last executing test programs: 1m15.97802627s ago: executing program 0 (id=13393): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)={0x28, 0x3d, 0x107, 0x0, 0x0, {0x3, 0x7c}, [@nested={0x4, 0x130}, @nested={0x10, 0x1, 0x0, 0x1, [@typed={0xc, 0x6, 0x0, 0x0, @u64=0x4888}]}]}, 0x28}}, 0xc000) 1m15.387123746s ago: executing program 0 (id=13398): syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2, &(0x7f00000003c0)=ANY=[@ANYBLOB="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"], 0x1, 0x625c, &(0x7f000000bdc0)="$eJzs3cuOHFcZB/Cv+jYXE8fKIgoWQpPEQEKIr8EYAiRZwIINC+QtsjWZRBYOINsgJ7LwRCMhFjwECIklIJaseIAs2LLjAbBkIwFZpVDNnDOuabrdvmS6eub8ftKk6qtTNX0q/67pbldVnwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4nvf/cGZKiIu/TwtOBbxmehH9CJWmnotIlbWjuX1BxHxXGw3x7MRMVyKqHLj0xGvRcRHRyPu3ru13iw6+5D9+M6f/v67Hx75/t/+MDz1nz/f6L8+bb2bN3/977/cfvz9BQAAgBLVdV1X6WP+8fT5vtd1pwCAuciv/3WSl6sXrt5csP6o1Wq1+gDWbfVkt9tFRGy2t2neMzgdDwAHzGZ83HUX6JD8izaIiCNddwJYaFXXHWBf3L13a71K+Vbt14O1nfZ8Lcie/Der3fs7pk1nGb/GZF7Pr63oxzNT+rMypz4skpx/bzz/Szvto7Tefuc/L9PyH+3c+lScnH9/PP8xhyf/3sT8S5XzHzxS/n35AwAAAADAAsv//n+s4/O/S0++Kw/lQed/1+bUBwAAAAAAAAD4tD3p+H+7KuP/AQAAwKJqPqs3fnP0/rJp38XWLL9YRTw1tj5QmHSzzGrX/QAAAAAAAAAAAACAkgx2ruG9WEUMI+Kp1dW6rpuftvH6UT3p9gdd6fsPJev6jzwAAOz46OjYvfxVxHJEXEzf9TdcXV2t6+WV1Xq1XlnK72dHS8v1SutzbZ42y5ZGs98Pr8Sobn7Zcmu7tlmfl2e1j/++5rFGdX92x+akw8ABICJ2Xo3uekU6ZOr66ej6XQ4Hg+P/8HH88zC6fp4CAAAA+6+u67pKX+d9PJ3z73XdKQBgLvLr//h5AbVarVar1Yevbqsnu90uImKzvU3znsFw/ABwwGzGxxOX/9IAv0WYlj9FGETEc113AlhoVdcdYF/cvXdrvUr5Vu3XgzS+e74WZE/+m9X2dnn7SdNZxq8xmdfzayv68cyU/jw7pz4skpx/bzz/Szvto7Tefuc/L9Pyb/bzWAf96VrOvz+e/5jDk39vYv6lyvkPHin/vvwBAAAAAGCB5X//P7ZQ539Hj7s7Mz3o/O/avj0qAAAAAAAAAOyvu/duref7XvP5/89NWM/9n4dTzr+Sf5Fy/un+/90Lb14aW6/fmr/z1v38/3Xv1vrvb/zzs3n6sPkv5ZkqPbOq9Iyo0iNVgzR9zB2bYmvYHzWPNKx6/UG65qcevhNX4mpsxOk96/bS8XC//cye9qanw+32ur/TfnZP+2C3PW9/bk/7MF3pVK/k9pOxHj+Jq/H2dnvTtjRj/5dntNcz2nP+fcd/kXL+g9ZPk/9qaq/Gpo07H/b+77hvTyc9zptXPv+r0/u/OzNtRX9339qa/Xuhg/5s/z85MoqfXd+4dvLm5Rs3rp2JNNmz9Gykyacs5z9MPzn/l17cac9/99vH650PR4+c/6LYisHU/F9szTf7+/Kc+9aFnP8o/eT8307tk4//g5z/9OP/lQ76AwAAAAAAAAAAAAAAAA9S1/X2LaJvRsT5dP9PV/dmAgDzlV//6yQvn1fdf9zt/7h3P7rqv1o957pasP7Mtf6kXqz+qBey/u+C9Wfh6rZ6sjfaRUT8tb1N857hF5N+GQCwyD6JiH903Qk6I/+C5e/7a6Ynuu4MMFfX3//gR5evXt24dr3rngAAAAAAAAAAjyuP/7nWGv/5RF3Xt8fW2zP+61ux9qTjfw7yzO4Ao1MGqu4/+j49yFZv1O+1hht/PqaN/z3cnXvQ+N+DGY83nNE+mtG+NKN9eUb7xBs9WnL+z7fGOz8REcfHhl8vYfzX8THvS5Dzf6H1fG7y/9LYeu38698e5Px7e/I/deO9n566/v4Hr1557/K7G+9u/PjcmTOnz50/f+HChVPvXLm6cXrnvx32eH/l/PPY164DLUvOP2cu/7Lk/L+QavmXJef/xVTLvyw5//x+T/5lyfnnzz7yL0vO/+VUy78sOf8vp1r+Zcn5v5Jq+Zcl5/+VVMu/LDn/V1Mt/7Lk/E+mWv5lyfmfSvVD5r+y3/1iPnL++QyX478sOf98ZYP8y5LzP5tq+Zcl538u1fIvS87/tVTLvyw5/6+mWv5lyfmfT7X8y5Lz/1qq5V+WnP+FVMu/LDn/r6da/mXJ+X8j1fIvS87/9VTLvyw5/2+mWv5lyfl/K9XyL0vO/9upln9Zcv5vpFr+Zbn//f9mzJgxk2e6/ssEAAAAAAAAAAAAAIybx+XEXe8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyPHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVh7+5i5Drr+4Gf2TdvHEgMhPyd/E3YOCaEZJNd24lfaFNMeG14Kwmh0Bds17s2C37Da5dAo9pRoETCqKiibbhoCwi1uamIWi5oBSgXqFXVStBe0BtEhcpFVAUUkFBpBWw15zzPszOzZ2d2vWNn5pzPR0p+2Zkzc86ceWZ2v3a+OwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADQ6ubXzX+ikWVZo9EoLtiSZS9ozqumtuSXvPr5PT4AAABg436e//u5a9MFB9Zwo5Zt/vGmb355aWlpKXvP6B+Pf2ZpKV0xlWXjm7Isvy566nvvbbRuEzyWTTZGWr4e6bH70R7Xj/W4frzH9RM9rt/U4/rJHtevOAErXJU10p3tyP9zS3FKs+uy8fy6HSW3eqyxaaR57tJts0Z+m6Xxo9lCdjybz2bbti+2beTbf/Xm5r7enMV9jbTsa1tzhfzokSPxGBrhHO9o29fyfUY/eG029eMfPXLkL88+e0PZ7Hka2u6vOM7btjeP82PhkuJYG9mmdE7icY60HOe2kudktO04G/ntmv/deZzPrfE4R5cP84rqfM4ns5H8v7+Vn6exRlZynraFy356S5ZlF5YPu3ObFfvKRrLNbZeMLD8/k8WKbN5Hcym9OBtb1zq9eQ3rtDnndrSv087XRHz+bw63G1vlGFqfph88OtHyvP9s6VLWadR81Ku9VjrXYL9fK4OyBuO6+Fb+oB8vXYM7wuN/5NbV12Dp2ilZg+lxt6zB7b3W4MjEaH7M6Ulo5LdZXoM727YfzffUyOczt3ZfgzNnT5yeWfzIR+9cOHH42Pyx+ZO7d+6c3b1nz759+2aOLhyfny3+fYlne/BtzkbSa2B7OHfxNfDKjm1bl+rS5ydWvP9e6utwssvrcEvHtv1+HY51PrjGlXlBrlzTxWvjXc2TPnlxJFvlNZY/P7dv/HWYHnfL63Cs5XVY+j2l5HU4tobXYXOb07ev7WeWsZZ/yo5h9e8FG1uDW1rWYOfPI51rsN8/jwzKGpwM6+I7t6/+vWBbON7Hp9f788joijWYHm5472lekn7en9yXj7J1eWPziqsnsnOL82fuevjw2bNndmZhXBEvaVkrnet1c8tjylas15F1r9cDCzc9fmPJ5VvCuZq8s/mvyVWfq+Y2d9/V/bnKv7uVn8+2S3dlYfTZlT6fZd/Nm+dzIss++41HH/jaI5993arns5k3Pzaz8Z/FUy5tef8dX+X9N+b+XxT7S3f12Oj4WPH6HU1nZ7zt/bj9qRrL37sa+b6fm1nb+/F4+OdKvx9f1+X9eGvHtv1+Px7vfHDx/bjR6087Nqbz+ZwM6+T4bPf34+Y2W3etd02OdX0/viXMRjj/rwpJIeWilrWz2rpN+xobGw+PayzuoX2d7m7bfjxks+a+ntx1aev0tluK+xpNj27ZlVqnUx3b9nudpj/7Wm2dNnr96dul6Xw+J8O6uG5393Xa3Obpuzf+3nlV/M+W986JXmtwfHSieczjaRHm7/fZ0lVxDd6VHclOZcezufzaiXw9NfJ9Td+ztjU4Ef650u+VW7uswds6tu33Gkzfx1Zbe42xlQ++Dzqfz8mwLp64p/sabG7z+r39/dn1tnBJ2qblZ9fOP19b7c+8buw4TZdrrYyF4/zG3u5/Ntvc5vi+9ebM7ufpjnDJ1SXnqfP1u9prai67MudpazjOZ/etfp6ax9Pc5jP717ieDmRZdv5D9+V/3hv+fuVvzn37y21/71L2dzrnP3TfD1949B/Wc/wADL9fFGNz8b2u5W+m1vL3/wAAAMBQiLl/JMxE/gcAAIDKiLk//l/hifwPAAAAlRFz/1iYSU3y/9bXP7vwi/NZauYvBfH6dBruL7aLHdfZ8PXU0rLm5fd9cf4nf39+bfseybLsZ/f/Xun2W++Px1WYCsf51BvaL1/hy3euad+HHjqf9tvaX/9cuP/4eNa6DMoquLNZln312k/l+5l678V8Pn3/oXw+cOHxx5rbPLe/+Dre/pmXFNv/WSj/Hjh6uO32z4Tz8P0wZ99Sfj7i7b508VXb9r57eX/xdo3t1+QP+4n3Ffcbf0/Opx8rto/nebXj/9onn/xSc/uHX1F+/OdHyo//yXC/Xwzzf15WbN/6HDS/jrf7eDj+uL94u7u+8PXS43/qE8X2p99YbHcozLj/28LXO9747ELr+Xq4cbjtcWVvKraL+5/99h/m18f7i/ffefyTBy+2nY/O9fH0vxX3M9Oxfbw87if6u479N++ndX3G/T/5B4faznOv/T/1wDMva95v5/7v6Nju9Iduz/e/fH/tv7Hpzz/+qdL9xeM58Nen2x7PgXeG13HY/xPvC+sxXP+/TxX31/nbFQ69s/39J27/uS3n2x5P9OYfF/t/6jXH8rlp8qrNV7/ghddceHnz3GXZtzYV99dr/8f+4lTb8X/++uJ8xOtjR79z/6uJ+z/z4emTpxbPLcyls/rItfnvznlrcTzxeK8N762dXx88dfb982emZqdms2yqur9C75J9IcwfFuNC962XVryD3v5QeD5v/NOvbr71Xz8ZL//3dxWXX3xL8X3rlWG7T4fLt4Tnb337X+mJm6/PX9+Np8MRLq38fcEbsW3Hf+1b04bh8Xf+XBDX++mXvj8/D83r8u8b8XW9weP/7lxxP18J53Up/Gbm7dcv7691+/i7ES4+WLzeN3z+wttcfF7/Kjzfb/t+cf/xuOLj/W74OebrW9vf7+L6+Mr5kc77z3+Lx4XwfpJdKK6PW8XzffG560sPL/4ekuzCDfnXf5Tu54Z1PczVLH5kceb4wslzD8+cnV88O7P4kY8ePHHq3MmzB/Pf5XnwA71uv/z+tDl/f5qb33N3lr9bnSrGZfZ8H//ph47M7Z29dW7+6OFzR88+dHr+zLEji4tH5ucWbz189Oj8h3vdfmHu3p279u/eu2v62MLcvfv279+9f3rh5KnmYRQH1cOe2Q9OnzxzML/J4r137995zz13z06fODU3f+/e2dnpc71un39vmm7e+nenz8wfP3x24cT89OLCR+fv3bl/z55dLb8N8Celtz9x+uji1MyZcydnzi3On5kpHsvU2fzi5ve+Xvunmhb/o/h5tlOj+EV82Tvu2JN+P2vTFx9d9a6KTTp+geiz4XfR/NOLTu9by9cx94+HmdQk/wMAAEAdxNw/EWYi/wMAAEBlxNy/KcxE/gcAAIDKiLl/MsykJvm/cv3/refXtH/9f/3/1vOl/1+z/v+Dg9b/L94v9P/7Y6P9e/3/QP9f/1//X/9/1f5/Of1/ygxa/z/m/quyrJb5HwAAAOog5v7NYSbyPwAAAFRGzP1Xh5nI/wAAAFAZMfe/IMykJvlf/1//X/9f/1//v3z/+v/DSf+/O/3/HvT/Z7J69f8v9PP49f/1/1lp0Pr/Mfe/MMykJvkfAAAA6iDm/mvCTOR/AAAAqIyY+68NM5H/AQAAoDJi7t8SZlKT/K//r/+v/6//r/9fvn/9/+Gk/9+d/n8P+v8+/1//X/+fvhq0/n/M/S8KM6lJ/gcAAIA6iLn/xWEm8j8AAAAMnrFLu1nM/S8JM1mR/y9xBwAAAMDzLub+67KOInhN/v5f/1//f/D7/5vSdfr/+v/ZQPb/RzP9/8Gh/9+d/n8P+v/6//r/+v/01aD1//Pcn01mLw0zqUn+BwAAgDqIuf/6MBP5HwAAACoj5v7/F2Yi/wMAAEBlxNy/NcykJvlf/1//f/D7/z7/X/9/0Pv/Pv9/kOj/d6f/34P+v/6//r/+P301aP3/mPtvCDOpSf4HAACAOoi5/8YwE/kfAAAAKiPm/v8fZiL/AwAAQGXE3L8tzKQm+V//f8D7/7E5qv+v/6//r/+v/78m+v/d6f/3oP+v/6//r/9PXw1a/z/m/peFmdQk/wMAAEAdxNx/U5iJ/A8AAACVEXP/y8NM5H8AAACojJj7p8JMapL/9f8HvP9f9OAnfP6//r/+v/6//v/a6P93p//fg/6//n9f+v9L5/X/9f8pDFr/P+b+m8NMapL/AQAAoA5i7t8eZiL/AwAAQGXE3H9LmIn8DwAAAJURc/+OMJOa5H/9/6Ho/2f6//r/+v/6//r/a6P/353+fw/6//r/Pv9f/5++GrT+f8z9rwgzqUn+BwAAgDqIuf/WMBP5HwAAACoj5v5XhpnI/wAAAFAZMfffFmZSk/yv/6//r/+v/6//X75//f/hpP/fnf5/D/r/+v/6//r/9NWg9f9j7n9VmElN8j8AAADUQcz9t4eZyP8AAABQGTH33xFmIv8DAABAZcTcPx1mUpP8r/+v/6//r/+v/7/8HOr/Dz/9/+70/3vQ/9f/1//X/6evBq3/H3P/nWEmNcn/AAAAUAcx998VZiL/AwAAQGXE3D8TZiL/AwAAQGXE3D8bZlKT/K//r/+v/6//v67+/8uX77dK/f+y/ev/Dyf9/+70/3vQ/9f/f977/+P6/1TKoPX/Y+7fGWZSk/wPAAAAdRBz/64wE/kfAAAAKiPm/t1hJvI/AAAAVEbM/XeHmdQk/+v/6//r/+v/+/z/8v3r/w8n/f/u+t//jw9R/1//X//f5//r/7PSoPX/Y+6/J8ykJvkfAAAA6iDm/j1hJvI/AAAAVEbM/XvDTOR/AAAAqIyY+/eFmdQk/+v/6//r/+v/6/+X71//fzjp/3fn8/970P/X/9f/1/9ngx78/davLq3/P1F2x33p/8fcvz/MpCb5HwAAAOog5v5Xh5nI/wAAAFAZMff/Uj7/efkK+R8AAAAqo8j9k9kvh5nUJP/r/7d1z5sPV/9f/1//X/8/p/8/nPT/u9P/70H/X/9f/1//n75atf8fond5/79UX/r/MfffG2ZSk/wPAAAAdRBz/6+Emcj/AAAAUBkx978mzET+BwAAgMqIuf9AmElN8r/+v8//1//X/9f/L9//le7/x0+61f/fGP3/7vT/e9D/1//X/9f/p68u7fP/S/Wl/x9z/2vDTGqS/wEAAKAOYu6/L8xE/gcAAIDKiLn/dWEm8j8AAABURsz9rw8zqUn+1//X/9f/1//X/y/fv8//H076/93p//eg/6//r/+v/09fDVr/P+b+N4SZ1CT/AwAAQB3E3P/GMBP5HwAAACoj5v43hZnI/wAAAFAZMfe/OcykJvlf/1//X/9f/1//v3z/+v/DSf+/O/3/HvT/9f/1//X/6atB6//H3P+rYSY1yf8AAAAwlCbXt3nM/fd33lj+BwAAgMqIuf8tYSbyPwAAAFRGzP1vDTOpSf7X/9f/1//X/9f/L9+//v9w0v/vbsj6/z+/Jlyu/1/Q/x/s419v/3+s4+vL0v//3mr9/6VNnbfX/+dyGLT+f8z9bwszqUn+BwAAgDqIuf/tYSbyPwAAAFRGzP3vCDOR/wEAAKAyYu7/tTCTmuR//f/mcSy3l/X/q9r/H9H/H7z+/99+J8v0//X/+07/v7sh6//7/P8O+v+Dffw+/1//n5UGrf8fc/87w0xqkv8BAACgDmLufyDMRP4HAACAyoi5/8EwE/kfAAAAKiPm/neFmdQk/+v/+/z/evT/ff5/Nnj9f5//33JW9f/7R/+/O/3/HvT/9f8Hrf//n/r/DLdB6//H3P9QmElN8j8AAADUQcz97w4zkf8BAACgMmLu//UwE/kfAAAAKiPm/veEmdQk/+v/D0v/f2pI+/+P6v9fxv7/TdcU2+n/6/+zTP+/O/3/HvT/9f8Hrf/v8/8ZcoPW/4+5/71hJmvP/5Nr3hIAAAB4XsTc/xthJjX5+38AAACog5j7fzPMRP4HAACAyoi5/7fCTGqS//X/h6X/7/P/M/1/n//f8Xj0//X/y1y5/n9859H/1//X/4/0//X/9f/pNGj9/5j7fzvMpCb5HwAAAOog5v73hZnI/wAAADAUyv6f7E4x9x8MM5H/AQAAoDJi7j8UZlKT/K//v4b+/6be96f/3378+v/l62Nd/f8/2f4v3/nm2w/t1P/X/9f/X5cr+vn/zRe/z//X/9f/T/T/9f/1/+k0aP3/mPsPh5nUJP8DAABAHcTc/zthJvI/AAAAVEbM/UfCTOR/AAAAqIyY++fCTGqS//X/ff6//v+A9v+H+PP/4/nQ/2/Xt/5/fNPV/y9V9O/TKrq8/f93L/fE9f/X2/+fKL1U/1//f5iPX/9f/5+VBq3/H3P/fJhJTfI/AAAA1EHI/SNHi7l8hfwPAAAAlRFz/7EwE/kfAAAAKiPm/veHmdQk/+v/6//r/+v/+/z/8v136/83xnz+/6BK/fuf5i8U/f8Og9P/L6f/r/8/zMev/6//z0qD1v+PuX8hzKQm+R8AAADqIOb+D4SZyP8AAABQGTH3fzDMRP4HAACAyoi5/3iYSU3yv/7/8PX/47b6//r/+v81/fx//f+uNtq/1/8P9P/r3f//b/1//X/9f/pj0Pr/MfefCDP5P/bu5MnWur7j+Onkktu3yCKLVGWRTaqyzDJLFsk6+QOyyCabVFkucEDFmYvziKLirAjOAw4giKjgPIATijOoOM8DDiBKXYvu7/fb09Pn9HC6+3l+v9drwRcbmnOgbjV8bt+3Tyf7HwAAAHqQu//CuMX+BwAAgGbk7n9Y3GL/AwAAQDNy9z88bulk/+v/D9P/b1TKnv+/9f2Pov//D/3/bq+v/9f/t0z/P5/+fwH9v+f/6//1/yzV2Pr/3P2PiFs62f8AAADQg9z9j4xb7H8AAABoRu7+i+IW+x8AAACakbv/UXFLJ/t/W/+/Muuz/8+MdxLP/9f/e/6//n+d/l//P+R4+/9LH/zKp//X/+v/g/5/T/3/6d0+X/9Pi8bW/+fuf3Tc0sn+BwAAgB7k7n9M3GL/AwAAQDNy918ct9j/AAAA0Izc/Y+NWzrZ/8t7/v+ZtY9PtP8v+n/9/9oH9P/6f/3/ZHn+/3w99f8X3XH+hffc8M837uf19f/6f8//1/+zXGPr/3P3Py5u6WT/AwAAQA9y9z8+brH/AQAAoBm5+58Qt9j/AAAA0Izc/U+MWzrZ/8vr/yf9/P+i/9f/r31A/6//1/9Plv5/vp76/4O8vv5f/6//1/+zXGPr/3P3Pylu6WT/AwAAQA9y9z85brH/AQAAoBm5+y+JW+x/AAAAaEbu/rNxSyf7X/9/9P3/A/p//X9c/b/+X/9/9PT/8+n/F9D/6//1//p/lmps/X/u/kvjlk72PwAAAPQgd/9T4hb7HwAAAJqRu/+pcYv9DwAAAM3I3f+0uKWT/a//9/x//b/+X/8//Pr6/2nS/8+n/19A/3/Yfv48/b/+X//PZvvs/++f82V7Kf1/7v6nxy2d7H8AAADoQe7+Z8Qt9j8AAAA0I3f/M+MW+x8AAACakbv/WXFLJ/tf/6//1//r/w/c/+/8obdG/z9M/3889P/zjab/Xzk1+GH9/+T7f8//1//r/9libM//z93/7Lilk/0PAAAAPcjd/5y4Zc7+3/dP5gMAAAAnKnf/c+MW3/8HAACAycvqLHf/8+KWTva//l//r//X/3v+//Drz+v/b9z0/vT/46L/n280/f8u9P/6/ym/f/2//p+dxtb/5+5/ftzSyf4HAACAHuTuvyxusf8BAACgGbn7XxC32P8AAADQjNz9L4xbOtn/w/3/xh/X/++N/n/r+9f/D//4WFb/n39F/f/c/v8/Pf+/T/r/+Y6//z+t/9/61z9g/7/+FUf/P+7333j/f2bR5+v/GTK2/j93/+VxSyf7HwAAAHqQu/9FcYv9DwAAAM3I3f/iuMX+BwAAgEn793/caMFy978kbulk/3v+v/5f/z+9/t/z/9ed5PP/Z8fe/5/S/++R/n8+z/9fYLT9/zr9/7jff+P9v+f/cyBj6/9z918Rt3Sy/wEAAKAHV9w3W9v9L53N7H8AAACYos2/dmD7LygNuftfFrfY/wAAANCM3P0vj1s62f/6f/2//l//r/8ffv1x9f+e/79Xk+7/T238rv5f/z9kov3/qcb6/yt3+/wx9P+X6P8ZmS39/80bHz+p/j93/yvilk72PwAAAPQgd/8r4xb7HwAAAJqRu/9VcYv9DwAAAM3I3f/quKWT/X/k/f+Z3V9b/6//1//r//X/+v9lm3T/7/n/+v82+3/P//f8f/1/xzb6/61fD0+q/8/d/5q4pZP9DwAAAD3I3f/auMX+BwAAgGbk7r8ybrH/AQAAoBm5+18Xt3Sy/z3/X/+v/9f/6/+HX1//P036//n0/wvo//X/+n/9P0u15fn/m5xU/5+7/6q4pZP9DwAAAD3I3X913GL/AwAAQDNy978+brH/AQAAoBm5+98Qt3Sy//X/R9v/58f1//r/mf5f/6//Pxbd9v8rQ/8m2mmX/v+2h5z9760f0f/r//X/+n/9P0swiv7/3MZ/Xebuf2Pc0sn+BwAAgB7k7n9T3GL/AwAAQDNy9785brH/AQAAoBm5+98St+xz///DUt/V8dH/e/6//l//r/8ffn39/zR12//vkef/L6D/1//r//X/LNWR9P/3bnxx3+/z/3P3vzVu8f1/AAAAaEbu/rfFLfY/AAAANCN3/9vjFvsfAAAAmpG7/x1xSyf7X/+v/9f/6//1/8Ovf9D+f3U2TP9/PPT/8+n/F9D/6//1//p/lupI+v9N9tv/5+6/Jm7pZP8DAABAD3L3vzNusf8BAACgGbn73xW32P8AAADQjNz9745bOtn/+n/9v/5f/6//H359z/+fJv3/fPr/2Wx27Zw3MNT/nzut/9f/6//1/xzQ2Pr/3P3viVs62f8AAADQg9z918Yt9j8AAAA0I3f/dXGL/Q8AAADNyN3/3rilk/2v/9f/6//1//r/4dfX/0+T/n8+/f8Cnv9/2H7+nP5f/6//Z7Ox9f+5+6+PWzrZ/wAAANCD3P03xC32PwAAADQjd//74hb7HwAAAJqRu//GuKWT/a//1//r//X/R9L/n9X/b6f/Px5H1//P9P/6f/3/Ap7/r//X/7PdcfX/98fX+0X9f+7+98ctnex/AAAA6EHu/pviFvsfAAAAmpG7/wNxi/0PAAAAzcjd/8G4pZP9r//X/+v/9f+e/z/8+vr/afL8//n0/wvo//X/+n/9P0t1XP3/br3/9v+du/9DcUsn+x8AAAB6kLv/5rjF/gcAAIBm5O6/JW6x/wEAAKAZufs/HLd0sv/1//r/rf3/bKb/1//r/9cdQ/+/OtP/L53+fz79/wL6/zb7/7+ZNdT/n9n18/X/jNHY+v/c/R+JWzrZ/wAAANCD3P0fjVvsfwAAAGhG7v6PxS32PwAAADQjd//H45aW9v8Du6dv0+//T2/7RP3/bDa782LP/9f/z3l9/f9o+v/6p6r/Xx79/3z6/wX0/232/57/r//nxIyt/8/d/4m4paX9DwAAAJ3L3f/JuMX+BwAAgGbk7v9U3GL/AwAAQDNy9386bulk/2/p/+/dCM/yj4+//9/+ifr/2aGe/6//X/uA/l//r/+frMP291etxr/T9P/6f/3/YD+/sst/98z0//p//T8Dxtb/5+7/TNzSyf4HAACAHuTuvzVusf8BAACgGbn7b4tb7H8AAABoRu7+z8Ytnez/6T//f/sn6v9n+v8u+v9V/b/+X/8/aCzP/7/ggv+6Xf+v/2+x/59H/6//1/+z3dj6/9z9n4tbOtn/AAAA0IPc/Z+PW+x/AAAAaEbu/i/ELfY/AAAANCN3/xfjlk72/87+/7zZeqG6bqj/j0ZN/7+J/n/r+9f/D//48Px//b/+/+iNpf/3/P+DvX/9v/5/yu9/X/3/v+z8fP0/LRpb/5+7//a4pZP9DwAAAD3I3f+luMX+BwAAgGbk7v9y3GL/AwAAQDNy998Rt3Sy/z3/X/+v/9f/6/+HX1//P036//n0/wvo/w/fz+dXVf3/dJ///7f6f5ZnbP1/7v6vxC1rw+9f//6Af5sAAADAiOTu/2rc0sn3/wEAAKAHufu/FrfY/wAAANCM3P1fj1s62f/6f/2//l//r/8ffn39/zTp/+fT/y/QT/+/OvTBk+7nD+uk338z/b/n/7NEY+v/c/d/I27pZP8DAABA2+5b+23u/m/GLfY/AAAANCN3/7fiFvsfAAAAmpG7/864pZP9r//X/7ff//+f/n/b6+v/9f8t0//nv9GH6f8X6Kf/H3TS/fzU33/1/+dO6//1/4Sx9f+5+++KWzrZ/wAAANCD3P3fjlvsfwAAAGhG7v7vxC32PwAAADQjd/9345ZO9r/+v6/+f2XWY//v+f+t9P+r2/5+9P/6/yHT6f+vPjX0Uc//1//r/6f7/j3/X//PTmPr/3P3371yqsv9DwAAAFP1P//20Lv2+ufevfbb1dn34hb7HwAAAJqRu//7cYv9DwAAAM3I3f+DuKWT/a//76v/7/P5//r/Vvp/z//X/+/FdPr/Yfp//b/+f7rvX/+v/2ensfX/uft/GLdsGn6D/wc9AAAAwMn5u/396bn7fxS3dPL9fwAAAOhB7v4fxy079v+5Pf6qdgAAAGBscvf/JG7p5Pv/+v+R9/+zI+r/48/T/6/T/+v/h15f/z9N+v/5Dtn/n1vR/+v/59D/6//1/2w3tv4/d/9N18+63P8AAADQqC0/o/DTtd+uzn4Wt9j/AAAA0Izc/T+PW+x/AAAAaEbu/l/ELZ3sf/3/yPv/Az3//0z9nuf/d97/X7Y6+Pr6f/1/y/T/83n+/wL6f/2//l//z1Lto/9fG6RH3f/n7v9l3NLJ/gcAAIAe5O7/Vdxi/wMAAEAzcvf/Om6x/wEAAKAZuft/E7d0sv/1/yfQ/19+ejY70v5/D8//1//30f/v8vrt9P//dP7ZW//3/6+7Rv/PhuPs//PHgv5f/6//X6f/1//r/9lubM//z93/27ilk/0PAAAAPcjdf0/cYv8DAABAM3L3/y5ueXD/33JS7woAAABYptz9v49bOvn+v/6/xef/T7P/z3/WJ9D/n51e/59Nce/9v+f/6/938vz/+fT/C+j/9f/6f/0/SzW2/j93/x/ilk72PwAAAPQgd/8f45bc/yv7/ql7AAAAYGRy998bt/j+PwAAADQjd/99cUsn+1//r/8fS/+fPP9/4/M8/3+d/l//vx/6//n0/wvo//X/+n/9P0s1tv4/d/+f4pZO9j8AAAD0IHf//XGL/Q8AAADNyN3/57jF/gcAAIBm5O7/S9zSyf7X/+v/9f/6f/3/8Ovr/6dJ/z+f/n8B/b/+X/+v/2epxtb/5+7/awAAAP//Tx5w3g==") mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 1m7.515275512s ago: executing program 0 (id=13436): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000050c0)={&(0x7f0000000040)=ANY=[@ANYBLOB="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"], 0x154}}, 0x0) 1m6.565448054s ago: executing program 3 (id=13442): r0 = socket(0x400000000010, 0x3, 0x0) write(r0, &(0x7f0000000040)="0f03000019002551075c0165ff0ffc02802000030004000500e1000c040007001a000200", 0x33a) 1m6.540333278s ago: executing program 2 (id=13443): r0 = openat$binderfs(0xffffffffffffff9c, &(0x7f0000000040)='./binderfs/binder0\x00', 0x0, 0x0) ioctl$BINDER_GET_NODE_INFO_FOR_REF(r0, 0xc018620c, 0x0) 1m6.407311695s ago: executing program 1 (id=13444): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$IOMMU_VFIO_GET_API_VERSION(r0, 0x3b64) 1m6.196843772s ago: executing program 2 (id=13445): r0 = syz_open_dev$sndpcmp(&(0x7f0000002440), 0x0, 0x0) ioctl$SNDRV_PCM_IOCTL_STATUS64(r0, 0xc0984124, 0x0) 1m6.153018347s ago: executing program 3 (id=13446): r0 = socket$inet_sctp(0x2, 0x5, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_BINDX_ADD(r0, 0x84, 0x64, &(0x7f0000000240)=[@in={0x2, 0x4e20, @multicast1}, @in={0x2, 0x4e20, @remote}, @in6={0xa, 0x4e1f, 0x5, @empty, 0x1}, @in={0x2, 0x4e23, @multicast1}], 0x3e) 1m6.088361256s ago: executing program 1 (id=13447): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000080)={0x1, &(0x7f00000003c0)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) sigaltstack(0x0, 0x0) 1m5.850686566s ago: executing program 2 (id=13448): r0 = openat$vicodec0(0xffffffffffffff9c, &(0x7f0000001f80), 0x2, 0x0) ioctl$VIDIOC_S_PARM(r0, 0xc0cc5616, &(0x7f0000001fc0)={0x9, @output={0x0, 0x0, {0x1, 0x6}, 0x10, 0x4}}) 1m5.800010803s ago: executing program 1 (id=13449): r0 = socket$netlink(0x10, 0x3, 0x14) sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f00000015c0)={0x0, 0x0, &(0x7f0000001580)={&(0x7f0000000000)={0x14, 0x4, 0x8, 0x5, 0x0, 0x0, {0xa, 0x0, 0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x4048000}, 0x10000) 1m5.792721464s ago: executing program 3 (id=13450): r0 = socket$inet(0x2, 0x1, 0x0) setsockopt$SO_ATTACH_FILTER(r0, 0x1, 0x33, &(0x7f00000a2000)={0x1, &(0x7f00000002c0)=[{0x6}]}, 0x10) 1m5.58929962s ago: executing program 0 (id=13451): syz_mount_image$fuse(0x0, &(0x7f0000000a40)='./file0\x00', 0x1800040, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000009f40)='./file0\x00', &(0x7f0000009f80), 0x1, &(0x7f0000000000)={[{@metacopy_off}, {@verity_on}]}) 1m5.487683873s ago: executing program 1 (id=13452): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f00000002c0), 0x0, 0x0) ioctl$FBIOPUT_VSCREENINFO(r0, 0x4601, &(0x7f0000000800)={0x140, 0x600, 0x60, 0x344, 0x0, 0xf0000000, 0x1, 0x0, {0xe1, 0x5}, {0xf, 0x9, 0x1}, {0x62, 0x6}, {0x5, 0xa44a, 0x1}, 0x1, 0x2, 0x5, 0x1, 0x1, 0x2, 0x4, 0xffffffff, 0xb38b, 0x3, 0x65f7, 0x401, 0x38, 0x4, 0x3, 0x5}) 