDevice=1b.24
[ 1307.356671][T10469] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1307.398284][T10469] usb 2-1: Product: syz
[ 1307.427866][T10469] usb 2-1: Manufacturer: syz
[ 1307.442207][ T5860] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1307.456926][T27831] cgroup: name respecified
[ 1307.474227][T10469] usb 2-1: SerialNumber: syz
[ 1307.528951][T10469] usb 2-1: config 0 descriptor??
[ 1307.640265][ T5860] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1307.649047][T27842] loop0: detected capacity change from 0 to 4096
[ 1307.659722][T23699] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1307.666754][ T5860] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1307.741171][ T5860] usb 4-1: config 0 descriptor??
[ 1307.760119][T10469] powermate: unknown product id 0240
[ 1307.842625][T10469] input: Griffin SoundKnob as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input59
[ 1307.982007][    C0] powermate: config urb returned -71
[ 1307.988424][    C0] powermate: config urb returned -71
[ 1307.994592][    C0] powermate: config urb returned -71
[ 1308.000633][    C0] powermate: config urb returned -71
[ 1308.139700][T10469] usb 2-1: USB disconnect, device number 100
[ 1308.145977][    C0] powermate 2-1:0.0: powermate_irq - usb_submit_urb failed with result: -19
[ 1308.220048][ T5860] ath6kl: Failed to submit usb control message: -71
[ 1308.249180][ T5860] ath6kl: unable to send the bmi data to the device: -71
[ 1308.287899][ T5860] ath6kl: Unable to send get target info: -71
[ 1308.310996][ T5860] ath6kl: Failed to init ath6kl core: -71
[ 1308.351662][ T5860] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1308.463321][ T5860] usb 4-1: USB disconnect, device number 10
[ 1308.945701][T10469] usb 6-1: new high-speed USB device number 17 using dummy_hcd
[ 1309.150628][T10469] usb 6-1: Using ep0 maxpacket: 32
[ 1309.162720][T10469] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1309.164391][T10469] usb 6-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1309.167107][T10469] usb 6-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[ 1309.167152][T10469] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1309.167189][T10469] usb 6-1: Product: syz
[ 1309.167224][T10469] usb 6-1: Manufacturer: syz
[ 1309.167253][T10469] usb 6-1: SerialNumber: syz
[ 1309.389419][T27879] loop7: detected capacity change from 0 to 64
[ 1309.398550][T27879] BFS-fs: bfs_fill_super(): loop7 is unclean, continuing
[ 1309.426631][T10469] usb 6-1: Invalid number of CPorts: 0
[ 1309.504484][T10469] es2_ap_driver 6-1:7.0: probe with driver es2_ap_driver failed with error -22
[ 1309.719050][  T972] usb 6-1: USB disconnect, device number 17
[ 1309.887454][T27887] netlink: 20 bytes leftover after parsing attributes in process `syz.1.9353'.
[ 1310.195377][T27898] tmpfs: Bad value for 'mpol'
[ 1310.373058][T27904] loop7: detected capacity change from 0 to 1756
[ 1310.572711][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1310.584082][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1310.827398][T27907] xt_CT: No such helper "snmp_trap"
[ 1311.251896][   T59] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1311.477184][T27923] loop0: detected capacity change from 0 to 4096
[ 1311.533590][T27923] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1311.836267][T27942] netlink: 76 bytes leftover after parsing attributes in process `syz.4.9380'.
[ 1311.934817][   T37] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1312.541537][T27948] loop1: detected capacity change from 0 to 4096
[ 1312.596192][T27948] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1313.383573][T27982] netlink: 'syz.0.9400': attribute type 8 has an invalid length.
[ 1313.675090][T27983] loop1: detected capacity change from 0 to 4096
[ 1313.746978][T27983] ntfs3(loop1): ino=3, Correct links count -> 2.
[ 1313.967815][T27983] ntfs3(loop1): ino=1a, mi_enum_attr
[ 1314.007748][T27983] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1314.165046][   T31] audit: type=1800 audit(2000525451.995:194): pid=27983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.9398" name="file1" dev="loop1" ino=33 res=0 errno=0
[ 1314.403685][T28006] loop3: detected capacity change from 0 to 2048
[ 1314.493060][T28006] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1314.562162][ T5860] usb 5-1: new high-speed USB device number 10 using dummy_hcd
[ 1314.691758][T28015] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9416'.
[ 1314.713036][T28011] netdevsim netdevsim7 netdevsim0: set [1, 1] type 2 family 0 port 20000 - 0
[ 1314.737461][ T5860] usb 5-1: New USB device found, idVendor=0f11, idProduct=1000, bcdDevice= 0.7f
[ 1314.749588][T28009] loop5: detected capacity change from 0 to 4096
[ 1314.753945][ T5860] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1314.785600][T28011] netdevsim netdevsim7 netdevsim1: set [1, 1] type 2 family 0 port 20000 - 0
[ 1314.806447][ T5860] usb 5-1: config 0 descriptor??
[ 1314.829477][T28011] netdevsim netdevsim7 netdevsim2: set [1, 1] type 2 family 0 port 20000 - 0
[ 1314.831553][T28009] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1314.848818][T28011] netdevsim netdevsim7 netdevsim3: set [1, 1] type 2 family 0 port 20000 - 0
[ 1314.872708][T28011] geneve2: entered allmulticast mode
[ 1315.051609][ T5860] usb 5-1: string descriptor 0 read error: -71
[ 1315.053619][T28009] ntfs3(loop5): ino=19, mi_enum_attr
[ 1315.091438][ T5860] ldusb 5-1:0.0: Interrupt in endpoint not found
[ 1315.149252][ T5860] usb 5-1: USB disconnect, device number 10
[ 1315.295696][T28009] ntfs3(loop5): failed to convert "c46c" to cp850
[ 1315.345106][T28009] ntfs3(loop5): ino=20, mi_enum_attr
[ 1315.575328][T28027] netlink: 'syz.0.9422': attribute type 5 has an invalid length.
[ 1315.620075][T28029] netlink: 20 bytes leftover after parsing attributes in process `syz.1.9421'.
[ 1315.948810][T28036] PKCS7: Unknown OID: [4] 0.0
[ 1315.974888][T28036] PKCS7: Only support pkcs7_signedData type
[ 1316.242489][T28044] loop5: detected capacity change from 0 to 1024
[ 1316.273067][T28044] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1316.279869][T28044] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1316.346468][T28044] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1316.366610][T28050] xt_l2tp: missing protocol rule (udp|l2tpip)
[ 1316.503130][T28044] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1316.783070][   T31] audit: type=1326 audit(2000525454.436:195): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28063 comm="syz.3.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1316.846183][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1316.884979][   T31] audit: type=1326 audit(2000525454.464:196): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28063 comm="syz.3.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=38 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1316.996540][   T31] audit: type=1326 audit(2000525454.464:197): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28063 comm="syz.3.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1317.149797][   T31] audit: type=1326 audit(2000525454.464:198): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28063 comm="syz.3.9439" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1317.176743][T28069] loop1: detected capacity change from 0 to 64
[ 1317.406653][ T1083] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1317.909948][   T31] audit: type=1326 audit(2000525455.503:199): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28085 comm="syz.3.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1318.030930][   T31] audit: type=1326 audit(2000525455.503:200): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28085 comm="syz.3.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1318.053316][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1318.063704][T28091] loop1: detected capacity change from 0 to 256
[ 1318.104781][ T1083] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1318.197028][   T31] audit: type=1326 audit(2000525455.531:201): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28085 comm="syz.3.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=268 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1318.302379][   T31] audit: type=1326 audit(2000525455.531:202): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28085 comm="syz.3.9451" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1318.340038][T28055] loop0: detected capacity change from 0 to 32768
[ 1319.423581][T28119] loop1: detected capacity change from 0 to 512
[ 1319.504369][T28119] EXT4-fs error (device loop1): ext4_orphan_get:1419: comm syz.1.9466: bad orphan inode 13
[ 1319.577444][T28119] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1319.660090][T28086] loop4: detected capacity change from 0 to 32768
[ 1319.744211][T28126] loop7: detected capacity change from 0 to 512
[ 1319.807927][T28086] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1319.833336][T28126] EXT4-fs (loop7): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1319.868927][T28126] ext4 filesystem being mounted at /287/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1319.980069][T28126] fs-verity (loop7, inode 15): Unrecognized descriptor size: 0 bytes
[ 1320.034864][ T5851] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1320.058849][T28086] XFS (loop4): Ending clean mount
[ 1320.244969][T23699] EXT4-fs (loop7): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1320.504262][ T5858] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1320.686398][T28149] openvswitch: netlink: Key 22 has unexpected len 2 expected 4
[ 1320.994007][T28115] loop0: detected capacity change from 0 to 32768
[ 1322.086195][  T972] usb 4-1: new full-speed USB device number 11 using dummy_hcd
[ 1322.113402][ T5860] usb 2-1: new high-speed USB device number 101 using dummy_hcd
[ 1322.163677][T28154] loop5: detected capacity change from 0 to 32768
[ 1322.185434][T28154] btrfs: Deprecated parameter 'usebackuproot'
[ 1322.191575][T28154] BTRFS warning: 'usebackuproot' is deprecated, use 'rescue=usebackuproot' instead
[ 1322.263404][T28154] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.9479 (28154)
[ 1322.277901][  T972] usb 4-1: config 0 interface 0 altsetting 251 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1322.318025][  T972] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1322.330092][ T5860] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1322.356459][ T5860] usb 2-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[ 1322.386909][ T5860] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1322.397288][T28154] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1322.398855][  T972] usb 4-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1322.436485][T28180] loop4: detected capacity change from 0 to 4096
[ 1322.443308][  T972] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1322.446430][T28154] BTRFS info (device loop5): using sha256 (sha256-x86_64) checksum algorithm
[ 1322.451341][  T972] usb 4-1: Product: syz
[ 1322.464083][ T5860] usb 2-1: config 0 descriptor??
[ 1322.494195][T28180] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512).
[ 1322.508827][  T972] usb 4-1: Manufacturer: syz
[ 1322.526270][T28154] BTRFS info (device loop5): using free-space-tree
[ 1322.530037][  T972] usb 4-1: SerialNumber: syz
[ 1322.620528][  T972] usb 4-1: config 0 descriptor??
[ 1322.664570][T28180] ntfs3(loop4): ino=19, mi_enum_attr
[ 1322.734646][  T972] usb 4-1: selecting invalid altsetting 0
[ 1322.770619][T28180] ntfs3(loop4): failed to convert "c46c" to cp850
[ 1322.785906][   T44] usb 2-1: USB disconnect, device number 101
[ 1322.792190][T28154] BTRFS info (device loop5): rebuilding free space tree
[ 1322.870887][T28180] ntfs3(loop4): ino=20, mi_enum_attr
[ 1322.886236][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1323.007761][  T972] usb 4-1: USB disconnect, device number 11
[ 1323.199715][T28154] BTRFS info (device loop5 state M): max_inline set to 4096
[ 1323.285792][ T6029] udevd[6029]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1323.438459][ T5846] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1323.576651][ T1132] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1324.025159][T28214] loop4: detected capacity change from 0 to 2048
[ 1324.067531][T28220] MPI: mpi too large (124808 bits)
[ 1324.135626][T28214] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1324.290714][T28225] netlink: 'syz.3.9504': attribute type 3 has an invalid length.
