last executing test programs: 2.813565178s ago: executing program 1 (id=12835): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000900)=@newsa={0x144, 0x10, 0x713, 0x0, 0x0, {{@in6=@empty, @in=@private, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x20}, {@in=@dev={0xac, 0x14, 0x14, 0x28}, 0x0, 0x32}, @in6=@ipv4={'\x00', '\xff\xff', @empty}, {0x0, 0xfffffffffffffffc}, {}, {}, 0x0, 0x0, 0x2}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @offload={0xc, 0x1c, {0x0, 0x2}}]}, 0x144}}, 0x90) 2.663476425s ago: executing program 1 (id=12838): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f00000002c0)={'lo\x00', &(0x7f0000000000)=@ethtool_cmd={0xa, 0x0, 0x200, 0x0, 0x1, 0x4, 0x0, 0x9, 0xfd, 0x0, 0xfffffffd, 0x0, 0x3, 0x0, 0xa, 0x0, [0x0, 0xfffffff8]}}) 2.54224361s ago: executing program 1 (id=12841): r0 = syz_mount_image$btrfs(&(0x7f0000000100), &(0x7f0000005200)='./file0\x00', 0x10010, &(0x7f0000000400), 0x0, 0x51ab, &(0x7f0000005240)="$eJzs3V9oVFceB/Az+aPxDyY+xV32wX1YWcUFWRF2UdggGF2Whdn1YVnYrFlZxT+7JUgDwb5YS2lBxGCgthSKD33pS0mlUFqqBAsthYogVloUW0teWiiESsGXlpK590xmzvVmxlQbq5+PJHfO/d1z7pnhPsx3zLkTAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIIRwcM3Kv+xaPb2urD7dP3bq6LLt507vP3ljaGjLlRAqtf2VvL5n+66/79+95689scPw37JtX1/ZkFnXz7PGkqads/2af/4TQuhOBujMtzs6G/pW0hOEI8UB53XgZv/o5u7BaxN3zmy8eP3QhuJTZ1bPYk9gseTX1fTctTRQ+92RHFFvN1x6laZLNOufXnA/yZMAAO7JpmptU387mr/FrbePpfWkPZC0x5N2fIcw3thYiGzcJWXzXJvWF2meA1lUWFo6z6Sev/71djXtn7STqHEP82w+NI80PWXzHEnqizVPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgIfJqx9euvTcy+u3ldWn+8dOHV22/dzp/SdvDA1tuRJCX21/JStXlv+q8w+fLtt57fiRN36zr+ftk515v7jtajg4fBIf/LE3hL0Nlek47JerQqg2F2rN8FKxcLD24M+xAAAAwKPkF7XfHfV2Fge7m9qVWpqs1P5FWVg8cLN/dHP34LWJO2c2Xrx+aMPCx6uWjDdw1/Hq7b65n0pDMI7xNx1vrh4PPVIYZ37piGme/2zmyVsXJn7777L+hfzfN3/+j6+c/A8AAMCPIf+n48yvVf6/+s7zT3UN7n2vrH8h/69tOmUh/8cZx/zfERaW/wEAAOBh9qDz/0BhnPm1yv/fnZ86f/nb46+U9S/k/03t5f+uxmnHnR/FCR/uDWFTq6kDAAAAJeL/u899tBDzevbJQZrXO2ZGe6d6blwtG6+Q/wfay//d9/2ZAQAAAAv1v7F/Hb8wNn6zrF7I/9X28v/SBz5zAAAAoF37Tvz/3PoNIyvL6oX8P9xe/l+eb/OVD1mn9+NfIUz0htAz+2AkK3wQxv9ULwAAAAD3SczpX41u/f7jwel3y44r5P+R+e//H+90ENf/N93/r7D+v6GQ3fVvqxsDAAAA8DgqruePt8fPvrmg7Pv3213/f+uXO3b9d+c/vig7fyH/H2sv/3c2bu/n9/8BAADAAvzcvv/vn4Vx5tfq/v/fDN36et3hZwfL+hfy/3h7+T9uVzQ+van4+jzTG8Ka2Qf53QRfi6c7nBQmuxsK2Quf9Ngde+SFyaUNhZqRpMfve0P49eyDY0lhdSyMJ4WZVXnhbFK4HAv59VAvvJ4UpuKV9sKqfLpp4a1YyBdYTMYVFCvqSyKSHrfLeswW7trjev3kAAAAj5UYnvMs293cDGmUnay0OmB5qwM6Wh3Q2eqAruSA9MCy/WG4uRD3v7jtd7evPPHm06FEIf+fbS//x5diSbYpW/8f4vr//HsN6+v/h2OhLylMxkI1vWNANZ4jC7sn4jn6qnmPmTX1AgAAADzS4ucCnYs8DwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAH5g7/6D7KrqA4Cf/f0jm91FHAFJNYqA6ZDNJjFKK1MC1UFxpi4OdZw60UR2g9ssJCZhICnthEA7U5hUVKa1o0NDHUdpkUY6jlK1pEyBcaRTm7ZMxWhl/EFtaxnGSodSm87be8/d+87dm/dCdiFLP58/9p33vufnfT/2nXvvOxcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOD/h38ZWPMb+1f89Py6+PfPuOHDewcuve+jWw8c3bRpw5EQJmYf78jCHYMrui785sBlj+3f+flzp/rvP9Cbl8vjYVnjT2d+55ai1uUhfLEjhO40sHooC/Tk94difSuGQjgtzAWKElODWYm04fDQQAgHw1ygqOr+gRCGSoErjzz4wIFG4o6BEM4NIfSlbXy7L2tjIA2c15sFBtPA9u4s8F/HMkXgS51ZAE5afDMUL/pDE80ZRucvV/P661mwjr240uF1xcRofb4fX7LInSrpTR+YOKmnrVIdi6Ly9jjs3bYE3m2V7Xy7p638RSr/hnJsLtQXOientm65bmZ3fKQzjI111dW0SM/z40/feNWJpJfM6zB2YHRBXofP3vme68+afMuNt24/54m177vg6Ml2s27zLra+kL/mlszzGG30ebIE3n6Vb0krfekKIfzcB7tv6vrtI5+qi1fm/6PHn//Hl3O87WzKHWt9bjibm8dHhmLiqeFsbg4AAABLxlLYa/qjs1/xe6s61zxeV19l/r+yveP/8ZB/PpnPRns4hI2ziZtHQjhz9vEscHds7gMjIbxmNjXRHLgkCRwO4azZxKqiqqREfyyxMgk8OZwHNiaBh2NgIgl8OgZuTwK3xMChJHBVDBxOApfGQJhuHsfPD+fjaDswEAObs414KJ6F8JPh2Fqyrb5VVAUAALBA8tlhT/Pd0rkOJ5shTi8PDbTKEM/Ars3Ql9SQzmCLaVVtDd2tauhsVUMx7n3HH36l5o5WNVdOw+hoznDpK/7w/BVfu+ELoUZl/j9+/Pl/3zwd6agc/w/hitm/MXdnHpkp4psnmjIAAAAAJ2HtG2a+9idnv+nNdfHK/H9je+f/x30iXaXM4dG4G2LbSAjjzYGs2jdXA9lR72V5AAAAAJaC4nh8cSx8Or/NTtFO59PV/BMnmD8e+N84b/5fCpOnb/vBUxvq+luZ/0+0d/7/YPNt1omHYy8+NhJCfynwSOxlIzBrZQx89+LmQD7+h+MGuC1WlZ+YUFR1WyyxOQbGk8DBuhLfKEqc2RzIn6yi8ZuLcUznJUoBAAAAeMHF3QHxuHw8///Ctd/70KaP7/1cXbnK/H/ziZ3/PzsPrpzeP7MshDXdIXSlPwx4dDBbGDAGhjryxFcHs7q60qpuGgzhosbA0qqeyNf/707XGDwykFUVA2e+9rNPn9dIfGoghDXlwGPvvWt2x8juJFA0/qsDIby6Mdq08S/0Z433pI3/QX8IryoFiqo+0B9Co7HetKoH+/LrGKRV/VlfCKeXAkVVb+wLYU8AYImK/0onyw/u2rN325aZmamdi5iI+/AHwtbpmamxq7bPTPbV9Gky6XPTMkY3VcfU2ebYj+ZLFN1z+dhIO+nid4Lj5b7k+/ErJw7m9+N3oZ7Zca7rabq7Ph3y68+pNpEO6cUY8mC5krknsVJ/zN8bloX+63ZN7Ry7Ycvu3TvXZn/bzb4u+xsPM2Xbam26rQbn61sbL492F0N/vtuq6TJXa3Zfs2PNrj17V09fs+Xqqaunrn3D+LrxdevHN7zpwjWNUY1nf1sM9fz5qk6Geuyu6hDavQbU8x3qK7tLlbwQnxoSEhJLLbHl4q/+5b1nfWJZ3cdPZf6/4/jz//ipEz/58/UZ6o7/j8bD/Nnjc4f5N8fAwXaP/4/WHc0vTgxYmQT2xcA+h/kBAAB4aYi7G+PezLhXuuem1WN//MlHnqwrV5n/72vv9/8LtP5/sXT95XXL/K+KJcbr1v9Pl/kv1v/fV7f+f7rMf7H+/8EXYf3/64pAskl+Yv1/AADgpeCFW/+/5fL+6QUCKhlaLu+fXiCgkqHlMv7tXiDghNf/f/tzr+u55iOvviXUqMz/b29v/m/hfgAAADh13HVkQ8eD//o/D9XFK/P/g+3N/1/49f9C3fn/K+sCE3ULA1r/DwAAgCWqbv2/9a/78ebP/WzFD+vKVeb/h9qb/8fTLjqbcsdanxvO1rQL6Zp2Tw0XPxkAAACApaEzjI21u6Jp08qolzz/Nh/PlwI9Xrrsr758zT8+8tb39tfVV5n/H25v/t/0u4xn73zP9WdNvuXG527dfs4Ta993wdG54/8AAADA4ml3vwQAAAAAAAAAAAAAAPDie3rv5Lv++ew7P1MXr/z+P1wx+3jd7//jdf/i7wte3pQ71tp6/b/8/pXvuHfP7JKFjw6HcE45sG3/ttNCfm3+88uBBzatOqOR2J+W+Mp3Lv1BI/H+NPC21S97ppG4KAlsjosknpUG4lUVn1meBOLyin+fBuL2OJQGevPA7y7PxtGRbqsfDWXbqiPdVo8PhTBSChTb6otDWRsd6QDvSALFAD+UBuIAfyUPdKa9undZ1qsYGIpF/2hZ1isAAE5Z8VtgT9g6PTM1Hr/Cx9tXdjffRk1Llt1UrbajzeaP5kuT3XP52Eg76a70u+jctcZ7Ql9jCGsrX1fLWTpmR7kwtbTYdC+vGXKr1d7a/XX2iW663voRDWQjGrtq+8xkT8uBr2+dZV13yyxrK5OdcpbO2U3aRi1t9KWNEbW5bdrocrzfGcbGupJcvxiDo6HJQr0iyuv81b0Kynn2Tb7xb75x7Nihuvoq8//R9ub/feVxPZNfDGBfvLLezSMhnNnmiAAAAIB2fevL/7Ru+yd+55709ort1956weCPLq4rV5n/r2xv/h93jOWHgrO9HYfj9f+L+f9oFrg7NveBkRBeM5uaiCWyC+pfHkuMZ4G74w6TVbHE5onmqvpj4FASeHI4DxxOAg/HQL6X4rMh35XzkeEQNsymrmgusSOWGE0C74yBlUlgLAbGk8DyGNiYBP59eR6YSAJfj4Ew3byt/ny5vSsAAMDzkM+zeprvhnSed6i7VYaOVhkGW2XobJWhr1WGulHE+/fFDD3JySsdpUw9aa0DSS2VDPFi+Cfcr0qG8I3mnGnBStPx/IPifIOO5gz/dtnrv33erlXtX/9/vL35/2Dzbdb6w3H+P3f9vyzwSOzex+Kp4ytj4LsXNwfyHQMPx8nubUVVE3mJfNJ+WyyxMQZWJoEdMbAxCWy+Ig8cPKM5kM+0i8ZvLhqfzkuUAgAAAPCCizsI4m6aOP//0/+++3MH/uHav64rV5n/b2xv/h/bW1Zu7Jai1uUhfLFjrjdFYPVQFoj7MYbiz+NXDIVwWmkHR1FiajAr0Zs0HB4ayH6h3ptWdf9AtsZAvH/lkQcfONBI3DEQwrmlvS9FG9/uy9oYSAPn9WaBwTSwvTsLxD0/ReBLnVkATlqxVzC+oPJTXQqj85eref29VK4Jmg6vsg90nnzz/eZqsfSlD+T7VAsn9rRVqmNRVN4eh73bluK7bdS7rfxFKv+Gcmwu1Bc6J6e2brluZnd8pPxL1opFep7Lv1JtJ70Ar8N9z7+3rfWlHRhPPj7G5y83/+uwI1b37J3vuf6sybfceOv2c55Y+74LjrbdjRrxh8Lv/uTLRsubd7H1hfw1t+Q+TyZ8nizFfwMrPW2NGexTv//V//jp4z+ri1fm/xPtzf+7k9tZz8aNuWskhNeXNu6jcfP/8kj2OVgKZJ+Sp1cD2SH37w3XfnICAADAQit2dxT7C6bz2+yE8HSeXM0/cYL54/6KjfPmb7ffW29+aP8P/+6Or9TFK/P/zcef//cn3XT83/F/Fonj//M61XdF96cP7DupXdGV6lgUjv/P61R/tzn+Py/H/x3/n4/j/y04/j+vU/1pq3xL2uFLVwjh6++/8+33bP+18+rilfn/jvbm/9b/m3/RvmL9v8116//tqFv/b5/1/wAAgEVVs9BcOs+rrN5XyZCu3lfJ0HKBwJZLDFr/74TX/3vrO//3+mOvuGRnqFGZ/+9rb/4fXw7Lyq0vlfX/Vl5RU9XtMbDDwoAAAACciup2EAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDievcvPLl8029eOF0X//4ZN3x478Cl931064GjmzZtOBJClrUjC3cMrui68JsDlz22f+fnz53qv/9AX16uJ789uyl3rPW54RAOlh4Ziomnhht35gJXvuPePd2NxKPDIZxTDmzbv+20RuLTwyGcXw48sGnVGY3E/rTEV75z6Q8aifengbetftkzjcRFeaAj7e4nl2fd7Ui7e2B5CCOlQNHdX1/eXFXRxmV5oDNt4zNDWRsxMBSLfnwoayMGZmKJ6f4Q1nSH0JVW9bW+rKqutKq/6Muq6kqr+q2+EC4KIXSnVX2nN6uqOx353/ZmVcXAma/97NPnNRIHe0NYUw489t67NjQSH0oCRePv6g3h1Y2XTNr4fT1Z4z1p43f0hPCqEEJvWuI/u7MSvWmJJ7pDOL0UKBr/YHcIewIvCfHDZ7L84K49e7dtmZmZ2rmIid68rYGwdXpmauyq7TOTfUmf6nSU0sduOn78eI4+feNVjdt7Lh8baSfdnZfrme3yup6mu+sXqvftOtHex34NliuZez4q9cf8vWFZ6L9u19TOsRu27N69c232t93s67K/XXk021ZrF2pbdbYoHz3fbXV+uZI1u6/ZsWbXnr2rp6/ZcvXU1VPXvmF83fi69eMb3nThmsaoxrO/CzHUu44fX4yhvrK7VMkL8QEgISGx1BKdTZ9u46f6P73KF/25jvaEvtkP6Mq0opylY3aUCzHoS6rxrkUadGVKUhnR2srEoZJlXess6yuTibksA1mW2e91lclhuabO2U0a73eGsbHazTLafLe8eX88z+Zt1+P5pms3DQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/B87cCAAAAAAAOT/2ghVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVV2IEDAQAAAAAg/9dGqKqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsIOHAsAAAAACPO3DqNnAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOBSAAAA//+3Rsqd") ioctl$BTRFS_IOC_DEV_INFO(r0, 0xd000941e, 0x0) 1.599104011s ago: executing program 0 (id=12851): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) setsockopt$inet6_tcp_TCP_CONGESTION(r0, 0x6, 0xd, 0x0, 0x4) 1.435527778s ago: executing program 2 (id=12853): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000000180)=@gettaction={0x13, 0x32, 0x605, 0x70bd25, 0x25dfdbfd}, 0x14}}, 0x0) 1.340804922s ago: executing program 0 (id=12855): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000280)={0x3, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="020300090c0000000000040000000000030005000000000002000000e00000020000000000000000030006000000000002000000ac141400000000000000000002000100000000000000000000000000020013"], 0x60}, 0x1, 0x7}, 0x0) 1.16654004s ago: executing program 2 (id=12857): r0 = syz_init_net_socket$bt_l2cap(0x1f, 0x2, 0x0) connect$bt_l2cap(r0, 0x0, 0x0) 1.15603798s ago: executing program 3 (id=12858): r0 = socket(0x1d, 0x2, 0x6) getsockname$packet(r0, 0x0, &(0x7f0000000400)) 1.061640694s ago: executing program 0 (id=12859): ioperm(0x9, 0x9, 0x7) quotactl$Q_QUOTAON(0xffffffff80000201, 0x0, 0xffffffffffffffff, 0x0) 975.287467ms ago: executing program 3 (id=12860): iopl(0x3) prctl$PR_MCE_KILL(0x41555856, 0xfffffffffffe, 0x2) 973.919548ms ago: executing program 1 (id=12861): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000080)={0x2, 0x3, 0x0, 0x3, 0xe, 0x0, 0x70bd2c, 0x25dfdbfc, [@sadb_address={0x5, 0x6, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x2}}, @sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x7, 0xc}, @sadb_address={0x5, 0x5, 0x0, 0x0, 0x0, @in6={0xa, 0x0, 0x0, @loopback, 0x7}}]}, 0x70}, 0x1, 0x7}, 0x0) 916.88678ms ago: executing program 2 (id=12862): r0 = syz_open_dev$video4linux(&(0x7f0000000040), 0x3, 0x0) ioctl$VIDIOC_SUBDEV_S_FMT(r0, 0xc0585605, &(0x7f0000000340)={0x1, 0x0, {0x7f, 0xfffe, 0x300f, 0x1, 0x0, 0x4, 0x1, 0x5}}) 873.381622ms ago: executing program 0 (id=12863): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000004c0)=ANY=[@ANYBLOB="300000006800010003001000fdffff7f00000000000000000c000200010000001508000004000b0006000300"], 0x30}, 0x1, 0x0, 0x0, 0x4008018}, 0x4000080) 774.996326ms ago: executing program 3 (id=12864): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x89a1, &(0x7f0000000900)={'bridge0\x00', @random="5fb04fe346d2"}) 708.197159ms ago: executing program 2 (id=12865): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000980)=ANY=[@ANYBLOB="1c0000001a00010028bd7000fedbdf2581008000000009"], 0x1c}}, 0x884) 647.158862ms ago: executing program 0 (id=12866): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000380)=@newtaction={0x74, 0x30, 0xb, 0x5, 0x0, {}, [{0x60, 0x1, [@m_ct={0x5c, 0x1, 0x0, 0x0, {{0x7}, {0x34, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x400}}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e20}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e24}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x74}, 0x1, 0x0, 0x0, 0x8890}, 0x40) 625.205113ms ago: executing program 3 (id=12867): ioperm(0x1, 0x9, 0xfffffffffffffff8) prctl$PR_SET_MM(0xd, 0x0, &(0x7f0000004000/0x3000)=nil) 414.658902ms ago: executing program 1 (id=12868): r0 = socket$inet_sctp(0x2, 0x5, 0x84) sendmsg$inet_sctp(r0, &(0x7f0000000540)={0x0, 0x0, &(0x7f00000003c0)=[{&(0x7f00000001c0)="8e", 0x1}], 0x1, &(0x7f00000007c0)=[@sndinfo={0x20, 0x84, 0x2, {0x0, 0x207, 0x1, 0x6}}, @prinfo={0x18, 0x84, 0x5, {0x30, 0x8}}], 0x38, 0x8882}, 0x4000001) 398.809453ms ago: executing program 3 (id=12869): syz_mount_image$udf(&(0x7f0000000000), &(0x7f0000000500)='./file2\x00', 0x0, &(0x7f00000002c0)=ANY=[@ANYBLOB="00089aafc727346c3e0d8728525a2641b3b31621730c58dcf8e0ca2e6767a45a978776e9d2c689feab83a160d00a77ae5112cd4e7141cad333d7cbb69dc6b314609d3827059c11066ba0b4b95c12d2d9ff9c8896d9e247bd55f9ff578a14e0e9d0ca07693396b00d2ef44adb4858475a07d5e8fa3ef5b306fe8a5d1cd2d8e06e7f88226ece092c6aabf8870e140124d5a48670513e0c419c99b7c5105959e7a535f12694634cf272490e0000"], 0x81, 0x4ac, &(0x7f00000011c0)="$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") truncate(&(0x7f0000000000)='./file1\x00', 0x82) 368.337474ms ago: executing program 0 (id=12870): socket$nl_generic(0x10, 0x3, 0x10) syz_usb_connect(0x2, 0x3b, &(0x7f00000002c0)=ANY=[@ANYBLOB="12010102a39ab910b80c0bc9ae0d01020301090229000101f8400409048afc0101033e080724010205050009050c021000050001072501"], &(0x7f0000000680)={0x0, 0x0, 0x0, 0x0}) 365.452134ms ago: executing program 2 (id=12871): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$TCGETS2(r0, 0x4b41, 0xffffffffffffffff) 198.546241ms ago: executing program 2 (id=12872): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0xb, 0x18, &(0x7f00000000c0)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bfa100000000000007010000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018030000", @ANYRES32, @ANYBLOB="0000000000000d00b70500000800000085000000720000001801000020646c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000800000095"], &(0x7f0000000600)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000e40)={r0, 0x0, 0xe, 0x0, &(0x7f0000000bc0)="eb4676f22c9816dc1f1079b5a0a7", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 97.474706ms ago: executing program 1 (id=12873): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000200)='./bus\x00', 0x4000, &(0x7f0000000240)={[{@gid}, {@codepage={'codepage', 0x3d, 'cp862'}}, {@file_umask={'file_umask', 0x3d, 0x21}}, {@iocharset={'iocharset', 0x3d, 'iso8859-5'}}]}, 0x4, 0x35e, &(0x7f0000001f80)="$eJzs3U1rE00AB/D/7G7SzZPS7tP2ofCcpFrwVFo9KB60SPHiF/AgxdqmUBoraAUtiNGziDdB8OjNs+hX0Iv4BRQPBcWTXooHV2Z2Nju7nUm36Uta+/+ByWR3dl4yM5uZlDggoiPr4synl6fX5T9RAeADOAd4AEIgAPAfRsM7K6vWi1tG2G+HBIAgssWfX2nYDofyIcheR/JVgH7zGO2NOI7jz+7TX86rpx/7VyDqCWGOYIMH9MFTI1GdD/e9ZHujJet11BgtLDawgbsY6GVxiIio9/Tnv6c/Jfr1PN7zgHE9Dz/sn/+5+c1G78pxILQ//73kdSzk+zOoTsn13tJqs7GgusCgbH0vXSXa0rL2idhHVQfVswf4dWPKZeRip8ri1RaXmo2JlkrgES5oRrQR9biAtCJqTeoqrS7RmKpYaZ3q3lld1aEi63DKUf7hTjlaF8Bvv+GZPbvZ9yXKJN6JD2JWRHiOhfb8L4iFfHPU+xMVhkpS/kl3iqqWURIrV8us+P+qTP5PW+DNq6yWNdf7GsKH9WuEJBVRnL9HaTmfVt1XYQj5rxWS2k25a6euGgYCYXzhodu0HemX9aqRYl61xUqzMTF/s+nq9LvLuqITT8QVMYbveI0ZY/7vydjjcI/M3CgXKqbuGR3rE6iYjnbMUQP4RvmRWSkd8293ydrQBV/zLx/jOs5i4Pa9tWUBgVsyMNdsNrYfCNHNVZsD6VDp8vJjO8t9UyDpiLo7yiPy2YiDUAZkJ9y1TH/HcWw9FaB0W6D7pkwG1JkXWZXXlueEvuftrILyzlk4Ne2ODGAagD6S3hG6yf1B+6q+LMFSl/+Ura2O2DtkWqpd7nW2QJpV7pSPvlIjpeY8VejPRuDy/eW5Zrc3IzpMskbH6NVeF4Z6Qc67RLL+M9Yrk+quIx+iDuufeKvEjRSnHCugIfX4T3sFp2yx5qq7V3D1NLDFmuv4SeBENZ+jhzTHh8VkI11OHMS/Sm7/TxliBh9xjd//ExEREREREREREREREREREREREREdNtv9NYL75wTuQD7H9SP4H28QEREREREREREREREREREREREREREREe1Mtv9ve3+Xqm3/3047NSl+skNMqPf/zbbOMJTd/9cvsf+vaJWrIBE5/QkAAP//38VcZw==") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000240)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x2070080, 0x0, 0x1, 0x0, &(0x7f0000000140)) 0s ago: executing program 3 (id=12874): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFVLAN_ADD_VLAN_CMD(r0, 0x8982, &(0x7f00000023c0)={0x0, 'veth0_vlan\x00', {0x1}, 0xd}) kernel console output (not intermixed with test programs): h: only valid for protocol 58 [ 1413.293207][T30762] netlink: 96 bytes leftover after parsing attributes in process `syz.3.10796'. [ 1413.856028][T30784] loop0: detected capacity change from 0 to 1024 [ 1413.904095][T30784] EXT4-fs: Ignoring removed orlov option [ 1413.944149][T30787] netlink: 8 bytes leftover after parsing attributes in process `syz.1.10808'. [ 1414.014192][T30784] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1414.158285][ T5792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1414.695257][T30817] netlink: 'syz.3.10818': attribute type 28 has an invalid length. [ 1415.074210][T30831] netlink: 'syz.0.10825': attribute type 10 has an invalid length. [ 1415.082363][T30831] netlink: 40 bytes leftover after parsing attributes in process `syz.0.10825'. [ 1415.127720][T30831] bridge0: port 3(dummy0) entered blocking state [ 1415.134234][T30831] bridge0: port 3(dummy0) entered disabled state [ 1415.152652][T30831] dummy0: entered allmulticast mode [ 1415.175662][T30831] dummy0: entered promiscuous mode [ 1415.182710][T30831] bridge0: port 3(dummy0) entered blocking state [ 1415.189295][T30831] bridge0: port 3(dummy0) entered forwarding state [ 1415.517513][ T5889] usb 3-1: new high-speed USB device number 44 using dummy_hcd [ 1415.532221][T30847] netlink: 64 bytes leftover after parsing attributes in process `syz.0.10835'. [ 1415.718853][T30855] loop1: detected capacity change from 0 to 512 [ 1415.740718][T30855] EXT4-fs: Ignoring removed nobh option [ 1415.755895][ T5889] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1415.774327][ T5889] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1415.804799][ T5889] usb 3-1: Product: syz [ 1415.827082][T30855] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1415.850903][ T5889] usb 3-1: Manufacturer: syz [ 1415.863069][ T5889] usb 3-1: SerialNumber: syz [ 1415.907022][T30855] ext4 filesystem being mounted at /2810/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1415.928094][ T5889] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1415.997021][T14956] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1416.039560][T30855] EXT4-fs error (device loop1): ext4_xattr_block_get:600: inode #15: comm syz.1.10838: corrupted xattr block 33: bad e_name length [ 1416.100166][T30855] EXT4-fs error (device loop1): ext4_get_inode_usage:905: inode #15: comm syz.1.10838: corrupted xattr block 33: bad e_name length [ 1416.294126][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1416.309380][ C0] usb 3-1: ath9k_htc: invalid pkt_len (c6fd) [ 1416.540361][ T5877] usb 3-1: USB disconnect, device number 44 [ 1416.872244][T30887] loop3: detected capacity change from 0 to 512 [ 1416.915490][T30887] EXT4-fs: Ignoring removed nobh option [ 1416.988100][T30887] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1417.027244][T30887] ext4 filesystem being mounted at /2680/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 1417.066113][T30895] netlink: 'syz.1.10856': attribute type 10 has an invalid length. [ 1417.074372][T30895] netlink: 40 bytes leftover after parsing attributes in process `syz.1.10856'. [ 1417.084452][T30895] bridge0: port 3(dummy0) entered blocking state [ 1417.091222][T30895] bridge0: port 3(dummy0) entered disabled state [ 1417.097816][T30895] dummy0: entered allmulticast mode [ 1417.104845][T30895] dummy0: entered promiscuous mode [ 1417.110721][T30895] bridge0: port 3(dummy0) entered blocking state [ 1417.117283][T30895] bridge0: port 3(dummy0) entered forwarding state [ 1417.142655][T30887] EXT4-fs error (device loop3): ext4_xattr_block_get:600: inode #15: comm syz.3.10853: corrupted xattr block 33: bad e_name length [ 1417.180499][T14956] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1417.218861][T14956] ath9k_htc: Failed to initialize the device [ 1417.219688][ T5877] usb 3-1: ath9k_htc: USB layer deinitialized [ 1417.283445][T30887] EXT4-fs error (device loop3): ext4_get_inode_usage:905: inode #15: comm syz.3.10853: corrupted xattr block 33: bad e_name length [ 1417.308779][ T28] audit: type=1326 audit(2000003667.420:92): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30898 comm="syz.2.10858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1417.382522][ T28] audit: type=1326 audit(2000003667.466:93): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30898 comm="syz.2.10858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1417.404893][ C0] vkms_vblank_simulate: vblank timer overrun [ 1417.439338][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1417.456255][ T28] audit: type=1326 audit(2000003667.466:94): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30898 comm="syz.2.10858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=237 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1417.532980][ T28] audit: type=1326 audit(2000003667.494:95): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30898 comm="syz.2.10858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1417.624498][T30907] loop0: detected capacity change from 0 to 1024 [ 1417.632085][T30907] EXT4-fs: Ignoring removed nobh option [ 1417.641221][ T28] audit: type=1326 audit(2000003667.494:96): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30898 comm="syz.2.10858" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1417.656398][T30907] EXT4-fs (loop0): stripe (65535) is not aligned with cluster size (4096), stripe is disabled [ 1417.705486][T30907] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.10863: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 1417.754573][T30907] EXT4-fs (loop0): Remounting filesystem read-only [ 1417.790345][T30907] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1417.944333][T30914] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10865'. [ 1418.016212][T30914] netlink: 24 bytes leftover after parsing attributes in process `syz.2.10865'. [ 1418.058523][ T5792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1418.250578][T30925] netlink: 'syz.1.10871': attribute type 33 has an invalid length. [ 1418.274064][T30925] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10871'. [ 1418.532675][ T28] audit: type=1326 audit(2000003668.564:97): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30935 comm="syz.3.10876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f538f749 code=0x7ffc0000 [ 1418.638714][ T28] audit: type=1326 audit(2000003668.564:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30935 comm="syz.3.10876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f538f749 code=0x7ffc0000 [ 1418.703345][ T28] audit: type=1326 audit(2000003668.583:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30935 comm="syz.3.10876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7fd2f538f749 code=0x7ffc0000 [ 1418.775764][ T28] audit: type=1326 audit(2000003668.583:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30935 comm="syz.3.10876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f538f749 code=0x7ffc0000 [ 1418.865633][ T28] audit: type=1326 audit(2000003668.583:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=30935 comm="syz.3.10876" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd2f538f749 code=0x7ffc0000 [ 1419.124720][T30948] loop0: detected capacity change from 0 to 4096 [ 1419.151994][T30948] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1419.295426][T30948] ntfs3: loop0: failed to convert "c46c" to default [ 1419.340988][T30958] loop3: detected capacity change from 0 to 4096 [ 1419.409603][T30958] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1419.481393][T30964] (unnamed net_device) (uninitialized): option miimon: invalid value (18446744071562067969) [ 1419.525384][T30964] (unnamed net_device) (uninitialized): option miimon: allowed values 0 - 2147483647 [ 1419.586169][T30958] ntfs3: loop3: failed to convert "c46c" to euc-jp [ 1420.622059][T31000] loop2: detected capacity change from 0 to 512 [ 1420.650915][T31002] loop0: detected capacity change from 0 to 8 [ 1420.716221][T31000] EXT4-fs (loop2): Test dummy encryption mode enabled [ 1420.719989][T31000] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended [ 1420.740324][T31000] EXT4-fs (loop2): Errors on filesystem, clearing orphan list. [ 1420.741625][T31000] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1420.820605][T31000] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000. [ 1420.865788][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1421.077128][T31010] tmpfs: Bad value for 'mpol' [ 1421.253785][T30990] loop1: detected capacity change from 0 to 32768 [ 1421.274833][T30990] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.10903 (30990) [ 1421.308828][T30990] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1421.328252][T30990] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1421.358433][T30990] BTRFS info (device loop1): using free space tree [ 1421.568175][T30990] BTRFS info (device loop1): enabling ssd optimizations [ 1421.575653][T30990] BTRFS info (device loop1): auto enabling async discard [ 1421.778114][ T5789] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1423.728635][T31114] tmpfs: Bad value for 'mpol' [ 1423.994748][T31116] loop0: detected capacity change from 0 to 4096 [ 1424.027698][T31116] __ntfs_error: 4 callbacks suppressed [ 1424.027718][T31116] ntfs: (device loop0): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1424.066481][T31103] loop1: detected capacity change from 0 to 32768 [ 1424.074066][T31116] ntfs: (device loop0): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1424.091383][T31116] ntfs: (device loop0): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1424.106165][T31103] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.10951 (31103) [ 1424.138067][T31116] ntfs: (device loop0): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1424.169112][T31103] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1424.206550][T31103] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1424.239704][T31116] ntfs: volume version 3.1. [ 1424.256477][T31103] BTRFS info (device loop1): allowing degraded mounts [ 1424.285976][T31103] BTRFS info (device loop1): metadata ratio 4 [ 1424.292307][T31103] BTRFS info (device loop1): turning on sync discard [ 1424.327769][T31103] BTRFS info (device loop1): turning off discard [ 1424.334213][T31103] BTRFS info (device loop1): turning on sync discard [ 1424.379922][T31103] BTRFS info (device loop1): disabling tree log [ 1424.404500][T31103] BTRFS info (device loop1): using free space tree [ 1424.637236][T31103] BTRFS info (device loop1): enabling ssd optimizations [ 1424.789858][T31148] hsr_slave_0: hsr_addr_subst_dest: Unknown node [ 1424.797331][T31148] hsr_slave_1: hsr_addr_subst_dest: Unknown node [ 1424.849209][ T5789] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1425.473834][T31124] loop3: detected capacity change from 0 to 32768 [ 1425.521529][T31124] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1425.863226][T31124] XFS (loop3): Ending clean mount [ 1426.194421][ T5793] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1426.527426][T31193] loop1: detected capacity change from 0 to 4096 [ 1426.768639][T31202] loop0: detected capacity change from 0 to 1024 [ 1427.036349][T31210] loop2: detected capacity change from 0 to 128 [ 1427.038576][T21541] hfsplus: b-tree write err: -5, ino 4 [ 1427.103119][T31210] FAT-fs (loop2): Directory bread(block 162) failed [ 1427.129924][T31210] FAT-fs (loop2): Directory bread(block 163) failed [ 1427.167156][T31210] FAT-fs (loop2): Directory bread(block 164) failed [ 1427.180960][ T5877] usb 4-1: new high-speed USB device number 65 using dummy_hcd [ 1427.199875][T31210] FAT-fs (loop2): Directory bread(block 165) failed [ 1427.210193][T31210] FAT-fs (loop2): Directory bread(block 166) failed [ 1427.246695][T31210] FAT-fs (loop2): Directory bread(block 167) failed [ 1427.258404][T31210] FAT-fs (loop2): Directory bread(block 168) failed [ 1427.269212][T31210] FAT-fs (loop2): Directory bread(block 169) failed [ 1427.304659][T31210] FAT-fs (loop2): Directory bread(block 162) failed [ 1427.324067][T31210] FAT-fs (loop2): Directory bread(block 163) failed [ 1427.333413][T31210] syz.2.10993: attempt to access beyond end of device [ 1427.333413][T31210] loop2: rw=3, sector=226, nr_sectors = 6 limit=128 [ 1427.373116][T31210] syz.2.10993: attempt to access beyond end of device [ 1427.373116][T31210] loop2: rw=2051, sector=232, nr_sectors = 2 limit=128 [ 1427.402119][ T5877] usb 4-1: Using ep0 maxpacket: 16 [ 1427.412442][ T5877] usb 4-1: config 0 has no interfaces? [ 1427.427967][ T5877] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1427.448061][ T5877] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1427.476130][ T5877] usb 4-1: Product: syz [ 1427.480374][ T5877] usb 4-1: Manufacturer: syz [ 1427.495279][ T5877] usb 4-1: SerialNumber: syz [ 1427.503631][ T5877] r8152-cfgselector 4-1: config 0 descriptor?? [ 1427.751440][ T5877] usbip-host 4-1: 4-1 is not in match_busid table... skip! [ 1428.018110][ T5877] usb 4-1: USB disconnect, device number 65 [ 1428.588593][T31250] usb usb8: usbfs: process 31250 (syz.1.11010) did not claim interface 0 before use [ 1429.192293][T31266] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11019'. [ 1429.329076][ T28] audit: type=1326 audit(2000003678.520:106): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31267 comm="syz.2.11021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1429.374746][ T28] audit: type=1326 audit(2000003678.548:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31267 comm="syz.2.11021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1429.435722][ T28] audit: type=1326 audit(2000003678.557:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31267 comm="syz.2.11021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=158 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1429.516446][T31234] syz.0.11003 (31234): drop_caches: 2 [ 1429.541622][ T28] audit: type=1326 audit(2000003678.557:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31267 comm="syz.2.11021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1429.615565][ T28] audit: type=1326 audit(2000003678.557:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31267 comm="syz.2.11021" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1429.977130][ T28] audit: type=1326 audit(2000003679.120:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31288 comm="syz.0.11033" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x0 [ 1430.293462][T31304] netlink: 'syz.2.11038': attribute type 30 has an invalid length. [ 1430.364816][ T1275] ieee802154 phy1 wpan1: encryption failed: -22 [ 1430.875093][T31327] netlink: 14 bytes leftover after parsing attributes in process `syz.3.11049'. [ 1431.337056][T31348] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11060'. [ 1431.367733][T31348] netlink: 20 bytes leftover after parsing attributes in process `syz.0.11060'. [ 1431.569804][T31354] loop0: detected capacity change from 0 to 64 [ 1431.859516][T31361] loop0: detected capacity change from 0 to 256 [ 1431.905606][T31361] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1432.140307][T31346] loop1: detected capacity change from 0 to 32768 [ 1432.149481][T31346] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.11059 (31346) [ 1432.182407][T31346] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1432.211386][T31346] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 1432.272985][T31346] BTRFS info (device loop1): enabling auto defrag [ 1432.294840][T31372] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11072'. [ 1432.295315][T31346] BTRFS info (device loop1): turning on sync discard [ 1432.325945][T31372] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11072'. [ 1432.356300][T31346] BTRFS info (device loop1): force clearing of disk cache [ 1432.409716][T31346] BTRFS warning (device loop1): excessive commit interval 4194304 [ 1432.421628][T31346] BTRFS info (device loop1): max_inline at 2 [ 1432.450783][T31346] BTRFS info (device loop1): disabling free space tree [ 1432.452304][T31375] netlink: 'syz.2.11073': attribute type 27 has an invalid length. [ 1432.684822][T31346] BTRFS info (device loop1): enabling ssd optimizations [ 1432.718616][T31346] BTRFS info (device loop1): rebuilding free space tree [ 1432.752363][T31346] BTRFS info (device loop1): disabling free space tree [ 1432.767047][T31346] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1432.786430][T31346] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1432.951799][T31406] loop0: detected capacity change from 0 to 764 [ 1433.017838][T31406] rock: corrupted directory entry. extent=32, offset=2044, size=237 [ 1433.160877][ T5789] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1434.192387][T31441] loop1: detected capacity change from 0 to 164 [ 1434.208428][T31440] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11097'. [ 1434.245939][T31441] Unsupported NM flag settings (240) [ 1434.400006][T31448] netlink: 'syz.3.11101': attribute type 1 has an invalid length. [ 1434.782966][T31460] delete_channel: no stack [ 1434.822804][T31458] veth3: entered allmulticast mode [ 1435.034665][T31470] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11111'. [ 1435.923304][T31499] xt_time: invalid argument - start or stop time greater than 23:59:59 [ 1436.215869][T31513] netlink: 'syz.3.11133': attribute type 10 has an invalid length. [ 1436.302685][T31515] dlm: plock device version mismatch: kernel (1.2.0), user (0.0.0) [ 1436.517239][T31524] loop0: detected capacity change from 0 to 512 [ 1436.656559][T31524] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.11138: bg 0: block 248: padding at end of block bitmap is not set [ 1436.774102][T31524] Quota error (device loop0): write_blk: dquota write failed [ 1436.797681][T31524] Quota error (device loop0): qtree_write_dquot: Error -117 occurred while creating quota [ 1436.825710][T31524] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.11138: Failed to acquire dquot type 1 [ 1436.878773][T31524] EXT4-fs (loop0): 1 truncate cleaned up [ 1436.886472][T31524] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1436.906321][T31535] loop1: detected capacity change from 0 to 512 [ 1436.926623][T31524] ext4 filesystem being mounted at /2686/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1436.991153][T31535] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1437.069073][T31535] ext4 