1m5.471870575s ago: executing program 2 (id=13453): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) getsockopt$inet6_tcp_buf(r0, 0x6, 0x1f, 0x0, &(0x7f0000000080)) 1m5.425327831s ago: executing program 3 (id=13454): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x1, 0x0) setsockopt$bt_BT_POWER(r0, 0x112, 0x9, &(0x7f00000008c0)=0x6, 0x1) 1m5.113512171s ago: executing program 2 (id=13455): r0 = openat$drirender128(0xffffffffffffff9c, &(0x7f0000000000), 0x80000, 0x0) sendfile(0xffffffffffffffff, r0, &(0x7f00000002c0)=0xffffffffffffff01, 0x8) 1m5.105266542s ago: executing program 1 (id=13456): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) getsockopt$bt_rfcomm_RFCOMM_CONNINFO(r0, 0x12, 0x2, 0x0, 0x0) 1m5.054213189s ago: executing program 3 (id=13457): r0 = syz_open_procfs(0x0, &(0x7f0000000000)='net/dev\x00') preadv(r0, &(0x7f0000000040)=[{&(0x7f0000000140)=""/4096, 0x1000}], 0x1, 0x2000, 0x9) 1m4.714569423s ago: executing program 2 (id=13458): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="2e00000010008188040f80ec59acbc040ca1800004000000000000000010003a0e0040000f001e0bbc82a91401eb", 0x2e}], 0x1}, 0x0) 1m4.652301861s ago: executing program 1 (id=13459): r0 = syz_open_dev$video4linux(&(0x7f0000000600), 0x4, 0x141080) ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000200)={0x140000000, 0x8, "9a03c424212914afa5386a62bce48a91e9aba29c32dd4f0fb566200ad0b77b38", 0x8000000000000000, 0x7, 0xaeda, 0x100, 0x2, 0x101, 0x1, 0x1000, [0x4, 0x5, 0xff, 0xfffffffb]}) 1m3.083462673s ago: executing program 3 (id=13460): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8b20, &(0x7f0000000040)={'virt_wifi0\x00', @broadcast}) 58.183840105s ago: executing program 0 (id=13461): r0 = syz_open_dev$usbfs(&(0x7f0000000080), 0x76, 0x109301) ioctl$USBDEVFS_BULK(r0, 0xc0185502, &(0x7f0000000180)={{{0x1, 0x1}}, 0x1f, 0x6, 0x0}) 48.306100769s ago: executing program 0 (id=13462): r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/151, 0x97}], 0x1) 43.72748918s ago: executing program 32 (id=13459): r0 = syz_open_dev$video4linux(&(0x7f0000000600), 0x4, 0x141080) ioctl$VIDIOC_QUERY_EXT_CTRL(r0, 0xc0e85667, &(0x7f0000000200)={0x140000000, 0x8, "9a03c424212914afa5386a62bce48a91e9aba29c32dd4f0fb566200ad0b77b38", 0x8000000000000000, 0x7, 0xaeda, 0x100, 0x2, 0x101, 0x1, 0x1000, [0x4, 0x5, 0xff, 0xfffffffb]}) 32.743284077s ago: executing program 33 (id=13458): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000080)="2e00000010008188040f80ec59acbc040ca1800004000000000000000010003a0e0040000f001e0bbc82a91401eb", 0x2e}], 0x1}, 0x0) 13.417842759s ago: executing program 34 (id=13460): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000b40)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8b20, &(0x7f0000000040)={'virt_wifi0\x00', @broadcast}) 0s ago: executing program 35 (id=13462): r0 = openat$yama_ptrace_scope(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) readv(r0, &(0x7f0000000280)=[{&(0x7f0000000040)=""/151, 0x97}], 0x1) kernel console output (not intermixed with test programs): T5775] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1580.754511][ T5775] usb 3-1: Product: syz [ 1580.769880][ T5775] usb 3-1: Manufacturer: syz [ 1580.774556][ T5775] usb 3-1: SerialNumber: syz [ 1581.048239][ T5775] usb 3-1: No endpoint at altset 1, falling back to MIDI 1.0 [ 1581.081158][ T5775] usb 3-1: MIDIStreaming interface descriptor not found [ 1581.177543][ T5489] netlink: 16 bytes leftover after parsing attributes in process `syz.3.12007'. [ 1581.187321][ T5775] usb 3-1: USB disconnect, device number 46 [ 1581.353950][ T6696] udevd[6696]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1581.787211][ T5534] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12015'. [ 1582.037501][ T5546] delete_channel: no stack [ 1582.593625][ T5582] netlink: 'syz.2.12028': attribute type 10 has an invalid length. [ 1582.727960][ T5582] batman_adv: batadv0: Adding interface: team0 [ 1582.763817][ T5582] batman_adv: batadv0: The MTU of interface team0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 1582.799738][ T5582] batman_adv: batadv0: Not using interface team0 (retrying later): interface not active [ 1583.076750][ T5611] loop2: detected capacity change from 0 to 8 [ 1583.094291][ T5611] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1583.121854][T20159] udevd[20159]: incorrect cramfs checksum on /dev/loop2 [ 1583.139340][ T5611] cramfs: Error -3 while decompressing! [ 1583.159549][ T5611] cramfs: ffffffff973d9368(26)->ffff888041f5a000(4096) [ 1583.177189][ T5611] cramfs: Error -3 while decompressing! [ 1583.182925][ T5611] cramfs: ffffffff973d9382(26)->ffff8880417d3000(4096) [ 1583.192265][ T5611] cramfs: Error -3 while decompressing! [ 1583.203208][ T5611] cramfs: ffffffff973d939c(16)->ffff888047b64000(4096) [ 1583.217197][ T5611] cramfs: Error -3 while decompressing! [ 1583.233918][ T5611] cramfs: ffffffff973d9368(26)->ffff888041f5a000(4096) [ 1583.335572][T28677] usb 2-1: new high-speed USB device number 42 using dummy_hcd [ 1583.416280][ T5626] loop3: detected capacity change from 0 to 256 [ 1583.506020][ T5626] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xd67973f8, utbl_chksum : 0xe619d30d) [ 1583.576777][T28677] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 1583.601816][T28677] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1583.629805][ T5626] exFAT-fs (loop3): error, found bogus dentry(12) beyond unused empty group(11) (start_clu : 5, cur_clu : 5) [ 1583.644303][T28677] usb 2-1: config 0 descriptor?? [ 1583.668658][ T5626] exFAT-fs (loop3): Filesystem has been set read-only [ 1584.142348][T28677] usb 2-1: Cannot set MAC address [ 1584.147622][T28677] MOSCHIP usb-ethernet driver: probe of 2-1:0.0 failed with error -71 [ 1584.189853][T28677] usb 2-1: USB disconnect, device number 42 [ 1584.505876][ T5681] loop2: detected capacity change from 0 to 1024 [ 1584.549192][ T5681] EXT4-fs: Ignoring removed mblk_io_submit option [ 1584.577071][ T5681] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 1584.628695][ T5681] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1584.686871][ T5689] loop3: detected capacity change from 0 to 764 [ 1584.720931][ T5773] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1584.885701][ T5694] netlink: 48 bytes leftover after parsing attributes in process `syz.0.12058'. [ 1585.109232][ T5701] xt_TCPMSS: Only works on TCP SYN packets [ 1585.633709][ T5913] usb 4-1: new high-speed USB device number 49 using dummy_hcd [ 1585.853968][ T5913] usb 4-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 1585.883476][ T5913] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1585.918371][ T5913] usb 4-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 1585.937852][ T5913] usb 4-1: config 1 has no interface number 1 [ 1585.955146][ T5913] usb 4-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1585.981476][ T5913] usb 4-1: config 1 interface 2 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1586.008693][ T5913] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1586.025647][ T5913] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1586.067483][ T5913] usb 4-1: Product: syz [ 1586.071739][ T5913] usb 4-1: Manufacturer: syz [ 1586.076388][ T5913] usb 4-1: SerialNumber: syz [ 1586.123826][ T5754] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING [ 1586.309787][ T5776] loop1: detected capacity change from 0 to 256 [ 1586.350573][ T5913] usb 4-1: No endpoint at altset 1, falling back to MIDI 1.0 [ 1586.393772][ T5913] usb 4-1: MIDIStreaming interface descriptor not found [ 1586.437950][ T5776] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1586.529096][ T5913] usb 4-1: USB disconnect, device number 49 [ 1586.539043][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.592989][ T5776] FAT-fs (loop1): Filesystem has been set read-only [ 1586.632229][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.656554][ T6696] udevd[6696]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1586.687786][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.712765][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.743449][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.782569][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.810453][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.850855][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.862235][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.871254][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.882850][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.901771][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.921895][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.941896][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1586.983806][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.010138][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.022754][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.031421][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.040619][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.049716][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.061601][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.080598][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.101469][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.126041][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.157559][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.190710][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.227494][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.259421][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.295343][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.342752][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.407469][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.445757][ T5877] netlink: 132 bytes leftover after parsing attributes in process `syz.2.12085'. [ 1587.455202][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.463785][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.500158][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.509030][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.517800][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.526490][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.535428][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.544369][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.564192][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.572873][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.660393][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.690323][ T5886] netlink: 'syz.2.12089': attribute type 11 has an invalid length. [ 1587.699899][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.722948][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.742973][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.757922][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.777864][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.797593][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.833946][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.842634][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.885834][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.907581][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.927884][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.948038][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.968400][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1587.988176][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.029164][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.037962][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.072612][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.104205][ T5895] netlink: 404 bytes leftover after parsing attributes in process `syz.3.12092'. [ 1588.117470][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.126100][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.144348][ T5895] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12092'. [ 1588.164835][ T5895] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12092'. [ 1588.174774][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.192001][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.200964][ T5895] netlink: 72 bytes leftover after parsing attributes in process `syz.3.12092'. [ 1588.221640][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.245138][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.265032][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.279940][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.305447][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.342419][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.362534][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.376589][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.396165][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.419078][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.427772][ T5776] FAT-fs (loop1): error, fat_bmap_cluster: request beyond EOF (i_pos 196) [ 1588.476853][ T28] audit: type=1800 audit(1768823227.583:352): pid=5776 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.12078" name="file1" dev="loop1" ino=1048673 res=0 errno=0 [ 1588.734066][ T1280] ieee802154 phy0 wpan0: encryption failed: -22 [ 1588.740452][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1589.015325][ T5928] netlink: 132 bytes leftover after parsing attributes in process `syz.0.12101'. [ 1589.492346][ T5953] netlink: 168 bytes leftover after parsing attributes in process `syz.2.12109'. [ 1590.386964][ T6005] A link change request failed with some changes committed already. Interface veth0_to_bond may have been left with an inconsistent configuration, please check. [ 1591.341955][ T28] audit: type=1326 audit(1768823230.231:353): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.2.12142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30cb9acb9 code=0x7ffc0000 [ 1591.438570][ T28] audit: type=1326 audit(1768823230.259:354): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.2.12142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30cb9acb9 code=0x7ffc0000 [ 1591.622159][ T6065] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12148'. [ 1591.649112][ T28] audit: type=1326 audit(1768823230.259:355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.2.12142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=117 compat=0 ip=0x7fe30cb9acb9 code=0x7ffc0000 [ 1591.726443][ T28] audit: type=1326 audit(1768823230.259:356): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6055 comm="syz.2.12142" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30cb9acb9 code=0x7ffc0000 [ 1592.223622][ T5775] usb 2-1: new high-speed USB device number 43 using dummy_hcd [ 1592.236824][ T6093] loop2: detected capacity change from 0 to 256 [ 1592.324914][ T6093] FAT-fs (loop2): Directory bread(block 64) failed [ 1592.342591][ T6093] FAT-fs (loop2): Directory bread(block 65) failed [ 1592.360091][ T6093] FAT-fs (loop2): Directory bread(block 66) failed [ 1592.375524][ T6093] FAT-fs (loop2): Directory bread(block 67) failed [ 1592.415262][ T6093] FAT-fs (loop2): Directory bread(block 68) failed [ 1592.447542][ T6093] FAT-fs (loop2): Directory bread(block 69) failed [ 1592.457816][ T6093] FAT-fs (loop2): Directory bread(block 70) failed [ 1592.469534][ T5775] usb 2-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 1592.483785][ T5775] usb 2-1: New USB device strings: Mfr=241, Product=2, SerialNumber=3 [ 1592.494592][ T6093] FAT-fs (loop2): Directory bread(block 71) failed [ 1592.501394][ T6093] FAT-fs (loop2): Directory bread(block 72) failed [ 1592.516209][ T5775] usb 2-1: Product: syz [ 1592.520540][ T5775] usb 2-1: Manufacturer: syz [ 1592.525193][ T5775] usb 2-1: SerialNumber: syz [ 1592.542489][ T6093] FAT-fs (loop2): Directory bread(block 73) failed [ 1592.570259][ T5775] usb 2-1: config 0 descriptor?? [ 1592.594842][ T5775] ch341 2-1:0.0: ch341-uart converter detected [ 1592.611962][ T6063] loop3: detected capacity change from 0 to 32768 [ 1592.642498][ T6063] (syz.3.12147,6063,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1592.696219][ T6063] (syz.3.12147,6063,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1592.725526][ T6093] syz.2.12154: attempt to access beyond end of device [ 1592.725526][ T6093] loop2: rw=0, sector=1816, nr_sectors = 4 limit=256 [ 1592.750615][ T6093] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 326) [ 1592.761460][ T6093] FAT-fs (loop2): Filesystem has been set read-only [ 1592.773667][ T6063] (syz.3.12147,6063,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xcfdff595, computed 0xefed4a20. Applying ECC. [ 1592.788393][ T6093] FAT-fs (loop2): error, fat_free: invalid cluster chain (i_pos 326) [ 1592.816257][ T6063] JBD2: Ignoring recovery information on journal [ 1592.893309][ T6063] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1593.088184][ T5775] usb 2-1: failed to send control message: -71 [ 1593.103913][ T5775] ch341-uart: probe of ttyUSB0 failed with