[ 1324.298517][T28225] netlink: 'syz.3.9504': attribute type 1 has an invalid length.
[ 1324.376117][T28225] netlink: 216 bytes leftover after parsing attributes in process `syz.3.9504'.
[ 1324.430045][T28225] NCSI netlink: No device for ifindex 33022
[ 1324.919903][T28241] No source specified
[ 1324.999766][T28243] loop7: detected capacity change from 0 to 1024
[ 1325.445296][ T1083] hfsplus: b-tree write err: -5, ino 8
[ 1325.710563][T28259] loop5: detected capacity change from 0 to 512
[ 1325.801794][T28265] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9524'.
[ 1325.841399][T28259] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1325.860020][T28265] netlink: 32 bytes leftover after parsing attributes in process `syz.0.9524'.
[ 1325.947581][   T31] audit: type=1326 audit(2000525463.005:203): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28266 comm="syz.1.9525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1325.990389][T28259] EXT4-fs (loop5): revision level too high, forcing read-only mode
[ 1325.998356][T28259] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e118, mo2=0002]
[ 1326.044006][   T31] audit: type=1326 audit(2000525463.005:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28266 comm="syz.1.9525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1326.050777][T28271] netlink: 32 bytes leftover after parsing attributes in process `syz.7.9528'.
[ 1326.109444][T28259] System zones: 0-1, 15-15, 18-18, 34-34
[ 1326.115579][T28259] EXT4-fs (loop5): orphan cleanup on readonly fs
[ 1326.156334][T28273] netlink: 'syz.4.9526': attribute type 4 has an invalid length.
[ 1326.190480][T28259] Quota error (device loop5): v2_read_header: Failed header read: expected=8 got=0
[ 1326.198527][   T31] audit: type=1326 audit(2000525463.023:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28266 comm="syz.1.9525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1326.245881][T28259] EXT4-fs warning (device loop5): ext4_enable_quotas:7164: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1326.322214][T28259] EXT4-fs (loop5): Cannot turn on quotas: error -22
[ 1326.327585][   T31] audit: type=1326 audit(2000525463.023:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28266 comm="syz.1.9525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1326.403325][T28259] EXT4-fs error (device loop5): ext4_validate_block_bitmap:440: comm syz.5.9522: bg 0: block 40: padding at end of block bitmap is not set
[ 1326.496584][T28259] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6548: Corrupt filesystem
[ 1326.524857][   T31] audit: type=1326 audit(2000525463.023:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28266 comm="syz.1.9525" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1326.525387][T28259] EXT4-fs (loop5): 1 truncate cleaned up
[ 1326.659796][T28259] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1326.794167][T28259] EXT4-fs error (device loop5): ext4_encrypted_get_link:46: inode #16: comm syz.5.9522: bad symlink.
[ 1326.949181][T28289] loop7: detected capacity change from 0 to 64
[ 1327.104872][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1327.314448][T28293] netlink: 'syz.1.9537': attribute type 9 has an invalid length.
[ 1327.377411][T28293] netlink: 'syz.1.9537': attribute type 9 has an invalid length.
[ 1327.454625][T28295] loop0: detected capacity change from 0 to 512
[ 1327.591885][T28295] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1327.788031][T28295] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1327.867136][T28301] loop4: detected capacity change from 0 to 256
[ 1327.889780][T28295] ext4 filesystem being mounted at /1605/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1327.948831][T28301] exfat: Deprecated parameter 'utf8'
[ 1327.971770][T28301] exfat: Deprecated parameter 'utf8'
[ 1328.114239][T28301] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d)
[ 1328.586262][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1328.776897][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1328.873115][T28275] loop3: detected capacity change from 0 to 32768
[ 1329.041677][T28275] read_mapping_page failed!
[ 1329.049050][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1329.331434][T28323] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1329.732813][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1330.255093][T28347] nftables ruleset with unbound chain
[ 1331.107734][T28372] netlink: 'syz.7.9575': attribute type 11 has an invalid length.
[ 1331.196930][T28372] netlink: 'syz.7.9575': attribute type 11 has an invalid length.
[ 1331.218037][T28372] netlink: 224 bytes leftover after parsing attributes in process `syz.7.9575'.
[ 1331.439132][T28384] loop1: detected capacity change from 0 to 256
[ 1331.585842][T28384] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1331.630209][T28390] netlink: 'syz.4.9583': attribute type 1 has an invalid length.
[ 1332.287325][   T44] usb 5-1: new full-speed USB device number 11 using dummy_hcd
[ 1332.433964][T28408] tmpfs: Bad value for 'mpol'
[ 1332.475397][   T44] usb 5-1: unable to get BOS descriptor or descriptor too short
[ 1332.495235][   T44] usb 5-1: not running at top speed; connect to a high speed hub
[ 1332.539750][   T44] usb 5-1: New USB device found, idVendor=1235, idProduct=4661, bcdDevice=ae.13
[ 1332.565371][   T44] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1332.607902][   T44] usb 5-1: Product: syz
[ 1332.616771][   T44] usb 5-1: Manufacturer: syz
[ 1332.643173][   T44] usb 5-1: SerialNumber: syz
[ 1332.782497][T28416] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1332.948025][   T44] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1333.070584][   T44] snd-usb-audio 5-1:8.0: probe with driver snd-usb-audio failed with error -2
[ 1333.118136][   T44] usb 5-1: USB disconnect, device number 11
[ 1333.163229][T28396] loop0: detected capacity change from 0 to 32768
[ 1333.201194][T28396] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.9586 (28396)
[ 1333.266997][T28396] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1333.275550][T28422] loop7: detected capacity change from 0 to 16
[ 1333.294057][ T6017] udevd[6017]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:8.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1333.302701][T28396] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1333.359513][T28422] erofs (device loop7): mounted with root inode @ nid 36.
[ 1333.364843][T28396] BTRFS info (device loop0): using free-space-tree
[ 1333.478403][T28422] erofs (device loop7): inconsistent algorithmtype 0 for nid 36
[ 1333.516099][T28422] erofs (device loop7): inconsistent algorithmtype 0 for nid 36
[ 1333.542167][T28422] erofs (device loop7): read error -117 @ 72 of nid 36
[ 1334.081621][T28396] BTRFS info (device loop0): balance: start -sprofiles=data,drange=7..8,vrange=18446744073709551614..18446744073709551613
[ 1334.216479][T28396] BTRFS info (device loop0): balance: ended with status: 0
[ 1334.326640][T28412] loop5: detected capacity change from 0 to 32768
[ 1334.368164][T28412] BTRFS info: device /dev/loop5 (7:5) using temp-fsid 4c64e89d-458c-4ba6-8ded-59086164badb
[ 1334.413122][T28412] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.9594 (28412)
[ 1334.504305][T28412] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1334.560643][T28412] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1334.586472][ T5850] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1334.617703][T28412] BTRFS info (device loop5): using free-space-tree
[ 1334.758516][T28420] loop1: detected capacity change from 0 to 32768
[ 1334.852932][ T5848] Bluetooth: hci4: command 0x0406 tx timeout
[ 1334.945152][T28420] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1335.129953][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1335.195876][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1335.334883][T28420] XFS (loop1): Ending clean mount
[ 1335.474051][T28420] XFS (loop1): Quotacheck needed: Please wait.
[ 1335.504597][T28486] openvswitch: netlink: Unexpected mask (mask=200040, allowed=10048)
[ 1335.516375][ T5846] BTRFS info (device loop5): last unmount of filesystem 4c64e89d-458c-4ba6-8ded-59086164badb
[ 1335.642493][T28488] netlink: 'syz.7.9611': attribute type 1 has an invalid length.
[ 1335.688701][T28488] netlink: 232 bytes leftover after parsing attributes in process `syz.7.9611'.
[ 1335.902515][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1335.961836][T28420] XFS (loop1): Quotacheck: Done.
[ 1336.397583][T28448] loop4: detected capacity change from 0 to 32768
[ 1336.516908][ T5851] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1336.542559][T28448] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.9604 (28448)
[ 1336.766585][T28448] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1336.776868][T28448] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1336.812447][T28448] BTRFS info (device loop4): using free-space-tree
[ 1337.320418][T28448] BTRFS info (device loop4): rebuilding free space tree
[ 1337.819387][ T5858] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1338.440693][T28551] openvswitch: netlink: Duplicate or invalid key (type 0).
[ 1338.517667][T28551] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1338.559257][T28548] loop3: detected capacity change from 0 to 4096
[ 1338.598922][T28548] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512).
[ 1339.101254][T28562] netlink: 'syz.0.9638': attribute type 21 has an invalid length.
[ 1339.143469][T28562] netlink: 132 bytes leftover after parsing attributes in process `syz.0.9638'.
[ 1339.324815][T28568] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1339.567678][T28571] netlink: 168 bytes leftover after parsing attributes in process `syz.3.9642'.
[ 1339.843777][T28582] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9647'.
[ 1339.928544][T28582] vlan0: entered promiscuous mode
[ 1340.472452][T28596] netdevsim netdevsim5: Direct firmware load for ./file0 failed with error -2
[ 1340.556195][T28596] netdevsim netdevsim5: Falling back to sysfs fallback for: ./file0
[ 1340.913115][T28610] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1341.354091][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1341.650720][T28630] netlink: 9 bytes leftover after parsing attributes in process `syz.3.9670'.
[ 1341.711074][T28630] gretap0: entered promiscuous mode
[ 1342.012756][T28635] xt_hashlimit: max too large, truncated to 1048576
[ 1342.044378][   T59] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1342.069282][T19280] usb 6-1: new high-speed USB device number 18 using dummy_hcd
[ 1342.254369][T19280] usb 6-1: Using ep0 maxpacket: 8
[ 1342.262022][T19280] usb 6-1: config index 0 descriptor too short (expected 29220, got 36)
[ 1342.292876][T19280] usb 6-1: config 0 has too many interfaces: 81, using maximum allowed: 32
[ 1342.323303][T19280] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 81
[ 1342.362960][T19280] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1342.411187][T19280] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 0
[ 1342.452705][T19280] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1342.488139][T19280] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18
[ 1342.546677][T19280] usb 6-1: New USB device found, idVendor=054c, idProduct=06c3, bcdDevice= 0.40
[ 1342.600655][T19280] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1342.654382][T19280] usb 6-1: config 0 descriptor??
[ 1342.691876][T19280] port100 6-1:0.0: NFC: Could not find bulk-in or bulk-out endpoint
[ 1342.941070][T28655] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9684'.
[ 1342.974940][T28658] netlink: 'syz.3.9685': attribute type 1 has an invalid length.
[ 1342.988807][T28655] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9684'.
[ 1342.997803][T28655] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9684'.
[ 1343.012031][T19280] usb 6-1: USB disconnect, device number 18
[ 1343.037080][T28655] netlink: 2 bytes leftover after parsing attributes in process `syz.1.9684'.
[ 1343.040595][T28663] loop4: detected capacity change from 0 to 256
[ 1343.075374][T28655] netlink: 32 bytes leftover after parsing attributes in process `syz.1.9684'.