filesystem being mounted at /2888/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1437.090325][T31524] Quota error (device loop0): find_tree_dqentry: Cycle in quota tree detected: block 2 index 2 [ 1437.135652][T31524] Quota error (device loop0): qtree_read_dquot: Can't read quota structure for id 131074 [ 1437.164306][T31543] mac80211_hwsim hwsim6 wlan0: entered promiscuous mode [ 1437.188514][T31543] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 1437.207260][T31524] EXT4-fs error (device loop0): ext4_acquire_dquot:6933: comm syz.0.11138: Failed to acquire dquot type 1 [ 1437.210717][T31535] EXT4-fs error (device loop1): ext4_xattr_block_get:600: inode #15: comm syz.1.11142: corrupted xattr block 33: invalid ea_ino [ 1437.273745][T31535] fscrypt (loop1, inode 15): Error -117 getting encryption context [ 1437.324573][ T5792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1437.376789][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1437.574844][T31550] loop0: detected capacity change from 0 to 2048 [ 1437.602600][T31550] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1437.657890][T31556] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1438.276032][ T5889] usb 4-1: new high-speed USB device number 66 using dummy_hcd [ 1438.298827][T25805] usb 1-1: new high-speed USB device number 59 using dummy_hcd [ 1438.329659][T31578] loop2: detected capacity change from 0 to 4096 [ 1438.353148][T31578] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1438.390525][T31578] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1438.425698][T31578] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1438.437262][T31578] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1438.455253][T31578] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1438.493390][T31578] ntfs: volume version 3.1. [ 1438.503409][ T5889] usb 4-1: Using ep0 maxpacket: 8 [ 1438.514589][T25805] usb 1-1: Using ep0 maxpacket: 32 [ 1438.523517][T25805] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1438.538239][T31578] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Index buffer (VCN 0x0) of directory inode 0x5 has a size (24) differing from the directory specified size (4096). Directory inode is corrupt or driver bug. [ 1438.540009][ T5889] usb 4-1: config 0 has an invalid interface number: 52 but max is 0 [ 1438.579738][T25805] usb 1-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1438.580115][ T5889] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1438.594799][T25805] usb 1-1: config 1 has an invalid descriptor of length 1, skipping remainder of the config [ 1438.638936][ T5889] usb 4-1: config 0 has no interface number 0 [ 1438.645478][T25805] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1438.657825][ T5889] usb 4-1: config 0 interface 52 has no altsetting 0 [ 1438.663824][T25805] usb 1-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 1438.674022][ T5889] usb 4-1: New USB device found, idVendor=06cb, idProduct=0003, bcdDevice=e8.00 [ 1438.693105][T25805] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 1438.703700][T25805] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1438.715870][ T5889] usb 4-1: New USB device strings: Mfr=22, Product=0, SerialNumber=0 [ 1438.717687][T25805] usb 1-1: Product: syz [ 1438.733594][ T5889] usb 4-1: Manufacturer: syz [ 1438.745453][T25805] usb 1-1: Manufacturer: syz [ 1438.750355][T25805] usb 1-1: SerialNumber: syz [ 1438.752664][ T5889] usb 4-1: config 0 descriptor?? [ 1438.788283][ T5889] hub 4-1:0.52: bad descriptor, ignoring hub [ 1438.800327][ T5889] hub: probe of 4-1:0.52 failed with error -5 [ 1439.075942][T25805] usb 1-1: 0:2 : does not exist [ 1439.104139][T25805] usb 1-1: USB disconnect, device number 59 [ 1439.159007][ T5902] udevd[5902]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1439.403290][ T3381] usb 4-1: USB disconnect, device number 66 [ 1439.548019][T31586] trusted_key: encrypted key: instantiation of keys using provided decrypted data is disabled since CONFIG_USER_DECRYPTED_DATA is set to false [ 1439.636654][T31582] syz.1.11164 (31582): drop_caches: 2 [ 1440.591984][T31623] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11185'. [ 1440.808814][T31634] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11188'. [ 1441.137799][T31647] xt_hashlimit: overflow, try lower: 0/0 [ 1441.330701][T31657] do_dccp_setsockopt: sockopt(CHANGE_L/R) is deprecated: fix your app [ 1441.754278][T31653] syz.3.11199 (31653): drop_caches: 2 [ 1441.766496][T31667] loop2: detected capacity change from 0 to 64 [ 1441.800427][T31667] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 1441.863736][T31670] netlink: 'syz.0.11208': attribute type 9 has an invalid length. [ 1441.871637][T31670] netlink: 92 bytes leftover after parsing attributes in process `syz.0.11208'. [ 1442.001045][T31672] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11209'. [ 1442.179852][T31674] netlink: 'syz.0.11210': attribute type 6 has an invalid length. [ 1442.208173][T31677] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 1442.658859][T31690] syz.2.11219 (31690): drop_caches: 2 [ 1443.419528][T31723] syz.1.11231 (31723): drop_caches: 2 [ 1443.741849][T31735] usb usb9: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 1443.759773][T31735] usb usb9: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 1444.194861][T31751] loop3: detected capacity change from 0 to 1024 [ 1444.806959][T31777] loop2: detected capacity change from 0 to 512 [ 1444.837131][T31779] netlink: 'syz.1.11258': attribute type 3 has an invalid length. [ 1444.853337][T31777] EXT4-fs: Ignoring removed mblk_io_submit option [ 1444.930203][T31777] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -13 [ 1445.022786][T31777] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #13: comm syz.2.11257: attempt to clear invalid blocks 2 len 1 [ 1445.035531][T31785] loop3: detected capacity change from 0 to 4096 [ 1445.075619][T31777] EXT4-fs (loop2): Remounting filesystem read-only [ 1445.083701][T31777] EXT4-fs (loop2): 1 truncate cleaned up [ 1445.090337][T31785] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 1445.090882][T31777] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1445.189363][T31785] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1445.329812][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1446.450633][T31831] loop2: detected capacity change from 0 to 256 [ 1446.892015][T31850] IPVS: sync thread started: state = MASTER, mcast_ifn = hsr0, syncid = 4, id = 0 [ 1447.282507][T31866] netlink: 'syz.1.11299': attribute type 4 has an invalid length. [ 1447.596102][T31878] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.11307'. [ 1447.638878][T31881] netlink: 'syz.2.11306': attribute type 5 has an invalid length. [ 1447.780366][T31887] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11310'. [ 1447.973431][T31895] netlink: 'syz.1.11314': attribute type 21 has an invalid length. [ 1447.992582][T31895] netlink: 132 bytes leftover after parsing attributes in process `syz.1.11314'. [ 1448.034625][T31891] loop2: detected capacity change from 0 to 4096 [ 1448.056804][T31891] __ntfs_warning: 4 callbacks suppressed [ 1448.056820][T31891] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 1448.158137][T31891] ntfs: (device loop2): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1448.202459][T31891] ntfs: (device loop2): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1448.297337][T31891] ntfs: volume version 3.1. [ 1448.550222][T31910] netlink: 96 bytes leftover after parsing attributes in process `syz.0.11321'. [ 1449.016340][T31929] netlink: 'syz.0.11330': attribute type 10 has an invalid length. [ 1449.655076][T31951] netlink: 80 bytes leftover after parsing attributes in process `syz.1.11342'. [ 1449.737786][T31944] netlink: 9 bytes leftover after parsing attributes in process `syz.3.11338'. [ 1449.764181][T31944] 0: renamed from hsr0 (while UP) [ 1449.779183][T31944] 0: entered allmulticast mode [ 1449.804254][T31944] hsr_slave_0: entered allmulticast mode [ 1449.816521][T31944] hsr_slave_1: entered allmulticast mode [ 1449.829665][T31944] A link change request failed with some changes committed already. Interface 70 may have been left with an inconsistent configuration, please check. [ 1449.942480][T31958] netlink: 52 bytes leftover after parsing attributes in process `syz.1.11346'. [ 1450.666665][T31987] loop0: detected capacity change from 0 to 256 [ 1450.738907][T31987] FAT-fs (loop0): Directory bread(block 64) failed [ 1450.757443][T31987] FAT-fs (loop0): Directory bread(block 65) failed [ 1450.793746][T31987] FAT-fs (loop0): Directory bread(block 66) failed [ 1450.800727][T31987] FAT-fs (loop0): Directory bread(block 67) failed [ 1450.823979][T31987] FAT-fs (loop0): Directory bread(block 68) failed [ 1450.873431][T31987] FAT-fs (loop0): Directory bread(block 69) failed [ 1450.882050][T31987] FAT-fs (loop0): Directory bread(block 70) failed [ 1450.888746][T31987] FAT-fs (loop0): Directory bread(block 71) failed [ 1450.899156][T31987] FAT-fs (loop0): Directory bread(block 72) failed [ 1450.916539][T31987] FAT-fs (loop0): Directory bread(block 73) failed [ 1451.059145][T31987] FAT-fs (loop0): error, corrupted directory (invalid entries) [ 1451.069593][T31987] FAT-fs (loop0): Filesystem has been set read-only [ 1451.152157][T32004] CIFS mount error: No usable UNC path provided in device string! [ 1451.152157][T32004] [ 1451.172873][T32004] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1451.377351][ T28] audit: type=1326 audit(2000000000.830:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32011 comm="syz.1.11372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1451.443560][ T28] audit: type=1326 audit(2000000000.830:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32011 comm="syz.1.11372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1451.532375][ T28] audit: type=1326 audit(2000000000.830:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32011 comm="syz.1.11372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=123 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1451.624482][ T28] audit: type=1326 audit(2000000000.830:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32011 comm="syz.1.11372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1451.673605][ T28] audit: type=1326 audit(2000000000.830:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32011 comm="syz.1.11372" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1451.849238][ C1] sd 0:0:1:0: [sda] tag#5793 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s [ 1451.859765][ C1] sd 0:0:1:0: [sda] tag#5793 CDB: Read(6) 08 00 00 00 03 44 [ 1452.572240][T32057] netlink: 'syz.3.11393': attribute type 5 has an invalid length. [ 1452.788069][T32064] netlink: 56 bytes leftover after parsing attributes in process `syz.1.11397'. [ 1452.930355][T32067] netlink: 136 bytes leftover after parsing attributes in process `syz.0.11399'. [ 1453.133117][T32046] loop2: detected capacity change from 0 to 32768 [ 1453.142293][T32075] loop0: detected capacity change from 0 to 64 [ 1453.176620][T32046] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.11388 (32046) [ 1453.201230][T32075] Trying to free block not in datazone [ 1453.206763][T32075] Trying to free block not in datazone [ 1453.230752][T32075] Trying to free block not in datazone [ 1453.241638][T32046] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1453.267551][T32075] Trying to free block not in datazone [ 1453.286334][T32046] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 1453.295401][T32075] minix_free_block (loop0:6): bit already cleared [ 1453.306266][T32046] BTRFS info (device loop2): turning on sync discard [ 1453.314517][T32075] Trying to free block not in datazone [ 1453.334733][T32075] Trying to free block not in datazone [ 1453.347495][T32046] BTRFS info (device loop2): disabling free space tree [ 1453.379837][T32046] BTRFS info (device loop2): setting nodatasum [ 1453.396461][T32046] BTRFS info (device loop2): turning on async discard [ 1453.427286][T32046] BTRFS info (device loop2): turning off barriers [ 1453.449000][T32046] BTRFS info (device loop2): disabling tree log [ 1453.455376][T32046] BTRFS info (device loop2): enabling ssd optimizations [ 1453.481193][T32046] BTRFS info (device loop2): force clearing of disk cache [ 1453.490201][T32046] BTRFS info (device loop2): enabling auto defrag [ 1453.524719][T32046] BTRFS info (device loop2): force zlib compression, level 3 [ 1453.557134][T32046] BTRFS info (device loop2): max_inline at 4096 [ 1453.700273][T32103] loop0: detected capacity change from 0 to 64 [ 1453.726963][T32046] BTRFS info (device loop2): rebuilding free space tree [ 1453.824310][T32103] BFS-fs: bfs_fill_super(): loop0 is unclean, continuing [ 1453.862142][T32046] BTRFS info (device loop2): disabling free space tree [ 1453.869191][T32046] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1453.914703][T32046] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1454.210121][ T5790] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1454.435787][T32125] loop3: detected capacity change from 0 to 64 [ 1454.738520][T32131] netlink: 'syz.1.11423': attribute type 10 has an invalid length. [ 1455.548343][T32157] netlink: 76 bytes leftover after parsing attributes in process `syz.3.11436'. [ 1455.640768][T32159] netlink: 'syz.1.11437': attribute type 46 has an invalid length. [ 1455.670624][T32159] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11437'. [ 1455.740986][T32163] loop3: detected capacity change from 0 to 256 [ 1455.841136][T32163] FAT-fs (loop3): Directory bread(block 64) failed [ 1455.865689][T32163] FAT-fs (loop3): Directory bread(block 65) failed [ 1455.872659][T32163] FAT-fs (loop3): Directory bread(block 66) failed [ 1455.898120][T32163] FAT-fs (loop3): Directory bread(block 67) failed [ 1455.912754][T32163] FAT-fs (loop3): Directory bread(block 68) failed [ 1455.919450][T32163] FAT-fs (loop3): Directory bread(block 69) failed [ 1455.964828][T32167] loop2: detected capacity change from 0 to 22 [ 1455.982208][T32163] FAT-fs (loop3): Directory bread(block 70) failed [ 1455.987304][T32167] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1456.001884][T32163] FAT-fs (loop3): Directory bread(block 71) failed [ 1456.026075][T32167] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1456.041161][T32163] FAT-fs (loop3): Directory bread(block 72) failed [ 1456.047770][T32163] FAT-fs (loop3): Directory bread(block 73) failed [ 1456.579648][T32155] loop0: detected capacity change from 0 to 32768 [ 1456.585507][T32180] loop3: detected capacity change from 0 to 512 [ 1456.625485][T32180] EXT4-fs: Ignoring removed i_version option [ 1456.674019][T32180] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1456.686311][T32184] loop2: detected capacity change from 0 to 4096 [ 1456.693026][T32155] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1456.741800][T32184] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1456.756220][T32180] EXT4-fs (loop3): 1 truncate cleaned up [ 1456.774012][T32180] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1456.847832][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1456.858242][T32155] XFS (loop0): Ending clean mount [ 1456.871488][T32180] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 1029 (only 1 groups) [ 1456.920903][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1456.931123][T32155] XFS (loop0): Quotacheck needed: Please wait. [ 1457.123834][T32155] XFS (loop0): Quotacheck: Done. [ 1457.323745][ T5792] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1457.463848][T32211] netlink: 52 bytes leftover after parsing attributes in process `syz.3.11458'. [ 1457.598880][T32215] loop0: detected capacity change from 0 to 512 [ 1457.689167][T32215] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1) [ 1457.718359][T32215] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1457.819815][T32221] bond0: (slave gretap0): Opening slave failed [ 1457.957957][T29402] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x05417272 (sector = 1) [ 1458.323555][T32237] netlink: 'syz.0.11471': attribute type 4 has an invalid length. [ 1458.600266][T32249] loop1: detected capacity change from 0 to 64 [ 1459.067379][T32259] loop1: detected capacity change from 0 to 4096 [ 1459.095709][T32259] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 1459.147916][T32267] comedi comedi0: Minor 3 could not be opened [ 1459.281947][T32259] ntfs3: loop1: failed to convert "c46c" to cp861 [ 1459.388686][T32271] loop3: detected capacity change from 0 to 2048 [ 1459.425859][T32275] netlink: 'syz.2.11489': attribute type 2 has an invalid length. [ 1459.435241][T32271] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1459.501327][T32277] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1459.742335][T32282] loop2: detected capacity change from 0 to 4096 [ 1459.767735][T32285] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1459.813971][T32282] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 1460.006028][T32293] loop0: detected capacity change from 0 to 256 [ 1460.171754][T32293] FAT-fs (loop0): Directory bread(block 64) failed [ 1460.178441][T32293] FAT-fs (loop0): Directory bread(block 65) failed [ 1460.231489][T32293] FAT-fs (loop0): Directory bread(block 66) failed [ 1460.250199][T32293] FAT-fs (loop0): Directory bread(block 67) failed [ 1460.266047][T32293] FAT-fs (loop0): Directory bread(block 68) failed [ 1460.287353][T32293] FAT-fs (loop0): Directory bread(block 69) failed [ 1460.311036][T32293] FAT-fs (loop0): Directory bread(block 70) failed [ 1460.342789][T32293] FAT-fs (loop0): Directory bread(block 71) failed [ 1460.349518][T32293] FAT-fs (loop0): Directory bread(block 72) failed [ 1460.390547][T32293] FAT-fs (loop0): Directory bread(block 73) failed [ 1460.632318][T32310] loop3: detected capacity change from 0 to 1024 [ 1460.739717][T32310] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1460.864651][T32310] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1215: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 1461.000960][T32323] netlink: 'syz.0.11509': attribute type 1 has an invalid length. [ 1461.024727][T32323] netlink: 'syz.0.11509': attribute type 2 has an invalid length. [ 1461.025003][ T5793] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1461.032603][T32323] netlink: 4 bytes leftover after parsing attributes in process `syz.0.11509'. [ 1461.493487][T32344] netlink: 1010 bytes leftover after parsing attributes in process `syz.1.11521'. [ 1461.516730][T32344] bridge: RTM_NEWNEIGH bridge0 without NUD_PERMANENT [ 1461.607515][T32348] netlink: 5 bytes leftover after parsing attributes in process `syz.3.11524'. [ 1461.649640][T32348] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1462.236838][T32374] loop1: detected capacity change from 0 to 256 [ 1462.267233][T32374] FAT-fs (loop1): Directory bread(block 64) failed [ 1462.278691][T32374] FAT-fs (loop1): Directory bread(block 65) failed [ 1462.289621][T32374] FAT-fs (loop1): Directory bread(block 66) failed [ 1462.316763][T32374] FAT-fs (loop1): Directory bread(block 67) failed [ 1462.325608][T32374] FAT-fs (loop1): Directory bread(block 68) failed [ 1462.333763][T32374] FAT-fs (loop1): Directory bread(block 69) failed [ 1462.357545][T32374] FAT-fs (loop1): Directory bread(block 70) failed [ 1462.364132][T32374] FAT-fs (loop1): Directory bread(block 71) failed [ 1462.376022][T32374] FAT-fs (loop1): Directory bread(block 72) failed [ 1462.409895][T32374] FAT-fs (loop1): Directory bread(block 73) failed [ 1462.481247][T32381] loop0: detected capacity change from 0 to 1024 [ 1462.525150][T32381] hfsplus: Filesystem is marked locked, mounting read-only. [ 1462.567880][T32381] hfsplus: filesystem is marked locked, leaving read-only. [ 1463.302735][T32409] loop0: detected capacity change from 0 to 128 [ 1463.549136][T32415] loop1: detected capacity change from 0 to 4096 [ 1463.633879][T32415] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 1463.896306][T25805] usb 1-1: new high-speed USB device number 60 using dummy_hcd [ 1464.091547][T25805] usb 1-1: Using ep0 maxpacket: 8 [ 1464.109873][T25805] usb 1-1: config 1 has an invalid interface number: 128 but max is 1 [ 1464.134772][T25805] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1464.176945][T25805] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1464.205943][T25805] usb 1-1: config 1 has no interface number 0 [ 1464.220789][T25805] usb 1-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1464.238111][T25805] usb 1-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1464.253062][T25805] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1464.262116][T25805] usb 1-1: Product: syz [ 1464.266860][T25805] usb 1-1: Manufacturer: syz [ 1464.272777][T25805] usb 1-1: SerialNumber: syz [ 1464.290639][T25805] cdc_wdm 1-1:1.128: skipping garbage [ 1464.305364][T25805] cdc_wdm 1-1:1.128: invalid descriptor buffer length [ 1464.314020][T25805] cdc_wdm: probe of 1-1:1.128 failed with error -22 [ 1464.567655][T25805] usb 1-1: USB disconnect, device number 60 [ 1465.172324][ T28] audit: type=1400 audit(2000000013.563:117): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=32468 comm="syz.2.11584" [ 1465.620905][T32483] kernel profiling enabled (shift: 5) [ 1465.631704][T32461] loop1: detected capacity change from 0 to 32768 [ 1465.663005][T32461] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.11580 (32461) [ 1465.736719][T32461] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1465.775874][T32461] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 1465.804040][T32461] BTRFS info (device loop1): turning on sync discard [ 1465.825533][T32461] BTRFS info (device loop1): disabling free space tree [ 1465.851330][T32461] BTRFS info (device loop1): setting nodatasum [ 1465.873202][T32461] BTRFS info (device loop1): turning on async discard [ 1465.884270][T32487] loop2: detected capacity change from 0 to 4096 [ 1465.895072][T32461] BTRFS info (device loop1): turning off barriers [ 1465.924403][T32487] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 1465.933521][T32461] BTRFS info (device loop1): disabling tree log [ 1465.967285][T32461] BTRFS info (device loop1): enabling ssd optimizations [ 1465.974304][T32461] BTRFS info (device loop1): force clearing of disk cache [ 1466.014528][T32461] BTRFS info (device loop1): enabling auto defrag [ 1466.044295][T32461] BTRFS info (device loop1): force zlib compression, level 3 [ 1466.051807][T32461] BTRFS info (device loop1): max_inline at 4096 [ 1466.128183][T32487] ntfs3: loop2: failed to convert "c46c" to iso8859-4 [ 1466.250519][T32461] BTRFS info (device loop1): rebuilding free space tree [ 1466.287187][T32461] BTRFS info (device loop1): disabling free space tree [ 1466.297285][T32461] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1466.324239][T32461] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1466.426038][T32512] loop3: detected capacity change from 0 to 256 [ 1466.710528][ T5789] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1466.892884][T32523] netlink: 24 bytes leftover after parsing attributes in process `syz.2.11604'. [ 1466.903237][T32523] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0) [ 1466.970874][ T5902] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 12 /dev/loop1 scanned by udevd (5902) [ 1467.964415][T32555] erspan0: entered promiscuous mode [ 1467.969774][T32555] erspan0: entered allmulticast mode [ 1468.235340][T32564] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11622'. [ 1468.416883][T32571] netlink: 52 bytes leftover after parsing attributes in process `syz.3.11625'. [ 1468.426022][T32571] netlink: 16 bytes leftover after parsing attributes in process `syz.3.11625'. [ 1468.591357][T32578] netlink: 'syz.3.11630': attribute type 21 has an invalid length. [ 1468.943974][T32590] loop3: detected capacity change from 0 to 4096 [ 1468.963897][T32590] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1469.092594][T32590] ntfs3: loop3: failed to convert "c46c" to iso8859-4 [ 1469.250374][T14956] usb 2-1: new high-speed USB device number 72 using dummy_hcd [ 1469.470818][T14956] usb 2-1: Using ep0 maxpacket: 8 [ 1469.484365][T14956] usb 2-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 1469.504333][T14956] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1469.535028][T14956] usb 2-1: Product: syz [ 1469.539265][T14956] usb 2-1: Manufacturer: syz [ 1469.567393][T14956] usb 2-1: SerialNumber: syz [ 1469.588523][T14956] usb 2-1: config 0 descriptor?? [ 1469.608657][T14956] gspca_main: sq930x-2.14.0 probing 2770:930c [ 1469.800884][T32622] tmpfs: User quota inode hardlimit too large. [ 1469.857197][T24016] usb 3-1: new high-speed USB device number 45 using dummy_hcd [ 1470.055191][T14956] gspca_sq930x: ucbus_write failed -71 [ 1470.087679][T24016] usb 3-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d [ 1470.111799][T24016] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1470.134409][T24016] usb 3-1: config 0 descriptor?? [ 1470.213951][T32637] netlink: 28 bytes leftover after parsing attributes in process `syz.3.11655'. [ 1470.233840][T32637] netlink: 'syz.3.11655': attribute type 8 has an invalid length. [ 1470.245319][T32637] A link change request failed with some changes committed already. Interface vlan0 may have been left with an inconsistent configuration, please check. [ 1470.312300][ T8] usb 1-1: new full-speed USB device number 61 using dummy_hcd [ 1470.320112][T14956] gspca_sq930x: Sensor ov9630 not yet treated [ 1470.336062][T14956] sq930x: probe of 2-1:0.0 failed with error -22 [ 1470.354085][T14956] usb 2-1: USB disconnect, device number 72 [ 1470.362048][T32639] netlink: 4 bytes leftover after parsing attributes in process `syz.3.11656'. [ 1470.533982][ T8] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 1470.548568][ T8] usb 1-1: config 179 has no interface number 0 [ 1470.557492][ T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10 [ 1470.579377][ T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 64 [ 1470.594885][ T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 1470.606392][ T8] usb 1-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 64 [ 1470.619843][T24016] hackrf 3-1:0.0: usb_control_msg() failed -71 request 0f [ 1470.648206][ T8] usb 1-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 1470.662370][T24016] hackrf 3-1:0.0: Could not detect board [ 1470.668596][T24016] hackrf: probe of 3-1:0.0 failed with error -71 [ 1470.693505][ T8] usb 1-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb [ 1470.713429][T24016] usb 3-1: USB disconnect, device number 45 [ 1470.735515][ T8] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1470.761784][T32628] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 1470.789937][T32628] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 1470.912801][T32649] loop1: detected capacity change from 0 to 2048 [ 1471.030287][T32652] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1471.265493][ C0] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 1471.273879][ C0] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 1471.292463][T24016] usb 1-1: USB disconnect, device number 61 [ 1471.334715][T32652] NILFS (loop1): vblocknr = 23 has abnormal lifetime: start cno (= 4294967298) > current cno (= 3) [ 1471.358123][T32652] NILFS error (device loop1): nilfs_bmap_propagate: broken bmap (inode number=4) [ 1471.380050][T32652] Remounting filesystem read-only [ 1471.385932][ T3455] NILFS (loop1): discard dirty page: offset=4096, ino=6 [ 1471.392930][ T3455] NILFS (loop1): discard dirty block: blocknr=39, size=1024 [ 1471.400829][ T3455] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.410089][ T3455] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.419311][ T3455] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.428279][ T3455] NILFS (loop1): discard dirty page: offset=0, ino=2 [ 1471.435323][ T3381] usb 4-1: new high-speed USB device number 67 using dummy_hcd [ 1471.443867][ T3455] NILFS (loop1): discard dirty block: blocknr=18, size=1024 [ 1471.451869][ T3455] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.460815][ T3455] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.470498][ T3455] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.479980][ T5789] NILFS (loop1): disposed unprocessed dirty file(s) when stopping log writer [ 1471.490561][ T5789] NILFS (loop1): discard dirty page: offset=0, ino=6 [ 1471.501023][ T5789] NILFS (loop1): discard dirty block: blocknr=35, size=1024 [ 1471.525416][ T5789] NILFS (loop1): discard dirty block: blocknr=36, size=1024 [ 1471.534300][ T5789] NILFS (loop1): discard dirty block: blocknr=37, size=1024 [ 1471.546060][ T5789] NILFS (loop1): discard dirty block: blocknr=38, size=1024 [ 1471.561130][ T5789] NILFS (loop1): discard dirty page: offset=0, ino=5 [ 1471.568000][ T5789] NILFS (loop1): discard dirty block: blocknr=41, size=1024 [ 1471.575563][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.587066][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.599437][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.612179][ T5789] NILFS (loop1): discard dirty page: offset=0, ino=4 [ 1471.626476][ T5789] NILFS (loop1): discard dirty block: blocknr=40, size=1024 [ 1471.633988][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.643063][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.645467][ T3381] usb 4-1: Using ep0 maxpacket: 16 [ 1471.655898][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.669037][ T5789] NILFS (loop1): discard dirty page: offset=0, ino=3 [ 1471.676189][ T5789] NILFS (loop1): discard dirty block: blocknr=42, size=1024 [ 1471.686252][ T5789] NILFS (loop1): discard dirty block: blocknr=43, size=1024 [ 1471.687250][ T3381] usb 4-1: config 0 has no interfaces? [ 1471.698558][ T5789] NILFS (loop1): discard dirty block: blocknr=44, size=1024 [ 1471.707721][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.724710][ T5789] NILFS (loop1): discard dirty page: offset=196608, ino=3 [ 1471.732781][ T3381] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 1471.735556][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.741873][ T3381] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1471.751661][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.768545][ T5789] NILFS (loop1): discard dirty block: blocknr=49, size=1024 [ 1471.769355][T32664] loop2: detected capacity change from 0 to 2048 [ 1471.777087][ T5789] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024 [ 1471.791536][ T3381] usb 4-1: Product: syz [ 1471.795919][ T3381] usb 4-1: Manufacturer: syz [ 1471.809752][T32664] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=2362, location=2362 [ 1471.824831][ T3381] usb 4-1: SerialNumber: syz [ 1471.834939][ T3381] r8152-cfgselector 4-1: config 0 descriptor?? [ 1471.870291][T32664] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1471.895255][T32664] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 160: 0xd2 != 0xd4 [ 1471.935247][T32664] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1471.983186][ T28] audit: type=1800 audit(2000000019.847:118): pid=32664 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.11668" name="file1" dev="loop2" ino=1346 res=0 errno=0 [ 1472.025245][T32667] Cannot find del_set index 2 as target [ 1472.073075][ T3381] usbip-host 4-1: 4-1 is not in match_busid table... skip! [ 1472.351939][ T5832] usb 4-1: USB disconnect, device number 67 [ 1472.369470][T32677] netlink: 20 bytes leftover after parsing attributes in process `syz.1.11673'. [ 1472.379138][T32677] netlink: 36 bytes leftover after parsing attributes in process `syz.1.11673'. [ 1472.522785][T32681] loop2: detected capacity change from 0 to 1024 [ 1472.640633][T32685] loop0: detected capacity change from 0 to 2048 [ 1472.673631][T32685] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1472.769962][T32689] netlink: 40 bytes leftover after parsing attributes in process `syz.2.11679'. [ 1473.031098][T32695] usb usb1: usbfs: interface 0 claimed by hub while 'syz.0.11682' sets config #2048 [ 1473.260287][T32703] netlink: 'syz.0.11686': attribute type 27 has an invalid length. [ 1473.268263][T32703] netlink: 'syz.0.11686': attribute type 3 has an invalid length. [ 1473.313137][T32703] netlink: 132 bytes leftover after parsing attributes in process `syz.0.11686'. [ 1473.321074][T32706] netdevsim netdevsim3 netdevsim0: entered allmulticast mode [ 1473.722674][T32720] ntfs: (device nullb0): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 1473.756823][T32720] ntfs: (device nullb0): read_ntfs_boot_sector(): Mount option errors=recover not used. Aborting without trying to recover. [ 1473.780481][T32720] ntfs: (device nullb0): ntfs_fill_super(): Not an NTFS volume. [ 1474.208084][T32715] loop0: detected capacity change from 0 to 32768 [ 1474.312346][T32715] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 1474.331275][T32716] loop2: detected capacity change from 0 to 32768 [ 1474.401097][T32716] JBD2: Ignoring recovery information on journal [ 1474.402422][T32737] openvswitch: netlink: Message has 4 unknown