error -71 [ 1593.125242][ T5775] usb 2-1: USB disconnect, device number 43 [ 1593.147716][ T5775] ch341 2-1:0.0: device disconnected [ 1593.299953][ T5772] ocfs2: Unmounting device (7,3) on (node local) [ 1594.261511][ C0] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 1594.269775][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1594.430033][ T6183] sit0: left promiscuous mode [ 1594.601103][ T6183] 8021q: adding VLAN 0 to HW filter on device team0 [ 1594.611426][ T6183] batman_adv: batadv0: Interface activated: team0 [ 1594.633906][ T6183] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1594.830598][ T6190] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12181'. [ 1594.963658][ T6194] loop1: detected capacity change from 0 to 8 [ 1595.004768][ T6194] SQUASHFS error: zlib decompression failed, data probably corrupt [ 1595.016544][ T6194] SQUASHFS error: Failed to read block 0x9b: -5 [ 1595.029831][ T6194] SQUASHFS error: Unable to read metadata cache entry [99] [ 1595.056921][ T6194] SQUASHFS error: Unable to read inode 0x127 [ 1595.113532][ T6206] loop3: detected capacity change from 0 to 64 [ 1595.247243][ T6206] minix_free_block (loop3:21): bit already cleared [ 1595.281198][ T6211] netlink: 'syz.0.12185': attribute type 10 has an invalid length. [ 1595.289201][ T6211] netlink: 152 bytes leftover after parsing attributes in process `syz.0.12185'. [ 1595.298972][ T6206] Trying to free block not in datazone [ 1595.336325][ T6211] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check. [ 1596.436907][ T6260] loop3: detected capacity change from 0 to 4096 [ 1596.468030][ T6269] netlink: 'syz.0.12204': attribute type 2 has an invalid length. [ 1596.490264][ T6269] netlink: 'syz.0.12204': attribute type 1 has an invalid length. [ 1596.504121][ T6269] netlink: 'syz.0.12204': attribute type 1 has an invalid length. [ 1596.517038][ T6272] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1596.646060][T28677] usb 3-1: new high-speed USB device number 47 using dummy_hcd [ 1596.867686][T28677] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0 [ 1596.891650][T28677] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x2 has invalid maxpacket 0 [ 1596.938568][T28677] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1596.980255][T28677] usb 3-1: New USB device found, idVendor=0bfd, idProduct=010c, bcdDevice=2d.16 [ 1597.002980][T28677] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1597.043412][T28677] usb 3-1: Product: syz [ 1597.051330][T28677] usb 3-1: Manufacturer: syz [ 1597.056056][T28677] usb 3-1: SerialNumber: syz [ 1597.095259][T28677] usb 3-1: config 0 descriptor?? [ 1597.120614][T28677] kvaser_usb 3-1:0.0: Cannot get usb endpoint(s) [ 1597.394792][T28677] usb 3-1: USB disconnect, device number 47 [ 1597.788687][ T6330] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.12220'. [ 1598.092380][ T6307] loop1: detected capacity change from 0 to 32768 [ 1598.196923][ T6343] openvswitch: netlink: Actions may not be safe on all matching packets [ 1598.218470][ T6307] jfs_rename: dtInsert returned -EIO [ 1598.886688][ T6366] loop3: detected capacity change from 0 to 4096 [ 1598.916117][ T6366] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 1598.947505][ T6372] loop2: detected capacity change from 0 to 4096 [ 1598.987806][ T6372] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1599.071397][ T6366] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 1599.154538][ T6372] ntfs: (device loop2): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 1599.225600][ T6372] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1599.282746][ T6372] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1599.345118][ T6386] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on [ 1599.365126][ T6372] ntfs: volume version 3.1. [ 1599.541994][ T5773] ntfs: (device loop2): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 1599.581442][ T6398] netlink: 132 bytes leftover after parsing attributes in process `syz.1.12240'. [ 1599.736214][ T6431] netlink: 44 bytes leftover after parsing attributes in process `syz.2.12241'. [ 1599.745356][ T6431] netlink: 43 bytes leftover after parsing attributes in process `syz.2.12241'. [ 1599.798874][ T6436] netlink: 16 bytes leftover after parsing attributes in process `syz.3.12242'. [ 1599.818062][ T6431] netlink: 'syz.2.12241': attribute type 5 has an invalid length. [ 1599.837749][ T6431] netlink: 43 bytes leftover after parsing attributes in process `syz.2.12241'. [ 1600.358323][ T6462] binder: 6461:6462 ioctl c0046209 100000000000000 returned -22 [ 1600.395614][ T6465] loop2: detected capacity change from 0 to 256 [ 1600.464868][ T6465] FAT-fs (loop2): Directory bread(block 64) failed [ 1600.471522][ T6465] FAT-fs (loop2): Directory bread(block 65) failed [ 1600.510716][ T6465] FAT-fs (loop2): Directory bread(block 66) failed [ 1600.538530][ T6465] FAT-fs (loop2): Directory bread(block 67) failed [ 1600.558944][ T6465] FAT-fs (loop2): Directory bread(block 68) failed [ 1600.565563][ T6465] FAT-fs (loop2): Directory bread(block 69) failed [ 1600.600895][ T6465] FAT-fs (loop2): Directory bread(block 70) failed [ 1600.635647][ T6465] FAT-fs (loop2): Directory bread(block 71) failed [ 1600.658348][ T6465] FAT-fs (loop2): Directory bread(block 72) failed [ 1600.669170][ T6465] FAT-fs (loop2): Directory bread(block 73) failed [ 1600.671644][ T6475] dummy0: left promiscuous mode [ 1600.726608][ T6475] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1601.747041][ T6521] loop3: detected capacity change from 0 to 512 [ 1601.841008][ T6524] (unnamed net_device) (uninitialized): option all_slaves_active: invalid value (6) [ 1601.888359][ T6521] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1601.957181][ T6521] ext4 filesystem being mounted at /3035/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1602.058314][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1602.375272][ T6546] IPv6: Can't replace route, no match found [ 1602.383189][ T6501] loop1: detected capacity change from 0 to 32768 [ 1602.524186][ T6501] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1602.632654][ T6501] (syz.1.12262,6501,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=65, rec_len=16, name_len=1 [ 1602.703116][ T6501] (syz.1.12262,6501,0):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 1602.745406][ T6501] (syz.1.12262,6501,0):ocfs2_mknod:298 ERROR: status = -2 [ 1602.778111][ T6501] (syz.1.12262,6501,0):ocfs2_mknod:502 ERROR: status = -2 [ 1602.830938][ T6501] (syz.1.12262,6501,0):ocfs2_mkdir:659 ERROR: status = -2 [ 1602.982725][ T6574] loop3: detected capacity change from 0 to 512 [ 1602.989266][ T8] usb 3-1: new high-speed USB device number 48 using dummy_hcd [ 1602.993160][ T5770] ocfs2: Unmounting device (7,1) on (node local) [ 1603.068630][ T6574] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1603.144682][ C1] sd 0:0:1:0: [sda] tag#5606 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 1603.155511][ C1] sd 0:0:1:0: [sda] tag#5606 CDB: Read(6) 08 00 9f d1 fe de [ 1603.230097][ T8] usb 3-1: Using ep0 maxpacket: 16 [ 1603.240650][ T8] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1603.266708][ T8] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1603.283901][ T6574] EXT4-fs error (device loop3): ext4_validate_block_bitmap:421: comm syz.3.12284: bg 0: bad block bitmap checksum [ 1603.286641][ T8] usb 3-1: Product: syz [ 1603.322923][ T8] usb 3-1: Manufacturer: syz [ 1603.338637][ T8] usb 3-1: SerialNumber: syz [ 1603.356759][ T8] r8152-cfgselector 3-1: config 0 descriptor?? [ 1603.549715][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1603.826997][ T8] r8152-cfgselector 3-1: Unknown version 0x0000 [ 1603.849798][ T8] r8152-cfgselector 3-1: USB disconnect, device number 48 [ 1604.568094][ T6646] SET target dimension over the limit! [ 1604.708914][ T6651] netlink: 152 bytes leftover after parsing attributes in process `syz.2.12305'. [ 1604.747096][ T6651] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12305'. [ 1605.146030][ T6676] loop1: detected capacity change from 0 to 1024 [ 1605.274337][ T8] usb 1-1: new full-speed USB device number 32 using dummy_hcd [ 1605.399140][ T6687] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12315'. [ 1605.474340][ T6688] loop1: detected capacity change from 0 to 2048 [ 1605.535987][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 1605.560449][ T6688] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1605.574662][ T8] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 1605.599633][ T8] usb 1-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ac.7e [ 1605.614220][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1605.637087][ T8] usb 1-1: Product: syz [ 1605.641406][ T8] usb 1-1: Manufacturer: syz [ 1605.665117][ T8] usb 1-1: SerialNumber: syz [ 1605.692657][ T8] usb 1-1: config 0 descriptor?? [ 1605.712620][ T8] hub 1-1:0.0: bad descriptor, ignoring hub [ 1605.729147][ T8] hub: probe of 1-1:0.0 failed with error -5 [ 1605.747220][ T6657] loop3: detected capacity change from 0 to 32768 [ 1605.768761][ T8] input: syz syz as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input99 [ 1605.873149][ T6707] loop2: detected capacity change from 0 to 64 [ 1606.333711][ T6715] 8021q: adding VLAN 0 to HW filter on device team0 [ 1606.354192][ T6715] batadv0: left promiscuous mode [ 1606.385463][ T6715] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 1606.459285][ T6715] 0·: left allmulticast mode [ 1606.463965][ T6715] hsr_slave_0: left allmulticast mode [ 1606.491154][ T6715] hsr_slave_1: left allmulticast mode [ 1606.513629][ T6715] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check. [ 1606.933716][ T6745] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12326'. [ 1607.363942][ T6767] dlm: non-version read from control device 3 [ 1607.693804][ T6779] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1607.907096][ T6820] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 1608.520690][ T6841] loop2: detected capacity change from 0 to 2048 [ 1608.577331][ T6841] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1608.961364][ T6859] loop1: detected capacity change from 0 to 64 [ 1608.985507][ T6857] 8021q: adding VLAN 0 to HW filter on device .` [ 1609.033960][ T6857] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1609.234857][ T6867] loop1: detected capacity change from 0 to 1024 [ 1609.252180][ T6868] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw [ 1609.366903][ T6867] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1609.434773][ T6877] netlink: 'syz.3.12354': attribute type 3 has an invalid length. [ 1609.496228][ T6877] netlink: 'syz.3.12354': attribute type 1 has an invalid length. [ 1609.530990][ T6877] netlink: 216 bytes leftover after parsing attributes in process `syz.3.12354'. [ 1609.568535][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1609.588116][ T6877] NCSI netlink: No device for ifindex 33022 [ 1609.693556][ T6889] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12361'. [ 1609.704924][ T6889] openvswitch: netlink: Flow set message rejected, Key attribute missing. [ 1610.078836][ T6904] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1610.266083][ T6912] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12368'. [ 1610.798342][ T6720] usb 1-1: USB disconnect, device number 32 [ 1610.954638][ T6938] loop1: detected capacity change from 0 to 4096 [ 1611.007183][ T6938] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 1611.411671][ T6974] loop2: detected capacity change from 0 to 1024 [ 1611.508441][ T6974] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000006000000 r/w without journal. Quota mode: writeback. [ 1611.560677][ T6983] tmpfs: Bad value for 'mpol' [ 1611.731255][ T5773] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000006000000. [ 1612.042281][ T7008] RDS: rds_bind could not find a transport for fec0:ffff::1, load rds_tcp or rds_rdma? [ 1612.478612][ T7022] loop3: detected capacity change from 0 to 2048 [ 1612.523262][ T7025] qrtr: Invalid version 0 [ 1612.541539][ T7022] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1612.632563][ T7032] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1612.755544][ T7022] NILFS error (device loop3): nilfs_lookup: deleted inode referenced: 12 [ 1612.810851][ T7022] Remounting filesystem read-only [ 1612.872107][ T7037] netlink: 'syz.0.12406': attribute type 13 has an invalid length. [ 1613.165531][ T7050] openvswitch: netlink: Actions may not be safe on all matching packets [ 1613.999550][ T28] audit: type=1326 audit(1768823251.128:357): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.1.12424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1614.074712][ T28] audit: type=1326 audit(1768823251.128:358): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.1.12424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1614.107949][ T6720] usb 3-1: new high-speed USB device number 49 using dummy_hcd [ 1614.140403][ T28] audit: type=1326 audit(1768823251.165:359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.1.12424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=141 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1614.214935][ T28] audit: type=1326 audit(1768823251.165:360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.1.12424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1614.280995][ T28] audit: type=1326 audit(1768823251.165:361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7094 comm="syz.1.12424" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1614.303573][ C1] vkms_vblank_simulate: vblank timer overrun [ 1614.376777][ T6720] usb 3-1: New USB device found, idVendor=8086, idProduct=0110, bcdDevice=bf.ad [ 1614.401234][ T6720] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1614.445892][ T6720] usb 3-1: config 0 descriptor?? [ 1614.468106][ T6720] gspca_main: spca508-2.14.0 probing 8086:0110 [ 1614.760116][ T7089] loop3: detected capacity change from 0 to 32768 [ 1614.791913][ T7089] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.12421 (7089) [ 1614.855725][ T7089] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1614.868215][ T7118] loop1: detected capacity change from 0 to 1024 [ 1614.898395][ T7089] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1614.910979][ T7089] BTRFS info (device loop3): using free space tree [ 1614.941762][ T6720] gspca_spca508: reg_read err -71 [ 1614.947895][ T6720] gspca_spca508: reg_read err -71 [ 1614.959127][ T6720] gspca_spca508: reg_read err -71 [ 1614.970359][ T6720] gspca_spca508: reg_read err -71 [ 1614.980969][ T6720] gspca_spca508: reg write: error -71 [ 1614.991761][ T7118] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000006000000 r/w without journal. Quota mode: writeback. [ 1614.991986][ T6720] spca508: probe of 3-1:0.0 failed with error -71 [ 1615.048645][ T6720] usb 3-1: USB disconnect, device number 49 [ 1615.134698][ T7089] BTRFS info (device loop3): enabling ssd optimizations [ 1615.179975][ T7089] BTRFS info (device loop3): auto enabling async discard [ 1615.264538][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000006000000. [ 1615.392667][ T7157] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12435'. [ 1615.402074][ T7157] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12435'. [ 1615.450355][ T5772] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1615.725200][ T7167] loop1: detected capacity change from 0 to 256 [ 1615.774672][ T7167] FAT-fs (loop1): "posix" option is obsolete, not supported now [ 1615.940541][ T7178] netlink: 'syz.0.12440': attribute type 1 has an invalid length. [ 1615.948433][ T7178] netlink: 224 bytes leftover after parsing attributes in process `syz.0.12440'. [ 1616.789330][ T7217] netlink: 32 bytes leftover after parsing attributes in process `syz.1.12449'. [ 1616.816474][ T7223] loop3: detected capacity change from 0 to 64 [ 1617.370201][ T5775] usb 3-1: new high-speed USB device number 50 using dummy_hcd [ 1617.410096][ T7247] loop1: detected capacity change from 0 to 4096 [ 1617.513828][ T7255] netlink: 180 bytes leftover after parsing attributes in process `syz.3.12459'. [ 1617.513984][ T7252] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1617.561582][ T7247] NILFS error (device loop1): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=16, inode=18446736377128157186, rec_len=255, name_len=2 [ 1617.602680][ T5775] usb 3-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 1617.619428][ T5775] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1617.651968][ T5775] usb 3-1: Product: syz [ 1617.656227][ T5775] usb 3-1: Manufacturer: syz [ 1617.668728][ T7247] Remounting filesystem read-only [ 1617.686403][ T5775] usb 3-1: SerialNumber: syz [ 1617.712608][ T5775] usb 3-1: config 0 descriptor?? [ 1617.724551][ T5775] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 1618.204786][ T5913] usb 3-1: USB disconnect, device number 50 [ 1618.320245][ T7277] loop1: detected capacity change from 0 to 16 [ 1618.333706][ T7277] erofs: (device loop1): mounted with root inode @ nid 36. [ 1618.666424][ T7260] loop3: detected capacity change from 0 to 32768 [ 1618.678775][ T7291] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12467'. [ 1619.317121][ T7320] netlink: 2 bytes leftover after parsing attributes in process `syz.3.12475'. [ 1620.179621][ T7322] loop2: detected capacity change from 0 to 32768 [ 1620.307302][ T7322] UFO tlock:0xffffc9000282a090 [ 1620.472269][ T7367] loop3: detected capacity change from 0 to 512 [ 1620.479879][ T7367] EXT4-fs: Ignoring removed orlov option [ 1620.538750][ T7367] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1620.591580][ T7367] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1620.634185][ T7367] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.12488: bg 0: block 248: padding at end of block bitmap is not set [ 1620.655396][ T7367] Quota error (device loop3): write_blk: dquota write failed [ 1620.683779][ T7367] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 1620.745342][ T7367] EXT4-fs error (device loop3): ext4_acquire_dquot:6949: comm syz.3.12488: Failed to acquire dquot type 1 [ 1620.791749][ T7367] EXT4-fs (loop3): 1 truncate cleaned up [ 1620.827222][ T7367] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1620.870564][ T7367] EXT4-fs: Ignoring removed orlov option [ 1620.877901][ T7367] EXT4-fs: can't change dax mount option while remounting [ 1621.035468][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1622.132554][ T7450] bond0: (slave netdevsim0): Enslaving as an active interface with an up link [ 1622.165721][ T7441] loop3: detected capacity change from 0 to 4096 [ 1622.221455][ T7452] ./file0: Can't open blockdev [ 1622.263924][ T7441] ntfs3: loop3: ino=3, ntfs_set_state failed, -22. [ 1622.285149][ T7441] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 1622.474562][ T33] ntfs3: loop3: ino=3, ntfs3_write_inode failed, -22. [ 1622.530170][ T5772] ntfs3: loop3: ino=3, ntfs_set_state failed, -22. [ 1622.536782][ T5772] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1622.582500][ T5772] ntfs3: loop3: ino=3, ntfs_set_state failed, -22. [ 1622.604813][ T6726] ntfs3: loop3: ino=3, ntfs3_write_inode failed, -22. [ 1623.351970][ T7507] netlink: 48 bytes leftover after parsing attributes in process `syz.1.12529'. [ 1623.713051][ T7525] sctp: [Deprecated]: syz.0.12535 (pid 7525) Use of struct sctp_assoc_value in delayed_ack socket option. [ 1623.713051][ T7525] Use struct sctp_sack_info instead [ 1623.920600][ T7536] loop3: detected capacity change from 0 to 128 [ 1623.941404][ T7537] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12539'. [ 1623.981009][ T7536] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (30846!=65535) [ 1624.061475][ T7536] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 ro without journal. Quota mode: none. [ 1624.201650][ T7536] EXT4-fs (loop3): ext4_remount: Checksum for group 0 failed (30846!=65535) [ 1624.303189][ T5772] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 1624.398615][ T28] audit: type=1326 audit(1768823260.723:362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7557 comm="syz.1.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1624.457379][ T28] audit: type=1326 audit(1768823260.723:363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7557 comm="syz.1.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1624.556468][ T28] audit: type=1326 audit(1768823260.760:364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7557 comm="syz.1.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=173 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1624.675777][ T28] audit: type=1326 audit(1768823260.760:365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7557 comm="syz.1.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1624.756138][ T28] audit: type=1326 audit(1768823260.760:366): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7557 comm="syz.1.12545" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1624.849345][ T7576] virtiofs: Unknown parameter 'always' [ 1625.456201][ T6720] usb 2-1: new high-speed USB device number 44 using dummy_hcd [ 1625.499895][ T7611] netlink: 32 bytes leftover after parsing attributes in process `syz.2.12562'. [ 1625.678285][ T6720] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00 [ 1625.684692][ T7619] tc_dump_action: action bad kind [ 1625.705455][ T6720] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1625.729749][ T6720] usb 2-1: Product: syz [ 1625.733987][ T6720] usb 2-1: Manufacturer: syz [ 1625.757199][ T6720] usb 2-1: SerialNumber: syz [ 1625.778534][ T6720] usb 2-1: config 0 descriptor?? [ 1626.043220][ T6720] hso 2-1:0.0: Failed to find INT IN ep [ 1626.080438][ T6720] usb-storage 2-1:0.0: USB Mass Storage device detected [ 1626.323308][ T7645] netlink: 132 bytes leftover after parsing attributes in process `syz.2.12571'. [ 1626.344697][ T5775] usb 2-1: USB disconnect, device number 44 [ 1626.945906][ T7680] netlink: 2184 bytes leftover after parsing attributes in process `syz.0.12581'. [ 1626.977936][ T7680] netlink: 144 bytes leftover after parsing attributes in process `syz.0.12581'. [ 1627.041920][ T7677] loop3: detected capacity change from 0 to 4096 [ 1627.081160][ T7677] ntfs: (device loop3): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1627.134654][ T7677] ntfs: (device loop3): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1627.211658][ T7677] ntfs: (device loop3): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1627.246568][ T7677] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1627.320442][ T7677] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1627.581331][ T7677] ntfs: volume version 3.1. [ 1627.588620][ T7677] ntfs: (device loop3): ntfs_check_logfile(): Did not find any restart pages in $LogFile and it was not empty. [ 1627.607558][ T7677] ntfs: (device loop3): load_system_files(): Failed to load $LogFile. Will not be able to remount read-write. Mount in Windows. [ 1627.650594][ T7677] ntfs: (device loop3): ntfs_lookup_inode_by_name(): Index entry out of bounds in directory inode 0x5. [ 1627.689040][ T7677] ntfs: (device loop3): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 1627.732463][ T7677] ntfs: (device loop3): load_system_files(): Failed to determine if Windows is hibernated. Will not be able to remount read-write. Run chkdsk. [ 1627.997226][ T7687] loop1: detected capacity change from 0 to 32768 [ 1628.091746][ T7687] ERROR: (device loop1): dbAllocAG: Corrupt dmapctl page [ 1628.091746][ T7687] [ 1628.133027][ T7713] loop3: detected capacity change from 0 to 256 [ 1628.149409][ T7687] ERROR: (device loop1): remounting filesystem as read-only [ 1629.597139][ T6720] usb 1-1: new high-speed USB device number 33 using dummy_hcd [ 1629.615870][ T7738] loop1: detected capacity change from 0 to 32768 [ 1629.637756][ T7738] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz.1.12598 (7738) [ 1629.699588][ T7738] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1629.751398][ T7738] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm [ 1629.773022][ T7738] BTRFS info (device loop1): force zlib compression, level 3 [ 1629.780507][ T7738] BTRFS info (device loop1): force clearing of disk cache [ 1629.813845][ T7738] BTRFS info (device loop1): setting nodatasum [ 1629.820113][ T7738] BTRFS info (device loop1): allowing degraded mounts [ 1629.827157][ T6720] usb 1-1: Using ep0 maxpacket: 8 [ 1629.854588][ T6720] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 1629.871569][ T6720] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1629.881492][ T7738] BTRFS info (device loop1): enabling disk space caching [ 1629.903114][ T7738] BTRFS info (device loop1): disk space caching is enabled [ 1629.916956][ T6720] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 1629.936785][ T6720] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 1629.962093][ T6720] usb 1-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 1629.999340][ T6720] usb 1-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 1630.020177][ T6720] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1630.049647][ T6720] usb 1-1: config 0 descriptor?? [ 1630.056508][ T7759] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1630.163139][ T7738] BTRFS info (device loop1): auto enabling async discard [ 1630.196039][ T7738] BTRFS info (device loop1): rebuilding free space tree [ 1630.245581][ T7738] BTRFS info (device loop1): disabling free space tree [ 1630.268644][ T7738] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1630.289445][ T7738] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1630.409648][ T6720] usb 3-1: new high-speed USB device number 51 using dummy_hcd [ 1630.482584][ T7738] BTRFS info (device loop1): balance: start -sprofiles=system|metadata|single|raid0|raid1|dup|raid10|raid5|raid6|raid1c3|raid1c4|0xfffefffffffff800,usage=30064705537,usage=4294901761..6,drange=36028797018963968..70368744177664 [ 1630.514336][ T7738] BTRFS info (device loop1): balance: ended with status: 0 [ 1630.597406][ T5770] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1630.612925][T27082] Bluetooth: hci4: Opcode 0x0c03 failed: -71 [ 1630.620476][ T6720] usb 3-1: Using ep0 maxpacket: 32 [ 1630.633862][T21567] usb 1-1: USB disconnect, device number 33 [ 1630.640057][ T6720] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1630.684104][ T6720] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1630.702400][ T6720] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1630.712287][ T6720] usb 3-1: Product: syz [ 1630.718334][ T6720] usb 3-1: Manufacturer: syz [ 1630.722994][ T6720] usb 3-1: SerialNumber: syz [ 1630.762520][ T6720] usb 3-1: config 0 descriptor?? [ 1630.771163][ T6720] usb 3-1: bad CDC descriptors [ 1630.776604][ T6720] usb 3-1: unsupported MDLM descriptors [ 1631.053999][T21567] usb 3-1: USB disconnect, device number 51 [ 1631.170550][ T7853] comedi comedi0: multiq3: I/O port conflict (0x3,16) [ 1631.314991][ T7859] netlink: 'syz.0.12618': attribute type 1 has an invalid length. [ 1631.330958][ T7859] netlink: 56 bytes leftover after parsing attributes in process `syz.0.12618'. [ 1631.385420][ T5775] usb 4-1: new full-speed USB device number 50 using dummy_hcd [ 1631.487084][ T7862] loop1: detected capacity change from 0 to 1024 [ 1631.563325][ T7862] hfsplus: xattr searching failed [ 1631.614059][ T5775] usb 4-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 1631.650805][ T5775] usb 4-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 1631.690565][ T5775] usb 4-1: Product: syz [ 1631.699540][ T5775] usb 4-1: Manufacturer: syz [ 1631.704212][ T5775] usb 4-1: SerialNumber: syz [ 1631.781989][ T5775] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 1631.922209][ T7881] netlink: 80 bytes leftover after parsing attributes in process `syz.1.12622'. [ 1631.939346][ T7883] Cannot find del_set index 3 as target [ 1632.242760][ T5775] vp7045: USB control message 'in' went wrong. [ 1632.249326][ T5775] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1632.300988][ T5775] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 1632.335869][ T5775] usb 4-1: USB disconnect, device number 50 [ 1632.700359][ T7923] loop2: detected capacity change from 0 to 64 [ 1633.090652][ T7942] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12641'. [ 1633.133909][ T7942] netlink: 28 bytes leftover after parsing attributes in process `syz.3.12641'. [ 1633.668389][ T7968] netdevsim netdevsim1 netdevsim0: left promiscuous mode [ 1633.684082][ T7968] netdevsim netdevsim1 netdevsim0: entered allmulticast mode [ 1633.914261][ T7986] loop2: detected capacity change from 0 to 8 [ 1633.952513][ T7986] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1634.356223][ T8008] ip6t_srh: unknown srh match flags 4001 [ 1634.783586][ T8030] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12671'. [ 1634.801299][ T8030] netlink: 10 bytes leftover after parsing attributes in process `syz.0.12671'. [ 1634.846499][ T8036] loop1: detected capacity change from 0 to 256 [ 1634.936526][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1634.967673][ T8036] FAT-fs (loop1): Filesystem has been set read-only [ 1634.983018][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.014220][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.048889][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.068712][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.103140][T21567] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 1635.106907][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.126362][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.140165][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.154751][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.167403][ T8036] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1635.211106][ T28] kauditd_printk_skb: 6 callbacks suppressed [ 1635.211123][ T28] audit: type=1800 audit(1768823270.696:367): pid=8036 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.12672" name="file1" dev="loop1" ino=1048679 res=0 errno=0 [ 1635.294989][ T8036] FAT-fs (loop1): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1635.355139][T21567] usb 4-1: config 220 has an invalid interface number: 76 but max is 2 [ 1635.363681][T21567] usb 4-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 1635.372624][T21567] usb 4-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 1635.384642][T21567] usb 4-1: config 220 has no interface number 2 [ 1635.391018][T21567] usb 4-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 1635.405779][T21567] usb 4-1: config 220 interface 0 has no altsetting 0 [ 1635.436305][T21567] usb 4-1: config 220 interface 76 has no altsetting 0 [ 1635.444373][T21567] usb 4-1: config 220 interface 1 has no altsetting 0 [ 1635.464155][T21567] usb 4-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 1635.486625][T21567] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1635.505646][T21567] usb 4-1: Product: syz [ 1635.511323][T21567] usb 4-1: Manufacturer: syz [ 1635.528446][T21567] usb 4-1: SerialNumber: syz [ 1635.584213][ T8067] syz.1.12679 uses old SIOCAX25GETINFO [ 1635.612390][ T788] usb 1-1: new high-speed USB device number 34 using dummy_hcd [ 1635.723716][ T8070] loop1: detected capacity change from 0 to 4096 [ 1635.757043][ T8070] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 0) do not match. Run ntfsfix or chkdsk. [ 1635.772580][ T8070] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1635.795939][ T5775] usb 3-1: new full-speed USB device number 52 using dummy_hcd [ 1635.806162][T21567] usb 4-1: selecting invalid altsetting 0 [ 1635.823358][ T8070] ntfs: volume version 3.1. [ 1635.835592][ T8070] ntfs: (device loop1): ntfs_read_locked_attr_inode(): Failed with error code -2 while reading attribute inode (mft_no 0x1a, type 0x80, name_len 4). Marking corrupt inode and base inode 0x1a as bad. Run chkdsk. [ 1635.835578][ T788] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1635.835817][ T8070] ntfs: (device loop1): load_and_init_usnjrnl(): Failed to load $UsnJrnl/$DATA/$Max attribute. [ 1635.856519][T21567] usb 4-1: Found UVC 7.01 device syz (8086:0b07) [ 1635.881990][ T8070] ntfs: (device loop1): load_system_files(): Failed to load $UsnJrnl. Will not be able to remount read-write. Run chkdsk. [ 1635.913010][T21567] usb 4-1: No valid video chain found. [ 1635.920620][ T788] usb 1-1: config 6 has an invalid interface number: 200 but max is 0 [ 1635.929270][ T788] usb 1-1: config 6 has no interface number 0 [ 1635.935566][ T788] usb 1-1: config 6 interface 200 altsetting 8 endpoint 0x1 has an invalid bInterval 0, changing to 7 [ 1635.958049][ T788] usb 1-1: config 6 interface 200 has no altsetting 0 [ 1635.973689][T21567] usb 4-1: selecting invalid altsetting 0 [ 1635.979518][T21567] usbtest: probe of 4-1:220.1 failed with error -22 [ 1635.994498][ T788] usb 1-1: string descriptor 0 read error: -22 [ 1636.001115][ T788] usb 1-1: New USB device found, idVendor=05d8, idProduct=810c, bcdDevice=18.5f [ 1636.016335][ T5775] usb 3-1: New USB device found, idVendor=055f, idProduct=c420, bcdDevice=6a.33 [ 1636.029449][T21567] usb 4-1: USB disconnect, device number 51 [ 1636.035658][ T788] usb 1-1: New USB device strings: Mfr=9, Product=2, SerialNumber=3 [ 1636.063968][ T5775] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1636.100964][ T8070] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Found already allocated name in phase 2. Please run chkdsk and if that doesn't find any errors please report you saw this message to linux-ntfs-dev@lists.sourceforge.net. [ 1636.116557][ T788] dvb-usb: found a 'Artec T14 - USB2.0 DVB-T' in warm state. [ 1636.138919][ T5775] usb 3-1: config 0 descriptor?? [ 1636.164796][ T5775] gspca_main: sunplus-2.14.0 probing 055f:c420 [ 1636.174965][ T8070] ntfs: (device loop1): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 1636.190726][ T8070] ntfs: (device loop1): ntfs_lookup(): ntfs_lookup_ino_by_name() failed with error code 5. [ 1636.311485][ T8091] netlink: 'syz.1.12681': attribute type 1 has an invalid length. [ 1636.367626][ T788] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 1636.390612][ T788] dvbdev: DVB: registering new adapter (Artec T14 - USB2.0 DVB-T) [ 1636.401355][ T788] usb 1-1: media controller created [ 1636.443528][ T788] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1636.579109][ T788] dvb-usb: bulk message failed: -71 (6/0) [ 1636.611910][ T788] dvb-usb: bulk message failed: -71 (6/0) [ 1636.628968][ T788] dvb-usb: no frontend was attached by 'Artec T14 - USB2.0 DVB-T' [ 1636.643891][ T5775] gspca_sunplus: reg_w_riv err -71 [ 1636.649670][ T5775] sunplus: probe of 3-1:0.0 failed with error -71 [ 1636.670623][ T788] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.0/usb1/1-1/input/input100 [ 1636.696466][ T5775] usb 3-1: USB disconnect, device number 52 [ 1636.730908][ T788] dvb-usb: schedule remote query interval to 150 msecs. [ 1636.745137][ T788] dvb-usb: Artec T14 - USB2.0 DVB-T successfully initialized and connected. [ 1636.786654][ T8118] (unnamed net_device) (uninitialized): up delay (2) is not a multiple of miimon (100), value rounded to 0 ms [ 1636.815913][ T788] usb 1-1: USB disconnect, device number 34 [ 1636.826311][ T8118] (unnamed net_device) (uninitialized): down delay (2036) is not a multiple of miimon (100), value rounded to 2000 ms [ 1636.936170][ T788] dvb-usb: Artec T14 - USB2.0 DVB-T successfully deinitialized and disconnected. [ 1637.539156][ T8188] netlink: 56 bytes leftover after parsing attributes in process `syz.0.12692'. [ 1638.466577][ T8185] loop1: detected capacity change from 0 to 32768 [ 1638.492757][ T8185] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.12691 (8185) [ 1638.517170][ T8218] loop3: detected capacity change from 0 to 4096 [ 1638.556469][ T8185] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1638.581121][ T8185] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1638.635534][ T8185] BTRFS info (device loop1): setting nodatacow, compression disabled [ 1638.667411][ T8185] BTRFS info (device loop1): force clearing of disk cache [ 1638.690990][ T8218] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1638.706473][ T8185] BTRFS info (device loop1): enabling ssd optimizations [ 1638.725268][ T8218] ntfs3: loop3: Failed to initialize $Extend/$Reparse. [ 1638.756851][ T8185] BTRFS info (device loop1): using spread ssd allocation scheme [ 1638.801901][ T8185] BTRFS info (device loop1): turning off barriers [ 1638.808432][ T8185] BTRFS info (device loop1): disabling free space tree [ 1638.841373][ T8185] BTRFS info (device loop1): not using ssd optimizations [ 1638.863255][ T8185] BTRFS info (device loop1): not using spread ssd allocation scheme [ 1638.983354][ T788] usb 1-1: new high-speed USB device number 35 using dummy_hcd [ 1639.084965][ T8185] BTRFS info (device loop1): rebuilding free space tree [ 1639.107177][ T8185] BTRFS info (device loop1): disabling free space tree [ 1639.114444][ T8185] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1639.124964][ T8185] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1639.211798][ T788] usb 1-1: Using ep0 maxpacket: 32 [ 1639.219661][ T788] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1639.237408][ T788] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1639.257549][ T788] usb 1-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1639.296167][ T788] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1639.317074][ T788] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1639.355075][ T788] usb 1-1: Product: syz [ 1639.370948][ T788] usb 1-1: Manufacturer: syz [ 1639.383268][ T788] usb 1-1: SerialNumber: syz [ 1639.403746][ T788] cdc_ncm 1-1:1.0: skipping garbage [ 1639.416764][ T788] cdc_ncm 1-1:1.0: skipping garbage [ 1639.422049][ T788] cdc_ncm 1-1:1.0: CDC Union missing and no IAD found [ 1639.438716][ T788] cdc_ncm 1-1:1.0: bind() failure [ 1639.637077][ T5770] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1639.713183][ T788] usb 1-1: USB disconnect, device number 35 [ 1639.770935][ T28] audit: type=1326 audit(1768823274.903:368): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8279 comm="syz.3.12713" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1640.041847][ T8288] loop1: detected capacity change from 0 to 2048 [ 1640.105763][ T8288] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1640.220421][ T8261] loop2: detected capacity change from 0 to 32768 [ 1642.543911][ T8375] loop3: detected capacity change from 0 to 4096 [ 1642.574923][ T8375] ntfs3: loop3: ino=3, Correct links count -> 2. [ 1642.693216][ T8378] loop2: detected capacity change from 0 to 4096 [ 1642.742353][ T8378] __ntfs_error: 3 callbacks suppressed [ 1642.742372][ T8378] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1642.816680][ T8378] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1642.873945][ T8378] ntfs: (device loop2): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1642.936398][ T8378] ntfs: volume version 3.1. [ 1642.970517][ T8378] ntfs: (device loop2): ntfs_attr_find(): Inode is corrupt. Run chkdsk. [ 1643.010482][ T8378] ntfs: (device loop2): ntfs_read_locked_index_inode(): Failed with error code -5 while reading index inode (mft_no 0x18, name_len 2. [ 1643.047386][ T8378] ntfs: (device loop2): load_and_init_quota(): Failed to load $Quota/$Q index. [ 1643.077808][ T8378] ntfs: (device loop2): load_system_files(): Failed to load $Quota. Mounting read-only. Run chkdsk. [ 1643.198469][ T8378] ntfs: (device loop2): parse_options(): Unrecognized mount option ÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿš@­LqE:†‹ á艞Õt}²0ü$‰. [ 1643.603328][ T8417] loop2: detected capacity change from 0 to 2048 [ 1643.672292][ T8417] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1643.798373][ T28] audit: type=1800 audit(1768823278.630:372): pid=8417 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.12750" name="bus" dev="loop2" ino=1367 res=0 errno=0 [ 1644.189352][ T8443] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12758'. [ 1644.281211][ T8449] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12760'. [ 1644.471194][ T8456] sctp: [Deprecated]: syz.3.12762 (pid 8456) Use of int in max_burst socket option. [ 1644.471194][ T8456] Use struct sctp_assoc_value instead [ 1645.007714][ T8479] xt_nfacct: accounting object `syz1' does not exist [ 1645.335686][ T8489] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12773'. [ 1645.344976][ T8489] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1645.619825][ T8500] netlink: 'syz.3.12777': attribute type 1 has an invalid length. [ 1645.642476][ T8500] netlink: 224 bytes leftover after parsing attributes in process `syz.3.12777'. [ 1645.692454][ T8500] nbd: must specify at least one socket [ 1646.419025][ T787] usb 4-1: new high-speed USB device number 52 using dummy_hcd [ 1646.647123][ T787] usb 4-1: Using ep0 maxpacket: 32 [ 1646.661346][ T787] usb 4-1: config 1 interface 0 altsetting 14 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1646.681489][ T787] usb 4-1: config 1 interface 0 altsetting 14 bulk endpoint 0x82 has invalid maxpacket 0 [ 1646.720966][ T787] usb 4-1: config 1 interface 0 altsetting 14 endpoint 0x3 has invalid maxpacket 1600, setting to 1024 [ 1646.754805][ T787] usb 4-1: config 1 interface 0 altsetting 14 bulk endpoint 0x3 has invalid maxpacket 1024 [ 1646.780952][ T787] usb 4-1: config 1 interface 0 has no altsetting 0 [ 1646.812091][ T787] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1646.824107][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1646.841406][ T787] usb 4-1: Product: syz [ 1646.852724][ T787] usb 4-1: Manufacturer: syz [ 1646.860107][ T787] usb 4-1: SerialNumber: syz [ 1646.884096][ T8522] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 1647.032161][ T8559] netlink: 256 bytes leftover after parsing attributes in process `syz.2.12793'. [ 1647.176728][ T787] cdc_ether: probe of 4-1:1.0 failed with error -22 [ 1647.210330][ T787] usb 4-1: USB disconnect, device number 52 [ 1647.403364][ T28] audit: type=1326 audit(1768823281.943:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8577 comm="syz.2.12797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe30cb9acb9 code=0x7ffc0000 [ 1648.000001][ T8608] netlink: 'syz.3.12806': attribute type 10 has an invalid length. [ 1648.008480][ T8608] netlink: 40 bytes leftover after parsing attributes in process `syz.3.12806'. [ 1648.024592][ T8608] batadv0: entered promiscuous mode [ 1648.037061][ T8608] batadv0: entered allmulticast mode [ 1648.046351][ T8608] bridge0: port 4(batadv0) entered blocking state [ 1648.064040][ T8608] bridge0: port 4(batadv0) entered disabled state [ 1648.109766][T28677] usb 2-1: new high-speed USB device number 45 using dummy_hcd [ 1648.117853][ T8608] bridge0: port 4(batadv0) entered blocking state [ 1648.124504][ T8608] bridge0: port 4(batadv0) entered forwarding state [ 1648.333437][ T6726] batman_adv: batadv0: No IGMP Querier present - multicast optimizations disabled [ 1648.343854][ T6726] batman_adv: batadv0: No MLD Querier present - multicast optimizations disabled [ 1648.353756][T28677] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 1648.372347][T28677] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1648.391443][T28677] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 1648.410760][T28677] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1648.432996][T28677] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1648.457165][T28677] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 1648.471312][T28677] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 1648.499823][T28677] usb 2-1: Product: syz [ 1648.521450][T28677] usb 2-1: Manufacturer: syz [ 1648.559383][T28677] cdc_wdm 2-1:1.0: skipping garbage [ 1648.564683][T28677] cdc_wdm 2-1:1.0: skipping garbage [ 1648.602369][T28677] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device [ 1648.617781][T28677] cdc_wdm 2-1:1.0: Unknown control protocol [ 1648.845071][ T8596] cdc_wdm 2-1:1.0: Error submitting int urb - -90 [ 1648.883353][T28677] usb 2-1: USB disconnect, device number 45 [ 1649.028363][ T8649] x_tables: unsorted underflow at hook 1 [ 1649.667843][ T8636] loop3: detected capacity change from 0 to 32768 [ 1649.712220][ T8636] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 1649.847555][ T8636] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1650.106752][ T5772] ocfs2: Unmounting device (7,3) on (node local) [ 1650.300358][ T28] kauditd_printk_skb: 4 callbacks suppressed [ 1650.300375][ T28] audit: type=1326 audit(1768823284.627:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8686 comm="syz.1.12827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1650.396708][ T28] audit: type=1326 audit(1768823284.655:379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8686 comm="syz.1.12827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1650.479870][ T28] audit: type=1326 audit(1768823284.655:380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8686 comm="syz.1.12827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1650.502788][ C1] vkms_vblank_simulate: vblank timer overrun [ 1650.533232][ T28] audit: type=1326 audit(1768823284.655:381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8686 comm="syz.1.12827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1650.555627][ C1] vkms_vblank_simulate: vblank timer overrun [ 1650.624283][ T28] audit: type=1326 audit(1768823284.664:382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8686 comm="syz.1.12827" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1650.646673][ C1] vkms_vblank_simulate: vblank timer overrun [ 1650.834498][ T8678] loop2: detected capacity change from 0 to 32768 [ 1650.900449][ T8678] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1651.181641][ T8678] XFS (loop2): Ending clean mount [ 1651.242190][ T5775] usb 4-1: new high-speed USB device number 53 using dummy_hcd [ 1651.346157][ T8720] QAT: Device 158 not found [ 1651.426943][ T5773] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1651.469195][ T8723] netlink: 36 bytes leftover after parsing attributes in process `syz.1.12834'. [ 1651.478490][ T5775] usb 4-1: Using ep0 maxpacket: 16 [ 1651.489941][ T5775] usb 4-1: New USB device found, idVendor=05d1, idProduct=2001, bcdDevice= 7.00 [ 1651.502210][ T5775] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1651.510293][ T5775] usb 4-1: Product: syz [ 1651.538776][ T5775] usb 4-1: Manufacturer: syz [ 1651.556956][ T5775] usb 4-1: SerialNumber: syz [ 1651.600373][ T5775] usb 4-1: config 0 descriptor?? [ 1651.671631][ T5775] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 1651.692771][ T5775] usb 4-1: Detected FT2232H [ 1651.761321][ T8731] loop1: detected capacity change from 0 to 1024 [ 1651.833780][ T5775] ftdi_sio ttyUSB0: Unable to read latency timer: -71 [ 1651.875731][ T5775] ftdi_sio ttyUSB0: Unable to write latency timer: -71 [ 1651.904945][ T5775] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 1651.966707][ T5775] usb 4-1: USB disconnect, device number 53 [ 1651.993840][ T5775] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 1652.024264][ T5775] ftdi_sio 4-1:0.0: device disconnected [ 1652.678948][ T8777] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12844'. [ 1652.716907][ T8780] netlink: 8 bytes leftover after parsing attributes in process `syz.0.12845'. [ 1653.106538][ T8801] netlink: 44 bytes leftover after parsing attributes in process `syz.3.12853'. [ 1654.307253][ T8877] loop2: detected capacity change from 0 to 8192 [ 1654.312427][ T8852] bond5: entered promiscuous mode [ 1654.325672][ T8877] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1654.330024][ T8852] bond5: entered allmulticast mode [ 1654.339578][ T8877] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 1654.353558][ T8877] REISERFS (device loop2): using ordered data mode [ 1654.360127][ T8877] reiserfs: using flush barriers [ 1654.367922][ T8877] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1654.385663][ T8877] REISERFS (device loop2): checking transaction log (loop2) [ 1654.397654][ T8877] REISERFS (device loop2): Using r5 hash to sort names [ 1654.405014][ T8877] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 1654.441121][ T8852] 8021q: adding VLAN 0 to HW filter on device bond5 [ 1654.574863][ T8897] loop1: detected capacity change from 0 to 2048 [ 1654.603363][ T8897] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1654.668714][ T8901] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1654.671446][ T8897] syz.1.12873: attempt to access beyond end of device [ 1654.671446][ T8897] loop1: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1654.801097][ T8897] syz.1.12873: attempt to access beyond end of device [ 1654.801097][ T8897] loop1: rw=0, sector=9437254, nr_sectors = 2 limit=2048 [ 1654.877834][ T8897] NILFS (loop1): I/O error reading meta-data file (ino=6, block-offset=0) [ 1655.318168][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1655.813292][ T8956] loop3: detected capacity change from 0 to 256 [ 1655.943196][ T8956] FAT-fs (loop3): Directory bread(block 64) failed [ 1655.967522][ T8956] FAT-fs (loop3): Directory bread(block 65) failed [ 1655.997697][ T8956] FAT-fs (loop3): Directory bread(block 66) failed [ 1656.036871][ T8956] FAT-fs (loop3): Directory bread(block 67) failed [ 1656.058258][ T8962] block device autoloading is deprecated and will be removed. [ 1656.067333][ T8956] FAT-fs (loop3): Directory bread(block 68) failed [ 1656.074612][ T8956] FAT-fs (loop3): Directory bread(block 69) failed [ 1656.107908][ T8956] FAT-fs (loop3): Directory bread(block 70) failed [ 1656.140977][ T8956] FAT-fs (loop3): Directory bread(block 71) failed [ 1656.174036][ T8956] FAT-fs (loop3): Directory bread(block 72) failed [ 1656.180659][ T8956] FAT-fs (loop3): Directory bread(block 73) failed [ 1657.172015][ T9020] sctp: [Deprecated]: syz.0.12913 (pid 9020) Use of int in max_burst socket option deprecated. [ 1657.172015][ T9020] Use struct sctp_assoc_value instead [ 1657.263549][ T28] audit: type=1326 audit(1768823291.048:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.1.12915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1657.335900][ T28] audit: type=1326 audit(1768823291.048:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.1.12915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1657.463306][ T28] audit: type=1326 audit(1768823291.076:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.1.12915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1657.512063][ T9034] loop2: detected capacity change from 0 to 256 [ 1657.526934][ T28] audit: type=1326 audit(1768823291.095:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.1.12915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1657.582888][ T28] audit: type=1326 audit(1768823291.095:387): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9024 comm="syz.1.12915" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7effea59acb9 code=0x7ffc0000 [ 