[ 1343.219863][T28663] FAT-fs (loop4): Directory bread(block 64) failed
[ 1343.264859][T28663] FAT-fs (loop4): Directory bread(block 65) failed
[ 1343.291027][T28663] FAT-fs (loop4): Directory bread(block 66) failed
[ 1343.297608][T28663] FAT-fs (loop4): Directory bread(block 67) failed
[ 1343.369874][T28663] FAT-fs (loop4): Directory bread(block 68) failed
[ 1343.404264][T28663] FAT-fs (loop4): Directory bread(block 69) failed
[ 1343.422070][T28663] FAT-fs (loop4): Directory bread(block 70) failed
[ 1343.480165][T28663] FAT-fs (loop4): Directory bread(block 71) failed
[ 1343.512340][T28663] FAT-fs (loop4): Directory bread(block 72) failed
[ 1343.547520][T28663] FAT-fs (loop4): Directory bread(block 73) failed
[ 1343.696129][T28671] loop1: detected capacity change from 0 to 4096
[ 1343.786877][T28678] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1343.877909][T28671] NILFS error (device loop1): nilfs_find_entry: dir 2 size 34359742464 exceeds block count 1
[ 1343.963342][T28671] Remounting filesystem read-only
[ 1344.339985][T28688] loop4: detected capacity change from 0 to 256
[ 1344.508244][T28688] FAT-fs (loop4): Directory bread(block 64) failed
[ 1344.514855][T28688] FAT-fs (loop4): Directory bread(block 65) failed
[ 1344.577510][T28688] FAT-fs (loop4): Directory bread(block 66) failed
[ 1344.650902][T28688] FAT-fs (loop4): Directory bread(block 67) failed
[ 1344.689108][T28688] FAT-fs (loop4): Directory bread(block 68) failed
[ 1344.724321][T28688] FAT-fs (loop4): Directory bread(block 69) failed
[ 1344.785910][T28688] FAT-fs (loop4): Directory bread(block 70) failed
[ 1344.792524][T28688] FAT-fs (loop4): Directory bread(block 71) failed
[ 1344.821269][T28688] FAT-fs (loop4): Directory bread(block 72) failed
[ 1344.875157][T28688] FAT-fs (loop4): Directory bread(block 73) failed
[ 1344.903174][T28704] netlink: 8 bytes leftover after parsing attributes in process `syz.0.9706'.
[ 1344.956985][T28704] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9706'.
[ 1344.998283][T28704] netlink: 24 bytes leftover after parsing attributes in process `syz.0.9706'.
[ 1345.051982][  T972] usb 6-1: new full-speed USB device number 19 using dummy_hcd
[ 1345.079131][T28706] loop7: detected capacity change from 0 to 764
[ 1345.140184][T28706] Symlink component flag not implemented
[ 1345.145882][T28706] Symlink component flag not implemented
[ 1345.190926][T28706] Symlink component flag not implemented (128)
[ 1345.230106][T28706] Symlink component flag not implemented (122)
[ 1345.287764][  T972] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1345.310228][  T972] usb 6-1: no configurations
[ 1345.327966][  T972] usb 6-1: can't read configurations, error -22
[ 1345.730391][T28720] loop0: detected capacity change from 0 to 2048
[ 1345.794764][T28720] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1346.495238][T28740] netlink: 324 bytes leftover after parsing attributes in process `syz.1.9725'.
[ 1346.542168][T28740] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9725'.
[ 1347.022958][T28758] loop3: detected capacity change from 0 to 64
[ 1347.115244][T28761] loop0: detected capacity change from 0 to 256
[ 1347.262100][T28765] xt_hashlimit: overflow, try lower: 5/0
[ 1347.513249][   T59] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1347.526478][ T1083] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1347.692784][T28777] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1347.755070][T28777] overlayfs: missing 'lowerdir'
[ 1348.515711][T28799] openvswitch: netlink: IP tunnel dst address not specified
[ 1349.525429][T28780] loop5: detected capacity change from 0 to 32768
[ 1349.571436][T28828] netlink: 9 bytes leftover after parsing attributes in process `syz.1.9767'.
[ 1349.572448][T28780] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.9745 (28780)
[ 1349.671542][T28780] BTRFS info (device loop5): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1349.683906][T28828] gretap0: entered promiscuous mode
[ 1349.711398][T28780] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1349.777113][T28780] BTRFS info (device loop5): using free-space-tree
[ 1350.239051][T28858] loop0: detected capacity change from 0 to 256
[ 1350.391125][T28780] BTRFS info (device loop5): balance: start -sprofiles=data,drange=7..8,vrange=18446744073709551614..18446744073709551613
[ 1350.399404][T28865] binder: 28860:28865 ioctl c0306201 200000000100 returned -22
[ 1350.429140][T28858] FAT-fs (loop0): Directory bread(block 64) failed
[ 1350.435748][T28858] FAT-fs (loop0): Directory bread(block 65) failed
[ 1350.440590][T28864] IPVS: length: 72 != 24
[ 1350.485088][T28780] BTRFS info (device loop5): balance: ended with status: 0
[ 1350.514933][T28858] FAT-fs (loop0): Directory bread(block 66) failed
[ 1350.543352][T28858] FAT-fs (loop0): Directory bread(block 67) failed
[ 1350.588687][T28858] FAT-fs (loop0): Directory bread(block 68) failed
[ 1350.652138][T28858] FAT-fs (loop0): Directory bread(block 69) failed
[ 1350.696685][T28858] FAT-fs (loop0): Directory bread(block 70) failed
[ 1350.703766][T28858] FAT-fs (loop0): Directory bread(block 71) failed
[ 1350.771830][T28858] FAT-fs (loop0): Directory bread(block 72) failed
[ 1350.825013][T28858] FAT-fs (loop0): Directory bread(block 73) failed
[ 1350.944883][ T5846] BTRFS info (device loop5): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1351.357197][T28877] loop3: detected capacity change from 0 to 128
[ 1351.495023][T28877] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1351.606098][T28877] ext4 filesystem being mounted at /1636/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1351.723388][T28888] netlink: 'syz.1.9790': attribute type 1 has an invalid length.
[ 1351.999622][ T5849] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1352.799947][T28919] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9805'.
[ 1353.034459][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1353.193647][T28932] netlink: 'syz.4.9809': attribute type 8 has an invalid length.
[ 1353.486882][T28939] netlink: 44 bytes leftover after parsing attributes in process `syz.1.9815'.
[ 1353.503946][T28935] loop7: detected capacity change from 0 to 4096
[ 1353.587285][T28935] ntfs3(loop7): Different NTFS sector size (4096) and media sector size (512).
[ 1353.669521][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1353.738312][   T31] audit: type=1326 audit(2000525489.018:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28946 comm="syz.0.9819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1060d8e9a9 code=0x7ffc0000
[ 1353.861958][T28935] ntfs3(loop7): Failed to initialize $Extend/$Reparse.
[ 1353.871651][   T31] audit: type=1326 audit(2000525489.027:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28946 comm="syz.0.9819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1060d8e9a9 code=0x7ffc0000
[ 1354.039428][   T31] audit: type=1326 audit(2000525489.037:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28946 comm="syz.0.9819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=431 compat=0 ip=0x7f1060d8e9a9 code=0x7ffc0000
[ 1354.170872][   T31] audit: type=1326 audit(2000525489.037:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28946 comm="syz.0.9819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1060d8e9a9 code=0x7ffc0000
[ 1354.272814][   T31] audit: type=1326 audit(2000525489.037:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28946 comm="syz.0.9819" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1060d8e9a9 code=0x7ffc0000
[ 1354.848356][T28971] xt_hashlimit: invalid rate
[ 1355.647514][  T972] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 1355.762417][T28953] loop4: detected capacity change from 0 to 32768
[ 1355.787739][T28953] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.9821 (28953)
[ 1355.838784][  T972] usb 1-1: Using ep0 maxpacket: 32
[ 1355.881294][T28953] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1355.893432][  T972] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[ 1355.926282][  T972] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1355.943144][T28953] BTRFS info (device loop4): using sha256 (sha256-x86_64) checksum algorithm
[ 1355.964900][  T972] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[ 1355.988303][T28953] BTRFS info (device loop4): using free-space-tree
[ 1356.026680][  T972] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1356.104547][  T972] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1356.134270][  T972] usb 1-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[ 1356.154406][  T972] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1356.175755][  T972] usb 1-1: Product: syz
[ 1356.189970][  T972] usb 1-1: Manufacturer: syz
[ 1356.195650][  T972] usb 1-1: SerialNumber: syz
[ 1356.255871][  T972] usb 1-1: config 0 descriptor??
[ 1356.317682][  T972] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input60
[ 1356.330490][ T5860] usb 6-1: new low-speed USB device number 21 using dummy_hcd
[ 1356.547157][ T5860] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1356.587692][ T5860] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1356.615303][ T5858] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1356.629169][ T5860] usb 6-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1356.709908][ T5860] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1356.717410][  T972] usb 1-1: USB disconnect, device number 6
[ 1356.764966][ T5860] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 1356.799346][ T5860] usb 6-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[ 1356.856470][ T5860] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1356.927819][T28996] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1356.976923][ T5860] hub 6-1:1.0: bad descriptor, ignoring hub
[ 1357.025894][ T5860] hub 6-1:1.0: probe with driver hub failed with error -5
[ 1357.101755][ T5860] cdc_wdm 6-1:1.0: skipping garbage
[ 1357.107053][ T5860] cdc_wdm 6-1:1.0: skipping garbage
[ 1357.258143][ T5860] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device
[ 1357.299339][ T5860] cdc_wdm 6-1:1.0: Unknown control protocol
[ 1357.399661][ T5860] usb 6-1: USB disconnect, device number 21
[ 1358.310070][   T31] audit: type=1326 audit(2000525493.293:213): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29049 comm="syz.7.9862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1358.428763][   T31] audit: type=1326 audit(2000525493.349:214): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29049 comm="syz.7.9862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1358.511497][   T31] audit: type=1326 audit(2000525493.349:215): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29049 comm="syz.7.9862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1358.611250][   T31] audit: type=1326 audit(2000525493.349:216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29049 comm="syz.7.9862" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6ba398e9a9 code=0x7ffc0000
[ 1358.727795][T19280] usb 6-1: new high-speed USB device number 22 using dummy_hcd
[ 1358.779112][ T5860] usb 1-1: new high-speed USB device number 7 using dummy_hcd
[ 1358.949595][T19280] usb 6-1: Using ep0 maxpacket: 16
[ 1358.957956][T19280] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1358.967963][ T5860] usb 1-1: Using ep0 maxpacket: 32
[ 1359.024564][T19280] usb 6-1: New USB device found, idVendor=0e20, idProduct=0101, bcdDevice= 0.5a
[ 1359.043564][ T5860] usb 1-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1359.056352][T19280] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1359.065101][ T5860] usb 1-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1359.110458][ T5860] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1359.124849][T19280] usb 6-1: config 0 descriptor??
[ 1359.142513][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1359.156380][ T5860] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1359.185479][T19280] pegasus_notetaker 6-1:0.0: probe with driver pegasus_notetaker failed with error -22
[ 1359.195427][ T5860] usb 1-1: config 1 has no interface number 0
[ 1359.201579][ T5860] usb 1-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1359.241291][ T5860] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1359.324780][ T5860] snd_usb_pod 1-1:1.1: Line 6 Pocket POD found
[ 1359.404403][T19280] usb 6-1: USB disconnect, device number 22
[ 1359.530690][ T5860] snd_usb_pod 1-1:1.1: endpoint not available, using fallback values
[ 1359.571050][ T5860] snd_usb_pod 1-1:1.1: invalid control EP
[ 1359.590907][ T5860] snd_usb_pod 1-1:1.1: cannot start listening: -22
[ 1359.627809][ T5860] snd_usb_pod 1-1:1.1: Line 6 Pocket POD now disconnected
[ 1359.664747][ T5860] snd_usb_pod 1-1:1.1: probe with driver snd_usb_pod failed with error -22
[ 1359.758330][T10469] usb 1-1: USB disconnect, device number 7
[ 1359.826902][   T59] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1360.617823][T10469] usb 5-1: new high-speed USB device number 12 using dummy_hcd
[ 1360.801417][T10469] usb 5-1: Using ep0 maxpacket: 16
[ 1360.825011][T10469] usb 5-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[ 1360.863176][T10469] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1360.879124][T10469] usb 5-1: Product: syz
[ 1360.883430][T10469] usb 5-1: Manufacturer: syz
[ 1360.890421][T10469] usb 5-1: SerialNumber: syz
[ 1360.909521][T10469] usb 5-1: config 0 descriptor??