bytes. [ 1474.439044][ T5792] ocfs2: Unmounting device (7,0) on (node local) [ 1474.534854][T32716] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 1474.766707][ T5832] usb 2-1: new high-speed USB device number 73 using dummy_hcd [ 1474.809517][ T5790] ocfs2: Unmounting device (7,2) on (node local) [ 1474.988098][ T5832] usb 2-1: Using ep0 maxpacket: 32 [ 1475.028496][ T5832] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1475.072705][ T5832] usb 2-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1475.097511][ T5832] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1475.135453][ T5832] usb 2-1: Product: syz [ 1475.139690][ T5832] usb 2-1: Manufacturer: syz [ 1475.144340][ T5832] usb 2-1: SerialNumber: syz [ 1475.162271][T32755] netlink: 20 bytes leftover after parsing attributes in process `syz.2.11710'. [ 1475.176593][ T5832] usb 2-1: config 0 descriptor?? [ 1475.209874][ T5832] usb 2-1: bad CDC descriptors [ 1475.233212][ T5832] usb 2-1: unsupported MDLM descriptors [ 1475.384796][T32762] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 1475.479688][ T5832] usb 2-1: USB disconnect, device number 73 [ 1475.597386][ T28] audit: type=1326 audit(2000000023.187:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32767 comm="syz.2.11716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1475.675483][ T28] audit: type=1326 audit(2000000023.187:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32767 comm="syz.2.11716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1475.708786][ T28] audit: type=1326 audit(2000000023.215:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32767 comm="syz.2.11716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=276 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1475.785707][ T28] audit: type=1326 audit(2000000023.215:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32767 comm="syz.2.11716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1475.834889][ T28] audit: type=1326 audit(2000000023.215:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32767 comm="syz.2.11716" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f0918b8f749 code=0x7ffc0000 [ 1475.930034][ T310] binder: 309:310 ioctl c00c6211 ffffffffffffffff returned -14 [ 1476.408954][ T330] loop0: detected capacity change from 0 to 256 [ 1476.598291][ T330] FAT-fs (loop0): Directory bread(block 64) failed [ 1476.604911][ T330] FAT-fs (loop0): Directory bread(block 65) failed [ 1476.642811][ T330] FAT-fs (loop0): Directory bread(block 66) failed [ 1476.673223][ T330] FAT-fs (loop0): Directory bread(block 67) failed [ 1476.706681][ T330] FAT-fs (loop0): Directory bread(block 68) failed [ 1476.713282][ T330] FAT-fs (loop0): Directory bread(block 69) failed [ 1476.760915][ T330] FAT-fs (loop0): Directory bread(block 70) failed [ 1476.781120][ T330] FAT-fs (loop0): Directory bread(block 71) failed [ 1476.794798][ T330] FAT-fs (loop0): Directory bread(block 72) failed [ 1476.801544][ T336] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1476.817983][ T330] FAT-fs (loop0): Directory bread(block 73) failed [ 1477.448209][ T361] geneve2: entered promiscuous mode [ 1477.465320][ T5877] usb 3-1: new high-speed USB device number 46 using dummy_hcd [ 1477.697143][ T5877] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1477.725483][ T5877] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1477.759579][ T5877] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 1477.785380][ T5877] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1477.807040][ T5877] usb 3-1: SerialNumber: syz [ 1478.058891][ T5877] usb 3-1: 0:2 : does not exist [ 1478.077592][ T5877] usb 3-1: unit 5: unexpected type 0x03 [ 1478.114129][ T5877] usb 3-1: USB disconnect, device number 46 [ 1478.209116][ T5902] udevd[5902]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1478.386570][ T394] bond2: entered promiscuous mode [ 1478.391764][ T394] bond2: entered allmulticast mode [ 1478.946133][ T415] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11772'. [ 1479.036791][ T417] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11773'. [ 1479.581903][ T406] loop0: detected capacity change from 0 to 32768 [ 1479.621117][ T406] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.11767 (406) [ 1479.681336][ T437] kernel read not supported for file /  (pid: 437 comm: syz.3.11783) [ 1479.699305][ T28] audit: type=1800 audit(2000000026.970:124): pid=437 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.11783" name=200120 dev="mqueue" ino=82366 res=0 errno=0 [ 1479.704959][ T406] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1479.742448][ T406] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1479.757361][ T406] BTRFS info (device loop0): using free space tree [ 1479.925626][ T406] BTRFS info (device loop0): enabling ssd optimizations [ 1479.933563][ T406] BTRFS info (device loop0): auto enabling async discard [ 1480.023395][ T5877] usb 3-1: new high-speed USB device number 47 using dummy_hcd [ 1480.055918][ T462] [U] [ 1480.210187][ T5792] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1480.239680][ T5877] usb 3-1: Using ep0 maxpacket: 32 [ 1480.249801][ T5877] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1480.270629][ T5877] usb 3-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 1480.290820][ T5877] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1480.300563][ T5877] usb 3-1: Product: syz [ 1480.311112][ T5877] usb 3-1: Manufacturer: syz [ 1480.323383][ T5877] usb 3-1: SerialNumber: syz [ 1480.371642][ T5877] usb 3-1: config 0 descriptor?? [ 1480.382992][ T5877] usb 3-1: bad CDC descriptors [ 1480.388793][ T5877] usb 3-1: unsupported MDLM descriptors [ 1480.572153][ T467] loop3: detected capacity change from 0 to 8192 [ 1480.615212][T25805] usb 3-1: USB disconnect, device number 47 [ 1480.653732][ T467] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 1480.669546][ T467] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal [ 1480.716698][ T467] REISERFS (device loop3): using ordered data mode [ 1480.754393][ T467] reiserfs: using flush barriers [ 1480.804129][ T467] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 1480.845887][ T467] REISERFS (device loop3): checking transaction log (loop3) [ 1480.873399][ T467] REISERFS (device loop3): Using rupasov hash to sort names [ 1480.911565][ T467] REISERFS (device loop3): using 3.5.x disk format [ 1480.952554][ T467] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1480.983827][ T467] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1481.007225][ T467] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1481.054387][ T467] REISERFS warning (device loop3): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 UNKNOWN] (nlink == 1) not found (pos 2) [ 1481.101805][ T467] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage. [ 1481.213000][ T467] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1481.322990][ T467] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1481.340426][ T467] REISERFS warning: green-16003 errcatch_is_left_mergeable: Invalid item type observed, run fsck ASAP [ 1481.864349][ T511] loop2: detected capacity change from 0 to 8 [ 1482.088347][ T516] netlink: 'syz.1.11813': attribute type 1 has an invalid length. [ 1482.120658][ T516] netlink: 12 bytes leftover after parsing attributes in process `syz.1.11813'. [ 1482.183168][ T520] 9pnet_fd: Insufficient options for proto=fd [ 1482.214671][ T522] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11816'. [ 1482.225839][ T522] netlink: 28 bytes leftover after parsing attributes in process `syz.3.11816'. [ 1482.657212][ T538] netlink: 44 bytes leftover after parsing attributes in process `syz.1.11824'. [ 1482.697483][ T533] loop3: detected capacity change from 0 to 4096 [ 1482.717843][ T533] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512). [ 1482.870262][ T544] loop1: detected capacity change from 0 to 512 [ 1482.907878][ T544] EXT4-fs: Ignoring removed nobh option [ 1482.940733][ T533] ntfs3: loop3: failed to convert "c46c" to cp864 [ 1482.952299][ T547] netlink: 24 bytes leftover after parsing attributes in process `syz.2.11829'. [ 1482.965193][ T547] infiniband syz2: set active [ 1482.978962][ T547] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1482.999591][ T544] EXT4-fs error (device loop1): ext4_do_update_inode:5244: inode #3: comm syz.1.11827: corrupted inode contents [ 1483.019391][ T544] EXT4-fs (loop1): Remounting filesystem read-only [ 1483.044795][ T544] Quota error (device loop1): write_blk: dquota write failed [ 1483.069266][ T544] Quota error (device loop1): qtree_write_dquot: Error -5 occurred while creating quota [ 1483.091230][ T544] EXT4-fs (loop1): 1 truncate cleaned up [ 1483.105095][ T544] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1483.118642][ T544] ext4 filesystem being mounted at /3086/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1483.228925][ T548] erspan0: left promiscuous mode [ 1483.229104][ T5789] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1483.255540][ T548] erspan0: left allmulticast mode [ 1483.315132][ T548] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check. [ 1483.355581][ T5832] lo speed is unknown, defaulting to 1000 [ 1483.642418][ T28] audit: type=1400 audit(2000000030.605:125): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3AA009F5 pid=564 comm="syz.0.11836" [ 1483.724683][ T570] loop1: detected capacity change from 0 to 256 [ 1483.775031][ T570] exfat: Deprecated parameter 'namecase' [ 1483.780810][ T570] exfat: Deprecated parameter 'utf8' [ 1483.805292][ T570] exfat: Deprecated parameter 'namecase' [ 1483.811021][ T570] exfat: Deprecated parameter 'utf8' [ 1483.906874][ T570] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x555ffa9e, utbl_chksum : 0xe619d30d) [ 1483.967147][ T576] bridge5: entered allmulticast mode [ 1484.315206][ T587] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11847'. [ 1484.324330][ T587] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11847'. [ 1484.355803][ T589] (null): rxe_set_mtu: Set mtu to 1024 [ 1484.458634][ T591] loop1: detected capacity change from 0 to 1024 [ 1484.560016][T29402] hfsplus: b-tree write err: -5, ino 4 [ 1484.877362][ T605] loop2: detected capacity change from 0 to 1024 [ 1484.948511][ T589] infiniband syz!: set active [ 1484.956113][ T589] infiniband syz!: added team_slave_0 [ 1485.028939][ T3455] hfsplus: b-tree write err: -5, ino 4 [ 1485.166691][ T589] RDS/IB: syz!: added [ 1485.182187][ T589] smc: adding ib device syz! with port count 1 [ 1485.203104][ T589] smc: ib device syz! port 1 has pnetid [ 1485.473845][ T621] netlink: 14 bytes leftover after parsing attributes in process `syz.2.11864'. [ 1486.187641][ T642] loop2: detected capacity change from 0 to 512 [ 1486.260228][ T642] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1486.298169][ T642] ext4 filesystem being mounted at /3000/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 1486.491844][ T642] EXT4-fs error (device loop2): ext4_validate_block_bitmap:421: comm syz.2.11874: bg 0: bad block bitmap checksum [ 1486.531649][ T642] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6637: Filesystem failed CRC [ 1486.653520][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1487.026338][ T660] netlink: 8 bytes leftover after parsing attributes in process `syz.0.11882'. [ 1487.059312][ T650] loop1: detected capacity change from 0 to 40427 [ 1487.076872][ T650] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 1487.087965][ T662] netlink: 12 bytes leftover after parsing attributes in process `syz.2.11883'. [ 1487.097601][ T650] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 1487.132611][ T650] F2FS-fs (loop1): invalid crc value [ 1487.171029][ T650] F2FS-fs (loop1): Found nat_bits in checkpoint [ 1487.359583][ T650] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 1487.378076][ T650] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1488.356561][ T699] loop2: detected capacity change from 0 to 256 [ 1488.420157][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.435668][ T699] FAT-fs (loop2): Filesystem has been set read-only [ 1488.442735][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.498024][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.506817][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.557151][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.619741][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.645863][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.676927][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.708146][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.739986][ T699] FAT-fs (loop2): error, fat_get_cluster: invalid cluster chain (i_pos 196) [ 1488.781499][ T28] audit: type=1800 audit(2000000035.348:126): pid=699 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.11898" name="file1" dev="loop2" ino=1048660 res=0 errno=0 [ 1488.855282][ T699] FAT-fs (loop2): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1489.146854][ T722] loop0: detected capacity change from 0 to 64 [ 1489.296985][ T728] loop3: detected capacity change from 0 to 256 [ 1489.825564][ T747] netlink: 20 bytes leftover after parsing attributes in process `syz.3.11921'. [ 1489.858927][ T747] veth4: entered promiscuous mode [ 1489.865446][ T747] veth4: entered allmulticast mode [ 1490.315647][ T765] loop3: detected capacity change from 0 to 128 [ 1490.362690][ T770] usb usb8: usbfs: interface 0 claimed by hub while 'syz.0.11932' sets config #0 [ 1490.374002][ T765] affs: Error parsing options [ 1491.120803][ T800] netlink: 'syz.3.11946': attribute type 64 has an invalid length. [ 1491.128797][ T800] netlink: 'syz.3.11946': attribute type 4 has an invalid length. [ 1491.183984][ T28] audit: type=1326 audit(2000000037.563:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=804 comm="syz.1.11949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1491.218414][ T800] netlink: 152 bytes leftover after parsing attributes in process `syz.3.11946'. [ 1491.281765][ T28] audit: type=1326 audit(2000000037.563:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=804 comm="syz.1.11949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1491.344656][ T28] audit: type=1326 audit(2000000037.563:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=804 comm="syz.1.11949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=293 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1491.366948][ C0] vkms_vblank_simulate: vblank timer overrun [ 1491.441994][ T28] audit: type=1326 audit(2000000037.563:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=804 comm="syz.1.11949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1491.512034][ T28] audit: type=1326 audit(2000000037.563:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=804 comm="syz.1.11949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1492.156380][ T837] netlink: 'syz.1.11965': attribute type 32 has an invalid length. [ 1492.348891][ T812] loop0: detected capacity change from 0 to 32768 [ 1492.419130][ T812] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1492.572487][ T812] XFS (loop0): Ending clean mount [ 1492.592155][ T812] XFS (loop0): Quotacheck needed: Please wait. [ 1492.607693][ T8] usb 2-1: new high-speed USB device number 74 using dummy_hcd [ 1492.686864][ T812] XFS (loop0): Quotacheck: Done. [ 1492.775911][ T5792] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1492.825698][T24016] usb 4-1: new high-speed USB device number 68 using dummy_hcd [ 1492.834656][ T8] usb 2-1: Using ep0 maxpacket: 16 [ 1492.860839][ T8] usb 2-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 1492.870257][ T8] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1492.879045][ T8] usb 2-1: Product: syz [ 1492.900622][ T8] usb 2-1: Manufacturer: syz [ 1492.905316][ T8] usb 2-1: SerialNumber: syz [ 1492.938430][ T8] usb 2-1: config 0 descriptor?? [ 1492.960499][ T8] ssu100 2-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 1493.049966][T24016] usb 4-1: Using ep0 maxpacket: 8 [ 1493.066771][T24016] usb 4-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 1493.082467][T24016] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1493.101597][T24016] usb 4-1: Product: syz [ 1493.126027][T24016] usb 4-1: Manufacturer: syz [ 1493.130766][T24016] usb 4-1: SerialNumber: syz [ 1493.159413][T24016] usb 4-1: config 0 descriptor?? [ 1493.184354][T24016] gspca_main: se401-2.14.0 probing 047d:5003 [ 1493.413107][ T8] ssu100: probe of 2-1:0.0 failed with error -71 [ 1493.431132][ T8] usb 2-1: USB disconnect, device number 74 [ 1493.623857][T24016] gspca_se401: write req