1657.672082][ T9038] loop3: detected capacity change from 0 to 1024 [ 1657.752704][ T9034] FAT-fs (loop2): Directory bread(block 64) failed [ 1657.760154][ T9034] FAT-fs (loop2): Directory bread(block 65) failed [ 1657.780794][ T9034] FAT-fs (loop2): Directory bread(block 66) failed [ 1657.787417][ T9034] FAT-fs (loop2): Directory bread(block 67) failed [ 1657.843243][ T9034] FAT-fs (loop2): Directory bread(block 68) failed [ 1657.869607][ T9034] FAT-fs (loop2): Directory bread(block 69) failed [ 1657.901492][ T9034] FAT-fs (loop2): Directory bread(block 70) failed [ 1657.923231][ T9034] FAT-fs (loop2): Directory bread(block 71) failed [ 1657.952137][ T9034] FAT-fs (loop2): Directory bread(block 72) failed [ 1657.974483][ T9034] FAT-fs (loop2): Directory bread(block 73) failed [ 1658.344458][ T9066] loop3: detected capacity change from 0 to 16 [ 1658.667174][ T9078] netlink: 12 bytes leftover after parsing attributes in process `syz.3.12929'. [ 1658.805709][ T9084] netlink: 72 bytes leftover after parsing attributes in process `syz.2.12931'. [ 1658.832330][ T9084] netlink: 72 bytes leftover after parsing attributes in process `syz.2.12931'. [ 1658.927682][ T6720] usb 1-1: new high-speed USB device number 36 using dummy_hcd [ 1659.042425][ T9043] loop1: detected capacity change from 0 to 32768 [ 1659.056180][ T9043] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 1659.078777][ T9043] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 1659.144163][ T6720] usb 1-1: Using ep0 maxpacket: 16 [ 1659.150644][ T9043] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms [ 1659.179668][ T6720] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1659.212723][ T6720] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1659.241526][ T788] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 1659.263066][ T6720] usb 1-1: Product: syz [ 1659.270360][ T788] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 1659.282391][ T9105] loop3: detected capacity change from 0 to 1024 [ 1659.303191][ T6720] usb 1-1: Manufacturer: syz [ 1659.325076][ T6720] usb 1-1: SerialNumber: syz [ 1659.339465][ T6720] r8152-cfgselector 1-1: config 0 descriptor?? [ 1659.403835][ T9105] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 1659.439062][ T9105] hfsplus: inconsistency in B*Tree (0,1,255,1,0) [ 1659.470048][ T788] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 184ms [ 1659.486859][ T788] gfs2: fsid=syz:syz.0: jid=0: Done [ 1659.500433][ T9043] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 1659.562575][ T9043] gfs2: fsid=syz:syz.0: gfs2_check_dirent: name length is greater than space in dirent (first in block) [ 1659.578881][ T9043] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 1659.578881][ T9043] inode = 12 2341 [ 1659.578881][ T9043] function = gfs2_dirent_scan, file = fs/gfs2/dir.c, line = 602 [ 1659.608375][ T9043] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qob t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 1659.627019][ T9043] gfs2: fsid=syz:syz.0: H: s:SH f:H e:0 p:9043 [syz.1.12919] __gfs2_lookup+0xad/0x2a0 [ 1659.655753][ T9043] gfs2: fsid=syz:syz.0: I: n:12/2341 t:4 f:0x00 d:0x00000001 s:3864 p:0 [ 1659.703476][ T9043] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 1659.733085][ T9043] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 1659.800800][ T9043] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 1659.830994][ T6720] r8152-cfgselector 1-1: Unknown version 0x0000 [ 1659.849537][ T9043] gfs2: fsid=syz:syz.0: File system withdrawn [ 1659.857035][ T9043] CPU: 0 PID: 9043 Comm: syz.1.12919 Not tainted syzkaller #0 [ 1659.864592][ T9043] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1659.874706][ T9043] Call Trace: [ 1659.878031][ T9043] [ 1659.881003][ T9043] dump_stack_lvl+0x18c/0x250 [ 1659.885741][ T9043] ? kobject_uevent_env+0x359/0x8b0 [ 1659.891020][ T9043] ? show_regs_print_info+0x20/0x20 [ 1659.896277][ T9043] ? load_image+0x400/0x400 [ 1659.900920][ T9043] ? kobject_uevent_env+0x363/0x8b0 [ 1659.906208][ T9043] gfs2_withdraw+0xb24/0x13d0 [ 1659.910987][ T9043] ? gfs2_lm+0x240/0x240 [ 1659.915294][ T9043] ? load_image+0x400/0x400 [ 1659.919878][ T9043] ? gfs2_consist_inode_i+0xf5/0x110 [ 1659.925231][ T9043] gfs2_dirent_scan+0x525/0x650 [ 1659.930142][ T9043] ? gfs2_dirent_search+0x7f0/0x7f0 [ 1659.935397][ T9043] gfs2_dirent_search+0x2ed/0x7f0 [ 1659.940488][ T9043] ? gfs2_dirent_search+0x7f0/0x7f0 [ 1659.945729][ T9043] ? gfs2_permission+0x384/0x460 [ 1659.950743][ T9043] ? __might_sleep+0xe0/0xe0 [ 1659.955392][ T9043] ? gfs2_dir_search+0x220/0x220 [ 1659.960405][ T9043] ? gfs2_lookupi+0x640/0x640 [ 1659.965154][ T9043] ? do_raw_spin_lock+0x11f/0x2c0 [ 1659.970244][ T9043] gfs2_dir_search+0x4d/0x220 [ 1659.974976][ T9043] gfs2_lookupi+0x45c/0x640 [ 1659.979545][ T9043] ? gfs2_lookup_meta+0x180/0x180 [ 1659.984636][ T9043] ? __gfs2_lookup+0xad/0x2a0 [ 1659.989377][ T9043] __gfs2_lookup+0xad/0x2a0 [ 1659.993959][ T9043] ? gfs2_atomic_open+0x220/0x220 [ 1659.999048][ T9043] ? do_raw_spin_unlock+0x121/0x230 [ 1660.004309][ T9043] ? _raw_spin_unlock+0x28/0x40 [ 1660.009213][ T9043] ? d_alloc+0x1eb/0x250 [ 1660.013514][ T9043] lookup_one_qstr_excl+0x112/0x250 [ 1660.018786][ T9043] filename_create+0x23e/0x480 [ 1660.023619][ T9043] ? kern_path_create+0x50/0x50 [ 1660.028533][ T9043] ? __virt_addr_valid+0x18c/0x540 [ 1660.033732][ T9043] ? __virt_addr_valid+0x18c/0x540 [ 1660.038952][ T9043] do_mknodat+0x18b/0x500 [ 1660.043354][ T9043] ? do_o_path+0x200/0x200 [ 1660.047833][ T9043] __x64_sys_mknod+0x8e/0xa0 [ 1660.052474][ T9043] do_syscall_64+0x55/0xa0 [ 1660.056944][ T9043] ? clear_bhb_loop+0x40/0x90 [ 1660.061682][ T9043] ? clear_bhb_loop+0x40/0x90 [ 1660.066414][ T9043] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1660.072362][ T9043] RIP: 0033:0x7effea59acb9 [ 1660.076825][ T9043] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1660.096492][ T9043] RSP: 002b:00007effeb42a028 EFLAGS: 00000246 ORIG_RAX: 0000000000000085 [ 1660.104962][ T9043] RAX: ffffffffffffffda RBX: 00007effea815fa0 RCX: 00007effea59acb9 [ 1660.113088][ T9043] RDX: 0000000000000703 RSI: 0000000000000000 RDI: 0000200000000000 [ 1660.121109][ T9043] RBP: 00007effea608bf7 R08: 0000000000000000 R09: 0000000000000000 [ 1660.129134][ T9043] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1660.137188][ T9043] R13: 00007effea816038 R14: 00007effea815fa0 R15: 00007ffcbaebac58 [ 1660.145229][ T9043] [ 1660.166553][ T6720] r8152-cfgselector 1-1: USB disconnect, device number 36 [ 1660.806244][ T9159] loop3: detected capacity change from 0 to 512 [ 1660.836076][ T9159] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem [ 1660.876521][ T9159] EXT4-fs error (device loop3): ext4_validate_block_bitmap:430: comm syz.3.12948: bg 0: block 104: invalid block bitmap [ 1660.991702][ T9159] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6653: Corrupt filesystem [ 1661.044909][ T9159] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.12948: invalid indirect mapped block 1 (level 1) [ 1661.088849][ T9172] loop1: detected capacity change from 0 to 736 [ 1661.103931][ T9159] EXT4-fs (loop3): 1 truncate cleaned up [ 1661.156496][ T9159] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1661.266655][ T28] audit: type=1800 audit(1768823294.730:388): pid=9159 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.12948" name="file1" dev="loop3" ino=18 res=0 errno=0 [ 1661.401810][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1661.959648][ T9211] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.12962'. [ 1662.556790][ T9247] loop2: detected capacity change from 0 to 164 [ 1663.029983][ T9269] loop3: detected capacity change from 0 to 64 [ 1663.046288][ T9269] hfs: uid requires an argument [ 1663.058028][ T9269] hfs: unable to parse mount options [ 1663.114286][ T6694] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 1663.305865][ T9252] loop1: detected capacity change from 0 to 32768 [ 1663.338486][ T9252] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.12975 (9252) [ 1663.341303][ T28] audit: type=1326 audit(1768823296.649:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.3.12982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1663.448133][ T28] audit: type=1326 audit(1768823296.649:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.3.12982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1663.470665][ T9252] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1663.502846][ T9252] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1663.534724][ T28] audit: type=1326 audit(1768823296.649:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.3.12982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=218 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1663.552282][ T9252] BTRFS info (device loop1): enabling auto defrag [ 1663.588852][ T9252] BTRFS info (device loop1): turning on sync discard [ 1663.633325][ T28] audit: type=1326 audit(1768823296.649:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.3.12982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1663.635770][ T9252] BTRFS info (device loop1): force clearing of disk cache [ 1663.723384][ T9252] BTRFS info (device loop1): using default commit interval 30s [ 1663.728948][ T28] audit: type=1326 audit(1768823296.649:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9280 comm="syz.3.12982" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1663.803364][ T9252] BTRFS info (device loop1): max_inline at 0 [ 1663.853072][ T9252] BTRFS info (device loop1): disabling free space tree [ 1664.123583][ T9252] BTRFS info (device loop1): enabling ssd optimizations [ 1664.152643][ T9252] BTRFS info (device loop1): rebuilding free space tree [ 1664.184266][ T9319] netlink: 'syz.3.12989': attribute type 10 has an invalid length. [ 1664.231292][ T9319] veth1_vlan: entered allmulticast mode [ 1664.237222][ T9252] BTRFS info (device loop1): disabling free space tree [ 1664.266219][ T9252] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1664.293661][ T9252] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1664.310488][ T9319] team0: Device veth1_vlan failed to register rx_handler [ 1664.559383][ T9327] netlink: 256 bytes leftover after parsing attributes in process `syz.2.12991'. [ 1664.737104][ T5770] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1665.104122][ T9344] netlink: 'syz.1.12992': attribute type 21 has an invalid length. [ 1665.166112][ T9344] netlink: 132 bytes leftover after parsing attributes in process `syz.1.12992'. [ 1665.459593][ T9355] loop2: detected capacity change from 0 to 2048 [ 1665.513379][ T9360] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.13000'. [ 1665.543142][ T9355] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1665.553790][ T9362] netlink: 'syz.3.13001': attribute type 10 has an invalid length. [ 1665.604503][ T9362] wlan1: mtu less than device minimum [ 1665.609963][ T9362] .`: (slave wlan1): Error -22 calling dev_set_mtu [ 1665.788341][ T9373] netlink: 24 bytes leftover after parsing attributes in process `syz.0.13003'. [ 1666.524277][ T9410] loop1: detected capacity change from 0 to 16 [ 1666.571451][ T9410] erofs: (device loop1): mounted with root inode @ nid 36. [ 1666.637325][ T9410] overlayfs: "xino" feature enabled using 3 upper inode bits. [ 1667.072280][ T9440] loop1: detected capacity change from 0 to 1024 [ 1667.126750][ T9440] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1667.397541][ T9463] netlink: 'syz.3.13030': attribute type 11 has an invalid length. [ 1667.410679][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1667.457347][ T9463] netlink: 212832 bytes leftover after parsing attributes in process `syz.3.13030'. [ 1667.875284][ T9489] netlink: 132 bytes leftover after parsing attributes in process `syz.3.13038'. [ 1667.887123][ T9486] Cannot find add_set index 3 as target [ 1668.140869][T15801] usb 2-1: new high-speed USB device number 46 using dummy_hcd [ 1668.177589][ T9502] netlink: 104 bytes leftover after parsing attributes in process `syz.3.13041'. [ 1668.231830][ T9496] loop2: detected capacity change from 0 to 4096 [ 1668.269881][ T9496] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 1668.327084][ T9496] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 1668.379965][T15801] usb 2-1: Using ep0 maxpacket: 32 [ 1668.422033][T15801] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1668.431890][T15801] usb 2-1: config 0 interface 0 altsetting 2 bulk endpoint 0x82 has invalid maxpacket 0 [ 1668.463812][T15801] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1668.476659][ T9496] ntfs3: loop2: Failed to load $Extend (-22). [ 1668.482809][ T9496] ntfs3: loop2: Failed to initialize $Extend. [ 1668.489837][T15801] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 1668.518551][T15801] usb 2-1: New USB device strings: Mfr=229, Product=1, SerialNumber=3 [ 1668.538371][T15801] usb 2-1: Product: syz [ 1668.549154][T15801] usb 2-1: Manufacturer: syz [ 1668.554216][T15801] usb 2-1: SerialNumber: syz [ 1668.585978][T15801] usb 2-1: config 0 descriptor?? [ 1669.071998][T15801] gs_usb 2-1:0.0: Couldn't get device config: (err=-71) [ 1669.087561][T15801] gs_usb: probe of 2-1:0.0 failed with error -71 [ 1669.135131][T15801] usb 2-1: USB disconnect, device number 46 [ 1669.149227][ T9532] netlink: 8 bytes leftover after parsing attributes in process `syz.2.13048'. [ 1670.941369][ T9576] loop3: detected capacity change from 0 to 32768 [ 1671.128159][ T9618] autofs4:pid:9618:validate_dev_ioctl: invalid path supplied for cmd(0xc0189374) [ 1671.178702][ T9621] netlink: 16 bytes leftover after parsing attributes in process `syz.2.13076'. [ 1671.557768][ T9636] netlink: 'syz.2.13080': attribute type 3 has an invalid length. [ 1671.725597][ T9644] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.13083'. [ 1672.746054][ T9685] loop1: detected capacity change from 0 to 4096 [ 1672.777254][ T9685] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 1672.882149][ T9694] (null): rxe_set_mtu: Set mtu to 1024 [ 1672.904449][ T9651] loop2: detected capacity change from 0 to 32768 [ 1672.920652][ T9685] ntfs3: loop1: failed to convert "c46c" to cp861 [ 1672.945117][ T9651] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.13085 (9651) [ 1672.985531][ T5775] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 1673.044683][ T9651] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1673.094571][ T9651] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 1673.103401][ T9651] BTRFS info (device loop2): enabling auto defrag [ 1673.136956][ T9651] BTRFS info (device loop2): turning on sync discard [ 1673.143722][ T9651] BTRFS info (device loop2): force clearing of disk cache [ 1673.191165][ T9651] BTRFS info (device loop2): using default commit interval 30s [ 1673.198861][ T9651] BTRFS info (device loop2): max_inline at 0 [ 1673.234907][ T9651] BTRFS info (device loop2): disabling free space tree [ 1673.260231][ T9701] netlink: 24 bytes leftover after parsing attributes in process `syz.1.13099'. [ 1673.270165][ T5775] usb 4-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1673.290458][ T5775] usb 4-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1673.301247][ T5775] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1673.310594][ T9701] netlink: 'syz.1.13099': attribute type 3 has an invalid length. [ 1673.327206][ T5775] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1673.348645][ T9701] netlink: 24 bytes leftover after parsing attributes in process `syz.1.13099'. [ 1673.367176][ T9701] netlink: 44 bytes leftover after parsing attributes in process `syz.1.13099'. [ 1673.424814][ T9651] BTRFS info (device loop2): enabling ssd optimizations [ 1673.470448][ T9651] BTRFS info (device loop2): rebuilding free space tree [ 1673.568782][ T9651] BTRFS info (device loop2): disabling free space tree [ 1673.594943][ T9651] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1673.623264][ T9651] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1673.898723][ T9694] infiniband syz2: set active [ 1673.922680][ T5773] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1673.936726][ T9694] infiniband syz2: added veth0_vlan [ 1673.953809][ T9694] syz2: rxe_create_cq: returned err = -12 [ 1673.963154][ T9694] infiniband syz2: Couldn't create ib_mad CQ [ 1673.969642][ T9694] infiniband syz2: Couldn't open port 1 [ 1674.180304][ T9694] RDS/IB: syz2: added [ 1674.214198][ T9694] smc: adding ib device syz2 with port count 1 [ 1674.229449][ T9694] smc: ib device syz2 port 1 has pnetid [ 1674.485699][ T5775] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32 [ 1674.498224][ T5775] stv0680 4-1:4.0: STV(e): camera ping failed!! [ 1674.523020][ T5775] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1674.553078][ T5775] stv0680 4-1:4.0: last error: 0, command = 0x0 [ 1674.563585][ T5775] usb 4-1: USB disconnect, device number 54 [ 1675.467283][T28677] usb 2-1: new high-speed USB device number 47 using dummy_hcd [ 1675.677304][T28677] usb 2-1: Using ep0 maxpacket: 8 [ 1675.700282][T28677] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1675.721740][T28677] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1675.749070][T28677] usb 2-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1675.784366][T28677] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1675.807121][T28677] usb 2-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 1675.819627][T28677] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1675.830624][T28677] usb 2-1: Product: syz [ 1675.834852][T28677] usb 2-1: Manufacturer: syz [ 1675.846636][T28677] usb 2-1: SerialNumber: syz [ 1675.871351][T28677] usb 2-1: config 0 descriptor?? [ 1675.882263][T28677] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 found [ 1675.979428][ T9797] netlink: 45 bytes leftover after parsing attributes in process `syz.3.13119'. [ 1675.992892][ T9783] loop2: detected capacity change from 0 to 32768 [ 1676.022048][ T9783] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop2 scanned by syz.2.13115 (9783) [ 1676.070734][ T9783] BTRFS info (device loop2): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1676.106451][ T9783] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 1676.122948][ T9783] BTRFS info (device loop2): turning on flush-on-commit [ 1676.130711][ T9783] BTRFS info (device loop2): turning off barriers [ 1676.138215][ T9783] BTRFS info (device loop2): turning on sync discard [ 1676.145605][ T9783] BTRFS info (device loop2): using free space tree [ 1676.163752][T28677] snd_usb_toneport 2-1:0.0: cannot get proper max packet size [ 1676.172342][T28677] snd_usb_toneport 2-1:0.0: Line 6 TonePort UX2 now disconnected [ 1676.185015][T28677] snd_usb_toneport: probe of 2-1:0.0 failed with error -22 [ 1676.234824][ T9816] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13120'. [ 1676.399835][ T5773] BTRFS info (device loop2): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1676.428044][ T788] usb 2-1: USB disconnect, device number 47 [ 1677.600725][ T9831] loop3: detected capacity change from 0 to 32768 [ 1677.724571][ T28] audit: type=1800 audit(1768823309.925:394): pid=9831 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.13123" name="file1" dev="loop3" ino=4 res=0 errno=0 [ 1677.933261][ T9873] netdevsim netdevsim1: Direct firmware load for  failed with error -2 [ 1678.003727][ T9873] netdevsim netdevsim1: Falling back to sysfs fallback for:  [ 1679.064461][ T9914] loop1: detected capacity change from 0 to 4096 [ 1679.100071][ T9914] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1679.224647][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1679.402433][T28677] usb 3-1: new high-speed USB device number 53 using dummy_hcd [ 1679.619170][T28677] usb 3-1: Using ep0 maxpacket: 16 [ 1679.631188][T28677] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1679.651170][T28677] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1679.672908][T28677] usb 3-1: Product: syz [ 1679.678109][T28677] usb 3-1: Manufacturer: syz [ 1679.682774][T28677] usb 3-1: SerialNumber: syz [ 1679.716832][T28677] r8152-cfgselector 3-1: config 0 descriptor?? [ 1679.813857][ T6720] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 1679.952592][ T9939] loop3: detected capacity change from 0 to 32768 [ 1679.964319][ T9939] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 scanned by syz.3.13154 (9939) [ 1679.978310][T28677] usbip-host 3-1: 3-1 is not in match_busid table... skip! [ 1680.017623][ T9939] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1680.035594][ T6720] usb 1-1: Using ep0 maxpacket: 32 [ 1680.046070][ T9939] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 1680.056601][ T9939] BTRFS info (device loop3): turning on flush-on-commit [ 1680.065692][ T9939] BTRFS info (device loop3): turning off barriers [ 1680.071596][ T6720] usb 1-1: config 0 has an invalid interface number: 35 but max is 0 [ 1680.072444][ T9939] BTRFS info (device loop3): turning on sync discard [ 1680.088441][ T9939] BTRFS info (device loop3): using free space tree [ 1680.102271][ T6720] usb 1-1: config 0 has no interface number 0 [ 1680.132238][ T6720] usb 1-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.8f [ 1680.155623][ T6720] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1680.164351][ T6720] usb 1-1: Product: syz [ 1680.168628][ T6720] usb 1-1: Manufacturer: syz [ 1680.174249][ T6720] usb 1-1: SerialNumber: syz [ 1680.184867][ T6720] usb 1-1: config 0 descriptor?? [ 1680.222916][ T6720] radio-si470x 1-1:0.35: could not find interrupt in endpoint [ 1680.270148][ T6720] radio-si470x: probe of 1-1:0.35 failed with error -5 [ 1680.303609][T15801] usb 3-1: USB disconnect, device number 53 [ 1680.431324][ T6720] radio-raremono 1-1:0.35: Thanko's Raremono connected: (10C4:818A) [ 1680.444091][ T5772] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1680.658633][ T6720] radio-raremono 1-1:0.35: raremono_cmd_main failed (-71) [ 1680.687804][ T6720] radio-raremono 1-1:0.35: V4L2 device registered as radio48 [ 1680.714377][ T6720] usb 1-1: USB disconnect, device number 37 [ 1680.731936][ T6720] radio-raremono 1-1:0.35: Thanko's Raremono disconnected [ 1680.946590][ T28] audit: type=1326 audit(1768823312.895:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10010 comm="syz.3.13163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1681.022222][ T28] audit: type=1326 audit(1768823312.895:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10010 comm="syz.3.13163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1681.140527][ T28] audit: type=1326 audit(1768823312.895:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10010 comm="syz.3.13163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=66 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1681.179447][ T28] audit: type=1326 audit(1768823312.895:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10010 comm="syz.3.13163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1681.207777][T10015] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13164'. [ 1681.236029][T10015] netlink: 12 bytes leftover after parsing attributes in process `syz.2.13164'. [ 1681.302319][ T28] audit: type=1326 audit(1768823312.895:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10010 comm="syz.3.13163" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fbb1779acb9 code=0x7ffc0000 [ 1681.324796][ C0] vkms_vblank_simulate: vblank timer overrun [ 1681.518673][T10025] openvswitch: netlink: Actions may not be safe on all matching packets [ 1681.522974][ T9991] loop1: detected capacity change from 0 to 32768 [ 1681.656367][ T9991] ocfs2: Mounting device (7,1) on (node local, slot 0) with writeback data mode. [ 1681.876394][ T9991] ocfs2: Unmounting device (7,1) on (node local) [ 1682.108141][T10050] loop3: detected capacity change from 0 to 8 [ 1682.158857][T10050] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 1682.204047][ T5761] udevd[5761]: incorrect cramfs checksum on /dev/loop3 [ 1682.265666][T10050] cramfs: Error -3 while decompressing! [ 1682.284965][T10050] cramfs: ffffffff973dd368(26)->ffff8880569be000(4096) [ 1682.296320][T10050] cramfs: Error -3 while decompressing! [ 1682.302115][T10050] cramfs: ffffffff973dd382(26)->ffff8880569bf000(4096) [ 1682.330700][T20159] udevd[20159]: incorrect cramfs checksum on /dev/loop3 [ 1682.338389][T10050] cramfs: Error -3 while decompressing! [ 1682.363672][T10050] cramfs: ffffffff973dd39c(16)->ffff888055e60000(4096) [ 1682.370660][T10050] cramfs: Error -3 while decompressing! [ 1682.394027][T10050] cramfs: ffffffff973dd368(26)->ffff8880569be000(4096) [ 1682.960795][T10080] loop3: detected capacity change from 0 to 256 [ 1683.101765][T10080] FAT-fs (loop3): Directory bread(block 64) failed [ 1683.113673][T10080] FAT-fs (loop3): Directory bread(block 65) failed [ 1683.137955][T10080] FAT-fs (loop3): Directory bread(block 66) failed [ 1683.166378][T10080] FAT-fs (loop3): Directory bread(block 67) failed [ 1683.173117][T10080] FAT-fs (loop3): Directory bread(block 68) failed [ 1683.203357][T10080] FAT-fs (loop3): Directory bread(block 69) failed [ 1683.211255][T10080] FAT-fs (loop3): Directory bread(block 70) failed [ 1683.218247][T10080] FAT-fs (loop3): Directory bread(block 71) failed [ 1683.225014][T10080] FAT-fs (loop3): Directory bread(block 72) failed [ 1683.233699][T10080] FAT-fs (loop3): Directory bread(block 73) failed [ 1683.952844][T10108] libceph: resolve '0.0' (ret=-3): failed [ 1684.285948][T10126] loop1: detected capacity change from 0 to 256 [ 1684.578364][T10140] loop3: detected capacity change from 0 to 64 [ 1684.617563][T10140] hfs: unable to locate alternate MDB [ 1684.635648][T10140] hfs: continuing without an alternate MDB [ 1685.078343][T10164] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.13203'. [ 1685.111445][T10164] openvswitch: netlink: ufid size 3064 bytes exceeds the range (1, 16) [ 1685.306881][T10172] loop1: detected capacity change from 0 to 512 [ 1685.360200][T10172] EXT4-fs: Ignoring removed orlov option [ 1685.416947][T10172] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem [ 1685.467981][T10172] EXT4-fs error (device loop1): ext4_iget_extra_inode:4732: inode #15: comm syz.1.13206: corrupted in-inode xattr: e_value size too large [ 1685.617732][T10172] EXT4-fs error (device loop1): ext4_orphan_get:1403: comm syz.1.13206: couldn't read orphan inode 15 (err -117) [ 1685.721463][T10172] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1685.903464][T10203] loop2: detected capacity change from 0 to 256 [ 1685.979686][ T5770] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1686.076279][ T33] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1686.092961][T10203] FAT-fs (loop2): Directory bread(block 64) failed [ 1686.126294][T10203] FAT-fs (loop2): Directory bread(block 65) failed [ 1686.140266][T10203] FAT-fs (loop2): Directory bread(block 66) failed [ 1686.165854][T10203] FAT-fs (loop2): Directory bread(block 67) failed [ 1686.178878][T10203] FAT-fs (loop2): Directory bread(block 68) failed [ 1686.185479][T10203] FAT-fs (loop2): Directory bread(block 69) failed [ 1686.219383][T10203] FAT-fs (loop2): Directory bread(block 70) failed [ 1686.237868][T10203] FAT-fs (loop2): Directory bread(block 71) failed [ 1686.248946][T10203] FAT-fs (loop2): Directory bread(block 72) failed [ 1686.272184][T10203] FAT-fs (loop2): Directory bread(block 73) failed [ 1686.782547][T10232] (null): rxe_set_mtu: Set mtu to 1024 [ 1686.816749][T10232] rdma_rxe: rxe_newlink: failed to add veth0_vlan [ 1687.048568][T10215] loop1: detected capacity change from 0 to 32768 [ 1687.077701][T10215] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.13217 (10215) [ 1687.120917][T10215] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1687.171994][T10215] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 1687.197104][T10215] BTRFS info (device loop1): turning on flush-on-commit [ 1687.225074][T10215] BTRFS info (device loop1): enabling disk space caching [ 1687.244594][T10215] BTRFS info (device loop1): disabling tree log [ 1687.281322][T10215] BTRFS info (device loop1): enabling ssd optimizations [ 1687.308786][T10215] BTRFS info (device loop1): enabling auto defrag [ 1687.334432][T10215] BTRFS info (device loop1): force clearing of disk cache [ 1687.370734][T10215] BTRFS info (device loop1): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 1687.424302][T10215] BTRFS info (device loop1): use zstd compression, level 3 [ 1687.431612][T10215] BTRFS info (device loop1): turning off barriers [ 1687.477374][T10215] BTRFS info (device loop1): max_inline at 0 [ 1687.483437][T10215] BTRFS info (device loop1): disk space caching is enabled [ 1687.568392][T10261] loop3: detected capacity change from 0 to 512 [ 1687.628247][T10261] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1687.662185][T10261] ext4 filesystem being mounted at /3287/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1687.739562][T10215] BTRFS info (device loop1): auto enabling async discard [ 1687.784738][T10215] BTRFS info (device loop1): rebuilding free space tree [ 1687.871104][T10261] EXT4-fs error (device loop3): ext4_validate_block_bitmap:421: comm syz.3.13229: bg 0: bad block bitmap checksum [ 1687.901197][T10215] BTRFS info (device loop1): disabling free space tree [ 1687.908192][T10215] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1687.938652][T10261] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6653: Filesystem failed CRC [ 1687.953878][T10215] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1687.985993][T10215] BTRFS info (device loop1): checking UUID tree [ 1688.119721][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1688.174389][T10215] BTRFS info (device loop1: state M): force clearing of disk cache [ 1688.215414][T10215] BTRFS info (device loop1: state M): max_inline at 0 [ 1688.388006][T10294] (null): rxe_set_mtu: Set mtu to 1024 [ 1688.393847][T10294] rdma_rxe: rxe_newlink: failed to add veth0_vlan [ 1688.421449][ T5770] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1689.196858][T10320] loop3: detected capacity change from 0 to 4096 [ 1689.247262][T10320] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1689.367607][T10320] ntfs: (device loop3): ntfs_read_locked_inode(): Corrupt standard information attribute in inode. [ 1689.438858][T10320] ntfs: (device loop3): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1689.483219][T10320] ntfs: (device loop3): load_and_init_upcase(): Failed to load $UpCase from the volume. Using default. [ 1689.548288][T10320] ntfs: volume version 3.1. [ 1689.813616][ T5772] ntfs: (device loop3): ntfs_put_super(): Volume has errors. Leaving volume marked dirty. Run chkdsk. [ 1689.948468][T10342] netlink: 452 bytes leftover after parsing attributes in process `syz.0.13249'. [ 1689.987669][T10344] loop3: detected capacity change from 0 to 8 [ 1690.174585][T10349] xt_TCPMSS: Only works on TCP SYN packets [ 1690.512726][T10335] loop1: detected capacity change from 0 to 32768 [ 1690.525533][T10314] loop2: detected capacity change from 0 to 32768 [ 1690.539906][T10335] (syz.1.13246,10335,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1690.555648][T10314] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 1690.575974][T10314] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 1690.576407][T10335] (syz.1.13246,10335,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1690.614406][T10314] gfs2: fsid=syz:syz.0: journal 0 mapped with 18 extents in 0ms [ 1690.628688][ T6720] gfs2: fsid=syz:syz.0: jid=0, already locked for use [ 1690.636711][ T6720] gfs2: fsid=syz:syz.0: jid=0: Looking at journal... [ 1690.674756][T10335] JBD2: Ignoring recovery information on journal [ 1690.685748][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1690.710891][ T6720] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 68ms [ 1690.718779][ T6720] gfs2: fsid=syz:syz.0: jid=0: Done [ 1690.724065][T10314] gfs2: fsid=syz:syz.0: first mount done, others may mount [ 1690.748351][T10314] gfs2: fsid=syz:syz.0: fatal: filesystem consistency error [ 1690.748351][T10314] inode = 0 2341 [ 1690.748351][T10314] function = gfs2_dinode_in, file = fs/gfs2/glops.c, line = 472 [ 1690.768251][T10314] gfs2: fsid=syz:syz.0: G: s:SH n:2/925 f:qobnN t:SH d:EX/0 a:0 v:0 r:3 m:20 p:1 [ 1690.789537][T10314] gfs2: fsid=syz:syz.0: H: s:SH f:AH e:0 p:10314 [syz.2.13238] inode_permission+0x23d/0x480 [ 1690.800090][T10314] gfs2: fsid=syz:syz.0: I: n:0/2341 t:4 f:0x00 d:0x00000000 s:0 p:0 [ 1690.809728][T10314] gfs2: fsid=syz:syz.0: about to withdraw this file system [ 1690.828187][T10314] gfs2: fsid=syz:syz.0: Journal recovery skipped for jid 0 until next mount. [ 1690.847927][T10314] gfs2: fsid=syz:syz.0: Glock dequeues delayed: 0 [ 1690.861574][T10314] gfs2: fsid=syz:syz.0: File system withdrawn [ 1690.878738][T10314] CPU: 0 PID: 10314 Comm: syz.2.13238 Not tainted syzkaller #0 [ 1690.886371][T10314] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025 [ 1690.896482][T10314] Call Trace: [ 1690.899823][T10314] [ 1690.902830][T10314] dump_stack_lvl+0x18c/0x250 [ 1690.907561][T10314] ? kobject_uevent_env+0x359/0x8b0 [ 1690.912822][T10314] ? show_regs_print_info+0x20/0x20 [ 1690.918069][T10314] ? load_image+0x400/0x400 [ 1690.922638][T10314] ? kobject_uevent_env+0x363/0x8b0 [ 1690.928016][T10314] gfs2_withdraw+0xb24/0x13d0 [ 1690.932774][T10314] ? gfs2_lm+0x240/0x240 [ 1690.937086][T10314] ? preempt_schedule+0xc0/0xd0 [ 1690.942007][T10314] ? gfs2_consist_inode_i+0xf5/0x110 [ 1690.947359][T10314] gfs2_inode_refresh+0xb89/0x1000 [ 1690.952509][T10314] ? gfs2_inode_metasync+0xf0/0xf0 [ 1690.957672][T10314] ? gfs2_glock_nq+0xd4f/0x1420 [ 1690.962559][T10314] ? do_raw_spin_lock+0x11f/0x2c0 [ 1690.967624][T10314] gfs2_instantiate+0x162/0x220 [ 1690.972514][T10314] gfs2_glock_wait+0x1d4/0x2a0 [ 1690.977310][T10314] gfs2_permission+0x25a/0x460 [ 1690.982128][T10314] ? gfs2_lookupi+0x640/0x640 [ 1690.986843][T10314] ? inode_permission+0x23d/0x480 [ 1690.991907][T10314] ? gfs2_lookupi+0x640/0x640 [ 1690.996620][T10314] inode_permission+0x23d/0x480 [ 1691.001512][T10314] may_open+0x2e9/0x440 [ 1691.005734][T10314] path_openat+0x268c/0x3230 [ 1691.010413][T10314] ? do_sys_openat2+0xda/0x1d0 [ 1691.015233][T10314] ? verify_lock_unused+0x140/0x140 [ 1691.020474][T10314] ? do_filp_open+0x430/0x430 [ 1691.025197][T10314] ? __virt_addr_valid+0x18c/0x540 [ 1691.030354][T10314] do_filp_open+0x1f5/0x430 [ 1691.034906][T10314] ? vfs_tmpfile+0x490/0x490 [ 1691.039556][T10314] ? _raw_spin_unlock+0x28/0x40 [ 1691.044440][T10314] ? alloc_fd+0x58f/0x630 [ 1691.048806][T10314] do_sys_openat2+0x134/0x1d0 [ 1691.053520][T10314] ? do_sys_open+0xe0/0xe0 [ 1691.057969][T10314] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 1691.063993][T10314] ? lock_chain_count+0x20/0x20 [ 1691.068904][T10314] __x64_sys_openat+0x139/0x160 [ 1691.073821][T10314] do_syscall_64+0x55/0xa0 [ 1691.078378][T10314] ? clear_bhb_loop+0x40/0x90 [ 1691.083108][T10314] ? clear_bhb_loop+0x40/0x90 [ 1691.087818][T10314] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1691.093744][T10314] RIP: 0033:0x7fe30cb5b58e [ 1691.098191][T10314] Code: 08 0f 85 a5 a8 ff ff 49 89 fb 48 89 f0 48 89 d7 48 89 ce 4c 89 c2 4d 89 ca 4c 8b 44 24 08 4c 8b 4c 24 10 4c 89 5c 24 08 0f 05 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 80 00 00 00 00 48 83 ec 08 [ 1691.117826][T10314] RSP: 002b:00007fe30da72da8 EFLAGS: 00000246 ORIG_RAX: 0000000000000101 [ 1691.126268][T10314] RAX: ffffffffffffffda RBX: 00007fe30da736c0 RCX: 00007fe30cb5b58e [ 1691.134306][T10314] RDX: 0000000000010000 RSI: 0000200000000100 RDI: ffffffffffffff9c [ 1691.142323][T10314] RBP: 00002000000002c0 R08: 0000000000000000 R09: 0000000000000000 [ 1691.150587][T10314] R10: 0000000000000000 R11: 0000000000000246 R12: 0000200000000100 [ 1691.158676][T10314] R13: 00007fe30da72ea0 R14: 0000000000012806 R15: 0000200000002080 [ 1691.166692][T10314] [ 1691.169873][ C0] vkms_vblank_simulate: vblank timer overrun [ 1691.191397][T10335] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1691.597534][ T5770] ocfs2: Unmounting device (7,1) on (node local) [ 1692.044418][T10400] (null): rxe_set_mtu: Set mtu to 1024 [ 1692.072953][ T5913] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 1692.083256][T10400] rdma_rxe: rxe_newlink: failed to add veth0_vlan [ 1692.281952][ T5913] usb 4-1: Using ep0 maxpacket: 16 [ 1692.312855][ T5913] usb 4-1: New USB device found, idVendor=0483, idProduct=1234, bcdDevice=ff.76 [ 1692.343583][ T5913] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1692.351689][ T5913] usb 4-1: Product: syz [ 1692.377141][ T5913] usb 4-1: Manufacturer: syz [ 1692.381824][ T5913] usb 4-1: SerialNumber: syz [ 1692.419353][ T5913] usb 4-1: config 0 descriptor?? [ 1692.692343][ T5913] usb 4-1: ignoring: not an USB2CAN converter [ 1692.956080][ T5913] usb 4-1: USB disconnect, device number 55 [ 1693.242316][T10460] bridge0: port 1(veth0_to_bridge) entered blocking state [ 1693.287873][T10460] bridge0: port 1(veth0_to_bridge) entered disabled state [ 1693.295263][T10460] veth0_to_bridge: entered allmulticast mode [ 1693.353598][T10460] veth0_to_bridge: entered promiscuous mode [ 1693.893816][T10490] netlink: 424 bytes leftover after parsing attributes in process `syz.1.13288'. [ 1693.903022][T10490] netlink: 'syz.1.13288': attribute type 1 has an invalid length. [ 1694.194836][T10507] loop1: detected capacity change from 0 to 4096 [ 1694.241067][ T5913] usb 4-1: new full-speed USB device number 56 using dummy_hcd [ 1694.263943][T10507] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1694.344114][T10507] ntfs3: loop1: Failed to load $Extend (-22). [ 1694.365558][T10507] ntfs3: loop1: Failed to initialize $Extend. [ 1694.449005][ T5913] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1694.468979][ T5913] usb 4-1: not running at top speed; connect to a high speed hub [ 1694.503746][ T5913] usb 4-1: config 0 has an invalid interface number: 88 but max is 0 [ 1694.514070][ T5913] usb 4-1: config 0 has no interface number 0 [ 1694.520672][ T5913] usb 4-1: config 0 interface 88 altsetting 8 endpoint 0x86 has an invalid bInterval 0, changing to 10 [ 1694.553794][ T5913] usb 4-1: config 0 interface 88 altsetting 8 endpoint 0x86 has invalid wMaxPacketSize 0 [ 1694.585842][ T5913] usb 4-1: config 0 interface 88 has no altsetting 0 [ 1694.611596][ T5913] usb 4-1: string descriptor 0 read error: -22 [ 1694.621783][ T5913] usb 4-1: New USB device found, idVendor=0460, idProduct=0004, bcdDevice=96.31 [ 1694.652298][ T5913] usb 4-1: New USB device strings: Mfr=1, Product=84, SerialNumber=3 [ 1694.667479][ T5913] usb 4-1: config 0 descriptor?? [ 1694.694782][ T5913] input: USB Acecad Flair Tablet 0460:0004 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.88/input/input102 [ 1694.883316][ T5913] input: failed to attach handler mousedev to device input102, error: -5 [ 1694.920238][ T28] audit: type=1326 audit(1768823325.784:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10532 comm="syz.0.13300" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f067539acb9 code=0x0 [ 1695.034566][ T5775] usb 4-1: USB disconnect, device number 56 [ 1695.075709][T20159] udevd[20159]: Error opening device "/dev/input/event4": No such file or directory [ 1695.100550][T20159] udevd[20159]: Unable to EVIOCGABS device "/dev/input/event4" [ 1695.124940][T20159] udevd[20159]: Unable to EVIOCGABS device "/dev/input/event4" [ 1695.392687][T10565] RDS: rds_bind could not find a transport for fe80::1a, load rds_tcp or rds_rdma? [ 1695.528992][T10570] netlink: 'syz.1.13308': attribute type 1 has an invalid length. [ 1695.546696][T10570] netlink: 232 bytes leftover after parsing attributes in process `syz.1.13308'. [ 1696.076460][T10595] netlink: 'syz.2.13316': attribute type 30 has an invalid length. [ 1696.731376][T10590] loop1: detected capacity change from 0 to 32768 [ 1697.044007][T10635] bridge0: port 1(veth0_to_bridge) entered blocking state [ 1697.067602][T10635] bridge0: port 1(veth0_to_bridge) entered disabled state [ 1697.097383][T10635] veth0_to_bridge: entered allmulticast mode [ 1697.128003][T10635] veth0_to_bridge: entered promiscuous mode [ 1698.392741][T10650] loop2: detected capacity change from 0 to 32768 [ 1698.569228][ T33] read_mapping_page failed! [ 1698.574569][ T33] ERROR: (device loop2): txCommit: [ 1698.574569][ T33] [ 1698.630762][ T33] jfs_write_inode: jfs_commit_inode failed! [ 1698.941980][T10709] bridge0: port 5(veth0_to_bridge) entered blocking state [ 1698.966732][T10709] bridge0: port 5(veth0_to_bridge) entered disabled state [ 1698.974383][T10709] veth0_to_bridge: entered allmulticast mode [ 1699.032900][T10709] veth0_to_bridge: entered promiscuous mode [ 1699.053689][T10709] bridge0: adding interface veth0_to_bridge with same address as a received packet (addr:aa:aa:aa:aa:aa:1b, vlan:0) [ 1699.087439][T10709] bridge0: port 5(veth0_to_bridge) entered blocking state [ 1699.096381][T10709] bridge0: port 5(veth0_to_bridge) entered forwarding state [ 1699.551397][T28677] usb 2-1: new full-speed USB device number 48 using dummy_hcd [ 1699.660115][T30235] usb 3-1: new high-speed USB device number 54 using dummy_hcd [ 1699.703144][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1699.759405][T28677] usb 2-1: config 16 has an invalid interface number: 19 but max is 0 [ 1699.768533][T28677] usb 2-1: config 16 has an invalid descriptor of length 0, skipping remainder of the config [ 1699.800595][T28677] usb 2-1: config 16 has no interface number 0 [ 1699.817914][T28677] usb 2-1: config 16 interface 19 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1699.853919][T28677] usb 2-1: New USB device found, idVendor=0499, idProduct=cdf4, bcdDevice=78.ee [ 1699.877255][T30235] usb 3-1: Using ep0 maxpacket: 32 [ 1699.895083][T28677] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1699.906237][T30235] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1699.919743][T28677] usb 2-1: Product: syz [ 1699.923975][T28677] usb 2-1: Manufacturer: syz [ 1699.928609][T28677] usb 2-1: SerialNumber: syz [ 1699.964123][T30235] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1699.989932][T30235] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1700.006535][T30235] usb 3-1: Product: syz [ 1700.017705][T30235] usb 3-1: Manufacturer: syz [ 1700.036605][T30235] usb 3-1: SerialNumber: syz [ 1700.072670][T30235] usb 3-1: config 0 descriptor?? [ 1700.081923][T30235] usb 3-1: bad CDC descriptors [ 1700.100537][T30235] usb 3-1: unsupported MDLM descriptors [ 1700.373535][T30235] usb 3-1: USB disconnect, device number 54 [ 1700.509677][T28677] usb 2-1: USB disconnect, device number 48 [ 1700.534502][ T6694] udevd[6694]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:16.19/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1701.247352][T10824] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13383'. [ 1701.657726][T10847] netlink: 180 bytes leftover after parsing attributes in process `syz.3.13392'. [ 1701.708418][T10850] netlink: 'syz.0.13393': attribute type 1 has an invalid length. [ 1702.212842][T10863] netlink: 272 bytes leftover after parsing attributes in process `syz.3.13397'. [ 1703.306220][T10878] loop3: detected capacity change from 0 to 512 [ 1703.463823][T10878] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.13402: invalid block [ 1703.509022][T10878] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.13402: invalid indirect mapped block 4294967295 (level 1) [ 1703.545666][T10857] loop1: detected capacity change from 0 to 32768 [ 1703.619953][T10878] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.13402: invalid indirect mapped block 4294967295 (level 1) [ 1703.718121][T10878] EXT4-fs (loop3): 2 truncates cleaned up [ 1703.728734][T10878] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1703.760269][T10857] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1703.929825][T10857] (syz.1.13395,10857,1):ocfs2_find_entry:1086 ERROR: status = -117 [ 1703.991889][T10857] (syz.1.13395,10857,1):ocfs2_find_entry:1086 ERROR: status = -117 [ 1704.036978][T10857] (syz.1.13395,10857,1):ocfs2_symlink:2068 ERROR: status = -117 [ 1704.051248][T10894] loop2: detected capacity change from 0 to 64 [ 1704.090815][ T5772] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1704.528305][ T5770] (syz-executor,5770,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 76 [ 1704.801405][ T5770] ocfs2: Unmounting device (7,1) on (node local) [ 1704.914861][T10902] loop3: detected capacity change from 0 to 4096 [ 1705.063214][T10902] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1705.128652][T10902] ntfs3: loop3: Failed to load $Extend (-22). [ 1705.155505][T10902] ntfs3: loop3: Failed to initialize $Extend. [ 1706.800910][T10914] loop2: detected capacity change from 0 to 32768 [ 1706.933093][T10914] [ 1706.933093][T10914] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1706.933093][T10914] [ 1707.068060][T10914] ialloc: diAlloc returned -5! [ 1707.084564][T10948] netlink: 12 bytes leftover after parsing attributes in process `syz.3.13416'. [ 1707.093868][T10948] netlink: 16 bytes leftover after parsing attributes in process `syz.3.13416'. [ 1707.120017][T10949] loop1: detected capacity change from 0 to 64 [ 1707.199972][T10949] hfs: filesystem was not cleanly unmounted, running fsck.hfs is recommended. mounting read-only. [ 1707.277962][T10949] hfs: filesystem is marked locked, mounting read-only. [ 1707.334749][ T5773] [ 1707.334749][ T5773] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1707.334749][ T5773] [ 1707.425815][ T5773] [ 1707.425815][ T5773] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1707.425815][ T5773] [ 1708.494209][T10974] x_tables: unsorted entry at hook 2 [ 1708.824334][T10985] IPVS: set_ctl: invalid protocol: 43 224.0.0.1:20002 [ 1708.915317][ T23] usb 2-1: new high-speed USB device number 49 using dummy_hcd [ 1709.146919][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 1709.173311][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1709.216484][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 1709.272085][ T23] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1709.361223][ T23] usb 2-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13 [ 1709.398251][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1709.445885][ T23] usb 2-1: Product: syz [ 1709.467991][ T23] usb 2-1: Manufacturer: syz [ 1709.498410][ T23] usb 2-1: SerialNumber: syz [ 1709.536661][ T23] usb 2-1: config 0 descriptor?? [ 1709.596779][T10997] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1709.846389][ T23] adutux 2-1:0.0: Could not retrieve serial number [ 1709.877081][ T23] adutux: probe of 2-1:0.0 failed with error -5 [ 1710.117513][T18387] usb 2-1: USB disconnect, device number 49 [ 1711.207699][T11073] netlink: 'syz.3.13442': attribute type 2 has an invalid length. [ 1711.253592][T11075] binder: 11072:11075 ioctl c018620c 0 returned -14 [ 1711.263622][T11073] netlink: 723 bytes leftover after parsing attributes in process `syz.3.13442'. [ 1715.187648][T11120] overlayfs: conflicting options: metacopy=off,verity=on [ 1717.064358][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1721.143361][T11124] netlink: 'syz.2.13458': attribute type 64 has an invalid length. [ 1722.497631][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1752.436447][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1788.886237][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1827.336194][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1843.985675][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured! [ 1844.619638][ T5778] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1845.020961][T11172] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1845.042740][T11172] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1845.065710][T11172] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1845.085403][T11172] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1845.105144][T11172] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1845.430842][T27082] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 1845.456132][T27082] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 1845.483434][T27082] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 1845.512820][T27082] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 1845.540724][T27082] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 1845.627765][T27082] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 1848.571148][T27082] Bluetooth: hci0: command tx timeout [ 1851.031149][T27082] Bluetooth: hci0: command tx timeout [ 1853.374566][T27082] Bluetooth: hci0: command tx timeout [ 1855.212745][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1857.142515][T27082] Bluetooth: hci0: command tx timeout [ 1864.096944][T11172] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 1864.172215][T11172] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 1864.242133][T11172] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 1864.260698][T11172] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 1864.280459][T11172] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 1864.299884][T11172] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 1866.183255][ C0] ip6_tunnel: ip6gretap2 xmit: Local address not yet configured! [ 1866.863343][T27082] Bluetooth: hci1: command tx timeout [ 1869.901125][T27082] Bluetooth: hci1: command tx timeout [ 1872.326500][T11172] Bluetooth: hci1: command tx timeout [ 1874.798981][T11172] Bluetooth: hci1: command tx timeout [ 1921.827441][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 1971.608198][ C1] ip6_tunnel: ip6gre1 xmit: Local address not yet configured! [ 1980.152169][T27082] Bluetooth: hci0: command 0x0406 tx timeout [ 1988.968066][ T1280] ieee802154 phy1 wpan1: encryption failed: -22 [ 2001.982613][T27082] Bluetooth: hci1: command 0x0406 tx timeout [ 2019.474374][ T29] INFO: task kworker/0:6:11135 blocked for more than 143 seconds. [ 2020.430284][ T29] Not tainted syzkaller #0 [ 2021.658378][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 2021.677964][ T29] task:kworker/0:6 state:D stack:27248 pid:11135 ppid:2 flags:0x00004000 [ 2023.193350][ T29] Workqueue: events switchdev_deferred_process_work [ 2023.211203][ T29] Call Trace: [ 2023.214548][ T29] [ 2023.217535][ T29] __schedule+0x1553/0x45a0 [ 2023.967967][ T29] ? do_raw_spin_lock+0x11f/0x2c0 [ 2024.957399][ T29] ? mark_lock+0x94/0x320 [ 2024.961839][ T29] ? asan.module_dtor+0x20/0x20 [ 2026.078831][ T29] ? lockdep_hardirqs_on+0x98/0x150 [ 2026.095266][ T29] schedule+0xbd/0x170 [ 2026.099435][ T29] schedule_preempt_disabled+0x13/0x20 [ 2026.784344][ T29] __mutex_lock+0x6a9/0xcc0 [ 2026.800242][ T29] ? __mutex_lock+0x4f9/0xcc0 [ 2026.805004][ T29] ? switchdev_deferred_process_work+0xe/0x20 [ 2028.902065][ T29] ? mutex_lock_nested+0x20/0x20 [ 2028.907118][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 2029.135024][ T29] ? process_scheduled_works+0x96f/0x15d0 [ 2029.152033][ T29] switchdev_deferred_process_work+0xe/0x20 [ 2029.158015][ T29] process_scheduled_works+0xa5d/0x15d0