[ 1360.929354][T10469] visor 5-1:0.0: Sony Clie 3.5 converter detected
[ 1360.955401][T29112] 8021q: adding VLAN 0 to HW filter on device bond1
[ 1361.237715][T10469] usb 5-1: clie_3_5_startup: get config number bad return length: 0
[ 1361.245926][T10469] visor 5-1:0.0: probe with driver visor failed with error -5
[ 1361.282391][ T5860] usb 1-1: new high-speed USB device number 8 using dummy_hcd
[ 1361.407411][T29121] netlink: 28 bytes leftover after parsing attributes in process `syz.7.9896'.
[ 1361.462318][ T5860] usb 1-1: Using ep0 maxpacket: 16
[ 1361.512754][ T5859] usb 5-1: USB disconnect, device number 12
[ 1361.512940][ T5860] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1361.549022][ T5860] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1361.557222][ T5860] usb 1-1: Product: syz
[ 1361.562148][ T5860] usb 1-1: Manufacturer: syz
[ 1361.567511][ T5860] usb 1-1: SerialNumber: syz
[ 1361.596375][ T5860] r8152-cfgselector 1-1: Unknown version 0x0000
[ 1361.613173][ T5860] r8152-cfgselector 1-1: config 0 descriptor??
[ 1361.632774][ T5860] hub 1-1:0.0: bad descriptor, ignoring hub
[ 1361.638720][ T5860] hub 1-1:0.0: probe with driver hub failed with error -5
[ 1361.761646][T29127] loop7: detected capacity change from 0 to 16
[ 1361.769921][T29099] loop1: detected capacity change from 0 to 32768
[ 1361.815031][T29127] erofs (device loop7): mounted with root inode @ nid 36.
[ 1361.862553][T29127] erofs (device loop7): per-inode big pcluster without sb feature for nid 36
[ 1361.911097][T29127] erofs (device loop7): read error -117 @ 0 of nid 36
[ 1361.953222][T29099] JBD2: Ignoring recovery information on journal
[ 1362.122218][T29099] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1362.221835][ T5860] r8152-cfgselector 1-1: USB disconnect, device number 8
[ 1362.375662][T29099] (syz.1.9884,29099,0):ocfs2_mknod:502 ERROR: status = -31
[ 1362.406289][T29099] (syz.1.9884,29099,0):ocfs2_mkdir:658 ERROR: status = -31
[ 1362.729471][ T5851] ocfs2: Unmounting device (7,1) on (node local)
[ 1362.755869][T29150] netlink: 1010 bytes leftover after parsing attributes in process `syz.4.9909'.
[ 1362.765027][T29150] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT
[ 1362.975495][T29155] loop0: detected capacity change from 0 to 512
[ 1363.045014][T29155] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1363.192114][T29155] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1363.236564][T29155] ext4 filesystem being mounted at /1660/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1363.459701][T29168] loop1: detected capacity change from 0 to 256
[ 1363.488777][T29170] netlink: 'syz.7.9917': attribute type 1 has an invalid length.
[ 1363.615871][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1363.705083][T29168] FAT-fs (loop1): Directory bread(block 64) failed
[ 1363.728244][T29168] FAT-fs (loop1): Directory bread(block 65) failed
[ 1363.761199][T29168] FAT-fs (loop1): Directory bread(block 66) failed
[ 1363.800217][T29168] FAT-fs (loop1): Directory bread(block 67) failed
[ 1363.846402][T29168] FAT-fs (loop1): Directory bread(block 68) failed
[ 1363.853016][T29168] FAT-fs (loop1): Directory bread(block 69) failed
[ 1363.942091][T29168] FAT-fs (loop1): Directory bread(block 70) failed
[ 1363.948702][T29168] FAT-fs (loop1): Directory bread(block 71) failed
[ 1363.989964][T29168] FAT-fs (loop1): Directory bread(block 72) failed
[ 1364.017502][T29168] FAT-fs (loop1): Directory bread(block 73) failed
[ 1364.257509][T29184] loop0: detected capacity change from 0 to 16
[ 1364.295522][T29184] erofs (device loop0): mounted with root inode @ nid 36.
[ 1364.583551][   T31] audit: type=1326 audit(2000525499.148:217): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29189 comm="syz.1.9927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1364.605971][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1364.657993][   T31] audit: type=1326 audit(2000525499.148:218): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29189 comm="syz.1.9927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1364.742858][   T31] audit: type=1326 audit(2000525499.148:219): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29189 comm="syz.1.9927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=151 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1364.765360][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1364.876196][T29196] netlink: 'syz.5.9930': attribute type 1 has an invalid length.
[ 1364.884220][   T31] audit: type=1326 audit(2000525499.148:220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29189 comm="syz.1.9927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1364.921454][T29158] loop3: detected capacity change from 0 to 32768
[ 1364.958137][   T31] audit: type=1326 audit(2000525499.148:221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29189 comm="syz.1.9927" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1364.980571][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1365.086100][T29158] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1365.253025][T29210] loop4: detected capacity change from 0 to 64
[ 1365.302153][   T59] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1365.353828][T29158] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51.
[ 1365.407900][T29158] XFS (loop3): Starting recovery (logdev: internal)
[ 1365.524328][T29158] XFS (loop3): Ending recovery (logdev: internal)
[ 1365.560744][T29158] XFS (loop3): Quotacheck needed: Please wait.
[ 1365.786526][T29158] XFS (loop3): Quotacheck: Done.
[ 1365.801764][T29186] loop7: detected capacity change from 0 to 32768
[ 1365.882340][T29186] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.9925 (29186)
[ 1365.976709][T29186] BTRFS info (device loop7): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1365.990827][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1366.021431][T29186] BTRFS info (device loop7): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1366.068808][T29186] BTRFS info (device loop7): using free-space-tree
[ 1366.180995][ T5849] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1366.707369][T29186] BTRFS info (device loop7): balance: start -sprofiles=data,drange=7..8,vrange=18446744073709551614..18446744073709551613
[ 1366.805551][T29186] BTRFS info (device loop7): balance: ended with status: 0
[ 1367.165519][T23699] BTRFS info (device loop7): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1367.708749][T29275] tmpfs: Bad value for 'mpol'
[ 1367.791582][T29267] netlink: set zone limit has 4 unknown bytes
[ 1367.919371][  T972] usb 5-1: new low-speed USB device number 13 using dummy_hcd
[ 1367.975897][T29280] loop1: detected capacity change from 0 to 128
[ 1368.073530][T29280] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256
[ 1368.128812][  T972] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1368.157282][T29280] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1368.177380][  T972] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1368.262318][  T972] usb 5-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F
[ 1368.316841][  T972] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10
[ 1368.400265][  T972] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8
[ 1368.443295][  T972] usb 5-1: New USB device found, idVendor=0225, idProduct=0000, bcdDevice= 0.00
[ 1368.452944][  T972] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1368.532897][T29270] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1368.568129][  T972] hub 5-1:1.0: bad descriptor, ignoring hub
[ 1368.613169][  T972] hub 5-1:1.0: probe with driver hub failed with error -5
[ 1368.657602][  T972] cdc_wdm 5-1:1.0: skipping garbage
[ 1368.662929][  T972] cdc_wdm 5-1:1.0: skipping garbage
[ 1368.746701][  T972] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device
[ 1368.769887][  T972] cdc_wdm 5-1:1.0: Unknown control protocol
[ 1368.905922][  T972] usb 5-1: USB disconnect, device number 13
[ 1369.026287][T29288] infiniband syz!: set active
[ 1369.031379][T29288] infiniband syz!: added team_slave_0
[ 1369.202909][T29302] ./file0: Can't open blockdev
[ 1369.421239][T29288] RDS/IB: syz!: added
[ 1369.425361][T29288] smc: adding ib device syz! with port count 1
[ 1369.447500][T29288] smc:    ib device syz! port 1 has pnetid 
[ 1370.272047][T29316] loop0: detected capacity change from 0 to 4096
[ 1370.337756][T29316] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1370.355951][T29322] loop5: detected capacity change from 0 to 2048
[ 1370.428875][T29316] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 4096)
[ 1370.445296][T29322] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1370.466248][T29316] NILFS (loop0): mounting unchecked fs
[ 1370.582745][T29316] NILFS (loop0): recovery complete
[ 1370.599112][T29328] loop7: detected capacity change from 0 to 256
[ 1370.617415][T29329] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1370.662080][T29328] exfat: Deprecated parameter 'namecase'
[ 1370.693336][T29328] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 1371.458071][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1371.743599][T29351] loop0: detected capacity change from 0 to 256
[ 1371.781911][T29353] Invalid source name
[ 1371.789931][T29353] UBIFS error (pid: 29353): cannot open "./file0", error -22
[ 1372.147040][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1372.319754][ T5859] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1372.505296][ T5859] usb 5-1: Using ep0 maxpacket: 8
[ 1372.525074][ T5859] usb 5-1: config 0 has an invalid interface number: 31 but max is 0
[ 1372.530165][T29366] loop0: detected capacity change from 0 to 4096
[ 1372.552466][ T5859] usb 5-1: config 0 has no interface number 0
[ 1372.583063][ T5859] usb 5-1: New USB device found, idVendor=046d, idProduct=08c3, bcdDevice=6b.16
[ 1372.592186][T10469] usb 2-1: new high-speed USB device number 102 using dummy_hcd
[ 1372.609664][ T5859] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1372.628739][ T5859] usb 5-1: Product: syz
[ 1372.632944][ T5859] usb 5-1: Manufacturer: syz
[ 1372.650390][ T5859] usb 5-1: SerialNumber: syz
[ 1372.688631][ T5859] usb 5-1: config 0 descriptor??
[ 1372.737315][T29366] ntfs3(loop0): ino=19, mi_enum_attr
[ 1372.757997][T10469] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1372.779791][T29366] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1372.786987][T29373] netlink: 'syz.5.10003': attribute type 1 has an invalid length.
[ 1372.805041][T10469] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1372.814765][T10469] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1372.901937][T10469] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1372.940750][T10469] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1372.954431][ T5859] usb 5-1: Found UVC 0.04 device syz (046d:08c3)
[ 1372.975786][T10469] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1372.982659][ T5859] usb 5-1: Failed to initialize entity for entity 6
[ 1373.007642][ T5859] usb 5-1: Failed to register entities (-22).
[ 1373.054148][T10469] usb 2-1: config 0 descriptor??
[ 1373.278068][ T5859] usb 5-1: USB disconnect, device number 14
[ 1373.310034][T10469] hdpvr 2-1:0.0: firmware version 0x0 dated 
[ 1373.316108][T10469] hdpvr 2-1:0.0: untested firmware, the driver might not work.