failed req 0x57 val 0x00 error -71 [ 1493.639516][T24016] se401: probe of 4-1:0.0 failed with error -71 [ 1493.668334][T24016] usb 4-1: USB disconnect, device number 68 [ 1493.728842][ T888] vim2m vim2m.0: Fourcc format (0x47425247) invalid. [ 1494.030050][ T906] loop2: detected capacity change from 0 to 256 [ 1494.152815][ T912] loop1: detected capacity change from 0 to 64 [ 1494.762237][ T8] usb 3-1: new high-speed USB device number 48 using dummy_hcd [ 1494.770505][ T939] netlink: 76 bytes leftover after parsing attributes in process `syz.0.12003'. [ 1494.933767][ T945] loop3: detected capacity change from 0 to 256 [ 1494.995252][ T8] usb 3-1: Using ep0 maxpacket: 32 [ 1495.024469][ T8] usb 3-1: config 0 has an invalid descriptor of length 49, skipping remainder of the config [ 1495.046440][ T8] usb 3-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1495.070562][ T8] usb 3-1: New USB device found, idVendor=0421, idProduct=00a0, bcdDevice=c8.e1 [ 1495.087550][ T8] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1495.109716][ T8] usb 3-1: config 0 descriptor?? [ 1495.134468][ T8] usb 3-1: bad CDC descriptors [ 1495.139837][ T921] loop1: detected capacity change from 0 to 32768 [ 1495.164801][ T8] usb 3-1: bad CDC descriptors [ 1495.388190][ T8] usb 3-1: USB disconnect, device number 48 [ 1495.729078][ T964] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12015'. [ 1495.792379][ T968] netlink: 'syz.3.12017': attribute type 4 has an invalid length. [ 1495.800284][ T968] netlink: 17 bytes leftover after parsing attributes in process `syz.3.12017'. [ 1495.896278][ T972] netlink: 209844 bytes leftover after parsing attributes in process `syz.1.12018'. [ 1496.347819][ T989] loop2: detected capacity change from 0 to 1024 [ 1496.509610][ T994] netlink: 'syz.3.12029': attribute type 1 has an invalid length. [ 1496.596399][ T996] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12030'. [ 1496.857332][ T1009] netlink: 12 bytes leftover after parsing attributes in process `syz.2.12036'. [ 1496.940231][ T1012] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12037'. [ 1496.963919][ T1275] ieee802154 phy1 wpan1: encryption failed: -22 [ 1497.514106][ T1039] loop1: detected capacity change from 0 to 4096 [ 1497.830416][ T1059] netlink: 'syz.2.12054': attribute type 21 has an invalid length. [ 1497.849500][ T1059] IPv6: NLM_F_CREATE should be specified when creating new route [ 1497.869485][ T1059] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1497.876858][ T1059] IPv6: NLM_F_CREATE should be set when creating new route [ 1497.884255][ T1059] IPv6: NLM_F_CREATE should be set when creating new route [ 1497.891656][ T1059] IPv6: NLM_F_CREATE should be set when creating new route [ 1497.977760][ T1061] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic [ 1498.271126][ T1075] loop0: detected capacity change from 0 to 8 [ 1498.317002][T24016] usb 2-1: new high-speed USB device number 75 using dummy_hcd [ 1498.331218][ T1077] xt_cgroup: xt_cgroup: no path or classid specified [ 1498.501891][ T1079] loop3: detected capacity change from 0 to 4096 [ 1498.556995][T24016] usb 2-1: Using ep0 maxpacket: 32 [ 1498.587326][T24016] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1498.607949][T24016] usb 2-1: config 7 has an invalid interface number: 187 but max is 0 [ 1498.625318][ T1079] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 1498.636440][T24016] usb 2-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 1498.654612][ T1079] ntfs3: loop3: Failed to load $Extend (-22). [ 1498.672770][T24016] usb 2-1: config 7 has no interface number 0 [ 1498.675624][ T1079] ntfs3: loop3: Failed to initialize $Extend. [ 1498.703307][T24016] usb 2-1: config 7 interface 187 altsetting 6 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1498.742883][T24016] usb 2-1: config 7 interface 187 altsetting 6 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1498.772112][T24016] usb 2-1: config 7 interface 187 has no altsetting 0 [ 1498.787552][T24016] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1498.806089][T24016] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1498.825516][T24016] usb 2-1: Product: syz [ 1498.832382][T24016] usb 2-1: Manufacturer: syz [ 1498.843400][T24016] usb 2-1: SerialNumber: syz [ 1499.134590][T24016] usb 2-1: Limiting number of CPorts to U8_MAX [ 1499.155377][T24016] usb 2-1: Unknown endpoint type found, address 0x07 [ 1499.172506][T24016] usb 2-1: Not enough endpoints found in device, aborting! [ 1499.374122][ T1101] loop3: detected capacity change from 0 to 2048 [ 1499.409565][T24016] usb 2-1: USB disconnect, device number 75 [ 1499.461005][ T1101] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1499.830963][ T1117] PKCS8: Unsupported PKCS#8 version [ 1500.019298][ T1123] loop0: detected capacity change from 0 to 1024 [ 1500.067007][ T1127] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12089'. [ 1500.161250][ T1123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1500.199343][ T1129] loop1: detected capacity change from 0 to 4096 [ 1500.213062][ T1123] ext4 filesystem being mounted at /2912/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1500.238545][ T1129] ntfs3: loop1: ino=3, Correct links count -> 2. [ 1500.619928][ T5832] usb 1-1: new high-speed USB device number 62 using dummy_hcd [ 1500.842807][ T5832] usb 1-1: Using ep0 maxpacket: 8 [ 1500.861634][ T5832] usb 1-1: config 4 has an invalid interface number: 244 but max is 0 [ 1500.871753][ T28] audit: type=1326 audit(2000000046.504:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1145 comm="syz.1.12098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1500.896406][ T5832] usb 1-1: config 4 has no interface number 0 [ 1500.903260][ T5832] usb 1-1: config 4 interface 244 altsetting 1 endpoint 0x1 has an invalid bInterval 41, changing to 7 [ 1500.936486][ T5832] usb 1-1: config 4 interface 244 altsetting 1 endpoint 0x2 has invalid maxpacket 65267, setting to 1024 [ 1500.948476][ T28] audit: type=1326 audit(2000000046.522:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1145 comm="syz.1.12098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1500.981106][ T5832] usb 1-1: config 4 interface 244 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 1024 [ 1501.013519][ T5832] usb 1-1: config 4 interface 244 has no altsetting 0 [ 1501.026397][ T28] audit: type=1326 audit(2000000046.540:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1145 comm="syz.1.12098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1501.048766][ C0] vkms_vblank_simulate: vblank timer overrun [ 1501.083245][ T5832] usb 1-1: New USB device found, idVendor=05ac, idProduct=fa33, bcdDevice=cb.aa [ 1501.093792][ T5832] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1501.101910][ T5832] usb 1-1: Product: syz [ 1501.113710][ T28] audit: type=1326 audit(2000000046.540:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1145 comm="syz.1.12098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1501.136847][ T28] audit: type=1326 audit(2000000046.540:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1145 comm="syz.1.12098" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1501.139555][ T5832] usb 1-1: Manufacturer: syz [ 1501.206887][ T1136] loop3: detected capacity change from 0 to 32768 [ 1501.224964][ T5832] usb 1-1: SerialNumber: syz [ 1501.244614][ T1136] (syz.3.12092,1136,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1501.272020][ T1136] (syz.3.12092,1136,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1501.276302][ T1123] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 1501.340381][ T1136] JBD2: Ignoring recovery information on journal [ 1501.361531][ T1150] loop1: detected capacity change from 0 to 4096 [ 1501.449933][ T1136] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1501.591828][ T5832] ipheth 1-1:4.244: Unable to find endpoints [ 1501.645860][ T5832] usb 1-1: USB disconnect, device number 62 [ 1501.652073][ T1150] ntfs: (device loop1): parse_options(): NLS character set cp8 Oone_multiplier=0x0000000000000001gid=0 not found. Using previous one cp862. [ 1501.730148][ T1150] ntfs: (device loop1): check_mft_mirror(): $MFT and $MFTMirr (record 1) do not match. Run ntfsfix or chkdsk. [ 1501.774264][ T1150] ntfs: (device loop1): load_system_files(): $MFTMirr does not match $MFT. Mounting read-only. Run ntfsfix and/or chkdsk. [ 1501.808814][ T1150] ntfs: (device loop1): ntfs_read_locked_inode(): First extent of $DATA attribute has non zero lowest_vcn. [ 1501.847783][ T1150] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -5. Marking corrupt inode 0xa as bad. Run chkdsk. [ 1501.909166][ T1150] ntfs: volume version 3.1. [ 1501.999829][ T5793] ocfs2: Unmounting device (7,3) on (node local) [ 1502.035656][ T1155] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check. [ 1502.210978][ T1157] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 1502.242756][ T1157] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1502.352964][ T5792] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1502.686604][ T1174] netlink: 'syz.1.12109': attribute type 6 has an invalid length. [ 1502.732214][ T1174] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.12109'. [ 1502.965281][ T1184] libceph: resolve '@e2OAqcz' (ret=-3): failed [ 1503.497740][ T1211] netlink: 20 bytes leftover after parsing attributes in process `syz.1.12126'. [ 1503.719612][ T1218] netlink: 36 bytes leftover after parsing attributes in process `syz.3.12130'. [ 1503.768485][ T1218] netlink: 6 bytes leftover after parsing attributes in process `syz.3.12130'. [ 1503.777518][ T1218] netlink: 6 bytes leftover after parsing attributes in process `syz.3.12130'. [ 1504.464786][ T1250] --map-set only usable from mangle table [ 1505.080416][ T1270] bridge6: trying to set multicast startup query interval below minimum, setting to 100 (1000ms) [ 1505.272446][ T1252] loop1: detected capacity change from 0 to 32768 [ 1505.341178][ T1278] netlink: 8 bytes leftover after parsing attributes in process `syz.3.12156'. [ 1505.362755][ T1252] ERROR: (device loop1): dbAllocNext: Corrupt dmap page [ 1505.362755][ T1252] [ 1505.394720][ T1282] netlink: 'syz.0.12158': attribute type 1 has an invalid length. [ 1505.402664][ T1282] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12158'. [ 1506.442740][ T1321] netlink: 24 bytes leftover after parsing attributes in process `syz.3.12175'. [ 1506.639766][ T1328] netlink: 'syz.2.12178': attribute type 5 has an invalid length. [ 1507.293148][ T1354] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1507.504365][ T1358] loop0: detected capacity change from 0 to 4096 [ 1507.528736][ T1358] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512). [ 1507.540075][T24016] usb 2-1: new high-speed USB device number 76 using dummy_hcd [ 1507.695188][ T1358] ntfs3: loop0: failed to convert "c46c" to cp936 [ 1507.748864][T24016] usb 2-1: config 0 has an invalid interface number: 216 but max is 0 [ 1507.767799][T24016] usb 2-1: config 0 has no interface number 0 [ 1507.785102][T24016] usb 2-1: config 0 interface 216 altsetting 4 bulk endpoint 0x8F has invalid maxpacket 64 [ 1507.812063][T24016] usb 2-1: config 0 interface 216 altsetting 4 endpoint 0x1 has invalid wMaxPacketSize 0 [ 1507.848677][T24016] usb 2-1: config 0 interface 216 has no altsetting 0 [ 1507.871364][T24016] usb 2-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.2e [ 1507.878740][ T1370] netlink: 'syz.3.12199': attribute type 21 has an invalid length. [ 1507.889894][T24016] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1507.925386][ T1370] netlink: 4 bytes leftover after parsing attributes in process `syz.3.12199'. [ 1507.926554][T24016] usb 2-1: config 0 descriptor?? [ 1507.961696][ T1352] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 1507.979839][T24016] usb 2-1: NFC: intf ffff88807e37b000 id ffffffff8d63b620 [ 1507.992016][ T1373] netlink: 4 bytes leftover after parsing attributes in process `syz.0.12200'. [ 1508.155604][ T1376] xt_hashlimit: max too large, truncated to 1048576 [ 1508.185651][ T1376] No such timeout policy "syz1" [ 1508.210537][ T5832] usb 2-1: USB disconnect, device number 76 [ 1508.366400][ T1382] netlink: 'syz.0.12205': attribute type 6 has an invalid length. [ 1508.875043][T25805] usb 1-1: new high-speed USB device number 63 using dummy_hcd [ 1509.098998][T25805] usb 1-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02 [ 1509.111593][T25805] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1509.127172][T25805] usb 1-1: Product: syz [ 1509.131818][T25805] usb 1-1: Manufacturer: syz [ 1509.162102][T25805] usb 1-1: SerialNumber: syz [ 1509.185550][T25805] usb 1-1: config 0 descriptor?? [ 1509.212410][T25805] gspca_main: sunplus-2.14.0 probing 04fc:504a [ 1509.557391][ T1416] loop1: detected capacity change from 0 to 4096 [ 1509.637874][ T1422] netlink: 16 bytes leftover after parsing attributes in process `syz.2.12225'. [ 1509.677328][ T1422] netlink: 40 bytes leftover after parsing attributes in process `syz.2.12225'. [ 1509.698132][ T1421] loop3: detected capacity change from 0 to 2048 [ 1509.705119][ T1416] ntfs3: loop1: ino=5, "/" directory corrupted [ 1509.707833][T25805] usb 1-1: USB disconnect, device number 63 [ 1509.753581][ T1421] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1509.815833][ T1423] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1510.466076][ T28] kauditd_printk_skb: 12 callbacks suppressed [ 1510.466095][ T28] audit: type=1326 audit(2000000055.352:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1441 comm="syz.0.12234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1510.561803][ T28] audit: type=1326 audit(2000000055.352:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1441 comm="syz.0.12234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1510.651553][ T28] audit: type=1326 audit(2000000055.417:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1441 comm="syz.0.12234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1510.704549][ T28] audit: type=1326 audit(2000000055.417:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1441 comm="syz.0.12234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1510.778768][ T28] audit: type=1326 audit(2000000055.417:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1441 comm="syz.0.12234" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1510.930215][ T1451] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744071562067969) [ 1510.972854][ T1451] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647 [ 1510.998429][ T1437] loop1: detected capacity change from 0 to 32768 [ 1511.040120][ T1437] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 1511.105641][ T1437] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1511.149807][ T1437] (syz.1.12232,1437,0):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry overrun - offset=0, inode=281474976710721, rec_len=32768, name_len=1 [ 1511.171143][ T1437] (syz.1.12232,1437,0):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2 [ 1511.179964][ T1437] (syz.1.12232,1437,0):ocfs2_mknod:298 ERROR: status = -2 [ 1511.187294][ T1437] (syz.1.12232,1437,0):ocfs2_mknod:502 ERROR: status = -2 [ 1511.194745][ T1437] (syz.1.12232,1437,0):ocfs2_create:676 ERROR: status = -2 [ 1511.261171][ T5789] ocfs2: Unmounting device (7,1) on (node local) [ 1511.628772][ T1476] ip6gretap2: entered promiscuous mode [ 1511.648108][ T1474] netlink: 48 bytes leftover after parsing attributes in process `syz.1.12248'. [ 1512.672623][ T1517] Cannot find del_set index 2 as target [ 1512.968167][ T1525] loop0: detected capacity change from 0 to 1024 [ 1513.023298][ T1531] loop1: detected capacity change from 0 to 256 [ 1513.093727][ T1531] FAT-fs (loop1): Directory bread(block 64) failed [ 1513.121356][ T1531] FAT-fs (loop1): Directory bread(block 65) failed [ 1513.128090][ T1531] FAT-fs (loop1): Directory bread(block 66) failed [ 1513.173939][ T1531] FAT-fs (loop1): Directory bread(block 67) failed [ 1513.185695][ T1531] FAT-fs (loop1): Directory bread(block 68) failed [ 1513.194253][ T1531] FAT-fs (loop1): Directory bread(block 69) failed [ 1513.219813][ T1531] FAT-fs (loop1): Directory bread(block 70) failed [ 1513.234993][ T1531] FAT-fs (loop1): Directory bread(block 71) failed [ 1513.263248][ T1531] FAT-fs (loop1): Directory bread(block 72) failed [ 1513.269886][ T1531] FAT-fs (loop1): Directory bread(block 73) failed [ 1513.434127][ T1539] netlink: 'syz.3.12281': attribute type 1 has an invalid length. [ 1513.694250][ T1547] loop3: detected capacity change from 0 to 1024 [ 1513.750026][T25805] usb 3-1: new high-speed