[ 1373.385186][T29382] loop7: detected capacity change from 0 to 128
[ 1373.535746][T10469] hdpvr 2-1:0.0: device init failed
[ 1373.542953][T10469] hdpvr 2-1:0.0: probe with driver hdpvr failed with error -12
[ 1373.571918][T10469] usb 2-1: USB disconnect, device number 102
[ 1374.162689][T29396] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10013'.
[ 1374.295065][T29398] bridge2: entered promiscuous mode
[ 1374.323100][T29398] bridge2: entered allmulticast mode
[ 1374.380467][T29400] loop1: detected capacity change from 0 to 256
[ 1374.400527][T29400] exfat: Deprecated parameter 'utf8'
[ 1374.413265][T29400] exfat: Deprecated parameter 'utf8'
[ 1374.516565][T29400] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d)
[ 1374.739571][T29400] exFAT-fs (loop1): error, in sector 160, dentry 12 should be unused, but 0x85
[ 1375.108845][T29388] loop7: detected capacity change from 0 to 32768
[ 1375.154145][T29412] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1375.186254][T29388] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.10010 (29388)
[ 1375.274660][T29388] BTRFS info (device loop7): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1375.304971][T29388] BTRFS info (device loop7): using sha256 (sha256-x86_64) checksum algorithm
[ 1375.359806][T29388] BTRFS info (device loop7): using free-space-tree
[ 1376.036715][T23699] BTRFS info (device loop7): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1376.253169][ T1296] ieee802154 phy0 wpan0: encryption failed: -22
[ 1376.259625][ T1296] ieee802154 phy1 wpan1: encryption failed: -22
[ 1376.988500][T29464] x_tables: unsorted entry at hook 3
[ 1377.444908][T29472] netlink: 12 bytes leftover after parsing attributes in process `syz.7.10043'.
[ 1377.454039][T29472] netlink: 31 bytes leftover after parsing attributes in process `syz.7.10043'.
[ 1377.517198][T29466] loop0: detected capacity change from 0 to 4096
[ 1377.530970][T29472] netlink: 'syz.7.10043': attribute type 3 has an invalid length.
[ 1377.538845][T29472] netlink: 'syz.7.10043': attribute type 2 has an invalid length.
[ 1377.615294][T29472] netlink: 31 bytes leftover after parsing attributes in process `syz.7.10043'.
[ 1377.617007][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1377.638380][T29474] netlink: 'syz.5.10045': attribute type 1 has an invalid length.
[ 1377.877500][T29446] loop1: detected capacity change from 0 to 32768
[ 1377.989773][T29446] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1378.142193][T29446] OCFS2: ERROR (device loop1): __ocfs2_find_path: Owner 65 has invalid tree depth 263 in extent list
[ 1378.162182][T29446] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1378.258720][T29446] OCFS2: Returning error to the calling process.
[ 1378.289398][T29446] (syz.1.10031,29446,1):ocfs2_find_leaf:1948 ERROR: status = -30
[ 1378.308715][T29446] (syz.1.10031,29446,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 1378.309380][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1378.375849][T29446] (syz.1.10031,29446,0):ocfs2_get_clusters:634 ERROR: status = -30
[ 1378.384473][T29446] (syz.1.10031,29446,0):ocfs2_extent_map_get_blocks:681 ERROR: status = -30
[ 1378.488944][T29446] (syz.1.10031,29446,0):ocfs2_read_virt_blocks:997 ERROR: status = -30
[ 1378.527739][T29446] (syz.1.10031,29446,0):ocfs2_read_dir_block:511 ERROR: status = -30
[ 1378.563532][T29446] (syz.1.10031,29446,0):ocfs2_find_dir_space_el:3503 ERROR: status = -5
[ 1378.621497][T29446] (syz.1.10031,29446,0):ocfs2_prepare_dir_for_insert:4294 ERROR: status = -5
[ 1378.630396][T29446] (syz.1.10031,29446,0):ocfs2_symlink:1876 ERROR: status = -5
[ 1378.679418][T29446] (syz.1.10031,29446,0):ocfs2_symlink:2077 ERROR: status = -5
[ 1378.915318][ T5851] ocfs2: Unmounting device (7,1) on (node local)
[ 1379.785633][T10469] usb 1-1: new high-speed USB device number 9 using dummy_hcd
[ 1379.812773][T29484] loop4: detected capacity change from 0 to 32768
[ 1379.858208][T29484] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.10049 (29484)
[ 1379.964264][T29484] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1379.970546][T10469] usb 1-1: config index 0 descriptor too short (expected 63506, got 18)
[ 1380.009299][T10469] usb 1-1: New USB device found, idVendor=0830, idProduct=0060, bcdDevice=13.2b
[ 1380.017715][T29484] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1380.074193][T10469] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1380.075446][T29484] BTRFS info (device loop4): using free-space-tree
[ 1380.129706][T10469] usb 1-1: Product: syz
[ 1380.146501][T10469] usb 1-1: Manufacturer: syz
[ 1380.225151][T10469] usb 1-1: SerialNumber: syz
[ 1380.567844][T10469] visor 1-1:1.0: Handspring Visor / Palm OS converter detected
[ 1380.599259][T29484] BTRFS info (device loop4): balance: start -sprofiles=data,drange=7..8,vrange=18446744073709551614..18446744073709551613
[ 1380.656567][T29484] BTRFS info (device loop4): balance: ended with status: 0
[ 1380.701220][T10469] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1380.737162][T29548] netlink: 'syz.3.10073': attribute type 1 has an invalid length.
[ 1380.745065][T29548] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10073'.
[ 1380.780056][T10469] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1380.831700][T10469] usb 1-1: USB disconnect, device number 9
[ 1381.005074][T10469] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1381.067612][T10469] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1381.129362][T10469] visor 1-1:1.0: device disconnected
[ 1381.145850][ T5858] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1381.486022][  T972] usb 4-1: new full-speed USB device number 12 using dummy_hcd
[ 1381.606038][T29564] loop4: detected capacity change from 0 to 8
[ 1381.661617][  T972] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1381.688497][  T972] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10
[ 1381.762169][  T972] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 64
[ 1381.840282][  T972] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1381.883509][  T972] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1381.936842][  T972] usb 4-1: Product: syz
[ 1381.941111][  T972] usb 4-1: Manufacturer: syz
[ 1381.965843][  T972] usb 4-1: SerialNumber: syz
[ 1382.006052][T29558] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1382.033390][  T972] usb 4-1: selecting invalid altsetting 1
[ 1382.215519][T29577] openvswitch: netlink: IP tunnel dst address not specified
[ 1382.307531][  T972] cdc_ncm 4-1:1.0: bind() failure
[ 1382.401978][  T972] usb 4-1: USB disconnect, device number 12
[ 1383.504264][T29601] loop7: detected capacity change from 0 to 4096
[ 1383.557978][T29601] ntfs3(loop7): Different NTFS sector size (2048) and media sector size (512).
[ 1383.636391][T29602] loop5: detected capacity change from 0 to 4096
[ 1383.792267][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1383.826335][T29601] ntfs3(loop7): Failed to initialize $Extend/$ObjId.
[ 1383.847327][T29602] ntfs3(loop5): Mark volume as dirty due to NTFS errors
[ 1384.205914][T19994] ntfs3(loop5): ino=9, ntfs3_write_inode failed, -22.
[ 1384.235743][ T5846] ntfs3(loop5): ino=9, ntfs_sync_fs failed, -22.
[ 1384.458460][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1384.563031][T29629] netlink: 348 bytes leftover after parsing attributes in process `syz.4.10113'.
[ 1385.000449][T29643] bridge0: port 3(netdevsim0) entered disabled state
[ 1385.029295][    T9] usb 2-1: new high-speed USB device number 103 using dummy_hcd
[ 1385.205851][    T9] usb 2-1: Using ep0 maxpacket: 32
[ 1385.231390][    T9] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x85 has invalid maxpacket 9
[ 1385.264410][T29649] loop0: detected capacity change from 0 to 512
[ 1385.275710][    T9] usb 2-1: New USB device found, idVendor=14c8, idProduct=0003, bcdDevice= 5.6c
[ 1385.301510][    T9] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1385.338141][    T9] usb 2-1: Product: syz
[ 1385.342420][    T9] usb 2-1: Manufacturer: syz
[ 1385.394068][    T9] usb 2-1: SerialNumber: syz
[ 1385.399035][T29652] bridge0: port 4(veth0_to_bridge) entered blocking state
[ 1385.399259][T29652] bridge0: port 4(veth0_to_bridge) entered disabled state
[ 1385.421058][T29652] veth0_to_bridge: entered allmulticast mode
[ 1385.429638][T29652] veth0_to_bridge: entered promiscuous mode
[ 1385.437094][T29652] bridge0: port 4(veth0_to_bridge) entered blocking state
[ 1385.444474][T29652] bridge0: port 4(veth0_to_bridge) entered forwarding state
[ 1385.501729][T29649] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1385.531330][    T9] usb 2-1: config 0 descriptor??
[ 1385.546224][T29633] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22
[ 1385.575521][    T9] input: syz syz as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/input/input63
[ 1385.583330][T29649] ext4 filesystem being mounted at /1702/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1385.704556][T29662] loop3: detected capacity change from 0 to 256
[ 1385.824901][T29662] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a97a7bd, utbl_chksum : 0xe619d30d)
[ 1385.976273][T29633] vhci_hcd vhci_hcd.0: pdev(1) rhport(0) sockfd(4)
[ 1385.982900][T29633] vhci_hcd vhci_hcd.0: devid(0) speed(4) speed_str(wireless)
[ 1385.987142][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1386.217297][T29633] vhci_hcd vhci_hcd.0: Device attached
[ 1386.344208][T29666] vhci_hcd: connection closed
[ 1386.345789][   T37] vhci_hcd: stop threads
[ 1386.372362][    T9] usb 2-1: USB disconnect, device number 103
[ 1386.378491][    C0] usbtouchscreen 2-1:0.0: usbtouch_irq - usb_submit_urb failed with result: -19
[ 1386.381636][   T37] vhci_hcd: release socket
[ 1386.413773][ T5859] vhci_hcd: vhci_device speed not set
[ 1386.456926][   T37] vhci_hcd: disconnect device
[ 1386.500798][ T5859] usb 35-1: new full-speed USB device number 3 using vhci_hcd
[ 1386.552687][ T5859] usb 35-1: enqueue for inactive port 0
[ 1386.621411][T29676] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10132'.
[ 1386.666645][ T5859] vhci_hcd: vhci_device speed not set
[ 1386.966085][T29682] netlink: 48 bytes leftover after parsing attributes in process `syz.7.10136'.
[ 1386.968082][T29680] loop5: detected capacity change from 0 to 1024
[ 1387.010414][T29680] EXT4-fs: Ignoring removed oldalloc option
[ 1387.059877][T29680] EXT4-fs (loop5): stripe (7) is not aligned with cluster size (16), stripe is disabled
[ 1387.107465][T29680] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended
[ 1387.119272][T10469] usb 1-1: new high-speed USB device number 10 using dummy_hcd
[ 1387.207378][T29680] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1387.349623][T10469] usb 1-1: New USB device found, idVendor=249c, idProduct=9002, bcdDevice=de.ad
[ 1387.359681][T29680] fscrypt (loop5, inode 15): Error -61 getting encryption context
[ 1387.386559][T10469] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1387.422675][T10469] usb 1-1: config 0 descriptor??
[ 1387.437636][T29655] loop4: detected capacity change from 0 to 32768
[ 1387.586088][T29655] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1387.615194][ T5846] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1387.674964][T10469] snd-usb-hiface 1-1:0.0: probe with driver snd-usb-hiface failed with error -22
[ 1387.733623][T29655] XFS (loop4): Ending clean mount
[ 1387.760994][T29655] XFS (loop4): Quotacheck needed: Please wait.
[ 1387.961959][    T9] usb 1-1: USB disconnect, device number 10
[ 1388.043066][T29655] XFS (loop4): Quotacheck: Done.
[ 1388.144336][T29713] netlink: 24 bytes leftover after parsing attributes in process `syz.7.10146'.
[ 1388.328451][T29715] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long
[ 1388.418939][ T5858] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1388.828145][T29725] loop3: detected capacity change from 0 to 256
[ 1388.901309][T29725] exfat: Deprecated parameter 'utf8'
[ 1388.951118][T29725] exfat: Deprecated parameter 'namecase'
[ 1388.956972][T29725] exfat: Deprecated parameter 'namecase'
[ 1389.020057][T29725] exfat: Deprecated parameter 'utf8'
[ 1389.186977][T29725] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d)
[ 1389.223346][T29731] loop7: detected capacity change from 0 to 2048
[ 1389.305891][T29731] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1389.737003][T29744] loop4: detected capacity change from 0 to 256
[ 1389.826940][T29744] exfat: Deprecated parameter 'utf8'
[ 1389.832421][T29744] exfat: Deprecated parameter 'utf8'
[ 1389.847572][T29747] 
€Â: renamed from veth0_vlan (while UP)
[ 1389.875590][T29744] exfat: Deprecated parameter 'namecase'
[ 1389.888817][ T5860] usb 2-1: new high-speed USB device number 104 using dummy_hcd
[ 1389.950792][   T37] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1389.982365][T29744] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d)
[ 1390.108490][ T5860] usb 2-1: Using ep0 maxpacket: 32
[ 1390.164361][ T5860] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1390.218031][ T5860] usb 2-1: config 7 has an invalid interface number: 187 but max is 0
[ 1390.251636][ T5860] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1390.276622][ T5860] usb 2-1: config 7 has no interface number 0
[ 1390.283273][ T5860] usb 2-1: config 7 interface 187 altsetting 6 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1390.358892][ T5860] usb 2-1: config 7 interface 187 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1390.403772][ T5860] usb 2-1: config 7 interface 187 has no altsetting 0
[ 1390.450521][ T5860] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[ 1390.470889][ T5860] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1390.491492][ T5860] usb 2-1: Product: syz
[ 1390.496269][ T5860] usb 2-1: Manufacturer: syz
[ 1390.539774][ T5860] usb 2-1: SerialNumber: syz
[ 1390.616883][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1390.788341][T29766] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK.
[ 1390.805952][ T5860] usb 2-1: Limiting number of CPorts to U8_MAX
[ 1390.835548][T29766] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET.
[ 1390.846822][ T5860] usb 2-1: Unknown endpoint type found, address 0x07
[ 1390.866019][ T5860] usb 2-1: Not enough endpoints found in device, aborting!
[ 1391.144468][  T972] usb 2-1: USB disconnect, device number 104
[ 1391.703167][T29789] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1391.801127][T29792] netlink: 'syz.4.10185': attribute type 16 has an invalid length.
[ 1391.838599][T29792] netlink: 'syz.4.10185': attribute type 17 has an invalid length.
[ 1391.905433][T29788] loop0: detected capacity change from 0 to 4096
[ 1392.013302][T29788] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1392.076530][T29789] bridge_slave_0 (unregistering): left allmulticast mode
[ 1392.091564][ T5859] usb 6-1: new full-speed USB device number 23 using dummy_hcd
[ 1392.099382][T29789] bridge_slave_0 (unregistering): left promiscuous mode
[ 1392.133338][T29789] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1392.239232][ T1132] ntfs3(loop0): ino=9, ntfs3_write_inode failed, -22.
[ 1392.270650][ T5850] ntfs3(loop0): ino=9, ntfs_sync_fs failed, -22.
[ 1392.278920][ T5859] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1392.306835][ T5859] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[ 1392.328119][T29792] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 1392.345947][ T5859] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 10
[ 1392.370940][ T5859] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1392.454964][ T5859] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1392.468784][T29801] comedi comedi2: fl512: I/O port conflict (0x209e1,16)
[ 1392.515620][ T5859] usb 6-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[ 1392.557973][ T5859] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[ 1392.592800][ T5859] usb 6-1: Product: syz
[ 1392.597062][ T5859] usb 6-1: Manufacturer: syz
[ 1392.624973][   T31] audit: type=1326 audit(2000525525.368:222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29802 comm="syz.1.10191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1392.689042][ T5859] usb 6-1: SerialNumber: syz
[ 1392.716316][ T5859] usb 6-1: config 0 descriptor??
[ 1392.732241][   T31] audit: type=1326 audit(2000525525.368:223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29802 comm="syz.1.10191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1392.818580][   T31] audit: type=1326 audit(2000525525.405:224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29802 comm="syz.1.10191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1392.911803][   T31] audit: type=1326 audit(2000525525.405:225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29802 comm="syz.1.10191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1393.011069][   T31] audit: type=1326 audit(2000525525.405:226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29802 comm="syz.1.10191" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1393.016414][T29810] rdma_rxe: rxe_newlink: failed to add team_slave_0
[ 1393.064133][ T5859] radio-si470x 6-1:0.0: DeviceID=0x0000 ChipID=0x0000
[ 1393.072121][ T5859] radio-si470x 6-1:0.0: This driver is known to work with firmware version 12, but the device has firmware version 0.
[ 1393.223578][    T9] usb 8-1: new high-speed USB device number 5 using dummy_hcd
[ 1393.286580][ T5859] radio-si470x 6-1:0.0: si470x_get_report: usb_control_msg returned -71
[ 1393.332031][ T5859] radio-si470x 6-1:0.0: si470x_get_scratch: si470x_get_report returned -71
[ 1393.373783][ T5859] radio-si470x 6-1:0.0: probe with driver radio-si470x failed with error -5
[ 1393.416508][    T9] usb 8-1: Using ep0 maxpacket: 32
[ 1393.456354][    T9] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1393.470188][ T5859] usb 6-1: USB disconnect, device number 23
[ 1393.487729][    T9] usb 8-1: config 7 has an invalid interface number: 187 but max is 0
[ 1393.554489][    T9] usb 8-1: config 7 has no interface number 0
[ 1393.578421][    T9] usb 8-1: config 7 interface 187 altsetting 6 bulk endpoint 0x4 has invalid maxpacket 947
[ 1393.615469][    T9] usb 8-1: config 7 interface 187 altsetting 6 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1393.650884][    T9] usb 8-1: config 7 interface 187 altsetting 6 bulk endpoint 0x3 has invalid maxpacket 0
[ 1393.683135][    T9] usb 8-1: config 7 interface 187 has no altsetting 0
[ 1393.734413][    T9] usb 8-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[ 1393.753267][    T9] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1393.778279][    T9] usb 8-1: Product: syz
[ 1393.799855][    T9] usb 8-1: Manufacturer: syz
[ 1393.820955][    T9] usb 8-1: SerialNumber: syz
[ 1393.855485][T29828] netlink: 88 bytes leftover after parsing attributes in process `syz.1.10202'.
[ 1393.876060][T29805] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[ 1394.171819][    T9] usb 8-1: Unused bulk OUT endpoint found: 0x03
[ 1394.193221][T29831] loop3: detected capacity change from 0 to 1024
[ 1394.218118][    T9] usb 8-1: Not enough endpoints found in device, aborting!
[ 1394.306217][T29834] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1394.400917][T29831] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1394.474918][    T9] usb 8-1: USB disconnect, device number 5
[ 1394.770440][T29845] loop1: detected capacity change from 0 to 128
[ 1394.797653][ T5849] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1394.865447][T29834] bridge_slave_0 (unregistering): left allmulticast mode
[ 1394.894640][T29834] bridge_slave_0 (unregistering): left promiscuous mode
[ 1394.901757][T29834] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1394.920637][T29845] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1395.067704][T29845] ext4 filesystem being mounted at /1656/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1395.168128][T29845] __find_get_block_slow() failed. block=288230376151711745, b_blocknr=0, b_state=0x00000019, b_size=1024, device loop1 blocksize: 1024
[ 1395.207431][T29845] grow_buffers: requested out-of-range block 288230376151711745 for device loop1
[ 1395.217873][T29845] EXT4-fs warning (device loop1): ext4_resize_fs:2019: can't read last block, resize aborted
[ 1395.442986][ T5851] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1395.485312][T29860] loop7: detected capacity change from 0 to 256
[ 1395.840655][T29872] netlink: 36 bytes leftover after parsing attributes in process `syz.3.10222'.
[ 1396.089824][ T1132] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1396.349816][T29886] netlink: 52 bytes leftover after parsing attributes in process `syz.0.10229'.
[ 1396.712532][T29892] loop0: detected capacity change from 0 to 64
[ 1396.774101][ T1083] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1397.048280][   T31] audit: type=1326 audit(2000525529.521:227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29896 comm="syz.3.10234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1397.136571][   T31] audit: type=1326 audit(2000525529.521:228): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29896 comm="syz.3.10234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1397.286371][   T31] audit: type=1326 audit(2000525529.558:229): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29896 comm="syz.3.10234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1397.369861][   T31] audit: type=1326 audit(2000525529.558:230): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29896 comm="syz.3.10234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6db398e9a9 code=0x7ffc0000
[ 1397.401790][T29903] netlink: 32 bytes leftover after parsing attributes in process `syz.5.10237'.
[ 1397.577178][T29913] loop0: detected capacity change from 0 to 64
[ 1398.085577][T29925] loop0: detected capacity change from 0 to 1764
[ 1399.618424][T29970] netlink: 132 bytes leftover after parsing attributes in process `syz.4.10270'.
[ 1399.895760][T29977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1400.216434][T29988] netlink: 129704 bytes leftover after parsing attributes in process `syz.0.10277'.
[ 1400.463082][T29977] bridge_slave_0 (unregistering): left allmulticast mode
[ 1400.470472][T29977] bridge_slave_0 (unregistering): left promiscuous mode
[ 1400.521543][T29977] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1400.768743][T29954] loop1: detected capacity change from 0 to 32768
[ 1400.864884][T29954] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.10262 (29954)
[ 1400.942249][   T24] usb 4-1: new full-speed USB device number 13 using dummy_hcd
[ 1401.017290][T29954] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1401.060525][T29954] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1401.106742][T29954] BTRFS info (device loop1): using free-space-tree
[ 1401.130797][T30013] netlink: 24 bytes leftover after parsing attributes in process `syz.7.10286'.