USB device number 49 using dummy_hcd [ 1514.013973][T25805] usb 3-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1514.031692][T25805] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1514.039771][T25805] usb 3-1: Product: syz [ 1514.045258][T25805] usb 3-1: Manufacturer: syz [ 1514.050300][T25805] usb 3-1: SerialNumber: syz [ 1514.084050][T25805] usb 3-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1514.119666][ T3381] usb 3-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1514.723028][T24016] usb 3-1: USB disconnect, device number 49 [ 1515.234292][ T1597] netlink: 20 bytes leftover after parsing attributes in process `syz.0.12310'. [ 1515.235926][ T3381] ath9k_htc 3-1:1.0: ath9k_htc: Target is unresponsive [ 1515.250756][T25806] usb 4-1: new high-speed USB device number 69 using dummy_hcd [ 1515.279401][ T3381] ath9k_htc: Failed to initialize the device [ 1515.308992][T24016] usb 3-1: ath9k_htc: USB layer deinitialized [ 1515.479498][T25806] usb 4-1: Using ep0 maxpacket: 16 [ 1515.492328][T25806] usb 4-1: config 0 has an invalid interface number: 223 but max is 0 [ 1515.516579][T25806] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1515.526744][T25806] usb 4-1: config 0 has no interface number 0 [ 1515.544127][T25806] usb 4-1: config 0 interface 223 altsetting 1 endpoint 0x7 has an invalid bInterval 0, changing to 7 [ 1515.555691][T25806] usb 4-1: config 0 interface 223 altsetting 1 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1515.567911][T25806] usb 4-1: config 0 interface 223 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1515.600618][T25806] usb 4-1: config 0 interface 223 has no altsetting 0 [ 1515.611565][T25806] usb 4-1: New USB device found, idVendor=06cb, idProduct=0006, bcdDevice=9a.eb [ 1515.621345][T25806] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1515.631416][T25806] usb 4-1: Product: syz [ 1515.635798][ T28] audit: type=1326 audit(2000000060.132:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1606 comm="syz.0.12315" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x0 [ 1515.636243][T25806] usb 4-1: Manufacturer: syz [ 1515.663038][T25806] usb 4-1: SerialNumber: syz [ 1515.685750][T25806] usb 4-1: config 0 descriptor?? [ 1515.836749][ T1613] SET target dimension over the limit! [ 1515.988080][ T1617] netlink: 64 bytes leftover after parsing attributes in process `syz.2.12320'. [ 1516.334407][ T8] usb 4-1: USB disconnect, device number 69 [ 1517.005326][ T1653] loop2: detected capacity change from 0 to 512 [ 1517.027460][ T1650] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1517.054768][ T1653] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #15: comm syz.2.12339: inode has both inline data and extents flags [ 1517.124077][ T1653] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.12339: couldn't read orphan inode 15 (err -117) [ 1517.210303][ T1653] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1517.219514][ T1663] IPVS: set_ctl: invalid protocol: 8 172.30.0.1:20002 [ 1517.388315][ T5790] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1517.643639][ T1675] futex_wake_op: syz.1.12345 tries to shift op by 32; fix this program [ 1518.360673][ T1697] netlink: 40 bytes leftover after parsing attributes in process `syz.0.12355'. [ 1520.444485][ T1781] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12395'. [ 1520.489272][ T1785] netlink: 'syz.3.12397': attribute type 28 has an invalid length. [ 1520.506466][ T1785] netlink: 'syz.3.12397': attribute type 29 has an invalid length. [ 1520.516271][ T1785] netlink: 132 bytes leftover after parsing attributes in process `syz.3.12397'. [ 1521.093192][ T1805] libceph: resolve '0..' (ret=-3): failed [ 1521.471044][ T1815] loop1: detected capacity change from 0 to 4096 [ 1521.576077][ T1815] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1521.598465][ T1815] ntfs3: loop1: Failed to load $Extend (-22). [ 1521.622161][ T1815] ntfs3: loop1: Failed to initialize $Extend. [ 1522.295882][ T1847] xt_addrtype: ipv6 PROHIBIT (THROW, NAT ..) matching not supported [ 1522.602554][ T1860] loop3: detected capacity change from 0 to 256 [ 1522.652509][ T1860] exfat: Deprecated parameter 'utf8' [ 1522.658336][ T1860] exfat: Deprecated parameter 'namecase' [ 1522.678384][ T1860] exfat: Deprecated parameter 'utf8' [ 1522.759750][ T1860] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 1523.318010][ T1884] netlink: 8 bytes leftover after parsing attributes in process `syz.1.12446'. [ 1523.836153][ T1904] netlink: 88 bytes leftover after parsing attributes in process `syz.3.12455'. [ 1524.566212][ T1891] comedi comedi0: reset error (fatal) [ 1524.802511][ T1928] netlink: 28 bytes leftover after parsing attributes in process `syz.2.12467'. [ 1524.821832][ T1928] netlink: 108 bytes leftover after parsing attributes in process `syz.2.12467'. [ 1524.835911][ T1928] netlink: 28 bytes leftover after parsing attributes in process `syz.2.12467'. [ 1524.846145][ T1928] netlink: 108 bytes leftover after parsing attributes in process `syz.2.12467'. [ 1524.856045][ T1928] netlink: 84 bytes leftover after parsing attributes in process `syz.2.12467'. [ 1524.945462][T25806] usb 4-1: new full-speed USB device number 70 using dummy_hcd [ 1525.169099][T25806] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10 [ 1525.205994][T25806] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0 [ 1525.251104][T25806] usb 4-1: New USB device found, idVendor=134c, idProduct=0002, bcdDevice=ac.7e [ 1525.274495][T25806] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1525.292404][T25806] usb 4-1: Product: syz [ 1525.303037][T25806] usb 4-1: Manufacturer: syz [ 1525.308981][ T1947] loop2: detected capacity change from 0 to 256 [ 1525.312717][T25806] usb 4-1: SerialNumber: syz [ 1525.331996][T25806] usb 4-1: config 0 descriptor?? [ 1525.340527][T25806] hub 4-1:0.0: bad descriptor, ignoring hub [ 1525.352382][T25806] hub: probe of 4-1:0.0 failed with error -5 [ 1525.363385][ T1947] exfat: Deprecated parameter 'utf8' [ 1525.384556][ T1947] exfat: Deprecated parameter 'namecase' [ 1525.400681][T25806] input: syz syz as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input96 [ 1525.416934][ T1947] exfat: Deprecated parameter 'namecase' [ 1525.438245][ T1947] exfat: Deprecated parameter 'utf8' [ 1525.518413][ T1947] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012153, chksum : 0xc9bffc20, utbl_chksum : 0xe619d30d) [ 1525.677177][ T28] audit: type=1326 audit(2000000069.396:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1955 comm="syz.0.12481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1525.699604][ C1] vkms_vblank_simulate: vblank timer overrun [ 1525.779512][ T28] audit: type=1326 audit(2000000069.423:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1955 comm="syz.0.12481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1525.802457][ T28] audit: type=1326 audit(2000000069.423:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1955 comm="syz.0.12481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=442 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1525.824809][ C1] vkms_vblank_simulate: vblank timer overrun [ 1525.841038][ T28] audit: type=1326 audit(2000000069.423:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1955 comm="syz.0.12481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1525.863409][ C1] vkms_vblank_simulate: vblank timer overrun [ 1525.882876][ T28] audit: type=1326 audit(2000000069.423:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1955 comm="syz.0.12481" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7facd998f749 code=0x7ffc0000 [ 1526.130765][ T1966] x_tables: arp_tables: CLASSIFY target: used from hooks INPUT, but only usable from FORWARD/OUTPUT [ 1526.218819][ T1953] loop1: detected capacity change from 0 to 32768 [ 1526.278580][ T1953] (syz.1.12480,1953,0):ocfs2_find_slot:468 ERROR: no free slots available! [ 1526.331181][ T1953] (syz.1.12480,1953,0):ocfs2_mount_volume:1807 ERROR: status = -22 [ 1526.345566][ T1971] x_tables: unsorted underflow at hook 4 [ 1526.362396][ T1953] (syz.1.12480,1953,0):ocfs2_fill_super:1178 ERROR: status = -22 [ 1526.438649][ T1953] NILFS (loop1): couldn't find nilfs on the device [ 1526.831529][ T5889] usb 1-1: new high-speed USB device number 64 using dummy_hcd [ 1527.071517][ T5889] usb 1-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config [ 1527.075659][ T1991] block device autoloading is deprecated and will be removed. [ 1527.102188][ T5889] usb 1-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18 [ 1527.145732][ T5889] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1527.174484][ T5889] gspca_main: stv0680-2.14.0 probing 041e:4007 [ 1527.224893][ T1997] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 1527.240571][ T1997] overlayfs: missing 'lowerdir' [ 1527.504655][ T2005] vivid-004: disconnect [ 1527.524504][ T2004] vivid-004: reconnect [ 1527.653713][ T2009] loop3: detected capacity change from 0 to 4096 [ 1527.674506][ T2009] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512). [ 1527.716972][ T2011] team0: Port device syz_tun removed [ 1527.733426][ T2011] dummy0: left allmulticast mode [ 1527.742992][ T2011] dummy0: left promiscuous mode [ 1527.748326][ T2011] bridge0: port 3(dummy0) entered disabled state [ 1527.769093][ T2011] bridge_slave_0: left allmulticast mode [ 1527.777405][ T2011] bridge_slave_0: left promiscuous mode [ 1527.787440][ T2011] bridge0: port 1(bridge_slave_0) entered disabled state [ 1527.802368][ T2011] bridge_slave_1: left allmulticast mode [ 1527.811443][ T2011] bridge_slave_1: left promiscuous mode [ 1527.822547][ T2011] bridge0: port 2(bridge_slave_1) entered disabled state [ 1527.838075][ T2011] bond0: (slave bond_slave_0): Releasing backup interface [ 1527.880107][ T2011] bond0: (slave bond_slave_1): Releasing backup interface [ 1527.935694][ T2011] team0: Port device team_slave_0 removed [ 1527.985010][ T2011] team0: Port device team_slave_1 removed [ 1528.002847][ T2011] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1528.012214][ T2011] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1528.029740][ T2011] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1528.039302][ T2011] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1528.152731][ T2017] netlink: 'syz.3.12511': attribute type 1 has an invalid length. [ 1528.179953][ T2017] netlink: 72 bytes leftover after parsing attributes in process `syz.3.12511'. [ 1528.323553][ T2020] loop2: detected capacity change from 0 to 4096 [ 1528.338805][ T5889] gspca_stv0680: usb_control_msg error 0, request = 0x88, error = -32 [ 1528.354751][ T2020] ntfs: (device loop2): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk. [ 1528.374676][ T5889] stv0680 1-1:4.0: STV(e): camera ping failed!! [ 1528.387943][ T2020] ntfs: (device loop2): ntfs_read_locked_inode(): $DATA attribute is missing. [ 1528.397238][ T5889] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71 [ 1528.397262][ T5889] stv0680 1-1:4.0: last error: 0, command = 0x0 [ 1528.442342][ T2020] ntfs: (device loop2): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk. [ 1528.464163][ T5889] usb 1-1: USB disconnect, device number 64 [ 1528.493835][ T2020] ntfs: (device loop2): load_system_files(): Failed to load $MFTMirr. Will not be able to remount read-write. Run ntfsfix and/or chkdsk. [ 1528.553480][ T2020] ntfs: volume version 3.1. [ 1528.793351][T24016] usb 2-1: new high-speed USB device number 77 using dummy_hcd [ 1528.876412][ T2034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12519'. [ 1528.885773][ T2034] netlink: 32 bytes leftover after parsing attributes in process `syz.2.12519'. [ 1528.895700][ T2034] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12519'. [ 1528.905154][ T2034] netlink: 2 bytes leftover after parsing attributes in process `syz.2.12519'. [ 1528.914736][ T2034] netlink: 32 bytes leftover after parsing attributes in process `syz.2.12519'. [ 1529.009668][T24016] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 1529.023533][T24016] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 1529.034754][T24016] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 1529.048596][T24016] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 1529.060194][T24016] usb 2-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 1529.072363][ T2039] misc userio: No port type given on /dev/userio [ 1529.091007][T24016] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1529.135402][T24016] usb 2-1: config 0 descriptor?? [ 1529.403218][T24016] hdpvr 2-1:0.0: firmware version 0x8 dated [ 1529.635110][T24016] hdpvr 2-1:0.0: device init failed [ 1529.641619][T24016] hdpvr: probe of 2-1:0.0 failed with error -12 [ 1529.652981][T24016] usb 2-1: USB disconnect, device number 77 [ 1529.823787][ T2062] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12534'. [ 1529.966980][ T2068] netlink: 'syz.2.12535': attribute type 2 has an invalid length. [ 1529.975733][ T2068] netlink: 723 bytes leftover after parsing attributes in process `syz.2.12535'. [ 1530.197617][ T2076] loop3: detected capacity change from 0 to 1024 [ 1530.311056][ T5832] usb 4-1: USB disconnect, device number 70 [ 1530.726834][ T2094] loop3: detected capacity change from 0 to 2048 [ 1530.830003][ T2094] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1531.502968][ T2116] loop0: detected capacity change from 0 to 256 [ 1531.824585][ T2126] netlink: 16 bytes leftover after parsing attributes in process `syz.1.12566'. [ 1531.849776][ T2126] netlink: 30 bytes leftover after parsing attributes in process `syz.1.12566'. [ 1531.948263][ T2130] lo: entered promiscuous mode [ 1531.953173][ T2130] lo: entered allmulticast mode [ 1532.011315][ T2130] infiniband syz2: set down [ 1532.028985][ T2130] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1532.186119][ T2135] team0: Port device syz_tun removed [ 1532.229234][ T2135] bond0: (slave bridge0): Releasing backup interface [ 1532.238663][ T2135] bridge0: port 3(dummy0) entered disabled state [ 1532.245426][ T2135] bridge0: port 2(bridge_slave_1) entered disabled state [ 1532.297650][ T2135] dummy0: left allmulticast mode [ 1532.302676][ T2135] dummy0: left promiscuous mode [ 1532.358611][ T2135] bridge0: port 3(dummy0) entered disabled state [ 1532.378253][ T2143] delete_channel: no stack [ 1532.388606][ T2135] bridge0: port 1(bridge_slave_0) entered disabled state [ 1532.418795][ T2135] bridge_slave_1: left allmulticast mode [ 1532.434210][ T2135] bridge_slave_1: left promiscuous mode [ 1532.446791][ T2135] bridge0: port 2(bridge_slave_1) entered disabled state [ 1532.529649][ T2135] bond0: (slave bond_slave_0): Releasing backup interface [ 1532.576320][ T2135] bond0: (slave bond_slave_1): Releasing backup interface [ 1532.625182][ T2135] team0: Port device team_slave_0 removed [ 1532.700359][ T2135] team0: Port device team_slave_1 removed [ 1532.730220][ T2135] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1532.738283][ T2135] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1532.747346][ T2135] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1532.755729][ T2135] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1532.782808][ T5877] lo speed is unknown, defaulting to 1000 [ 1532.847287][ T2153] netlink: 304 bytes leftover after parsing attributes in process `syz.3.12578'. [ 1532.866774][ T5877] lo speed is unknown, defaulting to 1000 [ 1532.944929][ T2140] loop2: detected capacity change from 0 to 32768 [ 1533.742828][ T2155] loop3: detected capacity change from 0 to 32768 [ 1533.827426][ T2173] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 1533.834762][ T2173] IPv6: NLM_F_CREATE should be set when creating new route [ 1533.842213][ T2173] IPv6: NLM_F_CREATE should be set when creating new route [ 1534.197056][ T2181] loop0: detected capacity change from 0 to 1764 [ 1534.285547][ T2181] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1534.728652][ T2191] infiniband syz!: set active [ 1535.036674][ T2201] __nla_validate_parse: 2 callbacks suppressed [ 1535.036692][ T2201] netlink: 28 bytes leftover after parsing attributes in process `syz.0.12601'. [ 1535.288812][ T2205] loop1: detected capacity change from 0 to 4096 [ 1535.460718][ T2205] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 1535.553513][ T2205] ntfs3: loop1: Failed to load $Extend (-22). [ 1535.592758][ T2205] ntfs3: loop1: Failed to initialize $Extend. [ 1536.259668][ T2203] loop3: detected capacity change from 0 to 32768 [ 1536.669476][ T2235] team0: Port device syz_tun removed [ 1536.695240][ T2235] bond0: left allmulticast mode [ 1536.712422][ T2235] bond_slave_0: left allmulticast mode [ 1536.729830][ T2235] bond_slave_1: left allmulticast mode [ 1536.744934][ T2235] bond0: left promiscuous mode [ 1536.769357][ T2235] bond_slave_0: left promiscuous mode [ 1536.789292][ T2235] bond_slave_1: left promiscuous mode [ 1536.808226][ T2235] bridge0: port 3(bond0) entered disabled state [ 1536.836317][ T2235] bridge0: port 4(batadv0) entered disabled state [ 1536.862914][ T2235] bridge_slave_0: left allmulticast mode [ 1536.871378][ T2235] bridge_slave_0: left promiscuous mode [ 1536.889793][ T2235] bridge0: port 1(bridge_slave_0) entered disabled state [ 1536.945236][ T2235] bridge_slave_1: left allmulticast mode [ 1536.955787][ T2235] bridge_slave_1: left promiscuous mode [ 1536.970919][ T2235] bridge0: port 2(bridge_slave_1) entered disabled state [ 1536.998790][ T2235] bond0: (slave bond_slave_0): Releasing backup interface [ 1537.039210][ T2235] bond0: (slave bond_slave_1): Releasing backup interface [ 1537.102724][ T2235] team0: Port device team_slave_0 removed [ 1537.118053][ T2235] team0: Port device team_slave_1 removed [ 1537.118979][ T2235] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 1537.119019][ T2235] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 1537.120961][ T2235] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 1537.120994][ T2235] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 1537.135554][ T2236] vcan0: entered promiscuous mode [ 1537.148458][ T2236] A link change request failed with some changes committed already. Interface vcan0 may have been left with an inconsistent configuration, please check. [ 1537.151208][ T2243] netlink: 52 bytes leftover after parsing attributes in process `syz.0.12623'. [ 1537.475375][ T2251] loop1: detected capacity change from 0 to 4096 [ 1537.520604][ T2258] netlink: 'syz.3.12630': attribute type 1 has an invalid length. [ 1537.539784][ T2251] NILFS (loop1): invalid segment: Checksum error in segment payload [ 1537.554714][ T2251] NILFS (loop1): trying rollback from an earlier position [ 1537.634089][ T2251] NILFS (loop1): recovery complete [ 1537.797979][ T2262] netlink: 'syz.2.12632': attribute type 1 has an invalid length. [ 1537.853197][ T2262] netlink: 'syz.2.12632': attribute type 1 has an invalid length. [ 1537.896554][ T2262] netlink: 180 bytes leftover after parsing attributes in process `syz.2.12632'. [ 1538.804655][ T2270] loop0: detected capacity change from 0 to 32768 [ 1538.839515][ T2270] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.12636 (2270) [ 1538.908736][ T2270] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1538.953067][ T2270] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 1538.969626][ T2270] BTRFS info (device loop0): force clearing of disk cache [ 1538.976858][ T2270] BTRFS info (device loop0): enabling auto defrag [ 1538.992938][ T2270] BTRFS info (device loop0): enabling ssd optimizations [ 1539.000017][ T2270] BTRFS info (device loop0): max_inline at 0 [ 1539.027410][ T2270] BTRFS info (device loop0): enabling disk space caching [ 1539.053583][ T2270] BTRFS info (device loop0): disk space caching is enabled [ 1539.239337][ T2270] BTRFS info (device loop0): rebuilding free space tree [ 1539.330330][ T2270] BTRFS info (device loop0): disabling free space tree [ 1539.381531][ T2270] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1539.410659][ T2270] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1539.788842][ T5792] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1541.057335][ T2361] loop0: detected capacity change from 0 to 4096 [ 1541.121480][ T2361] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 1541.181038][ T2361] ntfs3: loop0: Failed to load $Extend (-22). [ 1541.194005][ T2361] ntfs3: loop0: Failed to initialize $Extend. [ 1541.942180][ T28] audit: type=1326 audit(2000000084.390:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2399 comm="syz.1.12685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1542.041663][ T28] audit: type=1326 audit(2000000084.390:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2399 comm="syz.1.12685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1542.102713][ T28] audit: type=1326 audit(2000000084.390:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2399 comm="syz.1.12685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=445 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1542.164968][ T28] audit: type=1326 audit(2000000084.390:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2399 comm="syz.1.12685" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd176b8f749 code=0x7ffc0000 [ 1542.187507][ C1] vkms_vblank_simulate: vblank timer overrun [ 1542.440926][ T2423] netlink: 12 bytes leftover after parsing attributes in process `syz.0.12694'. [ 1542.481376][ T2425] comedi comedi0: Minor 3 could not be opened [ 1542.490553][ T2423] netlink: 31 bytes leftover after parsing attributes in process `syz.0.12694'. [ 1542.524816][ T2423] netlink: 'syz.0.12694': attribute type 3 has an invalid length. [ 1542.532766][ T2423] netlink: 'syz.0.12694': attribute type 2 has an invalid length. [ 1542.564114][ T2423] netlink: 31 bytes leftover after parsing attributes in process `syz.0.12694'. [ 1542.777431][ T2438] netlink: 32 bytes leftover after parsing attributes in process `syz.3.12700'. [ 1542.823941][ T2443] autofs4:pid:2443:validate_dev_ioctl: path string terminator missing for cmd(0xc0189374) [ 1542.964104][ T2436] loop2: detected capacity change from 0 to 4096 [ 1542.980636][ T2445] netlink: 197276 bytes leftover after parsing attributes in process `syz.1.12704'. [ 1542.994033][ T2436] ntfs3: loop2: Different NTFS sector size (2048) and media sector size (512). [ 1543.043915][ T2436] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 1543.369340][ T2460] netlink: 28 bytes leftover after parsing attributes in process `syz.2.12709'. [ 1544.675968][ T2524] loop0: detected capacity change from 0 to 256 [ 1544.805078][ T2524] FAT-fs (loop0): Directory bread(block 64) failed [ 1544.825564][ T2524] FAT-fs (loop0): Directory bread(block 65) failed [ 1544.832412][ T2524] FAT-fs (loop0): Directory bread(block 66) failed [ 1544.865856][ T2524] FAT-fs (loop0): Directory bread(block 67) failed [ 1544.872583][ T2524] FAT-fs (loop0): Directory bread(block 68) failed [ 1544.907503][ T2524] FAT-fs (loop0): Directory bread(block 69) failed [ 1544.925568][ T2524] FAT-fs (loop0): Directory bread(block 70) failed [ 1544.941120][ T2524] FAT-fs (loop0): Directory bread(block 71) failed [ 1544.958848][ T2524] FAT-fs (loop0): Directory bread(block 72) failed [ 1544.969183][ T2524] FAT-fs (loop0): Directory bread(block 73) failed [ 1545.137743][ T2534] loop3: detected capacity change from 0 to 4096 [ 1545.160985][ T2534] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512). [ 1545.257927][ T2534] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 1545.582367][ T2554] xt_TCPMSS: Only works on TCP SYN packets [ 1546.158882][ T2585] netlink: 'syz.3.12759': attribute type 10 has an invalid length. [ 1546.210883][ T2585] bond0: (slave wlan1): Enslaving as an active interface with an up link [ 1546.393514][ T5877] usb 1-1: new high-speed USB device number 65 using dummy_hcd [ 1546.449374][ T2599] netdevsim netdevsim2: Direct firmware load for .. failed with error -2 [ 1546.459562][ T2599] netdevsim netdevsim2: Falling back to sysfs fallback for: .. [ 1546.592403][ T2605] netlink: 'syz.3.12767': attribute type 4 has an invalid length. [ 1546.601016][ T2605] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.12767'. [ 1546.616702][ T5877] usb 1-1: Using ep0 maxpacket: 8 [ 1546.627046][ T5877] usb 1-1: config 0 interface 0 has no altsetting 0 [ 1546.643196][ T5877] usb 1-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e [ 1546.664513][ T5877] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1546.673057][ T2606] ALSA: mixer_oss: invalid OSS volume ';ʸgԊ8\>Pxi9 h~)V' [ 1546.682185][ T5877] usb 1-1: Product: syz [ 1546.688069][ T2606] ALSA: mixer_oss: invalid OSS volume '*bbX-]OF{T0pc' [ 1546.692229][ T5877] usb 1-1: Manufacturer: syz [ 1546.696475][ T2606] ALSA: mixer_oss: invalid OSS volume 'gI"4-Z' [ 1546.702204][ T5877] usb 1-1: SerialNumber: syz [ 1546.714680][ T2606] ALSA: mixer_oss: invalid OSS volume 'eQCȡ*qpAڜe T|K' [ 1546.725780][ T2606] ALSA: mixer_oss: invalid OSS volume ':az]qeXfb]݆B.' [ 1546.749598][ T5877] usb 1-1: config 0 descriptor?? [ 1546.761401][ T2606] ALSA: mixer_oss: invalid OSS volume 'j|q⩃˚[w3^.ג' [ 1546.768193][ T5877] snd_usb_toneport 1-1:0.0: Line 6 TonePort UX2 found [ 1546.778341][ T2606] ALSA: mixer_oss: invalid OSS volume '"P޸ۜo[8>7|YMepq' [ 1546.789779][ T2606] ALSA: mixer_oss: invalid OSS volume 'wI׷#t\W,bP=&e' [ 1546.801828][ T2606] ALSA: mixer_oss: invalid OSS volume ']za-!)ϻvCYps' [ 1546.813209][ T2606] ALSA: mixer_oss: invalid OSS volume 'LE]Dxt݂OY3fk$T "' [ 1546.824457][ T2606] ALSA: mixer_oss: invalid OSS volume '[' [ 1546.833344][ T2606] ALSA: mixer_oss: invalid OSS volume '3A14IN+|\' [ 1546.843310][ T2606] ALSA: mixer_oss: invalid OSS volume '$magic != lock) [ 1553.513516][ T2886] WARNING: CPU: 0 PID: 2886 at kernel/locking/mutex.c:582 __mutex_lock+0xb8c/0xcc0 [ 1553.529345][ T2886] Modules linked in: [ 1553.533294][ T2886] CPU: 0 PID: 2886 Comm: syz.1.12873 Not tainted syzkaller #0 [ 1553.540832][ T2886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1553.550968][ T2886] RIP: 0010:__mutex_lock+0xb8c/0xcc0 [ 1553.556329][ T2886] Code: 04 08 84 c0 0f 85 20 01 00 00 83 3d dd 49 d3 03 00 0f 85 81 f5 ff ff 48 c7 c7 80 a7 aa 8a 48 c7 c6 20 a8 aa 8a e8 94 94 d8 f6 <0f> 0b e9 67 f5 ff ff 0f 0b e9 47 f9 ff ff 0f 0b e9 ff f5 ff ff 48 [ 1553.576523][ T2886] RSP: 0018:ffffc9000b63f9a0 EFLAGS: 00010246 [ 1553.582719][ T2886] RAX: c39a0b9d4aeeba00 RBX: ffff888024349828 RCX: 0000000000080000 [ 1553.590758][ T2886] RDX: ffffc9000d33b000 RSI: 0000000000003f47 RDI: 0000000000003f48 [ 1553.598766][ T2886] RBP: ffffc9000b63fb00 R08: ffff8880b8e28c13 R09: 1ffff110171c5182 [ 1553.606848][ T2886] R10: dffffc0000000000 R11: ffffed10171c5183 R12: 0000000000000000 [ 1553.614907][ T2886] R13: 1ffff920016c7f44 R14: dffffc0000000000 R15: 0000000000000000 [ 1553.622930][ T5877] usb 1-1: new full-speed USB device number 66 using dummy_hcd [ 1553.630521][ T2886] FS: 00007fd1779796c0(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 1553.639827][ T2886] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1553.646831][ T2886] CR2: 0000001b2ec20ff8 CR3: 000000001ef93000 CR4: 00000000003506f0 [ 1553.654903][ T2886] Call Trace: [ 1553.658219][ T2886] [ 1553.661200][ T2886] ? kasan_set_track+0x4e/0x70 [ 1553.666151][ T2886] ? __kmalloc+0xb4/0x240 [ 1553.670538][ T2886] ? reiserfs_write_lock+0x79/0xd0 [ 1553.675948][ T2886] ? do_mkdirat+0xa1/0x440 [ 1553.680465][ T2886] ? mutex_lock_nested+0x20/0x20 [ 1553.685463][ T2886] ? verify_lock_unused+0x140/0x140 [ 1553.690783][ T2886] reiserfs_write_lock+0x79/0xd0 [ 1553.695774][ T2886] reiserfs_lookup+0x151/0x520 [ 1553.700933][ T2886] ? reiserfs_init_priv_inode+0x1a0/0x1a0 [ 1553.706710][ T2886] ? d_alloc+0x1eb/0x250 [ 1553.711064][ T2886] ? do_raw_spin_unlock+0x121/0x230 [ 1553.716322][ T2886] ? _raw_spin_unlock+0x28/0x40 [ 1553.721261][ T2886] ? d_alloc+0x1eb/0x250 [ 1553.725567][ T2886] lookup_one_qstr_excl+0x112/0x250 [ 1553.730895][ T2886] filename_create+0x222/0x460 [ 1553.735716][ T2886] ? kern_path_create+0x50/0x50 [ 1553.740643][ T2886] ? __virt_addr_valid+0x18c/0x540 [ 1553.745873][ T2886] ? __virt_addr_valid+0x469/0x540 [ 1553.751036][ T2886] do_mkdirat+0xa1/0x440 [ 1553.755362][ T2886] ? vfs_mkdir+0x440/0x440 [ 1553.759837][ T2886] __x64_sys_mkdirat+0x89/0xa0 [ 1553.764736][ T2886] do_syscall_64+0x55/0xb0 [ 1553.769194][ T2886] ? clear_bhb_loop+0x40/0x90 [ 1553.774289][ T2886] ? clear_bhb_loop+0x40/0x90 [ 1553.779020][ T2886] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1553.785232][ T2886] RIP: 0033:0x7fd176b8de97 [ 1553.789702][ T2886] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1553.809411][ T2886] RSP: 002b:00007fd177978e68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 1553.818099][ T2886] RAX: ffffffffffffffda RBX: 00007fd177978ef0 RCX: 00007fd176b8de97 [ 1553.824047][ T5877] usb 1-1: unable to get BOS descriptor or descriptor too short [ 1553.826093][ T2886] RDX: 00000000000001ff RSI: 0000200000000240 RDI: 00000000ffffff9c [ 1553.826113][ T2886] RBP: 0000200000000140 R08: 0000200000000140 R09: 0000000000000000 [ 1553.836957][ T5877] usb 1-1: not running at top speed; connect to a high speed hub [ 1553.841787][ T2886] R10: 0000200000000140 R11: 0000000000000246 R12: 0000200000000240 [ 1553.841808][ T2886] R13: 00007fd177978eb0 R14: 0000000000000000 R15: 0000000000000000 [ 1553.841831][ T2886] [ 1553.841842][ T2886] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1553.841853][ T2886] CPU: 0 PID: 2886 Comm: syz.1.12873 Not tainted syzkaller #0 [ 1553.841878][ T2886] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025 [ 1553.841893][ T2886] Call Trace: [ 1553.841903][ T2886] [ 1553.841912][ T2886] dump_stack_lvl+0x16c/0x230 [ 1553.841952][ T2886] ? show_regs_print_info+0x20/0x20 [ 1553.841983][ T2886] ? load_image+0x3b0/0x3b0 [ 1553.842017][ T2886] panic+0x2c0/0x710 [ 1553.842041][ T2886] ? bpf_jit_dump+0xd0/0xd0 [ 1553.842071][ T2886] __warn+0x2e0/0x470 [ 1553.842094][ T2886] ? __mutex_lock+0xb8c/0xcc0 [ 1553.842127][ T2886] ? __mutex_lock+0xb8c/0xcc0 [ 1553.842160][ T2886] report_bug+0x2be/0x4f0 [ 1553.842215][ T2886] ? __mutex_lock+0xb8c/0xcc0 [ 1553.842248][ T2886] ? __mutex_lock+0xb8c/0xcc0 [ 1553.842290][ T2886] ? __mutex_lock+0xb8e/0xcc0 [ 1553.842322][ T2886] handle_bug+0xcf/0x120 [ 1553.842355][ T2886] exc_invalid_op+0x1a/0x50 [ 1553.842386][ T2886] asm_exc_invalid_op+0x1a/0x20 [ 1553.842410][ T2886] RIP: 0010:__mutex_lock+0xb8c/0xcc0 [ 1553.842445][ T2886] Code: 04 08 84 c0 0f 85 20 01 00 00 83 3d dd 49 d3 03 00 0f 85 81 f5 ff ff 48 c7 c7 80 a7 aa 8a 48 c7 c6 20 a8 aa 8a e8 94 94 d8 f6 <0f> 0b e9 67 f5 ff ff 0f 0b e9 47 f9 ff ff 0f 0b e9 ff f5 ff ff 48 [ 1553.842467][ T2886] RSP: 0018:ffffc9000b63f9a0 EFLAGS: 00010246 [ 1553.842488][ T2886] RAX: c39a0b9d4aeeba00 RBX: ffff888024349828 RCX: 0000000000080000 [ 1553.842505][ T2886] RDX: ffffc9000d33b000 RSI: 0000000000003f47 RDI: 0000000000003f48 [ 1553.842521][ T2886] RBP: ffffc9000b63fb00 R08: ffff8880b8e28c13 R09: 1ffff110171c5182 [ 1553.842539][ T2886] R10: dffffc0000000000 R11: ffffed10171c5183 R12: 0000000000000000 [ 1553.842555][ T2886] R13: 1ffff920016c7f44 R14: dffffc0000000000 R15: 0000000000000000 [ 1553.842585][ T2886] ? kasan_set_track+0x4e/0x70 [ 1553.842610][ T2886] ? __kmalloc+0xb4/0x240 [ 1553.842640][ T2886] ? reiserfs_write_lock+0x79/0xd0 [ 1553.842667][ T2886] ? do_mkdirat+0xa1/0x440 [ 1553.842703][ T2886] ? mutex_lock_nested+0x20/0x20 [ 1553.842737][ T2886] ? verify_lock_unused+0x140/0x140 [ 1553.842770][ T2886] reiserfs_write_lock+0x79/0xd0 [ 1553.842797][ T2886] reiserfs_lookup+0x151/0x520 [ 1553.842822][ T2886] ? reiserfs_init_priv_inode+0x1a0/0x1a0 [ 1553.842851][ T2886] ? d_alloc+0x1eb/0x250 [ 1553.842889][ T2886] ? do_raw_spin_unlock+0x121/0x230 [ 1553.842921][ T2886] ? _raw_spin_unlock+0x28/0x40 [ 1553.842943][ T2886] ? d_alloc+0x1eb/0x250 [ 1553.842976][ T2886] lookup_one_qstr_excl+0x112/0x250 [ 1553.843011][ T2886] filename_create+0x222/0x460 [ 1553.843049][ T2886] ? kern_path_create+0x50/0x50 [ 1553.843082][ T2886] ? __virt_addr_valid+0x18c/0x540 [ 1553.843110][ T2886] ? __virt_addr_valid+0x469/0x540 [ 1553.843143][ T2886] do_mkdirat+0xa1/0x440 [ 1553.843179][ T2886] ? vfs_mkdir+0x440/0x440 [ 1553.843218][ T2886] __x64_sys_mkdirat+0x89/0xa0 [ 1553.843261][ T2886] do_syscall_64+0x55/0xb0 [ 1553.843290][ T2886] ? clear_bhb_loop+0x40/0x90 [ 1553.843315][ T2886] ? clear_bhb_loop+0x40/0x90 [ 1553.843343][ T2886] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 1553.843368][ T2886] RIP: 0033:0x7fd176b8de97 [ 1553.843388][ T2886] Code: 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 02 01 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1553.843408][ T2886] RSP: 002b:00007fd177978e68 EFLAGS: 00000246 ORIG_RAX: 0000000000000102 [ 1553.843431][ T2886] RAX: ffffffffffffffda RBX: 00007fd177978ef0 RCX: 00007fd176b8de97 [ 1553.843448][ T2886] RDX: 00000000000001ff RSI: 0000200000000240 RDI: 00000000ffffff9c [ 1553.843464][ T2886] RBP: 0000200000000140 R08: 0000200000000140 R09: 0000000000000000 [ 1553.843479][ T2886] R10: 0000200000000140 R11: 0000000000000246 R12: 0000200000000240 [ 1553.843495][ T2886] R13: 00007fd177978eb0 R14: 0000000000000000 R15: 0000000000000000 [ 1553.843519][ T2886] [ 1553.850080][ T2886] Kernel Offset: disabled