[ 1401.184102][   T24] usb 4-1: config 5 has an invalid interface number: 123 but max is 0
[ 1401.215102][   T24] usb 4-1: config 5 has no interface number 0
[ 1401.263112][   T24] usb 4-1: config 5 interface 123 altsetting 7 has an endpoint descriptor with address 0xEB, changing to 0x8B
[ 1401.285919][   T24] usb 4-1: config 5 interface 123 altsetting 7 has an endpoint descriptor with address 0x16, changing to 0x6
[ 1401.302669][   T24] usb 4-1: config 5 interface 123 altsetting 7 endpoint 0x6 has invalid wMaxPacketSize 0
[ 1401.320926][   T24] usb 4-1: config 5 interface 123 has no altsetting 0
[ 1401.335791][   T24] usb 4-1: New USB device found, idVendor=3923, idProduct=718a, bcdDevice=d8.d7
[ 1401.345475][   T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1401.360608][   T24] usb 4-1: Product: syz
[ 1401.364842][   T24] usb 4-1: Manufacturer: syz
[ 1401.380368][   T24] usb 4-1: SerialNumber: syz
[ 1401.625882][T30029] loop4: detected capacity change from 0 to 2048
[ 1401.692492][T30029] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1401.723818][   T24] ni6501 4-1:5.123: driver 'ni6501' failed to auto-configure device.
[ 1401.786958][T29954] BTRFS info (device loop1): balance: start -sprofiles=data,drange=7..8,vrange=18446744073709551614..18446744073709551613
[ 1401.852429][   T24] usb 4-1: USB disconnect, device number 13
[ 1401.861822][T30037] loop5: detected capacity change from 0 to 1764
[ 1401.872257][T30041] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1401.923714][T29954] BTRFS info (device loop1): balance: ended with status: 0
[ 1402.074601][T30044] nftables ruleset with unbound set
[ 1402.251947][T30046] netlink: 'syz.7.10293': attribute type 13 has an invalid length.
[ 1402.261196][   T13] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1402.319123][ T5851] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1402.456877][T30048] loop5: detected capacity change from 0 to 16
[ 1402.521018][T30048] MTD: Attempt to mount non-MTD device "/dev/loop5"
[ 1402.899024][T30056] ip6t_srh: unknown srh match flags  B153
[ 1402.943363][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1403.067188][   T31] audit: type=1326 audit(2000525535.152:231): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30059 comm="syz.1.10296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1403.166861][T30066] netlink: 'syz.0.10301': attribute type 3 has an invalid length.
[ 1403.174763][T30066] netlink: 201372 bytes leftover after parsing attributes in process `syz.0.10301'.
[ 1403.200968][   T31] audit: type=1326 audit(2000525535.152:232): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30059 comm="syz.1.10296" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1403.378745][T30070] netlink: 8 bytes leftover after parsing attributes in process `syz.7.10302'.
[ 1403.632102][T30076] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1403.743334][    T9] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[ 1403.861055][T30079] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1404.005032][    T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1404.056985][    T9] usb 4-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[ 1404.114875][    T9] usb 4-1: New USB device strings: Mfr=32, Product=0, SerialNumber=9
[ 1404.170796][    T9] usb 4-1: Manufacturer: syz
[ 1404.192306][    T9] usb 4-1: SerialNumber: syz
[ 1404.231363][    T9] usb 4-1: config 0 descriptor??
[ 1404.496428][T30096] netlink: 132 bytes leftover after parsing attributes in process `syz.1.10312'.
[ 1404.594887][    T9] usb 4-1: USB disconnect, device number 14
[ 1404.944923][   T31] audit: type=1326 audit(2000525536.901:233): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30106 comm="syz.1.10316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1405.060007][   T31] audit: type=1326 audit(2000525536.901:234): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30106 comm="syz.1.10316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1405.166238][T30113] usb usb7: usbfs: process 30113 (syz.5.10319) did not claim interface 0 before use
[ 1405.185074][   T31] audit: type=1326 audit(2000525536.911:235): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30106 comm="syz.1.10316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=461 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1405.282118][   T31] audit: type=1326 audit(2000525536.911:236): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30106 comm="syz.1.10316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1405.379035][T30116] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10320'.
[ 1405.418536][   T31] audit: type=1326 audit(2000525536.911:237): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30106 comm="syz.1.10316" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f352458e9a9 code=0x7ffc0000
[ 1405.512447][T30121] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10322'.
[ 1405.643170][T30125] loop5: detected capacity change from 0 to 64
[ 1405.718958][T30125] syz.5.10324: attempt to access beyond end of device
[ 1405.718958][T30125] loop5: rw=2049, sector=268435468, nr_sectors = 2 limit=64
[ 1405.863342][T30086] loop4: detected capacity change from 0 to 32768
[ 1405.902920][T30127] loop0: detected capacity change from 0 to 512
[ 1405.910390][T30127] EXT4-fs: inline encryption not supported
[ 1405.959030][T30134] loop3: detected capacity change from 0 to 16
[ 1405.996843][T30086] 
[ 1405.996843][T30086]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1405.996843][T30086] 
[ 1406.003014][T30127] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1406.065654][T30134] erofs (device loop3): mounted with root inode @ nid 36.
[ 1406.099210][T30127] EXT4-fs (loop0): Cannot turn on journaled quota: type 0: error -13
[ 1406.110574][T30086] ERROR: (device loop4): diWrite: ixpxd invalid
[ 1406.110574][T30086] 
[ 1406.132068][T30134] erofs (device loop3): invalid logical cluster 0 at nid 89
[ 1406.157046][T30086] ERROR: (device loop4): txAbort: 
[ 1406.157046][T30086] 
[ 1406.171220][T30134] erofs (device loop3): readahead error at folio 0 @ nid 89
[ 1406.204661][T30127] EXT4-fs error (device loop0): ext4_clear_blocks:874: inode #13: comm syz.0.10325: attempt to clear invalid blocks 2 len 1
[ 1406.235288][T30127] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1217: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters
[ 1406.236332][T22966] erofs (device loop3): failed to decompress -11 in[4096, 0] out[8745]
[ 1406.254941][T30127] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #13: comm syz.0.10325: invalid indirect mapped block 1819239214 (level 0)
[ 1406.265096][T30134] erofs (device loop3): invalid logical cluster 0 at nid 89
[ 1406.278883][T30127] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #13: comm syz.0.10325: invalid indirect mapped block 1819239214 (level 1)
[ 1406.381901][T30134] erofs (device loop3): failed to decompress -11 in[4096, 0] out[8745]
[ 1406.396322][T30127] EXT4-fs (loop0): 1 truncate cleaned up
[ 1406.428139][T30127] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1406.468326][ T5858] 
[ 1406.468326][ T5858]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1406.468326][ T5858] 
[ 1406.530946][ T5858] 
[ 1406.530946][ T5858]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1406.530946][ T5858] 
[ 1406.597119][T30134] erofs (device loop3): read error -117 @ 0 of nid 89
[ 1406.675444][   T31] audit: type=1800 audit(2000525538.538:238): pid=30134 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.10328" name="file2" dev="loop3" ino=89 res=0 errno=0
[ 1406.816593][ T5850] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1406.982512][T30147] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10333'.
[ 1407.699556][T30159] 8021q: VLANs not supported on ipvlan0
[ 1407.794975][T10469] usb 6-1: new high-speed USB device number 24 using dummy_hcd
[ 1407.849729][T30132] loop7: detected capacity change from 0 to 32768
[ 1407.909061][T30132] jfs_strtoUCS: char2uni returned -22.
[ 1407.926186][T30132] charset = cp932, char = 0xfc
[ 1407.984814][T10469] usb 6-1: New USB device found, idVendor=05d1, idProduct=2021, bcdDevice=30.00
[ 1408.012505][T30166] netlink: 164 bytes leftover after parsing attributes in process `syz.0.10342'.
[ 1408.015889][T10469] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1408.056400][T30166] netlink: 164 bytes leftover after parsing attributes in process `syz.0.10342'.
[ 1408.102950][T10469] usb 6-1: Product: syz
[ 1408.122253][T10469] usb 6-1: Manufacturer: syz
[ 1408.143268][T30166] netlink: 60 bytes leftover after parsing attributes in process `syz.0.10342'.
[ 1408.150699][T10469] usb 6-1: SerialNumber: syz
[ 1408.194543][T10469] usb 6-1: config 0 descriptor??
[ 1408.242608][T10469] ftdi_sio 6-1:0.0: FTDI USB Serial Device converter detected
[ 1408.295554][T10469] usb 6-1: Detected FT2232HP
[ 1408.383759][T30173] program syz.4.10345 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1408.405774][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1408.431789][   T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1408.470709][T10469] ftdi_sio ttyUSB0: Unable to read latency timer: -71
[ 1408.494763][T10469] ftdi_sio ttyUSB0: Unable to write latency timer: -71
[ 1408.540510][T10469] usb 6-1: FTDI USB Serial Device converter now attached to ttyUSB0
[ 1408.594882][T10469] usb 6-1: USB disconnect, device number 24
[ 1408.647028][T10469] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0
[ 1408.711649][T10469] ftdi_sio 6-1:0.0: device disconnected
[ 1408.979553][T30187] loop7: detected capacity change from 0 to 256
[ 1409.023360][T30187] exfat: Deprecated parameter 'namecase'
[ 1409.073530][T30191] IPv6: sit1: Disabled Multicast RS
[ 1409.113935][T30187] exFAT-fs (loop7): failed to load upcase table (idx : 0x00010000, chksum : 0x25fbf2c1, utbl_chksum : 0xe619d30d)
[ 1409.929957][T30215] loop7: detected capacity change from 0 to 1024
[ 1410.007861][T10469] usb 4-1: new high-speed USB device number 15 using dummy_hcd
[ 1410.062888][T30215] 
[ 1410.065277][T30215] ======================================================
[ 1410.072303][T30215] WARNING: possible circular locking dependency detected
[ 1410.079327][T30215] 6.16.0-syzkaller-00857-gced1b9e0392d #0 Not tainted
[ 1410.086097][T30215] ------------------------------------------------------
[ 1410.093117][T30215] syz.7.10364/30215 is trying to acquire lock:
[ 1410.099280][T30215] ffff8880298022c8 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}, at: hfsplus_get_block+0x272/0x9d0
[ 1410.110137][T30215] 
[ 1410.110137][T30215] but task is already holding lock:
[ 1410.117503][T30215] ffff8880534000f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_allocate+0xe5/0xa40
[ 1410.127481][T30215] 
[ 1410.127481][T30215] which lock already depends on the new lock.
[ 1410.127481][T30215] 
[ 1410.137889][T30215] 
[ 1410.137889][T30215] the existing dependency chain (in reverse order) is:
[ 1410.146917][T30215] 
[ 1410.146917][T30215] -> #1 (&sbi->alloc_mutex){+.+.}-{4:4}:
[ 1410.155035][T30215]        __mutex_lock+0x199/0xb90
[ 1410.160106][T30215]        hfsplus_block_free+0xdc/0x5f0
[ 1410.165617][T30215]        hfsplus_free_extents+0x33b/0x490
[ 1410.171390][T30215]        hfsplus_file_truncate+0x8da/0xb70
[ 1410.177224][T30215]        hfsplus_delete_inode+0x18f/0x220
[ 1410.182974][T30215]        hfsplus_unlink+0x581/0x7f0
[ 1410.188203][T30215]        vfs_unlink+0x2fe/0x9b0
[ 1410.193085][T30215]        do_unlinkat+0x4c5/0x6a0
[ 1410.198061][T30215]        __x64_sys_unlink+0xc5/0x110
[ 1410.203387][T30215]        do_syscall_64+0xcd/0x4c0
[ 1410.208446][T30215]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1410.214883][T30215] 
[ 1410.214883][T30215] -> #0 (&HFSPLUS_I(inode)->extents_lock){+.+.}-{4:4}:
[ 1410.223960][T30215]        __lock_acquire+0x126f/0x1c90
[ 1410.229350][T30215]        lock_acquire+0x179/0x350
[ 1410.234393][T30215]        __mutex_lock+0x199/0xb90
[ 1410.239450][T30215]        hfsplus_get_block+0x272/0x9d0
[ 1410.244940][T30215]        block_read_full_folio+0x457/0x850
[ 1410.250769][T30215]        filemap_read_folio+0xc8/0x2a0
[ 1410.256269][T30215]        do_read_cache_folio+0x263/0x5c0
[ 1410.261943][T30215]        read_cache_page+0x5b/0x160
[ 1410.267183][T30215]        hfsplus_block_allocate+0x144/0xa40
[ 1410.273093][T30215]        hfsplus_file_extend+0x459/0x10f0
[ 1410.278848][T30215]        hfsplus_get_block+0x1a9/0x9d0
[ 1410.284332][T30215]        __block_write_begin_int+0x4f4/0x16d0
[ 1410.290429][T30215]        block_write_begin+0x9a/0x1d0
[ 1410.295827][T30215]        cont_write_begin+0x61b/0x950
[ 1410.301227][T30215]        hfsplus_write_begin+0x64/0x120
[ 1410.306803][T30215]        page_symlink+0x3fc/0x4c0
[ 1410.311850][T30215]        hfsplus_symlink+0xd3/0x2b0
[ 1410.317083][T30215]        vfs_symlink+0x403/0x680
[ 1410.322049][T30215]        do_symlinkat+0x261/0x310
[ 1410.327086][T30215]        __x64_sys_symlink+0x75/0x90
[ 1410.332385][T30215]        do_syscall_64+0xcd/0x4c0
[ 1410.337444][T30215]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1410.343879][T30215] 
[ 1410.343879][T30215] other info that might help us debug this:
[ 1410.343879][T30215] 
[ 1410.354116][T30215]  Possible unsafe locking scenario:
[ 1410.354116][T30215] 
[ 1410.361570][T30215]        CPU0                    CPU1
[ 1410.366938][T30215]        ----                    ----
[ 1410.372307][T30215]   lock(&sbi->alloc_mutex);
[ 1410.376921][T30215]                                lock(&HFSPLUS_I(inode)->extents_lock);
[ 1410.385272][T30215]                                lock(&sbi->alloc_mutex);
[ 1410.392403][T30215]   lock(&HFSPLUS_I(inode)->extents_lock);
[ 1410.398236][T30215] 
[ 1410.398236][T30215]  *** DEADLOCK ***
[ 1410.398236][T30215] 
[ 1410.406385][T30215] 5 locks held by syz.7.10364/30215:
[ 1410.411675][T30215]  #0: ffff88807d738428 (sb_writers#16){.+.+}-{0:0}, at: filename_create+0x10e/0x4a0
[ 1410.421269][T30215]  #1: ffff888029803238 (&type->i_mutex_dir_key#12/1){+.+.}-{4:4}, at: filename_create+0x1bb/0x4a0
[ 1410.432091][T30215]  #2: ffff888053400198 (&sbi->vh_mutex){+.+.}-{4:4}, at: hfsplus_symlink+0x7f/0x2b0
[ 1410.441674][T30215]  #3: ffff888029804488 (&hip->extents_lock){+.+.}-{4:4}, at: hfsplus_file_extend+0x1ca/0x10f0
[ 1410.452114][T30215]  #4: ffff8880534000f8 (&sbi->alloc_mutex){+.+.}-{4:4}, at: hfsplus_block_allocate+0xe5/0xa40
[ 1410.462548][T30215] 
[ 1410.462548][T30215] stack backtrace:
[ 1410.468449][T30215] CPU: 1 UID: 0 PID: 30215 Comm: syz.7.10364 Not tainted 6.16.0-syzkaller-00857-gced1b9e0392d #0 PREEMPT(full) 
[ 1410.468498][T30215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 1410.468521][T30215] Call Trace:
[ 1410.468534][T30215]  <TASK>
[ 1410.468548][T30215]  dump_stack_lvl+0x116/0x1f0
[ 1410.468603][T30215]  print_circular_bug+0x275/0x350
[ 1410.468671][T30215]  check_noncircular+0x14c/0x170
[ 1410.468740][T30215]  __lock_acquire+0x126f/0x1c90
[ 1410.468786][T30215]  lock_acquire+0x179/0x350
[ 1410.468823][T30215]  ? hfsplus_get_block+0x272/0x9d0
[ 1410.468873][T30215]  ? __pfx___might_resched+0x10/0x10
[ 1410.468932][T30215]  __mutex_lock+0x199/0xb90
[ 1410.468984][T30215]  ? hfsplus_get_block+0x272/0x9d0
[ 1410.469032][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.469079][T30215]  ? __lock_acquire+0x1053/0x1c90
[ 1410.469115][T30215]  ? hfsplus_get_block+0x272/0x9d0
[ 1410.469163][T30215]  ? __pfx___mutex_lock+0x10/0x10
[ 1410.469222][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.469274][T30215]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1410.469318][T30215]  ? find_held_lock+0x2b/0x80
[ 1410.469369][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.469420][T30215]  ? hfsplus_get_block+0x272/0x9d0
[ 1410.469466][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.469512][T30215]  hfsplus_get_block+0x272/0x9d0
[ 1410.469566][T30215]  block_read_full_folio+0x457/0x850
[ 1410.469611][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.469663][T30215]  ? __pfx_hfsplus_read_folio+0x10/0x10
[ 1410.469706][T30215]  filemap_read_folio+0xc8/0x2a0
[ 1410.469762][T30215]  ? __pfx_filemap_read_folio+0x10/0x10
[ 1410.469818][T30215]  ? __filemap_get_folio+0x32b/0xc30
[ 1410.469884][T30215]  do_read_cache_folio+0x263/0x5c0
[ 1410.469946][T30215]  ? __pfx_hfsplus_read_folio+0x10/0x10
[ 1410.469992][T30215]  read_cache_page+0x5b/0x160
[ 1410.470055][T30215]  hfsplus_block_allocate+0x144/0xa40
[ 1410.470103][T30215]  hfsplus_file_extend+0x459/0x10f0
[ 1410.470157][T30215]  ? __pfx_hfsplus_file_extend+0x10/0x10
[ 1410.470208][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.470259][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.470305][T30215]  ? do_raw_spin_lock+0x12c/0x2b0
[ 1410.470348][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.470395][T30215]  ? find_held_lock+0x2b/0x80
[ 1410.470446][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.470496][T30215]  hfsplus_get_block+0x1a9/0x9d0
[ 1410.470547][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.470596][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.470643][T30215]  __block_write_begin_int+0x4f4/0x16d0
[ 1410.470696][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.470746][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.470794][T30215]  ? __pfx___block_write_begin_int+0x10/0x10
[ 1410.470845][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.470894][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.470942][T30215]  block_write_begin+0x9a/0x1d0
[ 1410.470990][T30215]  cont_write_begin+0x61b/0x950
[ 1410.471039][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.471085][T30215]  ? do_raw_spin_unlock+0x172/0x230
[ 1410.471133][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.471182][T30215]  ? __pfx_cont_write_begin+0x10/0x10
[ 1410.471228][T30215]  ? __pfx___schedule+0x10/0x10
[ 1410.471279][T30215]  ? mark_held_locks+0x49/0x80
[ 1410.471319][T30215]  hfsplus_write_begin+0x64/0x120
[ 1410.471362][T30215]  ? __pfx_hfsplus_get_block+0x10/0x10
[ 1410.471413][T30215]  page_symlink+0x3fc/0x4c0
[ 1410.471459][T30215]  ? __pfx_page_symlink+0x10/0x10
[ 1410.471500][T30215]  ? _raw_spin_unlock+0x3e/0x50
[ 1410.471543][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.471589][T30215]  ? hfsplus_mark_mdb_dirty+0x189/0x200
[ 1410.471633][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.471679][T30215]  ? hfsplus_new_inode+0x4f4/0x900
[ 1410.471726][T30215]  hfsplus_symlink+0xd3/0x2b0
[ 1410.471776][T30215]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1410.471826][T30215]  vfs_symlink+0x403/0x680
[ 1410.471877][T30215]  do_symlinkat+0x261/0x310
[ 1410.471911][T30215]  ? __pfx_do_symlinkat+0x10/0x10
[ 1410.471973][T30215]  ? getname_flags.part.0+0x1c5/0x550
[ 1410.472024][T30215]  __x64_sys_symlink+0x75/0x90
[ 1410.472060][T30215]  do_syscall_64+0xcd/0x4c0
[ 1410.472115][T30215]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1410.472153][T30215] RIP: 0033:0x7f6ba398e9a9
[ 1410.472183][T30215] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1410.472221][T30215] RSP: 002b:00007f6ba4834038 EFLAGS: 00000246 ORIG_RAX: 0000000000000058
[ 1410.472260][T30215] RAX: ffffffffffffffda RBX: 00007f6ba3bb5fa0 RCX: 00007f6ba398e9a9
[ 1410.472286][T30215] RDX: 0000000000000000 RSI: 0000200000000cc0 RDI: 0000200000000800
[ 1410.472311][T30215] RBP: 00007f6ba3a10d69 R08: 0000000000000000 R09: 0000000000000000
[ 1410.472335][T30215] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 1410.472358][T30215] R13: 0000000000000000 R14: 00007f6ba3bb5fa0 R15: 00007fff5af9bbe8
[ 1410.472396][T30215]  </TASK>
[ 1411.047575][T10469] usb 4-1: Using ep0 maxpacket: 8
[ 1411.083835][T10469] usb 4-1: config 0 interface 0 has no altsetting 0
[ 1411.094836][T10469] usb 4-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=bc.76
[ 1411.107767][T10469] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1411.122588][T10469] usb 4-1: Product: syz
[ 1411.126769][T10469] usb 4-1: Manufacturer: syz
[ 1411.143635][T10469] usb 4-1: SerialNumber: syz
[ 1411.174052][T10469] usb 4-1: config 0 descriptor??
[ 1411.188318][T10469] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 found
[ 1411.312260][   T24] usb 6-1: new full-speed USB device number 25 using dummy_hcd
[ 1411.403087][T10469] snd_usb_toneport 4-1:0.0: cannot get proper max packet size
[ 1411.410799][T10469] snd_usb_toneport 4-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1411.422534][T10469] snd_usb_toneport 4-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1411.475302][   T24] usb 6-1: config 179 has an invalid interface number: 65 but max is 0
[ 1411.485079][   T24] usb 6-1: config 179 has no interface number 0
[ 1411.491578][   T24] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[ 1411.503017][   T24] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 64
[ 1411.514370][   T24] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[ 1411.525704][   T24] usb 6-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 64
[ 1411.537341][   T24] usb 6-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1411.550877][   T24] usb 6-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1411.559977][   T24] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1411.570963][T30222] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1411.578237][T30222] raw-gadget.1 gadget.5: fail, usb_ep_enable returned -22
[ 1411.636834][T10469] usb 4-1: USB disconnect, device number 15
[ 1411.882382][T10469] usb 6-1: USB disconnect, device number 25
[ 1411.882450][    C1] xpad 6-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1411.896895][    C1] dummy_hcd dummy_hcd.5: timer fired with no URBs pending?
[ 1414.563505][T19994] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1414.563505][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration
[ 1419.961388][ T4006] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration