last executing test programs: 56.539745973s ago: executing program 2 (id=1226): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xa, 0x4, 0x9c, 0xb, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000500000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085000000c300000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) syz_genetlink_get_family_id$nl80211(&(0x7f0000000580), 0xffffffffffffffff) 56.203839579s ago: executing program 2 (id=1232): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff}) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_wireguard(r0, 0x8933, &(0x7f0000004980)={'wg1\x00', 0x0}) sendmsg$nl_route_sched(r1, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000100)=@newtaction={0x88, 0x30, 0xffff, 0x0, 0x0, {0x0, 0x0, 0x1300}, [{0x74, 0x1, [@m_mirred={0x70, 0x1, 0x0, 0x0, {{0xb}, {0x44, 0x2, 0x0, 0x1, [@TCA_MIRRED_PARMS={0x20, 0x4, {{0x7}}}, @TCA_MIRRED_PARMS={0x20, 0x2, {{0x0, 0x0, 0x20000000}, 0x1, r2}}]}, {0x4}, {0xc}, {0xc}}}]}]}, 0x88}, 0x1, 0x0, 0x0, 0x20000800}, 0x0) 55.770308243s ago: executing program 2 (id=1234): setsockopt$packet_fanout(0xffffffffffffffff, 0x107, 0x12, &(0x7f0000000040)={0x4, 0x2}, 0x4) madvise(&(0x7f0000a93000/0x4000)=nil, 0x4000, 0x80000000e) munmap(&(0x7f0000001000/0x3000)=nil, 0x3000) mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x4000, 0x0, &(0x7f0000001000/0x4000)=nil) 55.519431563s ago: executing program 2 (id=1238): syz_mount_image$udf(&(0x7f0000000400), &(0x7f0000000100)='./file0\x00', 0x800048, &(0x7f00000001c0)=ANY=[], 0x1, 0x4b1, &(0x7f0000000740)="$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") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000380), 0x0, &(0x7f00000003c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) chdir(&(0x7f0000000280)='./file0\x00') openat(0xffffffffffffff9c, &(0x7f0000004280)='./file0\x00', 0x8000, 0x0) 54.88988221s ago: executing program 2 (id=1246): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x24, &(0x7f0000000080)=0x1, 0x4) shutdown(r0, 0x0) recvmmsg(r0, &(0x7f0000001980)=[{{0x0, 0x0, 0x0}, 0x3}], 0x1, 0x0, 0x0) 54.259471679s ago: executing program 2 (id=1257): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @mcast2, 0x6}, 0x1c) 53.703047578s ago: executing program 32 (id=1257): r0 = socket$inet_udp(0x2, 0x2, 0x0) bind$inet(r0, &(0x7f0000000040)={0x2, 0x4e20, @empty}, 0x10) r1 = socket$inet6(0xa, 0x2, 0x0) bind$inet6(r1, &(0x7f0000f5dfe4)={0xa, 0x4e20, 0x0, @mcast2, 0x6}, 0x1c) 8.981956562s ago: executing program 6 (id=1641): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f000000b500), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000040)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_SET_TID_CONFIG(r1, &(0x7f000000d040)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000680)={0x34, r0, 0x8de13c6b70ae92c3, 0x41003, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_TID_CONFIG={0x18, 0x11d, 0x0, 0x1, [{0x14, 0x0, 0x0, 0x1, [@NL80211_TID_CONFIG_ATTR_TIDS={0x6, 0x5, 0x12}, @NL80211_TID_CONFIG_ATTR_NOACK={0x5}]}]}]}, 0x34}}, 0x0) 8.557373994s ago: executing program 6 (id=1644): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f00000000c0)='./file0\x00', 0xa00008, &(0x7f0000000140)={[{@min_batch_time={'min_batch_time', 0x3d, 0xd}}, {@mb_optimize_scan={'mb_optimize_scan', 0x3d, 0x1}}, {@noblock_validity}]}, 0x1, 0x7ad, &(0x7f00000007c0)="$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") r0 = open(&(0x7f0000000040)='./file1\x00', 0x64842, 0x0) pwritev2(r0, &(0x7f0000000240)=[{&(0x7f0000000000)="85", 0x78c00}], 0x1, 0x2000, 0x0, 0x3) write$khugepaged_scan(r0, &(0x7f00000001c0), 0x8) 7.487877756s ago: executing program 6 (id=1653): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x82000, 0x0) r1 = epoll_create1(0x80000) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000040)={0x80000000}) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000002900)=0xc5) 6.964613634s ago: executing program 6 (id=1655): syz_mount_image$squashfs(&(0x7f0000000180), &(0x7f0000000600)='./file0\x00', 0x801, &(0x7f0000000640)=ANY=[], 0x2, 0x17d, &(0x7f0000000380)="$eJzskr1OOkEUxc/sLl///CXa0kBB/CiUZVFjpyX2djYSWJG4qLAkCqFYYwyFhbH0CXgNE19AC+MDUFMQa7NmZu9OBnwE51fsmXvmzp17B878jp8C8D0b1nEAgYks3hmDBSDPIm9qRPpE+kH6GAneKO+Q/DvSnN8fJCmngJXIOK95ntstAPgSnrT8/VsDU1Hqczas88UJgDAMQ+41AJ6O/0qOCaCj5OQsICOGCGUOH4QHawBKvfZVye8PNlvtWtNtuheOWdm1t217xymdtjzXjr5MuYJGAdcNAKk0JHw/AeCe4n+YQ4wet0b7LINjeTYZv2GWYRFDORsrw4vsK4X49wKOsAre1nXAFLcoqlgQI1XBYFJQtiiLybvSYmOrfuk1RmBg8bExLFmjPEFCBo4aVPYCLEWlRlSySFolHZNOSPMLfxkr4N8HitZ5/7ip9XrdclKuWLxypOcsB+qD8VufjfnhXo1fb6vRaDQajUaj0Wg0f42fAAAA//+JLnV4") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x204001, &(0x7f00000011c0)={[{@lowerdir={'lowerdir', 0x3d, '.'}, 0x3a}], [], 0x2f}) r0 = openat(0xffffffffffffff9c, &(0x7f0000000480)='./file0\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000940)=""/28, 0x1c) 6.624943598s ago: executing program 6 (id=1659): keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_new={'new ', 'default', 0x20, 'user:', 'syz', 0x20, 0xffd}, 0x2a, 0x0) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) keyctl$instantiate(0xc, 0x0, &(0x7f0000000100)=@encrypted_update={'update ', 'default', 0x20, 'user:', 'user\x00'}, 0x1a, 0xfffffffffffffffc) add_key(&(0x7f0000000140)='encrypted\x00', &(0x7f0000000180), &(0x7f0000000100), 0xca, 0xfffffffffffffffe) 5.996807991s ago: executing program 6 (id=1665): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) r1 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000240)="480000001400190d09004beafd0d8c562c84ed7a80ffe05e959126dda8900db462060f000000000000a2bc5603ca00000f7f8900000ec00000000101ff0000000309ff5bffff00c7", 0x48}], 0x1) 5.404446838s ago: executing program 33 (id=1665): r0 = socket$xdp(0x2c, 0x3, 0x0) setsockopt$XDP_RX_RING(r0, 0x11b, 0x2, &(0x7f0000000040)=0x20, 0x4) r1 = socket$netlink(0x10, 0x3, 0x400000000000004) writev(r1, &(0x7f0000000140)=[{&(0x7f0000000240)="480000001400190d09004beafd0d8c562c84ed7a80ffe05e959126dda8900db462060f000000000000a2bc5603ca00000f7f8900000ec00000000101ff0000000309ff5bffff00c7", 0x48}], 0x1) 5.397354419s ago: executing program 4 (id=1668): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000480)=ANY=[@ANYBLOB="fc0000001900674c0000000000000000e0000001000000000000000000000000e000000200000000000000000000000000000000000000000a00000000000000", @ANYRES32=0x0, @ANYRES32=0x0, @ANYBLOB="0000000000000000000000000000400000000000000000000000000000000000000000000000000001000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000000010000000000000044000500000000000000000000000000000000000000000033"], 0xfc}}, 0x0) r1 = socket$l2tp6(0xa, 0x2, 0x73) sendto$l2tp6(r1, 0x0, 0x0, 0x4890, &(0x7f0000000040)={0xa, 0x0, 0xfffffffd, @dev={0xfe, 0x80, '\x00', 0x23}, 0x0, 0x4}, 0x20) 5.109531195s ago: executing program 4 (id=1670): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) eventfd2(0x0, 0x800) 3.96854718s ago: executing program 0 (id=1675): r0 = socket$inet6_sctp(0xa, 0x1, 0x84) setsockopt$inet_sctp6_SCTP_INITMSG(r0, 0x84, 0x2, &(0x7f00000000c0)={0xfffc}, 0x8) sendto$inet6(r0, &(0x7f00000004c0)='W', 0x1, 0x44011, &(0x7f0000000000)={0xa, 0x4e24, 0x0, @loopback, 0x8}, 0x1c) getsockopt$inet6_opts(r0, 0x29, 0x3b, 0x0, &(0x7f0000000100)) 3.416574846s ago: executing program 4 (id=1677): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000000c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_GET_SCAN(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000600)=ANY=[@ANYBLOB="1c000000", @ANYRES16=r1, @ANYBLOB="010700000000000000002000000008000300", @ANYRES32=r2], 0x1c}}, 0x0) 2.826957179s ago: executing program 0 (id=1679): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f0000001f80), r0) ioctl$sock_SIOCGIFINDEX_802154(r0, 0x8933, &(0x7f0000001fc0)={'wpan0\x00', 0x0}) sendmsg$IEEE802154_LLSEC_DEL_DEVKEY(r0, &(0x7f00000020c0)={0x0, 0x0, &(0x7f0000002080)={&(0x7f0000002000)={0x30, r1, 0x1, 0x0, 0x0, {}, [@IEEE802154_ATTR_HW_ADDR={0xc}, @IEEE802154_ATTR_DEV_INDEX={0x8, 0x2, r2}, @IEEE802154_ATTR_LLSEC_KEY_MODE={0x5}]}, 0x30}}, 0x0) 2.56469866s ago: executing program 0 (id=1680): inotify_add_watch(0xffffffffffffffff, 0x0, 0xa4000061) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000c80)='./file1\x00', 0x210000, &(0x7f00000002c0)={[{@jqfmt_vfsv1}, {}, {@barrier_val}, {@norecovery}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x80}}, {@resuid}, {@nodelalloc}, {@acl}, {@noinit_itable}]}, 0xfc, 0x572, &(0x7f0000003780)="$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") lsetxattr$trusted_overlay_nlink(&(0x7f0000000100)='./file0/../file0\x00', &(0x7f0000000140), 0x0, 0x0, 0x0) llistxattr(&(0x7f0000000280)='./file0\x00', 0x0, 0x0) 2.409459624s ago: executing program 4 (id=1682): syz_mount_image$ext4(&(0x7f00000001c0)='ext4\x00', &(0x7f0000000040)='./bus\x00', 0x4400, &(0x7f0000000640), 0x1, 0x75e, &(0x7f0000001100)="$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") chdir(&(0x7f0000000440)='./file0\x00') r0 = openat(0xffffffffffffff9c, &(0x7f00000000c0)='./file0\x00', 0x44160, 0x0) ioctl$FS_IOC_ENABLE_VERITY(r0, 0x40806685, &(0x7f0000000200)={0x1, 0x2, 0x1000, 0x0, 0x0, 0x0, 0x0, 0x0}) 2.352316847s ago: executing program 3 (id=1683): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f00000000c0)={0xc, 0x0, 0x0}) ioctl$IOMMU_TEST_OP_MOCK_DOMAIN(r0, 0x3ba0, &(0x7f0000000100)={0x48, 0x2, r1, 0x0, 0x0, 0x0, 0x0}) ioctl$IOMMU_HWPT_ALLOC$NONE(r0, 0x3b89, &(0x7f0000000180)={0x28, 0x4, r2, r1, 0x0, 0x0, 0x0, 0x0, 0x0}) 2.339590487s ago: executing program 5 (id=1684): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000013c0)={0x11, 0x3, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='contention_end\x00', r0}, 0x10) r1 = openat$mixer(0xffffffffffffff9c, &(0x7f0000000700), 0x0, 0x0) ioctl$SOUND_MIXER_WRITE_VOLUME(r1, 0xc0040d07, &(0x7f0000000040)=0x21) 2.056882014s ago: executing program 0 (id=1685): mkdir(&(0x7f0000000000)='./file0\x00', 0x4f) mkdir(&(0x7f0000000000)='./control\x00', 0x0) mount(0x0, &(0x7f00000006c0)='./file0\x00', &(0x7f0000000100)='sysfs\x00', 0x4014, 0x0) mount$bind(&(0x7f0000000480)='./file0\x00', &(0x7f00000004c0)='./control\x00', 0x0, 0x2000, 0x0) 1.903861774s ago: executing program 3 (id=1686): sendmsg$kcm(0xffffffffffffffff, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000180)=[{&(0x7f0000000000)="d8000000580081044e81f782db44b904021d080009000300e8fe55a1180015000600142603600e120900210000000401a8001600a40001", 0x37}], 0x1}, 0x0) bpf$MAP_LOOKUP_BATCH(0x18, &(0x7f0000000380)={&(0x7f0000000040)="b64b6779e728a585fc6d831c9c111ee3bf867c7fa20663508d961b5b0bc1d4eded804b84c8ee0b5e7b55af44aa8bf4a16c4d4aaf896a13f650a3b4f737945a9a179a6ceb93adadb8dd841258d0f04b02868cd415ab9bc48b055a8b3f92b143cb16138c216513a045af2101e7e3c507bedee404330f1171812cdaeed17a0e89dd4863a4e6808ca6b7046c38f33b9a0417e1c8fae7a9e1b4c8161b02", 0x0, 0x0, 0x0}, 0x38) r0 = socket$kcm(0x10, 0x2, 0x0) write$cgroup_subtree(r0, &(0x7f0000000000)=ANY=[@ANYBLOB="364000004800913a745c7388641f9c0e0a"], 0xfe33) 1.865126192s ago: executing program 5 (id=1687): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000f80)=ANY=[@ANYBLOB="0500000004000000080000000b"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1, 0x0, 0x10000002}, 0x18) request_key(&(0x7f0000000040)='asymmetric\x00', &(0x7f0000001ffb)={'syz', 0x1}, 0x0, 0x0) 1.847248384s ago: executing program 1 (id=1688): bpf$MAP_CREATE(0x0, &(0x7f0000000000)=@base={0x1d, 0x7, 0x8, 0x22, 0x0, 0xffffffffffffffff, 0xffffffff, '\x00', 0x0, 0xffffffffffffffff, 0x1000, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r0, &(0x7f0000000100)={0x1f, 0xffff, 0x3}, 0x6) write$binfmt_misc(r0, &(0x7f0000000000), 0xd) 1.674687402s ago: executing program 4 (id=1689): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000000)=ANY=[@ANYBLOB="09000000030000000400010005"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x11, 0x14, &(0x7f0000000580)=ANY=[@ANYBLOB="1802000000000000000000000000000018010000786c6c2500000000070000007b1af8ff00000000bfa100000000000007010000f8ffffffb700000000000000b7030000000000fd850000002d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000480)={&(0x7f0000000680)='sys_exit\x00', r1}, 0x10) getitimer(0x1, &(0x7f0000000140)) 1.594909317s ago: executing program 0 (id=1690): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$packet(0x11, 0x2, 0x300) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000000)={'syz_tun\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000080)=@deltclass={0x24, 0x29, 0x1, 0x70bd25, 0x25dfdbfd, {0x0, 0x0, 0x0, r2, {0x5, 0xfff2}, {0x8, 0xfff2}, {0xc}}}, 0x24}}, 0x0) 1.577259703s ago: executing program 1 (id=1691): r0 = syz_io_uring_setup(0x82e, &(0x7f0000000300)={0x0, 0x0, 0x10100}, &(0x7f0000000100)=0x0, &(0x7f0000000080)=0x0) syz_io_uring_submit(r1, r2, &(0x7f00000003c0)=@IORING_OP_READV=@pass_iovec={0x1, 0x4, 0x4004, @fd, 0x823, &(0x7f00000001c0)=[{0x0}], 0x1}) sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000001c0)=@newlink={0x20, 0x10, 0x1, 0x0, 0x25dfdbfc, {0x0, 0x0, 0x0, 0x0, 0x0, 0x20801}}, 0x20}, 0x1, 0x0, 0x0, 0x4008081}, 0x0) io_uring_enter(r0, 0x27e2, 0x0, 0x0, 0x0, 0x0) 1.519094899s ago: executing program 5 (id=1692): sendmsg$IPSET_CMD_CREATE(0xffffffffffffffff, &(0x7f0000000040)={0x0, 0x0, &(0x7f00000044c0)={0x0, 0x64}}, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000040)={'wlan0\x00'}) r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl(r0, 0x8b2a, &(0x7f0000000040)) 1.413662221s ago: executing program 3 (id=1693): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000000), r0) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_AUTHENTICATE(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x60, r1, 0x8007023327f40d31, 0x70bd2d, 0x25dfdbff, {{}, {@val={0x8, 0x3, r2}, @void}}, [@key_params=[@NL80211_ATTR_KEY_IDX={0x5, 0x8, 0x5}], @NL80211_ATTR_SSID={0xa, 0x34, @default_ibss_ssid}, @NL80211_ATTR_AUTH_TYPE={0x8}, @chandef_params=[@NL80211_ATTR_WIPHY_FREQ={0x8}], @key_params=[@NL80211_ATTR_KEY_DATA_WEP40={0x9, 0x7, "4121c2c5be"}, @NL80211_ATTR_KEY_CIPHER={0x8, 0x9, 0xfac01}], @NL80211_ATTR_MAC={0xa, 0x6, @random="39f0d3134eee"}]}, 0x60}, 0x1, 0x0, 0x0, 0x4000005}, 0x10) 1.372391996s ago: executing program 1 (id=1694): r0 = openat$audio(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f00000000c0)={0x10000001}) ppoll(&(0x7f0000000040)=[{r1, 0x7193}], 0x1, 0x0, 0x0, 0x0) 1.227680281s ago: executing program 4 (id=1695): syz_mount_image$f2fs(&(0x7f0000000000), &(0x7f0000000040)='./bus\x00', 0x1808014, &(0x7f0000000600)=ANY=[@ANYBLOB="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"/716], 0x5, 0x558b, &(0x7f00000079c0)="$eJzs3EtvG2UXAOAzTtP71y9CLNh1pAopkWqrTi+CFQVacRGtKi4LVuDYruXW9kSx64auumCJWPBPEEisWPIbWMASdogFiB1SkWcmULdJC63jQPs80vjMHL8+874jK9KZiRzAU2sp/e2XJI7FoYhYiIijSeT7SblF3I44X4x9LiKOR0Tlri0p838m9kfE4Yg4Nile1EzKtz47OT5x9uc3f/362wP7jnz+1Xd7unBgTz0fEf31Yv9mv4hZJw93Fsp8Y9zNY//MuIzrUzX6WZG/2V7LK9xsbI1r5PF0pxifrd8YTuLVXqM5iZ3u1Ty/PihOOBx3tupMPpBea2zkx632Wh67wyyPnVvFeTdvFX/bbg1HRZ1WWe+jvHyMRluxyLc328V61q/nsTkYlfmibtZqb07iuIzl6aKZ9Vr5PNYe9Sr/+73VHdzYTMftjWE3G6Rna/UXavVz1fpG1mqP2meqjX7r3Jl0udObDKuO2o3++U6WdXrtWjPrr6TLnWazWq+nyxfaa93GIK3Xa6drp6pnV8q9k+lrl99Le610eRJf6Q5ujLq9YXo120iLT6ykq7XTL66kJ+rpO5eupFfevnjx0pV3P7jw/uWXL73xajnovmmly6unVler9VPV1frKU7T+j8tJ/4P1J9unf/j+8S4bFHb4ggGws/v6/7i3/w/9PzBzD+j/49pD+v/+9fJ4d/r/2Lb/r0z3/zHL/n/SUun/H97/Vvag/10M/f8urh8ey6P1//tnPg8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAObux8UvXs93lorjI2X+f2XqmfI4iYhKRNzZxkLsn6q5UNZZ3GH84j1z+CaJvMLkHAfK7XBEnC+33/+/21cBAAAAnlxf3j7+adGtFy9Lez0h5qm4aVM5+uGM6iURsbj004yqVSYvz86oWP793hebM6qW38A6OKNixS23fbOq9rcsTIWDd4WkCJW5TgcAAJiL6U5gvl0IAAAA8/TJA999aW7zYM6S2HqUufUsOP/P+78eCB6aeg8AAAD4D0r2egIAAADArsv7f7//BwAAAE+24vf/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD+YOd+ctMGojgAPxsM/auiqvtepTs4Ro/QZZeFA/QSHIGeoFIvwBmolEWOkIQIe4LkBKRIjHGCvk+ynRlHP88AmzeWBgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIAu/a9Wsz+/vv4+Mebv7fY0maYDAAAAHLCpVrP6j0nTfp/6P6auz6ldREQZEYdq90GMWpmDlFMd+f/q0Rj+RdQJu/5xOt5FxLd03Hzq+lMAAACAy7VeLKdNtd6c0hLAVb+j4kyaRZvyw/dMeUVEVJPrTGnl7vQlU1j9+x7Gz0xp9QLWm0xhzZLb8PC9Ua6HtA1al4eZzOsvsW6V3TwXAADoU7sSOFKFAAAAcAF+9D0AzuFpaV/sT/v3jOPmkl4Ivm21AAAAgFeo6HsAAAAAQOfq+v8l7f9X2P8PAAAAsmv2/wMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKBLm2o1Wy+W02P358/MudueJt+MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAIB79ucdBUIgDMJg7/rOZO5/WGnQ0NikCoSPvzEYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAN787i//J6bGmWTutbH0PJKsnRpbp8beuXH0h/H1awAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYn5cUCIEgiII5438nff/DSoKeQYQIaHhUUYsGAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAL/rdL/8npsaZZO60sXQ8kqxdNbauGnsPGkcPxtu/AQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALjYt2PfNqowAOCffbbbFBAhoEgEUJE6wEJTt7R0RQgUMfAnIEWpUwIuhTYDrSJKFjaUuQuCESEkUNjyP3RupC5l65AhSEwMQXe+S8+JoVFp79zm95Oe3+fz9b3vna0qn98ZAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKCw9W682szjJH2YHMTFsdvbKwtpv7mnT22s3ZlJWxo3Ks77CfBa+cnx6foSAQAA4PBIivo+Iu621+fSvjmZ1f/t4py05v/huUFc1PN76/7N7ZWj+UszRf3/+2/3XtqdaDLJ5kkHXVzq907tT6X1mJY49p5/4Bmt7Mpn370k2RvS/HD1xa12dj0b39269X4nC49UkS0A8DBOFn0eFH8PpX23zsQAODRapcK7qP+TyXpzAgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKjC1mo8U8SNiJhp3Y9Tm9srC6P6b9buzGzk7dzNm2vlMdMh2hGxuNTvnapwLeOruJrXP5vv93tXrl6rOjgeESNeunGwf57k6f/rOZ2IGDpy4uUR43x8gLn2jLMvyD+eUe01nEjX98CTG0NHGvsu+Hs7A3V8AKoKmvn7My75PMqg+Ow9+pEr/u8IAICnXjtvaSV6t70+lx5rTEXs/Dhc/79RimOo7t+5MTgyeL5Rqv/vfXLudnmucv3frWh9T4LZ5UtfzF69dv2tpUvzF3sXe5+/fbr7TvfM+bNnz89m35XMLkbTNyYAAAD8D528lev/5tT+/f9jpTj+Y/+/XP9/+X336/Jcifp/pPubfnVnAgAAcBh1dqMXXv/rz8aIMxqdTnw1v7x8pTt43H1+evBYaboP6UjeyvV/MlV3VgAAAEAVtlYbQ/v/F0pxHHD//9mfXvmlPGYSERMRlyOid3Lhcv9CdcsZa1X8UDmbqFP3SgEAAKjLRN7K+//t7P7/5u4tD82IePNExN/5b/jjgPV/8sG3P5fnKt//f6bSVY6f5vTgemT9dERruu6MAAAAeJodzVta7P/RXp/79NdjH3Xc/w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABQtX8CAAD//4ztMoY=") mkdir(&(0x7f0000000540)='./file0\x00', 0xa0) setxattr$incfs_id(&(0x7f00000000c0)='./file0\x00', &(0x7f0000000100), 0x0, 0x0, 0x0) listxattr(&(0x7f0000000440)='./file0\x00', 0x0, 0x0) 940.868826ms ago: executing program 0 (id=1696): pipe(&(0x7f00000001c0)={0xffffffffffffffff, 0xffffffffffffffff}) r2 = openat$sysfs(0xffffffffffffff9c, &(0x7f0000000e80)='/sys/kernel/profiling', 0x22042, 0x0) write$binfmt_misc(r1, &(0x7f0000000000), 0xfffffecc) splice(r0, 0x0, r2, 0x0, 0xbfd1, 0x0) 940.69191ms ago: executing program 5 (id=1697): r0 = openat$rdma_cm(0xffffffffffffff9c, &(0x7f0000000380), 0x2, 0x0) write$RDMA_USER_CM_CMD_CREATE_ID(r0, &(0x7f00000002c0)={0x0, 0x18, 0xfa00, {0x0, &(0x7f0000000200)={0xffffffffffffffff}, 0x111}}, 0x20) write$RDMA_USER_CM_CMD_RESOLVE_IP(r0, &(0x7f0000000140)={0x3, 0x40, 0xfa00, {{0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x6, 0x0}, 0x3}, {0xa, 0x4, 0x0, @private2, 0x80000000}, r1, 0x8}}, 0x48) write$RDMA_USER_CM_CMD_RESOLVE_ADDR(r0, &(0x7f0000000000)={0x15, 0x110, 0xfa08, {r1, 0x0, 0x10, 0x10, 0x0, @in={0x2, 0x4, @empty}, @in={0x2, 0x4f24, @remote={0xac, 0xc}}}}, 0x118) 940.586182ms ago: executing program 3 (id=1698): r0 = syz_io_uring_setup(0x4a7, &(0x7f0000000440)={0x0, 0x0, 0x10100, 0x0, 0xcd}, &(0x7f0000000000)=0x0, &(0x7f0000000200)=0x0) r3 = io_uring_register$IORING_REGISTER_PERSONALITY(r0, 0x9, 0x0, 0x0) syz_io_uring_submit(r1, r2, &(0x7f0000000380)=@IORING_OP_STATX={0x15, 0x8, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x800, 0x1000, 0x0, {0x0, r3}}) io_uring_enter(r0, 0x2def, 0x0, 0x0, 0x0, 0x0) 654.790072ms ago: executing program 5 (id=1699): r0 = epoll_create1(0x0) r1 = userfaultfd(0x1) epoll_ctl$EPOLL_CTL_ADD(r0, 0x1, r1, &(0x7f00000001c0)) epoll_ctl$EPOLL_CTL_MOD(r0, 0x3, r1, &(0x7f00000000c0)) 650.85866ms ago: executing program 3 (id=1700): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$IOMMU_IOAS_ALLOC(r0, 0x3b81, &(0x7f0000000040)={0xc, 0x0, 0x0}) ioctl$IOMMU_IOAS_MAP$PAGES(r0, 0x3b85, &(0x7f0000000100)={0x28, 0x6, r1, 0x0, &(0x7f0000c00000/0x400000)=nil, 0x400000, 0x51e}) ioctl$IOMMU_IOAS_UNMAP$ALL(r0, 0x3b86, &(0x7f0000000080)={0x18, r1}) 621.288368ms ago: executing program 1 (id=1701): r0 = creat(&(0x7f0000000080)='./file0\x00', 0x0) close(r0) r1 = socket$tipc(0x1e, 0x5, 0x0) mount$9p_fd(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f00000002c0), 0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r0, @ANYBLOB=',wfdno=', @ANYRESHEX=r1]) 380.564254ms ago: executing program 5 (id=1702): getsockopt$inet_udp_int(0xffffffffffffffff, 0x11, 0x0, 0x0, &(0x7f0000000040)) madvise(&(0x7f0000000000/0x600000)=nil, 0x600707, 0x19) mremap(&(0x7f0000000000/0x1000)=nil, 0x1000, 0x1000, 0x7, &(0x7f0000481000/0x1000)=nil) syz_clone(0x100, 0x0, 0x0, 0x0, 0x0, 0x0) 365.673434ms ago: executing program 3 (id=1703): syz_mount_image$udf(&(0x7f0000000a40), &(0x7f0000000000)='./bus\x00', 0x4400, &(0x7f0000000700)=ANY=[@ANYRES8=0x0, @ANYRES8], 0x1, 0xa1b, &(0x7f0000006fc0)="$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") mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file7\x00', 0x21c0, 0x103) clock_settime(0x0, &(0x7f0000000240)={0x77359400}) renameat2(0xffffffffffffff9c, &(0x7f0000000240)='./file1\x00', 0xffffffffffffff9c, &(0x7f00000005c0)='./file7\x00', 0x0) 290.051781ms ago: executing program 1 (id=1704): r0 = fsopen(&(0x7f0000000000)='proc\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) fsmount(r0, 0x0, 0x0) fsconfig$FSCONFIG_CMD_RECONFIGURE(r0, 0x7, 0x0, 0x0, 0x0) 0s ago: executing program 1 (id=1705): socketpair$tipc(0x1e, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) setsockopt$TIPC_DEST_DROPPABLE(r0, 0x10f, 0x81, &(0x7f0000000080), 0x4) sendmmsg$inet(r0, &(0x7f0000001540)=[{{0x0, 0xfffffffffffffda1, 0x0}}], 0x40001b6, 0x0) close(r1) kernel console output (not intermixed with test programs): s leftover after parsing attributes in process `syz.2.835'. [ 184.534935][ T5892] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 184.745063][ T5892] gp8psk: usb in 128 operation failed. [ 184.763258][ T969] usb 1-1: new full-speed USB device number 7 using dummy_hcd [ 184.782641][ T5892] gp8psk: usb in 137 operation failed. [ 184.788490][ T5892] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 184.813502][ T5892] dvbdev: DVB: registering new adapter (Genpix SkyWalker-1 DVB-S receiver) [ 184.852372][ T5892] usb 6-1: media controller created [ 184.896581][ T5892] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 184.949395][ T5892] gp8psk_fe: Frontend attached [ 184.969387][ T969] usb 1-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config [ 185.000609][ T5892] usb 6-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)... [ 185.016062][ T969] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 185.032697][ T5892] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered. [ 185.056419][ T969] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 185.075844][ T969] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 185.116422][ T969] usb 1-1: Product: syz [ 185.129044][ T969] usb 1-1: Manufacturer: syz [ 185.137799][ T969] usb 1-1: SerialNumber: syz [ 185.329774][ T5892] gp8psk: usb in 137 operation failed. [ 185.335601][ T5892] dvb-usb: Genpix SkyWalker-1 DVB-S receiver successfully initialized and connected. [ 185.365658][ T5892] gp8psk: found Genpix USB device pID = 203 (hex) [ 185.386353][ T969] usb 1-1: 0:2 : does not exist [ 185.398314][ T5892] usb 6-1: USB disconnect, device number 9 [ 185.423747][ T969] usb 1-1: 5:0: failed to get current value for ch 0 (-22) [ 185.530185][ T969] usb 1-1: USB disconnect, device number 7 [ 185.624015][ T5892] dvb-usb: Genpix SkyWalker-1 DVB-S receiver successfully deinitialized and disconnected. [ 185.691039][ T8489] loop3: detected capacity change from 0 to 32768 [ 185.778879][ T8509] loop1: detected capacity change from 0 to 256 [ 185.808391][ T8489] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 185.820971][ T5830] udevd[5830]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 185.902863][ T8509] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xdc42f586, utbl_chksum : 0xe619d30d) [ 186.053100][ T8495] loop2: detected capacity change from 0 to 40427 [ 186.103891][ T8495] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x1fffff [ 186.139878][ T8509] Process accounting resumed [ 186.148005][ T8489] XFS (loop3): Ending clean mount [ 186.156794][ T8495] F2FS-fs (loop2): Image doesn't support compression [ 186.179140][ T8495] F2FS-fs (loop2): Image doesn't support compression [ 186.199938][ T8489] XFS (loop3): Quotacheck needed: Please wait. [ 186.237195][ T8495] F2FS-fs (loop2): invalid crc value [ 186.269359][ T8519] loop5: detected capacity change from 0 to 4096 [ 186.281139][ T8509] Process accounting resumed [ 186.295509][ T8495] F2FS-fs (loop2): Found nat_bits in checkpoint [ 186.365540][ T8489] XFS (loop3): Quotacheck: Done. [ 186.477754][ T8495] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 186.599741][ T29] audit: type=1800 audit(1739105381.964:94): pid=8495 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.841" name="file1" dev="loop2" ino=10 res=0 errno=0 [ 186.616417][ T8525] loop1: detected capacity change from 0 to 2048 [ 186.631585][ T8495] syz.2.841: attempt to access beyond end of device [ 186.631585][ T8495] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 186.635159][ T8501] loop4: detected capacity change from 0 to 32768 [ 186.670557][ T8495] syz.2.841: attempt to access beyond end of device [ 186.670557][ T8495] loop2: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 186.705465][ T5832] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 186.723654][ T8525] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 187.021670][ T5833] syz-executor: attempt to access beyond end of device [ 187.021670][ T5833] loop2: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 187.071820][ T5833] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 187.482321][ T8441] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 187.532208][ T29] audit: type=1800 audit(1739105382.884:95): pid=8525 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.853" name="file2" dev="loop1" ino=16 res=0 errno=0 [ 187.930777][ T8544] pimreg: entered allmulticast mode [ 187.960280][ T8542] pimreg: left allmulticast mode [ 188.125727][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 188.146605][ T8549] loop5: detected capacity change from 0 to 47 [ 188.339803][ T8551] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 188.382242][ T5892] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 188.552252][ T5892] usb 5-1: Using ep0 maxpacket: 16 [ 188.574177][ T5892] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 188.584870][ T5894] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 188.615126][ T5892] usb 5-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 188.653187][ T8561] loop2: detected capacity change from 0 to 128 [ 188.703828][ T5892] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 188.730034][ T5892] usb 5-1: config 0 descriptor?? [ 188.766658][ T5894] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 188.793659][ T5894] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 188.844177][ T5894] usb 2-1: Product: syz [ 188.886777][ T5894] usb 2-1: Manufacturer: syz [ 188.922907][ T5894] usb 2-1: SerialNumber: syz [ 188.944029][ T5894] r8152-cfgselector 2-1: Unknown version 0x0000 [ 188.960735][ T5894] r8152-cfgselector 2-1: config 0 descriptor?? [ 189.215204][ T5892] mcp2221 0003:04D8:00DD.000B: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.4-1/input0 [ 189.287519][ T8578] loop2: detected capacity change from 0 to 512 [ 189.395328][ T8578] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 189.411489][ T5894] r8152-cfgselector 2-1: USB disconnect, device number 9 [ 189.517830][ T8578] EXT4-fs (loop2): 1 truncate cleaned up [ 189.554808][ T8578] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 189.648069][ T8578] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2240: inode #15: comm syz.2.877: corrupted in-inode xattr: overlapping e_value [ 189.659923][ T969] usb 5-1: USB disconnect, device number 5 [ 189.679795][ T8578] EXT4-fs (loop2): Remounting filesystem read-only [ 189.687703][ T8578] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1772: inode #15: comm syz.2.877: unable to update i_inline_off [ 189.716833][ T8589] loop0: detected capacity change from 0 to 2048 [ 189.814270][ T8589] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 189.833124][ T5833] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 189.953233][ T8595] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 190.073007][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 190.270757][ T8602] loop3: detected capacity change from 0 to 1024 [ 190.865728][ T8623] loop4: detected capacity change from 0 to 2048 [ 190.892366][ T5894] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 190.907834][ T8623] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 191.084717][ T5894] usb 4-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 191.108275][ T5894] usb 4-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 191.120480][ T5894] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 191.147345][ T5894] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 191.170662][ T5894] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 191.203512][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 191.225027][ T5894] usb 4-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 191.252420][ T5894] usb 4-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 191.260842][ T5894] usb 4-1: Product: syz [ 191.292404][ T5894] usb 4-1: Manufacturer: syz [ 191.334184][ T5894] cdc_wdm 4-1:1.0: skipping garbage [ 191.384568][ T5894] cdc_wdm 4-1:1.0: skipping garbage [ 191.396583][ T5894] cdc_wdm 4-1:1.0: cdc-wdm0: USB WDM device [ 191.435713][ T5894] cdc_wdm 4-1:1.0: Unknown control protocol [ 191.510005][ T8639] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 191.519140][ T8614] loop5: detected capacity change from 0 to 32768 [ 191.540688][ T8614] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.892 (8614) [ 191.575817][ T8614] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 191.616497][ T8614] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm [ 191.642184][ T8614] BTRFS info (device loop5): using free-space-tree [ 191.651607][ C0] cdc_wdm 4-1:1.0: nonzero urb status received: -71 [ 191.653873][ T5892] usb 4-1: USB disconnect, device number 8 [ 191.658215][ C0] cdc_wdm 4-1:1.0: wdm_int_callback - 0 bytes [ 191.658241][ C0] cdc_wdm 4-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 191.663037][ T8621] cdc_wdm 4-1:1.0: Tx URB error: -19 [ 191.732167][ T969] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 191.835674][ T8614] BTRFS info (device loop5): rebuilding free space tree [ 191.892716][ T969] usb 3-1: Using ep0 maxpacket: 16 [ 191.909812][ T969] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 191.932238][ T969] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 191.944629][ T8617] loop1: detected capacity change from 0 to 40427 [ 191.951365][ T969] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 191.962115][ T5940] usb 5-1: new high-speed USB device number 6 using dummy_hcd [ 191.980538][ T8617] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x1fffff [ 191.991493][ T8617] F2FS-fs (loop1): Image doesn't support compression [ 191.999116][ T8617] F2FS-fs (loop1): Image doesn't support compression [ 192.007280][ T969] usb 3-1: config 0 descriptor?? [ 192.033867][ T8617] F2FS-fs (loop1): invalid crc value [ 192.083260][ T8617] F2FS-fs (loop1): Found nat_bits in checkpoint [ 192.129482][ T5842] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 192.150019][ T5940] usb 5-1: Using ep0 maxpacket: 8 [ 192.177090][ T5940] usb 5-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 192.192560][ T5940] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 192.212959][ T5940] usb 5-1: Product: syz [ 192.222405][ T5940] usb 5-1: Manufacturer: syz [ 192.232954][ T5940] usb 5-1: SerialNumber: syz [ 192.259715][ T5940] usb 5-1: config 0 descriptor?? [ 192.278927][ T8617] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 192.358381][ T5940] gspca_main: sq930x-2.14.0 probing 2770:930c [ 192.434814][ T8665] ubi: mtd0 is already attached to ubi31 [ 192.450420][ T969] mcp2221 0003:04D8:00DD.000C: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 192.636415][ T5834] F2FS-fs (loop1): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x4e6/0x1f20 [ 192.695973][ T8671] loop5: detected capacity change from 0 to 64 [ 192.698853][ T5834] F2FS-fs (loop1): invalid blkaddr: 1026, type: 10, run fsck to fix. [ 192.891769][ T969] usb 3-1: USB disconnect, device number 10 [ 193.126445][ T5940] gspca_sq930x: ucbus_write failed -71 [ 193.372924][ T5940] gspca_sq930x: Sensor ov9630 not yet treated [ 193.379155][ T5940] sq930x 5-1:0.0: probe with driver sq930x failed with error -22 [ 193.418803][ T5940] usb 5-1: USB disconnect, device number 6 [ 193.667786][ T8688] loop1: detected capacity change from 0 to 2048 [ 193.730139][ T8688] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 193.780255][ T8669] loop3: detected capacity change from 0 to 32768 [ 193.817817][ T8669] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.906 (8669) [ 193.833358][ T5894] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 193.862472][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 193.889097][ T8669] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 193.912662][ T8669] BTRFS info (device loop3): using crc32c (crc32c-x86_64) checksum algorithm [ 193.921522][ T8669] BTRFS info (device loop3): disk space caching is enabled [ 193.982486][ T8669] BTRFS warning (device loop3): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 194.013114][ T5894] usb 1-1: Using ep0 maxpacket: 16 [ 194.045970][ T5894] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 194.056548][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 194.065352][ T5894] usb 1-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 194.081080][ T5894] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 194.105018][ T5894] usb 1-1: config 0 descriptor?? [ 194.189504][ T8698] loop2: detected capacity change from 0 to 4096 [ 194.209823][ T8698] ntfs3: Unknown parameter 'syzkaller' [ 194.268494][ T8718] loop4: detected capacity change from 0 to 256 [ 194.346603][ T8669] BTRFS info (device loop3): rebuilding free space tree [ 194.461693][ T8669] BTRFS info (device loop3): disabling free space tree [ 194.481748][ T8669] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 194.522438][ T8669] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 194.559057][ T5894] mcp2221 0003:04D8:00DD.000D: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.0-1/input0 [ 194.781655][ T8724] ptrace attach of "./syz-executor exec"[5842] was attempted by ""[8724] [ 194.982364][ T5892] usb 1-1: USB disconnect, device number 8 [ 195.200415][ T5832] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 195.282400][ T5940] usb 6-1: new high-speed USB device number 10 using dummy_hcd [ 195.479330][ T5940] usb 6-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 195.515678][ T5940] usb 6-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 195.528704][ T5940] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 195.539710][ T5940] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 195.551264][ T5940] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 195.554776][ T8738] loop3: detected capacity change from 0 to 2048 [ 195.604296][ T5940] usb 6-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 195.614206][ T5940] usb 6-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 195.648990][ T8738] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 195.662280][ T5940] usb 6-1: Product: syz [ 195.677298][ T5940] usb 6-1: Manufacturer: syz [ 195.736399][ T5940] cdc_wdm 6-1:1.0: skipping garbage [ 195.772333][ T5940] cdc_wdm 6-1:1.0: skipping garbage [ 195.777442][ T8741] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 195.798784][ T5940] cdc_wdm 6-1:1.0: cdc-wdm0: USB WDM device [ 195.843774][ T5940] cdc_wdm 6-1:1.0: Unknown control protocol [ 195.875927][ T29] audit: type=1800 audit(1739105391.244:96): pid=8738 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.925" name="file1" dev="loop3" ino=15 res=0 errno=0 [ 196.063091][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.069773][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.076197][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.082821][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.091522][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.098150][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.105513][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.112133][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.118932][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.125563][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.132149][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.138340][ T5892] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 196.138744][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.153246][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.159870][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.170507][ C0] cdc_wdm 6-1:1.0: nonzero urb status received: -71 [ 196.177158][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - 0 bytes [ 196.183288][ C0] cdc_wdm 6-1:1.0: wdm_int_callback - usb_submit_urb failed with result -1 [ 196.192275][ T5894] usb 6-1: USB disconnect, device number 10 [ 196.375453][ T5892] usb 2-1: Using ep0 maxpacket: 16 [ 196.393017][ T5892] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 196.422142][ T5892] usb 2-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 196.436449][ T5892] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 196.489341][ T5892] usb 2-1: config 0 descriptor?? [ 196.557393][ T8755] loop3: detected capacity change from 0 to 512 [ 196.598237][ T8755] EXT4-fs error (device loop3): ext4_xattr_ibody_find:2240: inode #15: comm syz.3.934: corrupted in-inode xattr: invalid ea_ino [ 196.623112][ T8755] EXT4-fs error (device loop3): ext4_orphan_get:1394: comm syz.3.934: couldn't read orphan inode 15 (err -117) [ 196.634683][ T8733] loop2: detected capacity change from 0 to 32768 [ 196.651773][ T8733] XFS: ikeep mount option is deprecated. [ 196.659600][ T8755] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 196.684437][ T8733] XFS: noikeep mount option is deprecated. [ 196.751830][ T8755] EXT4-fs error (device loop3): ext4_free_branches:1023: inode #13: comm syz.3.934: invalid indirect mapped block 234881024 (level 0) [ 196.802463][ T8733] XFS (loop2): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 196.908194][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 196.932563][ T8733] XFS (loop2): Ending clean mount [ 196.935906][ T5892] mcp2221 0003:04D8:00DD.000E: USB HID v0.05 Device [HID 04d8:00dd] on usb-dummy_hcd.1-1/input0 [ 196.944848][ T8733] XFS (loop2): Quotacheck needed: Please wait. [ 197.085168][ T8733] XFS (loop2): Quotacheck: Done. [ 197.202707][ T8773] loop0: detected capacity change from 0 to 1024 [ 197.283113][ T29] audit: type=1800 audit(1739105392.664:97): pid=8773 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.940" name="file1" dev="loop0" ino=20 res=0 errno=0 [ 197.303389][ C0] vkms_vblank_simulate: vblank timer overrun [ 197.386999][ T5948] usb 2-1: USB disconnect, device number 10 [ 197.457102][ T5833] XFS (loop2): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 197.585686][ T8780] loop5: detected capacity change from 0 to 512 [ 197.651147][ T8780] EXT4-fs error (device loop5): ext4_orphan_get:1415: comm syz.5.946: bad orphan inode 15 [ 197.678030][ T8780] ext4_test_bit(bit=14, block=5) = 0 [ 197.703306][ T8749] loop4: detected capacity change from 0 to 40427 [ 197.720139][ T8749] F2FS-fs (loop4): build fault injection attr: rate: 690, type: 0x1fffff [ 197.741582][ T8780] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 197.754073][ T8749] F2FS-fs (loop4): Image doesn't support compression [ 197.777591][ T8749] F2FS-fs (loop4): Image doesn't support compression [ 197.812611][ T8780] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 197.862189][ T8749] F2FS-fs (loop4): invalid crc value [ 197.892835][ T8785] netlink: 'syz.3.948': attribute type 9 has an invalid length. [ 197.941851][ T8749] F2FS-fs (loop4): Found nat_bits in checkpoint [ 198.138035][ T8792] loop0: detected capacity change from 0 to 64 [ 198.191955][ T8749] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 198.383935][ T8801] loop5: detected capacity change from 0 to 2048 [ 198.411663][ T8801] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 198.470797][ T5830] udevd[5830]: incorrect nilfs2 checksum on /dev/loop5 [ 198.482748][ T8805] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 198.488247][ T5849] F2FS-fs (loop4): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x4e6/0x1f20 [ 198.540828][ T5849] F2FS-fs (loop4): invalid blkaddr: 1026, type: 10, run fsck to fix. [ 198.562252][ T8] usb 2-1: new high-speed USB device number 11 using dummy_hcd [ 198.570159][ T29] audit: type=1800 audit(1739105393.934:98): pid=8801 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.952" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 198.754256][ T8] usb 2-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 198.764020][ T8] usb 2-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 198.830557][ T8] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 198.832946][ T8811] netlink: 71 bytes leftover after parsing attributes in process `syz.3.958'. [ 198.871308][ T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 198.932998][ T8] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 198.960967][ T8] usb 2-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 198.970854][ T8] usb 2-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 199.000189][ T8] usb 2-1: Product: syz [ 199.026687][ T8] usb 2-1: Manufacturer: syz [ 199.074357][ T8] cdc_wdm 2-1:1.0: skipping garbage [ 199.082566][ T8] cdc_wdm 2-1:1.0: skipping garbage [ 199.099428][ T8] cdc_wdm 2-1:1.0: cdc-wdm0: USB WDM device [ 199.122215][ T8] cdc_wdm 2-1:1.0: Unknown control protocol [ 199.363718][ T8824] ubi: mtd0 is already attached to ubi31 [ 199.374854][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.381481][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.387858][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.394469][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.400741][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.407350][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.413654][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.420258][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.426554][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.433184][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.439538][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.446236][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.453763][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.460375][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.467002][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.473705][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.481611][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.488235][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.500646][ C0] cdc_wdm 2-1:1.0: nonzero urb status received: -71 [ 199.507267][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - 0 bytes [ 199.509421][ T8797] loop2: detected capacity change from 0 to 32768 [ 199.524176][ C0] cdc_wdm 2-1:1.0: wdm_int_callback - usb_submit_urb failed with result -19 [ 199.533339][ T8] usb 2-1: USB disconnect, device number 11 [ 199.583784][ T8797] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.942 (8797) [ 199.639104][ T8797] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 199.685215][ T8797] BTRFS info (device loop2): using crc32c (crc32c-x86_64) checksum algorithm [ 199.729649][ T8797] BTRFS info (device loop2): disk space caching is enabled [ 199.753990][ T8797] BTRFS warning (device loop2): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 199.884957][ T8833] loop4: detected capacity change from 0 to 256 [ 200.044680][ T8797] BTRFS info (device loop2): rebuilding free space tree [ 200.130291][ T8797] BTRFS info (device loop2): disabling free space tree [ 200.160995][ T8797] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 200.197691][ T8797] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 200.504784][ T8865] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE [ 200.512093][ T8865] IPv6: NLM_F_CREATE should be set when creating new route [ 200.758496][ T5833] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 200.901944][ T8869] loop1: detected capacity change from 0 to 4096 [ 201.086112][ T8869] ntfs3(loop1): ino=5, "/" indx_read [ 201.091486][ T8869] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 201.140351][ T8869] ntfs3(loop1): ino=5, indx_read [ 201.149467][ T8869] ntfs3(loop1): ino=5, ntfs_readdir [ 201.283968][ T5940] usb 6-1: new full-speed USB device number 11 using dummy_hcd [ 201.493077][ T5940] usb 6-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config [ 201.514393][ T5940] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 201.535068][ T8879] loop1: detected capacity change from 0 to 512 [ 201.536399][ T5940] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 201.586444][ T5940] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 201.617187][ T5940] usb 6-1: Product: syz [ 201.621440][ T5940] usb 6-1: Manufacturer: syz [ 201.627412][ T5940] usb 6-1: SerialNumber: syz [ 201.643480][ T8879] EXT4-fs error (device loop1): ext4_orphan_get:1415: comm syz.1.980: bad orphan inode 15 [ 201.662456][ T8879] ext4_test_bit(bit=14, block=5) = 0 [ 201.668875][ T8879] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 201.717497][ T8854] loop3: detected capacity change from 0 to 40427 [ 201.732262][ T8854] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x1fffff [ 201.733433][ T8879] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 201.740809][ T8854] F2FS-fs (loop3): Image doesn't support compression [ 201.740879][ T8854] F2FS-fs (loop3): Image doesn't support compression [ 201.779188][ T8854] F2FS-fs (loop3): invalid crc value [ 201.842651][ T8854] F2FS-fs (loop3): Found nat_bits in checkpoint [ 201.870667][ T5940] usb 6-1: 0:2 : does not exist [ 201.907253][ T5940] usb 6-1: 5:0: failed to get current value for ch 0 (-22) [ 201.982366][ T5940] usb 6-1: USB disconnect, device number 11 [ 202.124250][ T8854] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 202.280682][ T8897] loop1: detected capacity change from 0 to 256 [ 202.303037][ T5853] udevd[5853]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 202.328702][ T8897] FAT-fs (loop1): bogus number of FAT sectors [ 202.362574][ T5832] F2FS-fs (loop3): inject invalid blkaddr in f2fs_is_valid_blkaddr of f2fs_submit_page_write+0x4e6/0x1f20 [ 202.370583][ T8897] FAT-fs (loop1): Can't find a valid FAT filesystem [ 202.412225][ T5832] F2FS-fs (loop3): invalid blkaddr: 1026, type: 10, run fsck to fix. [ 202.882277][ T5892] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 203.088058][ T5892] usb 5-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 203.102215][ T5892] usb 5-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 203.142463][ T5892] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 203.192168][ T5892] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 203.226133][ T5892] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 203.259471][ T5892] usb 5-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 203.272122][ T5892] usb 5-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 203.284930][ T8893] loop0: detected capacity change from 0 to 32768 [ 203.311816][ T5892] usb 5-1: Product: syz [ 203.318208][ T5892] usb 5-1: Manufacturer: syz [ 203.342269][ T8893] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.983 (8893) [ 203.365390][ T5892] cdc_wdm 5-1:1.0: skipping garbage [ 203.370799][ T5892] cdc_wdm 5-1:1.0: skipping garbage [ 203.392913][ T5892] cdc_wdm 5-1:1.0: cdc-wdm0: USB WDM device [ 203.404749][ T8893] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 203.425168][ T5892] cdc_wdm 5-1:1.0: Unknown control protocol [ 203.449187][ T8893] BTRFS info (device loop0): using sha256 (sha256-ni) checksum algorithm [ 203.492171][ T8893] BTRFS info (device loop0): using free-space-tree [ 203.660718][ T5940] usb 5-1: USB disconnect, device number 7 [ 203.810332][ T8926] loop2: detected capacity change from 0 to 4096 [ 203.942712][ T5828] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 204.087605][ T8926] ntfs3(loop2): ino=5, "/" indx_read [ 204.090630][ T8905] loop1: detected capacity change from 0 to 32768 [ 204.159722][ T8905] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.991 (8905) [ 204.160140][ T8926] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 204.245599][ T8932] ntfs3(loop2): ino=5, indx_read [ 204.276076][ T8932] ntfs3(loop2): ino=5, ntfs_readdir [ 204.290623][ T8908] loop5: detected capacity change from 0 to 32768 [ 204.332208][ T8905] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 204.402176][ T8905] BTRFS info (device loop1): using crc32c (crc32c-x86_64) checksum algorithm [ 204.411051][ T8905] BTRFS info (device loop1): disk space caching is enabled [ 204.433979][ T8905] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 204.538260][ T8908] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 204.723239][ T8905] BTRFS info (device loop1): rebuilding free space tree [ 204.810443][ T8912] loop3: detected capacity change from 0 to 32768 [ 204.832349][ T8905] BTRFS info (device loop1): disabling free space tree [ 204.839314][ T8905] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 204.896670][ T8905] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 204.972639][ T8912] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 205.102190][ T8908] XFS (loop5): Ending clean mount [ 205.144466][ T8908] XFS (loop5): Quotacheck needed: Please wait. [ 205.329301][ T8912] XFS (loop3): Ending clean mount [ 205.452214][ T8908] XFS (loop5): Quotacheck: Done. [ 205.493831][ T5834] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 206.027879][ T5832] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 206.080520][ T5842] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 206.496870][ T8972] syz.0.999 (8972): drop_caches: 2 [ 206.747370][ T8960] loop4: detected capacity change from 0 to 32768 [ 206.778031][ T8986] netlink: 136 bytes leftover after parsing attributes in process `syz.5.1003'. [ 206.864551][ T8990] loop3: detected capacity change from 0 to 1024 [ 206.883053][ T8960] XFS: ikeep mount option is deprecated. [ 206.888759][ T8960] XFS: noikeep mount option is deprecated. [ 206.917798][ T8986] netlink: 136 bytes leftover after parsing attributes in process `syz.5.1003'. [ 207.024832][ T8960] XFS (loop4): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 207.062193][ T8988] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1005'. [ 207.107750][ T8990] syz.3.1004: attempt to access beyond end of device [ 207.107750][ T8990] loop3: rw=2049, sector=5778, nr_sectors = 2 limit=1024 [ 207.147422][ T8990] Buffer I/O error on dev loop3, logical block 2889, lost async page write [ 207.313091][ T8960] XFS (loop4): Ending clean mount [ 207.394567][ T8960] XFS (loop4): Quotacheck needed: Please wait. [ 207.515457][ T5940] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 207.601133][ T8960] XFS (loop4): Quotacheck: Done. [ 207.673989][ T5892] usb 4-1: new high-speed USB device number 9 using dummy_hcd [ 207.700634][ T5940] usb 1-1: config 1 has too many interfaces: 66, using maximum allowed: 32 [ 207.720628][ T5940] usb 1-1: config 1 has an invalid descriptor of length 55, skipping remainder of the config [ 207.761018][ T5940] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 66 [ 207.812091][ T5940] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 55, changing to 9 [ 207.842210][ T5940] usb 1-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 8496, setting to 1024 [ 207.867894][ T5892] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 207.880197][ T5892] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 207.892174][ T5892] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 207.892329][ T5940] usb 1-1: New USB device found, idVendor=7d25, idProduct=a415, bcdDevice= 0.40 [ 207.911187][ T5892] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 207.919809][ T5940] usb 1-1: New USB device strings: Mfr=1, Product=4, SerialNumber=0 [ 207.936593][ T5849] XFS (loop4): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 207.944490][ T5940] usb 1-1: Product: syz [ 207.951803][ T9010] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 207.985680][ T5892] usb 4-1: Quirk or no altset; falling back to MIDI 1.0 [ 208.008531][ T5940] usb 1-1: Manufacturer: syz [ 208.023059][ T9020] loop5: detected capacity change from 0 to 256 [ 208.028441][ T5940] cdc_wdm 1-1:1.0: skipping garbage [ 208.036563][ T5940] cdc_wdm 1-1:1.0: skipping garbage [ 208.119098][ T9022] loop1: detected capacity change from 0 to 256 [ 208.127833][ T5940] cdc_wdm 1-1:1.0: cdc-wdm0: USB WDM device [ 208.160074][ T9020] exFAT-fs (loop5): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 208.164659][ T5940] cdc_wdm 1-1:1.0: Unknown control protocol [ 208.233348][ T29] audit: type=1800 audit(1739105403.604:99): pid=9020 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1017" name="file1" dev="loop5" ino=20 res=0 errno=0 [ 208.252240][ T5940] usb 1-1: USB disconnect, device number 9 [ 208.270946][ T9022] FAT-fs (loop1): Directory bread(block 64) failed [ 208.288252][ T9022] FAT-fs (loop1): Directory bread(block 65) failed [ 208.331043][ T9022] FAT-fs (loop1): Directory bread(block 66) failed [ 208.361907][ T9022] FAT-fs (loop1): Directory bread(block 67) failed [ 208.458734][ T9020] syz.5.1017: attempt to access beyond end of device [ 208.458734][ T9020] loop5: rw=0, sector=256, nr_sectors = 8 limit=256 [ 208.458996][ T9022] FAT-fs (loop1): Directory bread(block 68) failed [ 208.508629][ T5892] usb 4-1: USB disconnect, device number 9 [ 208.519392][ T9022] FAT-fs (loop1): Directory bread(block 69) failed [ 208.574700][ T9022] FAT-fs (loop1): Directory bread(block 70) failed [ 208.612335][ T9022] FAT-fs (loop1): Directory bread(block 71) failed [ 208.637876][ T9022] FAT-fs (loop1): Directory bread(block 72) failed [ 208.648804][ T9022] FAT-fs (loop1): Directory bread(block 73) failed [ 208.759898][ T29] audit: type=1800 audit(1739105404.134:100): pid=9022 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1019" name="file1" dev="loop1" ino=21 res=0 errno=0 [ 208.770188][ T9027] loop4: detected capacity change from 0 to 256 [ 208.782402][ T9022] syz.1.1019: attempt to access beyond end of device [ 208.782402][ T9022] loop1: rw=0, sector=1768, nr_sectors = 4 limit=256 [ 208.906353][ T9012] loop2: detected capacity change from 0 to 32768 [ 208.940538][ T9012] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.1012 (9012) [ 209.047422][ T9012] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 209.127384][ T9034] trusted_key: encrypted_key: keyword 'loa' not recognized [ 209.133071][ T9012] BTRFS info (device loop2): using sha256 (sha256-ni) checksum algorithm [ 209.202268][ T9012] BTRFS info (device loop2): using free-space-tree [ 209.577871][ T9060] loop4: detected capacity change from 0 to 1024 [ 209.663172][ T9062] loop3: detected capacity change from 0 to 1024 [ 209.895581][ T5833] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 210.381077][ T9048] loop5: detected capacity change from 0 to 32768 [ 210.422335][ T9048] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1025 (9048) [ 211.253788][ T9042] loop1: detected capacity change from 0 to 40427 [ 211.279195][ T9065] loop0: detected capacity change from 0 to 32768 [ 211.300400][ T9042] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 211.390495][ T9042] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 211.403123][ T9065] BTRFS: device /dev/loop0 (7:0) using temp-fsid 23320d61-b4cf-499b-a369-bd9360d2ad1f [ 211.420831][ T9048] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 211.450897][ T9065] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1028 (9065) [ 211.475109][ T9048] BTRFS info (device loop5): using crc32c (crc32c-x86_64) checksum algorithm [ 211.485144][ T9071] loop3: detected capacity change from 0 to 131072 [ 211.498618][ T9071] F2FS-fs (loop3): invalid crc value [ 211.503828][ T9042] F2FS-fs (loop1): invalid crc value [ 211.530110][ T9048] BTRFS info (device loop5): using free-space-tree [ 211.549433][ T9065] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 211.579009][ T9071] F2FS-fs (loop3): Found nat_bits in checkpoint [ 211.611273][ T9065] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm [ 211.641736][ T9071] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 211.642416][ T9042] F2FS-fs (loop1): Found nat_bits in checkpoint [ 211.692336][ T9065] BTRFS info (device loop0): disk space caching is enabled [ 211.699724][ T9065] BTRFS warning (device loop0): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 211.848346][ T9048] BTRFS info (device loop5): rebuilding free space tree [ 211.968792][ T9042] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 211.993647][ T9042] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 212.146628][ T9065] BTRFS info (device loop0): rebuilding free space tree [ 212.283914][ T9065] BTRFS info (device loop0): disabling free space tree [ 212.324186][ T9065] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 212.356506][ T12] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 212.397635][ T9065] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 212.440110][ T12] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 212.778563][ T5842] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 212.953320][ T5828] BTRFS info (device loop0): last unmount of filesystem 23320d61-b4cf-499b-a369-bd9360d2ad1f [ 213.398145][ T5940] usb 5-1: new full-speed USB device number 8 using dummy_hcd [ 213.603528][ T5940] usb 5-1: config 1 has an invalid descriptor of length 255, skipping remainder of the config [ 213.640973][ T5940] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 213.685152][ T5940] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 213.697935][ T5940] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 213.742097][ T5940] usb 5-1: Product: syz [ 213.746355][ T5940] usb 5-1: Manufacturer: syz [ 213.781688][ T5940] usb 5-1: SerialNumber: syz [ 213.823570][ T9120] loop2: detected capacity change from 0 to 32768 [ 213.928895][ T9136] trusted_key: encrypted_key: keyword 'loa' not recognized [ 214.001679][ T9120] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 214.025636][ T5940] usb 5-1: 0:2 : does not exist [ 214.044739][ T5940] usb 5-1: 5:0: failed to get current value for ch 0 (-22) [ 214.085479][ T5940] usb 5-1: USB disconnect, device number 8 [ 214.350604][ T5853] udevd[5853]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 214.452386][ T5892] usb 6-1: new full-speed USB device number 12 using dummy_hcd [ 214.507678][ T9146] loop3: detected capacity change from 0 to 256 [ 214.518964][ T5833] ocfs2: Unmounting device (7,2) on (node local) [ 214.529756][ T9146] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 214.578405][ T9129] loop0: detected capacity change from 0 to 32768 [ 214.613106][ T9129] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.1051 (9129) [ 214.633448][ T29] audit: type=1800 audit(1739105410.004:101): pid=9146 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.1034" name="file1" dev="loop3" ino=22 res=0 errno=0 [ 214.665710][ T5892] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 214.690347][ T9129] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 214.721593][ T5892] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 214.762657][ T9129] BTRFS info (device loop0): using crc32c (crc32c-x86_64) checksum algorithm [ 214.782273][ T5892] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 214.782355][ T9129] BTRFS info (device loop0): using free-space-tree [ 214.856377][ T5892] usb 6-1: New USB device found, idVendor=0566, idProduct=3004, bcdDevice= 0.00 [ 214.873724][ T9146] syz.3.1034: attempt to access beyond end of device [ 214.873724][ T9146] loop3: rw=0, sector=256, nr_sectors = 8 limit=256 [ 214.898222][ T5892] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 214.946657][ T5892] usb 6-1: config 0 descriptor?? [ 215.102493][ T9129] BTRFS info (device loop0): rebuilding free space tree [ 215.233449][ T9141] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 215.262173][ T9141] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 215.493598][ T5892] monterey 0003:0566:3004.000F: fixing up button/consumer in HID report descriptor [ 215.534733][ T5892] monterey 0003:0566:3004.000F: unknown main item tag 0x6 [ 215.542868][ T5892] monterey 0003:0566:3004.000F: report_id 29495 is invalid [ 215.550126][ T5892] monterey 0003:0566:3004.000F: item 0 2 1 8 parsing failed [ 215.581945][ T9144] loop1: detected capacity change from 0 to 32768 [ 215.599564][ T5892] monterey 0003:0566:3004.000F: probe with driver monterey failed with error -22 [ 215.632223][ T9144] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1042 (9144) [ 215.697040][ T5892] usb 6-1: USB disconnect, device number 12 [ 215.805106][ T9144] BTRFS info (device loop1): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 215.864065][ T9144] BTRFS info (device loop1): using blake2b (blake2b-256-generic) checksum algorithm [ 215.892286][ T9144] BTRFS info (device loop1): using free-space-tree [ 215.916974][ T5828] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 216.277523][ T5834] BTRFS info (device loop1): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 216.379107][ T9187] loop4: detected capacity change from 0 to 512 [ 216.533490][ T9187] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 216.585100][ T9193] loop5: detected capacity change from 0 to 1024 [ 216.638719][ T9187] ext4 filesystem being mounted at /176/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 216.777969][ T9168] loop3: detected capacity change from 0 to 32768 [ 216.869954][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 216.875233][ T9168] XFS (loop3): Mounting V5 Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 216.888613][ T9166] loop2: detected capacity change from 0 to 40427 [ 216.969490][ T9166] F2FS-fs (loop2): invalid crc value [ 217.028969][ T9166] F2FS-fs (loop2): Found nat_bits in checkpoint [ 217.092774][ T9168] XFS (loop3): Ending clean mount [ 217.147820][ T9168] XFS (loop3): Quotacheck needed: Please wait. [ 217.211277][ T2999] XFS (loop3): Metadata corruption detected at xfs_dinode_verify+0x2d3/0x1410, inode 0x1807 dinode [ 217.264952][ T2999] XFS (loop3): Unmount and run xfs_repair [ 217.265412][ T9166] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 217.270857][ T2999] XFS (loop3): First 128 bytes of corrupted metadata buffer: [ 217.351849][ T2999] 00000000: 49 4e 81 ed 03 02 00 00 00 00 00 00 00 00 00 00 IN.............. [ 217.387146][ T2999] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 217.414014][ T2999] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 a5 b6 11 4.Xh....4.Xh.... [ 217.429779][ T2999] 00000030: 34 f7 58 68 a5 a5 b6 11 7c 0b 00 00 00 00 00 00 4.Xh....|....... [ 217.470649][ T2999] 00000040: 00 00 00 00 00 00 00 05 00 00 00 00 00 00 00 01 ................ [ 217.502261][ T2999] 00000050: 00 00 18 02 00 00 00 00 00 00 00 00 bb 36 00 a5 .............6.. [ 217.531941][ T2999] 00000060: ff ff ff ff 8c da 54 79 00 00 00 00 00 00 00 06 ......Ty........ [ 217.555510][ T2999] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08 ................ [ 217.584608][ T5833] syz-executor: attempt to access beyond end of device [ 217.584608][ T5833] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 217.602298][ T9] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 217.624507][ T5833] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 217.638624][ T9168] XFS (loop3): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 217.762260][ T9] usb 5-1: Using ep0 maxpacket: 8 [ 217.785043][ T9] usb 5-1: config 0 has no interfaces? [ 217.801243][ T9] usb 5-1: New USB device found, idVendor=046d, idProduct=08ad, bcdDevice=45.03 [ 217.849586][ T9] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 217.894422][ T9] usb 5-1: Product: syz [ 217.898666][ T9] usb 5-1: Manufacturer: syz [ 217.919229][ T9] usb 5-1: SerialNumber: syz [ 217.943443][ T9] usb 5-1: config 0 descriptor?? [ 217.997140][ T9211] loop1: detected capacity change from 0 to 32768 [ 218.017283][ T5832] XFS (loop3): Unmounting Filesystem ed37bf6e-74ea-4e01-afba-5fee274b0f3a [ 218.026266][ T9211] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1048 (9211) [ 218.049022][ T9222] loop0: detected capacity change from 0 to 4096 [ 218.076252][ T9211] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 218.093067][ T5832] XFS (loop3): Uncorrected metadata errors detected; please run xfs_repair. [ 218.124289][ T9211] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm [ 218.173007][ T9211] BTRFS info (device loop1): using free-space-tree [ 218.189906][ T9227] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 218.212423][ T9] usb 5-1: USB disconnect, device number 9 [ 218.255198][ T9222] NILFS error (device loop0): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 218.265762][ T29] audit: type=1800 audit(1739105413.624:102): pid=9222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1058" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 218.361384][ T9222] Remounting filesystem read-only [ 218.723174][ T5828] NILFS (loop0): disposed unprocessed dirty file(s) when detaching log writer [ 218.949647][ T5834] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 219.159691][ T9252] loop2: detected capacity change from 0 to 256 [ 219.170070][ T9250] loop0: detected capacity change from 0 to 2048 [ 219.228559][ T9252] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 219.325622][ T9250] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 219.444574][ T9252] exFAT-fs (loop2): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967295) [ 219.444574][ T9252] [ 219.521772][ T9252] exFAT-fs (loop2): error, failed to bmap (inode : ffff8880582ec1b8 iblock : 0, err : -5) [ 219.935902][ T29] audit: type=1800 audit(1739105415.314:103): pid=9250 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.1062" name="file2" dev="loop0" ino=16 res=0 errno=0 [ 219.978034][ T9248] syz.4.1063 (9248): drop_caches: 2 [ 220.264928][ T9266] loop2: detected capacity change from 0 to 256 [ 220.325930][ T9266] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 220.387318][ T29] audit: type=1800 audit(1739105415.764:104): pid=9266 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.1065" name="file1" dev="loop2" ino=24 res=0 errno=0 [ 220.400296][ T9266] syz.2.1065: attempt to access beyond end of device [ 220.400296][ T9266] loop2: rw=0, sector=256, nr_sectors = 8 limit=256 [ 220.435035][ T9270] loop5: detected capacity change from 0 to 128 [ 220.540791][ T9270] EXT4-fs (loop5): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 220.618573][ T9270] ext4 filesystem being mounted at /201/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 220.687875][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 220.797883][ T9258] loop3: detected capacity change from 0 to 32768 [ 220.814864][ T9258] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1064 (9258) [ 220.847096][ T9258] BTRFS info (device loop3): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 220.858200][ T9258] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 220.868653][ T9258] BTRFS info (device loop3): using free-space-tree [ 220.989927][ T5842] EXT4-fs (loop5): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 221.302660][ T9] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 221.490824][ T5832] BTRFS info (device loop3): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 221.502470][ T9] usb 3-1: Using ep0 maxpacket: 8 [ 221.528688][ T9] usb 3-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4 [ 221.554612][ T9275] loop4: detected capacity change from 0 to 32768 [ 221.564992][ T9] usb 3-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3 [ 221.593761][ T9275] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.1071 (9275) [ 221.619056][ T9] usb 3-1: Product: syz [ 221.633994][ T9] usb 3-1: Manufacturer: syz [ 221.651486][ T9] usb 3-1: SerialNumber: syz [ 221.665358][ T9275] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 221.699626][ T9] usb 3-1: config 0 descriptor?? [ 221.724777][ T9] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd [ 221.748005][ T9275] BTRFS info (device loop4): using crc32c (crc32c-x86_64) checksum algorithm [ 221.798356][ T9275] BTRFS info (device loop4): using free-space-tree [ 222.015351][ T9327] loop1: detected capacity change from 0 to 256 [ 222.025462][ T9275] BTRFS info (device loop4): rebuilding free space tree [ 222.174342][ T9327] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 222.303361][ T9327] exFAT-fs (loop1): error, exfat_alloc_cluster: invalid used clusters(t:15,u:4294967295) [ 222.303361][ T9327] [ 222.333011][ T9] input: gspca_zc3xx as /devices/platform/dummy_hcd.2/usb3/3-1/input/input12 [ 222.376605][ T9327] exFAT-fs (loop1): error, failed to bmap (inode : ffff8880783e2e68 iblock : 0, err : -5) [ 222.540930][ T5894] usb 3-1: USB disconnect, device number 11 [ 222.863045][ T9337] loop3: detected capacity change from 0 to 2048 [ 222.910873][ T5849] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 222.924657][ T9337] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 223.143423][ T9343] syz.5.1084 (9343): drop_caches: 2 [ 223.807360][ T29] audit: type=1800 audit(1739105419.184:105): pid=9337 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1083" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 224.157154][ T9360] loop4: detected capacity change from 0 to 4096 [ 224.173481][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 224.254687][ T9363] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 224.321284][ T9360] NILFS error (device loop4): nilfs_bmap_lookup_at_level: broken bmap (inode number=6) [ 224.331376][ T29] audit: type=1800 audit(1739105419.694:106): pid=9360 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1094" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 224.395956][ T9360] Remounting filesystem read-only [ 224.408132][ T9339] loop1: detected capacity change from 0 to 32768 [ 224.690739][ T9371] loop0: detected capacity change from 0 to 128 [ 224.782554][ T5849] NILFS (loop4): disposed unprocessed dirty file(s) when detaching log writer [ 224.798652][ T9371] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 224.854788][ T9371] ext4 filesystem being mounted at /186/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 224.978904][ T9371] overlayfs: upper fs needs to support d_type. [ 225.253363][ T5828] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 225.509864][ T9387] loop0: detected capacity change from 0 to 2048 [ 225.548443][ T9387] UDF-fs: error (device loop0): udf_read_tagged: tag version 0x0000 != 0x0002 || 0x0003, block 0 [ 225.572161][ T5894] usb 4-1: new high-speed USB device number 10 using dummy_hcd [ 225.582823][ T9365] loop5: detected capacity change from 0 to 32768 [ 225.616347][ T9387] UDF-fs: warning (device loop0): udf_load_vrs: No anchor found [ 225.652261][ T9387] UDF-fs: Scanning with blocksize 512 failed [ 225.671291][ T9387] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 225.686722][ T9365] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 225.794556][ T5894] usb 4-1: Using ep0 maxpacket: 32 [ 225.852661][ T5894] usb 4-1: New USB device found, idVendor=041e, idProduct=400b, bcdDevice=3e.e7 [ 225.861771][ T5894] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 225.913154][ T5894] usb 4-1: config 0 descriptor?? [ 225.933477][ T5894] gspca_main: sunplus-2.14.0 probing 041e:400b [ 226.089059][ T5842] ocfs2: Unmounting device (7,5) on (node local) [ 226.344518][ T9383] loop2: detected capacity change from 0 to 32768 [ 226.742164][ T5894] gspca_sunplus: reg_r err -71 [ 226.747072][ T5894] sunplus 4-1:0.0: probe with driver sunplus failed with error -71 [ 226.768684][ T9403] team0: Port device team_slave_1 removed [ 226.786690][ T5894] usb 4-1: USB disconnect, device number 10 [ 226.830252][ T9408] loop5: detected capacity change from 0 to 64 [ 226.960347][ T29] audit: type=1800 audit(1739105422.334:107): pid=9408 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1126" name="file1" dev="loop5" ino=18 res=0 errno=0 [ 227.078661][ T9411] loop2: detected capacity change from 0 to 2048 [ 227.200019][ T9411] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 227.819675][ T9441] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1125'. [ 228.022275][ T29] audit: type=1800 audit(1739105423.394:108): pid=9411 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.1107" name="file2" dev="loop2" ino=16 res=0 errno=0 [ 228.238035][ T9449] loop0: detected capacity change from 0 to 2048 [ 228.293589][ T9452] loop4: detected capacity change from 0 to 2048 [ 228.330414][ T5833] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.352679][ T9452] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 228.386310][ T9449] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 228.404394][ T9452] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 228.477213][ T9449] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 228.508128][ T9449] EXT4-fs (loop0): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 32 with error 28 [ 228.524062][ T9423] loop5: detected capacity change from 0 to 40427 [ 228.550309][ T9423] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 228.573435][ T9459] netlink: 'syz.3.1135': attribute type 1 has an invalid length. [ 228.581406][ T9449] EXT4-fs (loop0): This should not happen!! Data will be lost [ 228.581406][ T9449] [ 228.602808][ T9423] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 228.631903][ T9449] EXT4-fs (loop0): Total free blocks count 0 [ 228.661765][ T9423] F2FS-fs (loop5): invalid crc value [ 228.676182][ T9449] EXT4-fs (loop0): Free/Dirty block details [ 228.694570][ T9449] EXT4-fs (loop0): free_blocks=2415919104 [ 228.720225][ T9449] EXT4-fs (loop0): dirty_blocks=32 [ 228.745747][ T9423] F2FS-fs (loop5): Found nat_bits in checkpoint [ 228.761846][ T9449] EXT4-fs (loop0): Block reservation details [ 228.774599][ T9449] EXT4-fs (loop0): i_reserved_data_blocks=2 [ 228.846238][ T9423] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 228.853487][ T9423] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 228.887737][ T9469] loop4: detected capacity change from 0 to 1024 [ 228.931679][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 228.942692][ T9469] EXT4-fs: Ignoring removed nomblk_io_submit option [ 228.977055][ T9469] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 229.029645][ T9469] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e054e01c, mo2=0002] [ 229.065772][ T9469] System zones: 0-1, 3-36 [ 229.103588][ T29] audit: type=1326 audit(1739105424.484:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9474 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f713998cde9 code=0x7ffc0000 [ 229.103644][ T9469] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 229.153859][ T29] audit: type=1326 audit(1739105424.534:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9474 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=106 compat=0 ip=0x7f713998cde9 code=0x7ffc0000 [ 229.187902][ T29] audit: type=1326 audit(1739105424.534:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9474 comm="syz.2.1139" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f713998cde9 code=0x7ffc0000 [ 229.259417][ T2999] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix. [ 229.331336][ T2999] F2FS-fs (loop5): f2fs_check_nid_range: out-of-range nid=2, run fsck to fix. [ 229.419792][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 229.607356][ T9487] loop3: detected capacity change from 0 to 2048 [ 229.710140][ T9489] netlink: 56 bytes leftover after parsing attributes in process `syz.4.1146'. [ 229.721925][ T9487] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 229.771759][ T9489] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1146'. [ 229.836173][ T9497] loop2: detected capacity change from 0 to 2048 [ 229.849936][ T9497] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 230.332483][ T9420] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 230.567989][ T29] audit: type=1800 audit(1739105425.944:112): pid=9487 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.1145" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 230.613254][ T9516] Bluetooth: hci6: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 230.650663][ T62] Bluetooth: hci6: Frame reassembly failed (-84) [ 230.693184][ T5894] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 230.749392][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 230.882511][ T5894] usb 1-1: config 0 has an invalid interface number: 120 but max is 0 [ 230.890774][ T5894] usb 1-1: config 0 has no interface number 0 [ 230.912432][ T5894] usb 1-1: config 0 interface 120 altsetting 0 endpoint 0x8A has invalid maxpacket 30768, setting to 64 [ 230.932435][ T5894] usb 1-1: New USB device found, idVendor=16e3, idProduct=f9e9, bcdDevice= 0.58 [ 230.968961][ T5894] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.001089][ T5894] usb 1-1: config 0 descriptor?? [ 231.052194][ T5894] input: USB Touchscreen 16e3:f9e9 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.120/input/input13 [ 231.266048][ C0] usbtouchscreen 1-1:0.120: usbtouch_irq - usb_submit_urb failed with result: -19 [ 231.275465][ T9] usb 1-1: USB disconnect, device number 10 [ 231.922150][ T9] usb 4-1: new high-speed USB device number 11 using dummy_hcd [ 231.956533][ T9546] loop0: detected capacity change from 0 to 128 [ 231.983691][ T9529] loop5: detected capacity change from 0 to 32768 [ 232.015499][ T9529] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.1163 (9529) [ 232.079401][ T9529] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 232.096211][ T9] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 232.122273][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 232.131562][ T9529] BTRFS info (device loop5): using sha256 (sha256-ni) checksum algorithm [ 232.148997][ T9531] loop1: detected capacity change from 0 to 32768 [ 232.156649][ T9] usb 4-1: config 0 descriptor?? [ 232.172823][ T9529] BTRFS info (device loop5): using free-space-tree [ 232.181127][ T9] cp210x 4-1:0.0: cp210x converter detected [ 232.331420][ T9531] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 232.365246][ T9531] XFS (loop1): Mounting V5 Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 232.511071][ T9531] XFS (loop1): Ending clean mount [ 232.553676][ T9531] XFS (loop1): Quotacheck needed: Please wait. [ 232.644259][ T5842] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 232.661974][ T54] Bluetooth: hci6: command 0x1003 tx timeout [ 232.663224][ T5138] Bluetooth: hci6: Opcode 0x1003 failed: -110 [ 232.694680][ T9531] XFS (loop1): Quotacheck: Done. [ 232.817867][ T9] cp210x 4-1:0.0: failed to get vendor val 0x000e size 678: -71 [ 232.837332][ T9] cp210x 4-1:0.0: GPIO initialisation failed: -71 [ 232.868121][ T9] usb 4-1: cp210x converter now attached to ttyUSB0 [ 232.928143][ T9] usb 4-1: USB disconnect, device number 11 [ 232.968106][ T5834] XFS (loop1): Unmounting Filesystem a2f82aab-77f8-4286-afd4-a8f747a74bab [ 232.981466][ T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 233.014567][ T9] cp210x 4-1:0.0: device disconnected [ 233.401271][ T9587] loop2: detected capacity change from 0 to 256 [ 233.478115][ T9587] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 233.619199][ T9593] loop1: detected capacity change from 0 to 512 [ 233.660649][ T9593] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 233.691259][ T9593] EXT4-fs (loop1): 1 truncate cleaned up [ 233.758376][ T9593] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.075417][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.094986][ T9606] loop4: detected capacity change from 0 to 2048 [ 234.180719][ T9606] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 234.543551][ T8] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 234.575023][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 234.712394][ T9628] netlink: 'syz.3.1196': attribute type 2 has an invalid length. [ 234.722288][ T8] usb 2-1: Using ep0 maxpacket: 16 [ 234.737395][ T9623] loop5: detected capacity change from 0 to 8192 [ 234.746066][ T9628] netlink: 119 bytes leftover after parsing attributes in process `syz.3.1196'. [ 234.764736][ T8] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x81 has invalid wMaxPacketSize 0 [ 234.792359][ T9623] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 234.795397][ T8] usb 2-1: config 0 interface 0 altsetting 16 endpoint 0x2 has an invalid bInterval 0, changing to 7 [ 234.833088][ T8] usb 2-1: config 0 interface 0 altsetting 16 has 2 endpoint descriptors, different from the interface descriptor's value: 5 [ 234.860525][ T8] usb 2-1: config 0 interface 0 has no altsetting 0 [ 234.882753][ T8] usb 2-1: New USB device found, idVendor=1e71, idProduct=2010, bcdDevice= 0.00 [ 234.925135][ T8] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 234.958618][ T8] usb 2-1: config 0 descriptor?? [ 235.054669][ T9633] loop3: detected capacity change from 0 to 512 [ 235.077940][ T9633] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 235.117720][ T9633] EXT4-fs (loop3): 1 truncate cleaned up [ 235.143590][ T9633] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 235.381685][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 235.470108][ T8] nzxt-smart2 0003:1E71:2010.0010: unknown main item tag 0x0 [ 235.492136][ T8] nzxt-smart2 0003:1E71:2010.0010: unknown main item tag 0x0 [ 235.499612][ T8] nzxt-smart2 0003:1E71:2010.0010: unknown main item tag 0x0 [ 235.532162][ T8] nzxt-smart2 0003:1E71:2010.0010: unknown main item tag 0x0 [ 235.539699][ T8] nzxt-smart2 0003:1E71:2010.0010: unknown main item tag 0x0 [ 235.585661][ T8] nzxt-smart2 0003:1E71:2010.0010: hidraw0: USB HID v0.05 Device [HID 1e71:2010] on usb-dummy_hcd.1-1/input0 [ 235.753391][ T8] usb 2-1: USB disconnect, device number 12 [ 235.866584][ T9630] loop4: detected capacity change from 0 to 32768 [ 235.911620][ T9650] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1202'. [ 235.962347][ T9650] netem: invalid attributes len -15 [ 235.967628][ T9650] netem: change failed [ 236.015310][ T9630] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 236.150716][ T9666] loop2: detected capacity change from 0 to 2048 [ 236.202327][ T9666] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 236.268852][ T9666] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 236.458455][ T9630] XFS (loop4): Ending clean mount [ 236.474427][ T9630] XFS (loop4): Quotacheck needed: Please wait. [ 236.528889][ T9676] loop1: detected capacity change from 0 to 256 [ 236.628384][ T9676] exFAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 236.676369][ T9630] XFS (loop4): Quotacheck: Done. [ 236.702374][ T9676] exFAT-fs (loop1): Medium has reported failures. Some data may be lost. [ 236.736568][ T9676] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [ 236.817635][ T9686] loop2: detected capacity change from 0 to 736 [ 236.839026][ T5849] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 236.851703][ T9688] netlink: 8 bytes leftover after parsing attributes in process `syz.5.1216'. [ 237.365998][ T9698] loop1: detected capacity change from 0 to 64 [ 237.514476][ T9698] overlayfs: upper fs needs to support d_type. [ 237.606750][ T9698] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 237.641146][ T9698] overlayfs: failed to set xattr on upper [ 237.683733][ T9698] overlayfs: ...falling back to redirect_dir=nofollow. [ 237.699735][ T9698] overlayfs: ...falling back to index=off. [ 237.736011][ T9698] overlayfs: ...falling back to uuid=null. [ 237.772327][ T8] usb 5-1: new high-speed USB device number 10 using dummy_hcd [ 237.977784][ T8] usb 5-1: Using ep0 maxpacket: 16 [ 238.004580][ T8] usb 5-1: config 1 interface 0 altsetting 93 bulk endpoint 0x82 has invalid maxpacket 1024 [ 238.045168][ T8] usb 5-1: config 1 interface 0 altsetting 93 bulk endpoint 0x3 has invalid maxpacket 8 [ 238.071616][ T9721] loop0: detected capacity change from 0 to 64 [ 238.089181][ T8] usb 5-1: config 1 interface 0 altsetting 93 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 238.171747][ T8] usb 5-1: config 1 interface 0 has no altsetting 0 [ 238.218964][ T8] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 238.260444][ T8] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 238.282255][ T8] usb 5-1: SerialNumber: syz [ 238.299399][ T9726] netlink: 'syz.2.1232': attribute type 4 has an invalid length. [ 238.314832][ T9703] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 238.329315][ T9721] hfs: request for non-existent node 16777216 in B*Tree [ 238.331075][ T9703] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 238.382196][ T9721] hfs: request for non-existent node 16777216 in B*Tree [ 238.564672][ T9730] loop5: detected capacity change from 0 to 2048 [ 238.690941][ T9734] loop3: detected capacity change from 0 to 8 [ 238.803821][ T9734] SQUASHFS error: Failed to read block 0x260685: -5 [ 238.819087][ T8] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -71 [ 238.852200][ T9734] SQUASHFS error: Unable to read metadata cache entry [260685] [ 238.862556][ T9734] SQUASHFS error: Unable to read directory block [260685:0] [ 238.887204][ T8] usb 5-1: USB disconnect, device number 10 [ 238.963709][ T9740] loop2: detected capacity change from 0 to 128 [ 239.009527][ T9740] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256 [ 239.080284][ T9740] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 239.493686][ T5833] UDF-fs: error (device loop2): udf_read_inode: (ino 114) failed !bh [ 239.548949][ T5833] UDF-fs: error (device loop2): udf_read_inode: (ino 114) failed !bh [ 239.705335][ T9759] loop4: detected capacity change from 0 to 2048 [ 239.706856][ T29] audit: type=1326 audit(1739105435.074:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9760 comm="syz.5.1249" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f758df8cde9 code=0x0 [ 240.192207][ T9780] netlink: 'syz.1.1259': attribute type 1 has an invalid length. [ 240.207816][ T9780] netlink: 212408 bytes leftover after parsing attributes in process `syz.1.1259'. [ 240.262812][ T52] netdevsim netdevsim2 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 240.314537][ T9777] netlink: 4 bytes leftover after parsing attributes in process `syz.4.1256'. [ 240.489367][ T52] netdevsim netdevsim2 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 240.717697][ T52] netdevsim netdevsim2 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.037261][ T9795] UDPLite6: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 241.059550][ T52] netdevsim netdevsim2 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 241.161737][ T9781] loop3: detected capacity change from 0 to 32768 [ 241.172145][ T5892] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 241.238952][ T9781] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.1258 (9781) [ 241.323914][ T9781] BTRFS info (device loop3): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 241.352197][ T5892] usb 1-1: Using ep0 maxpacket: 32 [ 241.367871][ T9781] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 241.368668][ T5892] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 241.392138][ T9781] BTRFS info (device loop3): using free-space-tree [ 241.472165][ T5892] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 241.502102][ T5892] usb 1-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 241.580444][ T9798] loop5: detected capacity change from 0 to 4096 [ 241.587068][ T5892] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 241.639250][ T5892] usb 1-1: config 0 descriptor?? [ 241.656797][ T5892] hub 1-1:0.0: USB hub found [ 241.657598][ T9798] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 241.705407][ T54] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 241.717321][ T54] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 241.723405][ T52] bridge_slave_1: left allmulticast mode [ 241.733477][ T54] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 241.751598][ T54] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 241.763360][ T54] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 241.773886][ T54] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 241.808494][ T52] bridge_slave_1: left promiscuous mode [ 241.853076][ T5138] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 241.860971][ T5138] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 241.875006][ T5138] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 241.883543][ T5138] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 241.891534][ T5138] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 241.899256][ T5892] hub 1-1:0.0: 1 port detected [ 241.909189][ T52] bridge0: port 2(bridge_slave_1) entered disabled state [ 241.923714][ T5138] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 241.974093][ T9781] BTRFS error (device loop3): target device 3GK2ÚµÏ_«’Òš:S1îs™~o¿ç$Ü̧MÏ8•›Évº±_Ëôþ¿A¬·,JÛüØÝal—k2½9°:v»ÛÆv»±ý2]¡rìž0¶Ç}]¦…_3AlʽÏícNÌÏLVªJàf¹ýÿ'™ÞmÏXÐ7bÅ÷ßÚþÿJ8\)?Ñ:}¾ÚþŸŽ¤]ñûõ·ÿÿµÏëË^ÿw*÷ÿ7dúä‹ý~\±ï%üý;½ÿÃþÿ¬LÓß®ŽMù±»ÂØ®MWl“pÛ¿Lgö\+Õßþ~ „­mÿ{Ëßujÿ‘´´ÝÖÚ’ò+—/ŽÏÌdÙ`ƒ6J[}gB#¸ãÿgî,êËJóü÷?¦„3«¿_ÇÿÞòÕiüßIëõg#ñ˜”\š]ˆï•’ù•Ëåfǧ³ÓÙ¹CG::ÞuüX<Lî­ªëêNä¶ÿ72ý³íjéóîêù_åùªüDujÿÝ‘´ÔªùJÕE‡ßþWeºÿúµÒ÷7šÿßÿ<ò`ñµÔ?ëÔþí‘´´ÝÿÕ¦è is invalid! [ 242.018210][ T52] bridge_slave_0: left allmulticast mode [ 242.024435][ T52] bridge_slave_0: left promiscuous mode [ 242.030249][ T52] bridge0: port 1(bridge_slave_0) entered disabled state [ 242.186980][ T5832] BTRFS info (device loop3): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 242.228885][ T9784] loop1: detected capacity change from 0 to 32768 [ 242.333975][ T5892] usb 1-1: USB disconnect, device number 11 [ 242.568932][ T9796] loop4: detected capacity change from 0 to 32768 [ 243.131842][ T9796] bcachefs (loop4): starting version 1.7: mi_btree_bitmap opts=errors=continue,metadata_checksum=none,data_checksum=none,compression=lz4,nocow [ 243.221003][ T9796] bcachefs (loop4): initializing new filesystem [ 243.315026][ T9832] syz.5.1273 (9832): drop_caches: 2 [ 243.317666][ T9796] bcachefs (loop4): going read-write [ 243.446429][ T9796] bcachefs (loop4): marking superblocks [ 243.600987][ T9796] bcachefs (loop4): initializing freespace [ 243.666840][ T9796] bcachefs (loop4): done initializing freespace [ 243.744250][ T9796] bcachefs (loop4): reading snapshots table [ 243.750329][ T9796] bcachefs (loop4): reading snapshots done [ 243.841401][ T9796] bcachefs (loop4): done starting filesystem [ 244.016876][ T5138] Bluetooth: hci1: command tx timeout [ 244.169183][ T9796] syz.4.1267 (9796) used greatest stack depth: 11152 bytes left [ 244.226433][ T5849] bcachefs (loop4): shutting down [ 244.236397][ T5849] bcachefs (loop4): going read-only [ 244.242486][ T5849] bcachefs (loop4): finished waiting for writes to stop [ 244.270793][ T5849] bcachefs (loop4): flushing journal and stopping allocators, journal seq 3 [ 244.375950][ T5849] bcachefs (loop4): flushing journal and stopping allocators complete, journal seq 3 [ 244.398121][ T5892] usb 4-1: new high-speed USB device number 12 using dummy_hcd [ 244.458832][ T5849] bcachefs (loop4): clean shutdown complete, journal seq 4 [ 244.526220][ T5849] bcachefs (loop4): marking filesystem clean [ 244.607543][ T5892] usb 4-1: Using ep0 maxpacket: 8 [ 244.614815][ T5892] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 244.625385][ T5892] usb 4-1: New USB device found, idVendor=09da, idProduct=001a, bcdDevice= 0.00 [ 244.648589][ T5892] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 244.695070][ T5892] usb 4-1: config 0 descriptor?? [ 244.715231][ T5849] bcachefs (loop4): shutdown complete [ 244.748597][ T52] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 244.769014][ T52] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 244.780959][ T52] bond0 (unregistering): Released all slaves [ 245.141043][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.164691][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.171769][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.186821][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.207723][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.220089][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.227358][ T5892] a4tech 0003:09DA:001A.0011: unknown main item tag 0x0 [ 245.258261][ T5892] a4tech 0003:09DA:001A.0011: hidraw0: USB HID v0.00 Device [HID 09da:001a] on usb-dummy_hcd.3-1/input0 [ 245.419457][ T5892] usb 4-1: USB disconnect, device number 12 [ 245.748324][ T9889] loop5: detected capacity change from 0 to 2048 [ 245.769501][ T9889] NILFS (loop5): invalid segment: Inconsistency found [ 245.804383][ T9889] NILFS (loop5): trying rollback from an earlier position [ 245.932262][ T9889] NILFS (loop5): recovery complete [ 245.987822][ T9896] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 246.092168][ T54] Bluetooth: hci1: command tx timeout [ 246.191782][ T9813] chnl_net:caif_netlink_parms(): no params data found [ 246.569320][ T9813] bridge0: port 1(bridge_slave_0) entered blocking state [ 246.602336][ T9813] bridge0: port 1(bridge_slave_0) entered disabled state [ 246.609707][ T9813] bridge_slave_0: entered allmulticast mode [ 246.633966][ T9813] bridge_slave_0: entered promiscuous mode [ 246.658095][ T9813] bridge0: port 2(bridge_slave_1) entered blocking state [ 246.665436][ T9813] bridge0: port 2(bridge_slave_1) entered disabled state [ 246.672803][ T9813] bridge_slave_1: entered allmulticast mode [ 246.680318][ T9813] bridge_slave_1: entered promiscuous mode [ 246.792930][ T9813] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 246.825340][ T9813] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 246.951605][ T9813] team0: Port device team_slave_0 added [ 247.002190][ T9902] Bluetooth: hci1: Opcode 0x0c1a failed: -4 [ 247.002263][ T9813] team0: Port device team_slave_1 added [ 247.008168][ T9902] Bluetooth: hci1: Error when powering off device on rfkill (-4) [ 247.063497][ T9894] loop1: detected capacity change from 0 to 32768 [ 247.130852][ T9894] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 247.333138][ T52] hsr_slave_0: left promiscuous mode [ 247.386210][ T52] hsr_slave_1: left promiscuous mode [ 247.421094][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 247.470050][ T52] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 247.527840][ T52] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 247.548045][ T9894] XFS (loop1): Ending clean mount [ 247.560590][ T52] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 247.620523][ T9894] XFS (loop1): Quotacheck needed: Please wait. [ 247.809708][ T9894] XFS (loop1): Quotacheck: Done. [ 247.853759][ T52] veth1_macvtap: left promiscuous mode [ 247.860149][ T52] veth0_macvtap: left promiscuous mode [ 247.902455][ T52] veth1_vlan: left promiscuous mode [ 247.908255][ T52] veth0_vlan: left promiscuous mode [ 248.041886][ T9950] loop0: detected capacity change from 0 to 512 [ 248.077344][ T5834] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 248.179620][ T9950] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 248.260924][ T9950] ext4 filesystem being mounted at /233/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 248.333376][ T9950] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1302: corrupted inode contents [ 248.395991][ T9950] EXT4-fs error (device loop0): ext4_dirty_inode:6042: inode #2: comm syz.0.1302: mark_inode_dirty error [ 248.466505][ T9950] EXT4-fs error (device loop0): ext4_do_update_inode:5154: inode #2: comm syz.0.1302: corrupted inode contents [ 248.493370][ T9950] EXT4-fs error (device loop0): __ext4_ext_dirty:207: inode #2: comm syz.0.1302: mark_inode_dirty error [ 248.631230][ T46] usb 4-1: new high-speed USB device number 13 using dummy_hcd [ 248.644829][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 248.799625][ T46] usb 4-1: Using ep0 maxpacket: 8 [ 248.829978][ T46] usb 4-1: New USB device found, idVendor=12d1, idProduct=fae2, bcdDevice=70.8b [ 248.839889][ T46] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 248.848169][ T46] usb 4-1: Product: syz [ 248.876072][ T46] usb 4-1: Manufacturer: syz [ 248.880746][ T46] usb 4-1: SerialNumber: syz [ 248.896888][ T46] usb 4-1: config 0 descriptor?? [ 248.936566][ T46] option 4-1:0.0: GSM modem (1-port) converter detected [ 249.014340][ T5892] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 249.143819][ T5948] usb 4-1: USB disconnect, device number 13 [ 249.160555][ T5948] option 4-1:0.0: device disconnected [ 249.172499][ T5892] usb 2-1: Using ep0 maxpacket: 32 [ 249.183503][ T5892] usb 2-1: config 0 interface 0 has no altsetting 0 [ 249.193805][ T5892] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 249.223378][ T5892] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 249.232693][ T5892] usb 2-1: Product: syz [ 249.236897][ T5892] usb 2-1: Manufacturer: syz [ 249.241514][ T5892] usb 2-1: SerialNumber: syz [ 249.276136][ T5892] usb 2-1: config 0 descriptor?? [ 249.546070][ T9968] loop0: detected capacity change from 0 to 32768 [ 249.643341][ T9968] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 249.696320][ T5892] gs_usb 2-1:0.0: Configuring for 1 interfaces [ 249.767454][ T9968] XFS (loop0): Ending clean mount [ 249.782961][ T52] team0 (unregistering): Port device team_slave_1 removed [ 249.813703][ T9968] XFS (loop0): Quotacheck needed: Please wait. [ 249.907872][ T52] team0 (unregistering): Port device team_slave_0 removed [ 249.970581][ T9968] XFS (loop0): Quotacheck: Done. [ 250.149660][ T5828] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 250.741123][ T9813] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 250.749354][ T9813] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 250.788212][ T9813] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 250.859093][ T9813] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 250.887613][ T5892] usb 2-1: USB disconnect, device number 13 [ 250.912250][ T9813] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 251.028448][ T9813] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 251.221406][T10000] loop1: detected capacity change from 0 to 256 [ 251.390948][T10005] loop5: detected capacity change from 0 to 256 [ 251.533602][T10005] FAT-fs (loop5): Directory bread(block 64) failed [ 251.561674][ T9813] hsr_slave_0: entered promiscuous mode [ 251.562148][T10005] FAT-fs (loop5): Directory bread(block 65) failed [ 251.584848][T10009] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1323'. [ 251.589170][ T9813] hsr_slave_1: entered promiscuous mode [ 251.606046][T10005] FAT-fs (loop5): Directory bread(block 66) failed [ 251.622141][T10005] FAT-fs (loop5): Directory bread(block 67) failed [ 251.644665][ T9813] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 251.653479][ T46] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 251.658145][ T9813] Cannot create hsr debugfs directory [ 251.661282][T10005] FAT-fs (loop5): Directory bread(block 68) failed [ 251.681085][T10005] FAT-fs (loop5): Directory bread(block 69) failed [ 251.696849][T10005] FAT-fs (loop5): Directory bread(block 70) failed [ 251.753318][T10005] FAT-fs (loop5): Directory bread(block 71) failed [ 251.801467][T10005] FAT-fs (loop5): Directory bread(block 72) failed [ 251.847165][T10005] FAT-fs (loop5): Directory bread(block 73) failed [ 251.863497][ T46] usb 5-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.32 [ 251.883150][ T46] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 251.904048][ T46] usb 5-1: config 0 descriptor?? [ 251.928252][ T46] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 252.009656][T10005] netlink: 204 bytes leftover after parsing attributes in process `syz.5.1321'. [ 252.162183][ T46] gp8psk: usb in 128 operation failed. [ 252.194830][ T46] gp8psk: usb in 137 operation failed. [ 252.200358][ T46] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 252.237677][ T46] dvbdev: DVB: registering new adapter (Genpix SkyWalker-1 DVB-S receiver) [ 252.262430][ T46] usb 5-1: media controller created [ 252.349946][ T46] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 252.456773][ T46] gp8psk_fe: Frontend attached [ 252.461623][ T46] usb 5-1: DVB: registering adapter 1 frontend 0 (Genpix DVB-S)... [ 252.481743][T10034] loop5: detected capacity change from 0 to 1024 [ 252.525114][ T46] dvbdev: dvb_create_media_entity: media entity 'Genpix DVB-S' registered. [ 252.757526][ T9813] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 252.805583][ T9813] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 252.851800][ T9813] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 252.865777][ T46] gp8psk: usb in 137 operation failed. [ 252.881600][ T46] dvb-usb: Genpix SkyWalker-1 DVB-S receiver successfully initialized and connected. [ 252.921644][ T46] gp8psk: found Genpix USB device pID = 203 (hex) [ 252.958437][ T9813] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 252.970562][ T46] usb 5-1: USB disconnect, device number 11 [ 253.289841][ T46] dvb-usb: Genpix SkyWalker-1 DVB-S receiver successfully deinitialized and disconnected. [ 253.334169][T10056] loop5: detected capacity change from 0 to 64 [ 253.370089][ T9813] 8021q: adding VLAN 0 to HW filter on device bond0 [ 253.453310][T10062] loop3: detected capacity change from 0 to 256 [ 253.479641][ T9813] 8021q: adding VLAN 0 to HW filter on device team0 [ 253.504884][T10062] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001034b, chksum : 0x6322ccb6, utbl_chksum : 0xe619d30d) [ 253.541060][ T1093] bridge0: port 1(bridge_slave_0) entered blocking state [ 253.548249][ T1093] bridge0: port 1(bridge_slave_0) entered forwarding state [ 253.628933][ T1093] bridge0: port 2(bridge_slave_1) entered blocking state [ 253.636136][ T1093] bridge0: port 2(bridge_slave_1) entered forwarding state [ 253.685412][ T5842] Trying to free block not in datazone [ 253.758538][ T5842] Trying to free block not in datazone [ 253.828715][ T5842] Trying to free block not in datazone [ 253.888434][ T5842] Trying to free block not in datazone [ 253.904018][ T5842] Trying to free block not in datazone [ 253.940429][ T5842] Trying to free block not in datazone [ 253.967213][ T5842] minix_free_inode: bit 6 already cleared [ 254.010718][ T5842] Trying to free block not in datazone [ 254.014694][ T9] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 254.039842][ T5842] minix_free_inode: bit 7 already cleared [ 254.152923][T10085] Attempt to restore checkpoint with obsolete wellknown handles [ 254.197921][ T9] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 254.238529][ T9813] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 254.252287][ T9] usb 5-1: New USB device found, idVendor=056a, idProduct=0301, bcdDevice= 0.00 [ 254.261388][ T9] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 254.335302][ T9] usb 5-1: config 0 descriptor?? [ 254.769263][ T9] wacom 0003:056A:0301.0012: Unknown device_type for 'HID 056a:0301'. Assuming pen. [ 254.822779][ T9] wacom 0003:056A:0301.0012: hidraw0: USB HID v10.00 Device [HID 056a:0301] on usb-dummy_hcd.4-1/input0 [ 254.897055][ T9] input: Wacom Bamboo One M Pen as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:056A:0301.0012/input/input14 [ 255.018952][ T9] usb 5-1: USB disconnect, device number 12 [ 255.035058][ T9813] veth0_vlan: entered promiscuous mode [ 255.078243][ T9813] veth1_vlan: entered promiscuous mode [ 255.172732][T10117] loop3: detected capacity change from 0 to 512 [ 255.229789][ T9813] veth0_macvtap: entered promiscuous mode [ 255.247593][T10117] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 255.264165][T10117] ext4 filesystem being mounted at /230/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 255.284509][ T9813] veth1_macvtap: entered promiscuous mode [ 255.301071][ T1289] ieee802154 phy1 wpan1: encryption failed: -22 [ 255.390827][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 255.426213][T10102] loop5: detected capacity change from 0 to 32768 [ 255.445319][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.492099][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 255.531465][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.571625][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 255.621846][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.653616][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 255.682144][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.696427][T10128] loop4: detected capacity change from 0 to 256 [ 255.710433][ T9813] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 255.733735][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 255.792867][T10128] exfat: Deprecated parameter 'utf8' [ 255.801365][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 255.842094][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.843081][T10128] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 255.884118][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 255.940827][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 255.992142][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.004666][T10135] loop1: detected capacity change from 0 to 128 [ 256.044355][T10135] FAT-fs (loop1): bogus number of reserved sectors [ 256.050918][T10135] FAT-fs (loop1): This doesn't look like a DOS 1.x volume; DOS 2.x BPB is non-zero [ 256.096956][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.106871][T10135] FAT-fs (loop1): Can't find a valid FAT filesystem [ 256.162721][T10135] program syz.1.1362 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 256.183060][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.212098][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.232116][ T9813] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 256.264091][T10141] program syz.1.1362 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 256.282537][ T9813] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 256.294400][ T9813] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 256.314069][T10141] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0 [ 256.318679][ T9813] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.331564][ T9813] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.341618][ T9813] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.351058][ T9813] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 256.667760][ T8716] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 256.706325][ T8716] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 256.940594][ T8716] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 256.973300][T10109] loop0: detected capacity change from 0 to 32768 [ 256.982868][ T8716] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 257.018187][T10156] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 257.125801][T10109] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz" [ 257.195381][T10109] gfs2: fsid=syz:syz: Now mounting FS (format 1801)... [ 257.252659][T10109] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms [ 257.494626][T10109] gfs2: fsid=syz:syz.s: first mount done, others may mount [ 257.705768][T10173] ALSA: seq fatal error: cannot create timer (-19) [ 258.488739][T10193] loop3: detected capacity change from 0 to 256 [ 258.710840][T10178] loop6: detected capacity change from 0 to 131072 [ 258.767966][T10178] F2FS-fs (loop6): invalid crc value [ 258.798550][T10178] F2FS-fs (loop6): Found nat_bits in checkpoint [ 258.861263][T10178] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4 [ 259.545484][T10216] loop1: detected capacity change from 0 to 2048 [ 259.647132][T10216] Dev loop1: unable to read partition block 206864252928 [ 259.665372][T10221] loop4: detected capacity change from 0 to 512 [ 259.697625][T10216] loop1: RDSK (538708992) unable to read partition table [ 259.752314][T10216] loop1: partition table beyond EOD, truncated [ 259.758557][T10216] loop_reread_partitions: partition scan of loop1 () failed (rc=-5) [ 259.759378][T10221] EXT4-fs (loop4): mounting ext3 file system using the ext4 subsystem [ 259.896285][T10221] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8042c119, mo2=0002] [ 259.921560][ T5200] Dev loop1: unable to read partition block 206864252928 [ 259.929286][T10228] netlink: 16186 bytes leftover after parsing attributes in process `syz.5.1388'. [ 259.953476][ T5200] loop1: RDSK (538708992) unable to read partition table [ 259.960968][ T5200] loop1: partition table beyond EOD, truncated [ 260.023758][T10221] EXT4-fs error (device loop4): ext4_xattr_ibody_find:2240: inode #15: comm syz.4.1387: corrupted in-inode xattr: e_value size too large [ 260.043565][T10236] loop0: detected capacity change from 0 to 128 [ 260.119985][T10221] EXT4-fs error (device loop4): ext4_orphan_get:1394: comm syz.4.1387: couldn't read orphan inode 15 (err -117) [ 260.181881][T10221] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 260.265626][T10241] loop5: detected capacity change from 0 to 256 [ 260.293006][T10241] exfat: Deprecated parameter 'namecase' [ 260.353277][T10233] loop3: detected capacity change from 0 to 4096 [ 260.358378][T10241] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xe3f33698, utbl_chksum : 0xe619d30d) [ 260.379546][T10240] loop1: detected capacity change from 0 to 2048 [ 260.475102][T10241] exFAT-fs (loop5): start_clu is invalid cluster(0x0) [ 260.496337][T10240] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 260.520510][ T29] audit: type=1800 audit(1739105456.890:114): pid=10241 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1392" name="file1" dev="loop5" ino=35 res=0 errno=0 [ 260.585619][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 260.816741][T10233] overlayfs: upper fs does not support tmpfile. [ 260.864312][T10233] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 261.929601][T10288] sg_read: process 559 (syz.0.1405) changed security contexts after opening file descriptor, this is not allowed. [ 262.884722][ T5948] kernel write not supported for file /572/attr/keycreate (pid: 5948 comm: kworker/0:6) [ 263.104859][T10281] loop3: detected capacity change from 0 to 32768 [ 263.162841][T10322] loop1: detected capacity change from 0 to 512 [ 263.169934][T10322] EXT4-fs: Ignoring removed nobh option [ 263.226477][ T29] audit: type=1804 audit(1739105459.590:115): pid=10281 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.3.1404" name="/newroot/242/file0/bus" dev="loop3" ino=7 res=1 errno=0 [ 263.316946][T10322] EXT4-fs (loop1): Cannot turn on journaled quota: type 0: error -13 [ 263.356709][T10295] loop4: detected capacity change from 0 to 32768 [ 263.392377][T10322] EXT4-fs error (device loop1): ext4_clear_blocks:876: inode #13: comm syz.1.1416: attempt to clear invalid blocks 2 len 1 [ 263.518567][T10322] EXT4-fs (loop1): Remounting filesystem read-only [ 263.528248][T10295] ocfs2: Slot 0 on device (7,4) was already allocated to this node! [ 263.547070][T10322] EXT4-fs (loop1): 1 truncate cleaned up [ 263.554136][T10322] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 263.625912][T10295] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 263.744010][ T5834] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 263.815943][T10332] loop5: detected capacity change from 0 to 4096 [ 263.938157][ T5849] ocfs2: Unmounting device (7,4) on (node local) [ 264.649166][T10359] loop4: detected capacity change from 0 to 256 [ 264.709094][T10359] exfat: Deprecated parameter 'namecase' [ 264.752106][T10359] exfat: Deprecated parameter 'utf8' [ 264.757492][T10359] exfat: Deprecated parameter 'namecase' [ 264.863113][T10359] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xdf1ac56c, utbl_chksum : 0xe619d30d) [ 265.417256][T10385] loop1: detected capacity change from 0 to 256 [ 265.464924][T10385] exfat: Deprecated parameter 'namecase' [ 265.471067][T10385] exfat: Deprecated parameter 'utf8' [ 265.496782][T10382] loop4: detected capacity change from 0 to 4096 [ 265.531289][T10392] loop5: detected capacity change from 0 to 512 [ 265.560140][T10385] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001ff53, chksum : 0xd72bb7d8, utbl_chksum : 0xe619d30d) [ 265.602629][T10382] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 265.617647][T10392] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 265.679872][T10382] ntfs3(loop4): ino=b, mi_enum_attr [ 265.729641][T10382] ntfs3(loop4): Failed to load $Extend (-22). [ 265.775051][T10392] EXT4-fs (loop5): 1 truncate cleaned up [ 265.799239][T10382] ntfs3(loop4): Failed to initialize $Extend. [ 265.835468][T10392] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 265.990911][T10382] ntfs3(loop4): ino=0, "file0" failed to extend initialized size to 1000f4. [ 266.014016][T10401] loop0: detected capacity change from 0 to 16 [ 266.066596][T10401] erofs (device loop0): mounted with root inode @ nid 36. [ 266.273720][ T5842] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 266.478703][T10409] loop0: detected capacity change from 0 to 256 [ 266.672683][ T46] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 266.892631][ T46] usb 5-1: New USB device found, idVendor=046d, idProduct=0870, bcdDevice=61.47 [ 266.901769][ T46] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 266.980884][ T46] usb 5-1: config 0 descriptor?? [ 266.999736][ T46] gspca_main: STV06xx-2.14.0 probing 046d:0870 [ 267.013495][T10386] loop6: detected capacity change from 0 to 32768 [ 267.149767][T10399] loop3: detected capacity change from 0 to 32768 [ 267.198791][T10386] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 267.225682][T10399] [ 267.225682][T10399] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 267.225682][T10399] [ 267.283722][T10428] loop0: detected capacity change from 0 to 164 [ 267.375141][T10428] rock: corrupted directory entry. extent=28, offset=0, size=16777216 [ 267.500298][ T8716] read_mapping_page failed! [ 267.533720][ T8716] ERROR: (device loop3): txCommit: [ 267.533720][ T8716] [ 267.564240][T10386] XFS (loop6): Ending clean mount [ 267.569972][ T8716] jfs_write_inode: jfs_commit_inode failed! [ 267.603670][ T5832] [ 267.603670][ T5832] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 267.603670][ T5832] [ 267.640286][ T5832] [ 267.640286][ T5832] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 267.640286][ T5832] [ 267.649495][T10435] loop1: detected capacity change from 0 to 1024 [ 267.778378][ T29] audit: type=1804 audit(1739105464.150:116): pid=10435 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.1458" name="/newroot/238/file2/file1" dev="loop1" ino=25 res=1 errno=0 [ 267.820470][ T46] usb 5-1: USB disconnect, device number 13 [ 267.943507][ T9813] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 267.986684][T10437] loop0: detected capacity change from 0 to 4096 [ 268.148420][T10440] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 268.461341][T10445] loop1: detected capacity change from 0 to 4096 [ 268.538961][T10445] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 268.591431][T10451] loop4: detected capacity change from 0 to 64 [ 268.774896][ T29] audit: type=1326 audit(1739105465.150:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10454 comm="syz.0.1464" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f1de998cde9 code=0x0 [ 268.950838][T10462] loop5: detected capacity change from 0 to 2048 [ 268.968901][T10462] ext4: Unknown parameter 'dont_measure' [ 269.794124][T10485] loop3: detected capacity change from 0 to 2048 [ 269.836942][T10489] loop4: detected capacity change from 0 to 1024 [ 269.864508][T10485] UDF-fs: warning (device loop3): udf_load_vrs: No anchor found [ 269.891916][T10489] EXT4-fs: Ignoring removed orlov option [ 269.908474][T10485] UDF-fs: Scanning with blocksize 512 failed [ 269.915090][T10489] EXT4-fs (loop4): ext4_check_descriptors: Checksum for group 0 failed (23427!=20869) [ 269.962318][T10489] EXT4-fs (loop4): group descriptors corrupted! [ 270.022185][T10485] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 270.114631][T10502] loop1: detected capacity change from 0 to 128 [ 270.225054][T10502] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 270.292442][T10502] ext4 filesystem being mounted at /244/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 270.567681][ T5834] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 270.740862][T10523] loop1: detected capacity change from 0 to 128 [ 270.824997][ T29] audit: type=1800 audit(1739105467.180:118): pid=10523 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.1492" name="file1" dev="loop1" ino=42 res=0 errno=0 [ 272.200993][T10566] loop0: detected capacity change from 0 to 64 [ 272.713950][T10555] loop6: detected capacity change from 0 to 131072 [ 272.797715][T10555] F2FS-fs (loop6): invalid crc value [ 272.847788][T10555] F2FS-fs (loop6): Found nat_bits in checkpoint [ 272.931884][T10555] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e4 [ 273.243493][T10597] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1522'. [ 273.661600][T10613] loop5: detected capacity change from 0 to 512 [ 273.781305][T10613] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 273.831197][T10613] EXT4-fs (loop5): mounting ext2 file system using the ext4 subsystem [ 273.952643][T10613] EXT4-fs (loop5): warning: checktime reached, running e2fsck is recommended [ 273.993268][T10613] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a042c01c, mo2=0002] [ 274.051513][T10613] System zones: 0-2, 18-18, 34-34 [ 274.163712][T10613] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1145: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 274.288095][T10613] EXT4-fs (loop5): 1 truncate cleaned up [ 274.320090][T10613] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 274.440805][T10636] loop4: detected capacity change from 0 to 1024 [ 274.481639][ T29] audit: type=1800 audit(1739105470.850:119): pid=10613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1528" name="file1" dev="loop5" ino=15 res=0 errno=0 [ 274.504054][T10636] EXT4-fs: Ignoring removed nobh option [ 274.519981][T10636] EXT4-fs: Ignoring removed bh option [ 274.606457][ T29] audit: type=1800 audit(1739105470.860:120): pid=10613 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1528" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 274.650708][T10636] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 274.783592][T10642] loop3: detected capacity change from 0 to 16 [ 274.802331][ T5842] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 274.841128][T10642] erofs (device loop3): mounted with root inode @ nid 36. [ 275.148776][T10648] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1535'. [ 275.197041][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 275.215893][T10618] loop1: detected capacity change from 0 to 32768 [ 275.278296][ T5832] erofs (device loop3): bogus dirent @ nid 46 [ 275.397000][ T5832] erofs (device loop3): invalid de[0].nameoff 0 @ nid 89 [ 275.444946][ T5832] erofs (device loop3): invalid de[0].nameoff 0 @ nid 89 [ 275.493025][T10654] sp0: Synchronizing with TNC [ 275.879819][T10660] loop0: detected capacity change from 0 to 4096 [ 275.921864][T10660] ntfs3(loop0): Different NTFS sector size (1024) and media sector size (512). [ 276.255954][T10682] loop3: detected capacity change from 0 to 1024 [ 276.331082][T10684] loop4: detected capacity change from 0 to 16 [ 276.374958][T10684] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 276.470423][T10684] MTD: Attempt to mount non-MTD device "/dev/nbd4" [ 276.491896][ T2999] hfsplus: b-tree write err: -5, ino 4 [ 276.509956][T10684] cramfs: wrong magic [ 277.726322][T10723] can0: slcan on ttyS3. [ 277.914101][T10731] can0 (unregistered): slcan off ttyS3. [ 278.018190][T10736] loop1: detected capacity change from 0 to 64 [ 278.389061][T10745] loop0: detected capacity change from 0 to 512 [ 278.556738][T10745] EXT4-fs warning (device loop0): dx_probe:878: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 278.655731][T10745] EXT4-fs warning (device loop0): dx_probe:881: Enable large directory feature to access it [ 278.736571][T10745] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.1566: Corrupt directory, running e2fsck is recommended [ 278.862143][T10745] EXT4-fs (loop0): Cannot turn on journaled quota: type 1: error -117 [ 278.871022][T10745] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2240: inode #15: comm syz.0.1566: corrupted in-inode xattr: invalid ea_ino [ 278.965844][T10745] EXT4-fs (loop0): Remounting filesystem read-only [ 278.989685][T10745] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 279.200847][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 279.516561][T10797] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 280.668696][T10842] loop4: detected capacity change from 0 to 16 [ 280.767347][T10842] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 280.869775][T10847] loop3: detected capacity change from 0 to 2048 [ 280.912994][T10847] EXT4-fs: Ignoring removed nomblk_io_submit option [ 280.963984][T10847] EXT4-fs: Ignoring removed nobh option [ 281.008022][T10847] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 281.047484][T10804] loop1: detected capacity change from 0 to 32768 [ 281.062157][T10804] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.1586 (10804) [ 281.114156][T10847] EXT4-fs error (device loop3): ext4_check_all_de:656: inode #12: block 5: comm syz.3.1600: bad entry in directory: directory entry overrun - offset=0, inode=13, rec_len=7952, size=124 fake=0 [ 281.152773][T10804] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 281.221843][T10804] BTRFS info (device loop1): using sha256 (sha256-ni) checksum algorithm [ 281.293337][T10847] EXT4-fs (loop3): Remounting filesystem read-only [ 281.322236][T10804] BTRFS info (device loop1): using free-space-tree [ 281.427769][ T5832] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.815846][T10804] BTRFS info (device loop1): balance: start -susage=0..4076,limit=1,limit=1..0 [ 281.838696][T10804] BTRFS info (device loop1): relocating block group 1048576 flags system [ 281.877576][T10894] BTRFS info (device loop1): setting incompat feature flag for SIMPLE_QUOTA (0x10000) [ 281.982161][ T8] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 282.150001][T10804] BTRFS info (device loop1): balance: ended with status: 0 [ 282.162218][ T8] usb 1-1: Using ep0 maxpacket: 8 [ 282.181009][ T8] usb 1-1: config 0 has no interfaces? [ 282.209694][ T8] usb 1-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=c3.de [ 282.235707][ T8] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 282.269353][ T8] usb 1-1: Product: syz [ 282.282436][ T8] usb 1-1: Manufacturer: syz [ 282.288359][ T8] usb 1-1: SerialNumber: syz [ 282.308824][ T8] usb 1-1: config 0 descriptor?? [ 282.468921][T10914] loop3: detected capacity change from 0 to 128 [ 282.487312][T10914] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 282.551550][ T8] usb 1-1: USB disconnect, device number 12 [ 282.933859][ T5834] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 283.044204][T10905] loop6: detected capacity change from 0 to 32768 [ 283.387407][T10905] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 283.816231][T10905] ocfs2: Unmounting device (7,6) on (node local) [ 284.229950][T10963] loop3: detected capacity change from 0 to 2048 [ 284.328754][T10963] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 284.598361][ T29] audit: type=1326 audit(1739105480.970:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 284.761099][ T29] audit: type=1326 audit(1739105480.970:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 284.871760][ T29] audit: type=1326 audit(1739105480.990:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 284.963915][ T29] audit: type=1326 audit(1739105480.990:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 285.095787][ T29] audit: type=1326 audit(1739105480.990:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 285.180992][ T29] audit: type=1326 audit(1739105481.000:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 285.253867][ T29] audit: type=1326 audit(1739105481.000:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 285.391456][ T29] audit: type=1326 audit(1739105481.010:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f758df83da7 code=0x7ffc0000 [ 285.415748][ T29] audit: type=1326 audit(1739105481.010:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7f758df28fb9 code=0x7ffc0000 [ 285.441019][ T29] audit: type=1326 audit(1739105481.010:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10977 comm="syz.5.1634" exe="/root/syz-executor" sig=0 arch=c000003e syscall=42 compat=0 ip=0x7f758df8cde9 code=0x7ffc0000 [ 285.871093][T11011] loop6: detected capacity change from 0 to 2048 [ 286.045793][T10968] loop1: detected capacity change from 0 to 32768 [ 286.055514][T11011] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 286.261398][T11011] EXT4-fs error (device loop6): ext4_mb_generate_buddy:1220: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 286.333793][T11011] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 4 with max blocks 242 with error 28 [ 286.343800][T11024] EXT4-fs (loop6): Delayed block allocation failed for inode 15 at logical offset 0 with max blocks 1 with error 28 [ 286.346431][T11011] EXT4-fs (loop6): This should not happen!! Data will be lost [ 286.346431][T11011] [ 286.370862][T11011] EXT4-fs (loop6): Total free blocks count 0 [ 286.377655][T11011] EXT4-fs (loop6): Free/Dirty block details [ 286.384623][T11011] EXT4-fs (loop6): free_blocks=66060288 [ 286.390265][T11011] EXT4-fs (loop6): dirty_blocks=256 [ 286.438963][T11024] EXT4-fs (loop6): This should not happen!! Data will be lost [ 286.438963][T11024] [ 286.469772][T11011] EXT4-fs (loop6): Block reservation details [ 286.852777][T11032] loop5: detected capacity change from 0 to 256 [ 286.992095][T11032] exFAT-fs (loop5): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 287.145153][T11034] loop4: detected capacity change from 0 to 128 [ 287.174002][T11032] exFAT-fs (loop5): error, invalid access to FAT (entry 0xffffffff) [ 287.201954][T11034] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 287.204581][T11032] exFAT-fs (loop5): Filesystem has been set read-only [ 287.258955][T11034] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 287.337481][T11012] loop0: detected capacity change from 0 to 32768 [ 287.346574][T11023] loop3: detected capacity change from 0 to 40427 [ 287.403841][T11023] F2FS-fs (loop3): build fault injection attr: rate: 690, type: 0x1fffff [ 287.442191][T11023] F2FS-fs (loop3): Image doesn't support compression [ 287.448791][T11012] XFS (loop0): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 287.455202][T11023] F2FS-fs (loop3): invalid crc value [ 287.466370][T11045] loop6: detected capacity change from 0 to 8 [ 287.491574][T11023] F2FS-fs (loop3): Found nat_bits in checkpoint [ 287.623559][T11023] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 287.724015][ T9813] SQUASHFS error: Unknown inode type 0 in squashfs_iget! [ 287.740112][ T9813] SQUASHFS error: Unknown inode type 0 in squashfs_iget! [ 287.762400][T11012] XFS (loop0): Ending clean mount [ 287.774123][T11057] loop5: detected capacity change from 0 to 1024 [ 287.791500][T11057] EXT4-fs: Ignoring removed orlov option [ 287.819736][T11023] F2FS-fs (loop3): inject slab alloc in f2fs_kmem_cache_alloc of __vfs_getxattr+0x435/0x470 [ 287.867914][T11057] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 287.887215][ T46] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 287.919312][T11023] syz.3.1647: attempt to access beyond end of device [ 287.919312][T11023] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 287.995594][T11023] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 288.018301][T11023] F2FS-fs (loop3): Stopped filesystem due to reason: 3 [ 288.069330][ T46] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 288.092084][ T46] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 288.111449][ T46] usb 2-1: config 0 descriptor?? [ 288.114033][ T5828] XFS (loop0): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 288.149053][ T5842] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 288.346815][ T46] [drm] vendor descriptor length:6 data:06 5f 00 00 00 00 00 00 00 00 00 [ 288.400153][ T46] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 288.428322][ T35] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 288.602794][ T46] [drm] Initialized udl 0.0.1 for 2-1:0.0 on minor 2 [ 288.609628][ T46] [drm] Initialized udl on minor 2 [ 288.764875][ T35] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.009046][ T46] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 1 failed err ffffffb9 [ 289.085444][ T46] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 289.106856][ T35] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.134364][ T46] usb 2-1: USB disconnect, device number 14 [ 289.172315][ T969] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffed [ 289.223461][ T969] udl 2-1:0.0: [drm] Cannot find any crtc or sizes [ 289.467179][ T35] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 289.860069][ T35] bridge_slave_1: left allmulticast mode [ 289.877058][ T35] bridge_slave_1: left promiscuous mode [ 289.912757][ T35] bridge0: port 2(bridge_slave_1) entered disabled state [ 289.933388][ T5138] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 289.947697][ T5138] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 289.962552][ T5138] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 289.986397][ T5138] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 290.000288][ T5138] Bluetooth: hci1: unexpected cc 0x0c25 length: 249 > 3 [ 290.008973][ T35] bridge_slave_0: left allmulticast mode [ 290.015253][ T5138] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 290.025975][ T35] bridge_slave_0: left promiscuous mode [ 290.082445][ T35] bridge0: port 1(bridge_slave_0) entered disabled state [ 290.402987][T11075] loop5: detected capacity change from 0 to 32768 [ 291.600365][ T35] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 291.622532][ T35] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 291.643491][ T35] bond0 (unregistering): Released all slaves [ 291.706493][T11123] loop0: detected capacity change from 0 to 1024 [ 291.834691][T11123] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 291.956821][T11130] loop4: detected capacity change from 0 to 2048 [ 292.075850][T11130] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 292.093771][ T5138] Bluetooth: hci1: command tx timeout [ 292.133893][T11130] ext4 filesystem being mounted at /272/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 292.175783][ T5828] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.188756][T11134] iommufd_mock iommufd_mock0: Adding to iommu group 0 [ 292.261513][ T29] kauditd_printk_skb: 4 callbacks suppressed [ 292.261537][ T29] audit: type=1800 audit(1739105488.630:135): pid=11130 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1682" name="file0" dev="loop4" ino=13 res=0 errno=0 [ 292.288927][T11130] fs-verity: sha512 using implementation "sha512-avx2" [ 292.422403][T11130] fs-verity (loop4, inode 13): Error -22 reading file data [ 292.441872][T11130] fs-verity (loop4, inode 13): Error -22 building Merkle tree [ 292.604085][ T5849] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.614916][T11144] netlink: 9286 bytes leftover after parsing attributes in process `syz.3.1686'. [ 293.320335][ T35] hsr_slave_0: left promiscuous mode [ 293.352415][ T35] hsr_slave_1: left promiscuous mode [ 293.376856][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 293.432913][ T35] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 293.451847][ T35] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 293.491625][ T35] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 293.570389][ T35] veth1_macvtap: left promiscuous mode [ 293.613024][ T35] veth0_macvtap: left promiscuous mode [ 293.618704][ T35] veth1_vlan: left promiscuous mode [ 293.643600][ T35] veth0_vlan: left promiscuous mode [ 294.123201][T11190] loop3: detected capacity change from 0 to 1024 [ 294.172892][ T5138] Bluetooth: hci1: command tx timeout [ 294.190453][T11190] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 399.281960][ C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks: [ 399.288968][ C1] rcu: 0-...!: (1 GPs behind) idle=db6c/1/0x4000000000000000 softirq=40638/40639 fqs=1 [ 399.300957][ C1] rcu: (detected by 1, t=10506 jiffies, g=37969, q=262 ncpus=2) [ 399.308695][ C1] Sending NMI from CPU 1 to CPUs 0: [ 399.308729][ C0] NMI backtrace for cpu 0 [ 399.308744][ C0] CPU: 0 UID: 0 PID: 11190 Comm: syz.3.1703 Not tainted 6.14.0-rc1-syzkaller-00235-g9946eaf552b1 #0 [ 399.308769][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 399.308784][ C0] RIP: 0010:srso_alias_safe_ret+0x5/0x7 [ 399.308825][ C0] Code: cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc cc 48 8d 64 24 08 cc e8 f4 ff ff ff 0f 0b cc cc cc cc cc cc cc cc cc cc cc cc cc [ 399.308845][ C0] RSP: 0018:ffffc90000007d00 EFLAGS: 00000006 [ 399.308865][ C0] RAX: ffffffff8bf1c486 RBX: 0000000000000001 RCX: ffff88803538da00 [ 399.308882][ C0] RDX: 0000000000010000 RSI: ffff88802a4e4340 RDI: 0000000000000001 [ 399.308897][ C0] RBP: dffffc0000000000 R08: ffffffff8bf1c478 R09: 1ffffffff2036b8e [ 399.308915][ C0] R10: dffffc0000000000 R11: fffffbfff2036b8f R12: 1ffff1100549c868 [ 399.308932][ C0] R13: ffff88802a4e4340 R14: ffff8880b862c650 R15: ffff8880b862c500 [ 399.308953][ C0] FS: 00007f25333416c0(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 399.308973][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 399.308988][ C0] CR2: 0000001b30315ff8 CR3: 0000000035266000 CR4: 0000000000350ef0 [ 399.309006][ C0] Call Trace: [ 399.309015][ C0] [ 399.309025][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 399.309053][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 399.309087][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 399.309113][ C0] ? nmi_handle+0x2a/0x5a0 [ 399.309157][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 399.309185][ C0] ? nmi_handle+0x151/0x5a0 [ 399.309219][ C0] ? nmi_handle+0x2a/0x5a0 [ 399.309254][ C0] ? srso_alias_safe_ret+0x5/0x7 [ 399.309288][ C0] ? default_do_nmi+0x63/0x160 [ 399.309313][ C0] ? exc_nmi+0x123/0x1f0 [ 399.309335][ C0] ? end_repeat_nmi+0xf/0x53 [ 399.309370][ C0] ? timerqueue_del+0x48/0x100 [ 399.309391][ C0] ? timerqueue_del+0x56/0x100 [ 399.309414][ C0] ? srso_alias_safe_ret+0x5/0x7 [ 399.309449][ C0] ? srso_alias_safe_ret+0x5/0x7 [ 399.309495][ C0] ? srso_alias_safe_ret+0x5/0x7 [ 399.309530][ C0] [ 399.309537][ C0] [ 399.309544][ C0] timerqueue_del+0x56/0x100 [ 399.309569][ C0] __hrtimer_run_queues+0x3d0/0xd30 [ 399.309623][ C0] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 399.309658][ C0] ? handle_softirqs+0x7e0/0x9b0 [ 399.309683][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.309719][ C0] ? ktime_get_update_offsets_now+0x38e/0x3b0 [ 399.309754][ C0] hrtimer_interrupt+0x403/0xa40 [ 399.309805][ C0] __sysvec_apic_timer_interrupt+0x112/0x420 [ 399.309843][ C0] sysvec_apic_timer_interrupt+0xa1/0xc0 [ 399.309873][ C0] [ 399.309881][ C0] [ 399.309889][ C0] asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 399.309923][ C0] RIP: 0010:lock_acquire+0x264/0x550 [ 399.309954][ C0] Code: 2b 00 74 08 4c 89 f7 e8 5a 3d 8b 00 f6 44 24 61 02 0f 85 85 01 00 00 41 f7 c7 00 02 00 00 74 01 fb 48 c7 44 24 40 0e 36 e0 45 <4b> c7 44 25 00 00 00 00 00 43 c7 44 25 09 00 00 00 00 43 c7 44 25 [ 399.309972][ C0] RSP: 0018:ffffc900049673e0 EFLAGS: 00000206 [ 399.309992][ C0] RAX: 0000000000000001 RBX: 1ffff9200092ce88 RCX: ffff88803538e4e8 [ 399.310008][ C0] RDX: dffffc0000000000 RSI: ffffffff8c0ab8e0 RDI: ffffffff8c608b40 [ 399.310025][ C0] RBP: ffffc90004967528 R08: ffffffff942f9a0f R09: 1ffffffff285f341 [ 399.310043][ C0] R10: dffffc0000000000 R11: fffffbfff285f342 R12: 1ffff9200092ce84 [ 399.310060][ C0] R13: dffffc0000000000 R14: ffffc90004967440 R15: 0000000000000246 [ 399.310088][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310127][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 399.310162][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310196][ C0] ? validate_chain+0x15c0/0x5920 [ 399.310218][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310260][ C0] fs_reclaim_acquire+0x88/0x130 [ 399.310291][ C0] ? __kmalloc_cache_noprof+0x41/0x390 [ 399.310317][ C0] __kmalloc_cache_noprof+0x41/0x390 [ 399.310342][ C0] ? udf_fiiter_find_entry+0x147/0x5e0 [ 399.310380][ C0] udf_fiiter_find_entry+0x147/0x5e0 [ 399.310415][ C0] ? __pfx_validate_chain+0x10/0x10 [ 399.310443][ C0] udf_rename+0x18b/0xf40 [ 399.310490][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310525][ C0] ? register_lock_class+0x102/0x980 [ 399.310558][ C0] ? __pfx_udf_rename+0x10/0x10 [ 399.310595][ C0] ? __pfx_register_lock_class+0x10/0x10 [ 399.310629][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310664][ C0] ? mark_lock+0x9a/0x360 [ 399.310699][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310734][ C0] ? __lock_acquire+0x1397/0x2100 [ 399.310777][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310821][ C0] ? __pfx___might_resched+0x10/0x10 [ 399.310859][ C0] ? down_write_nested+0x195/0x220 [ 399.310883][ C0] ? __pfx_down_write_nested+0x10/0x10 [ 399.310907][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 399.310935][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.310971][ C0] ? __pfx_udf_rename+0x10/0x10 [ 399.311005][ C0] vfs_rename+0xbdd/0xf00 [ 399.311050][ C0] ? __pfx_vfs_rename+0x10/0x10 [ 399.311089][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.311124][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.311164][ C0] do_renameat2+0xd94/0x13f0 [ 399.311200][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.311252][ C0] ? __pfx_do_renameat2+0x10/0x10 [ 399.311291][ C0] ? __virt_addr_valid+0x183/0x530 [ 399.311326][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.311363][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.311399][ C0] ? __check_object_size+0x47a/0x730 [ 399.311425][ C0] ? srso_alias_return_thunk+0x5/0xfbef5 [ 399.311472][ C0] ? getname_flags+0x1e3/0x540 [ 399.311496][ C0] ? do_syscall_64+0x100/0x230 [ 399.311530][ C0] __x64_sys_renameat2+0xce/0xe0 [ 399.311568][ C0] do_syscall_64+0xf3/0x230 [ 399.311608][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 399.311639][ C0] RIP: 0033:0x7f253258cde9 [ 399.311658][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 399.311677][ C0] RSP: 002b:00007f2533341038 EFLAGS: 00000246 ORIG_RAX: 000000000000013c [ 399.311699][ C0] RAX: ffffffffffffffda RBX: 00007f25327a5fa0 RCX: 00007f253258cde9 [ 399.311715][ C0] RDX: ffffffffffffff9c RSI: 0000400000000240 RDI: ffffffffffffff9c [ 399.311732][ C0] RBP: 00007f253260e2a0 R08: 0000000000000000 R09: 0000000000000000 [ 399.311746][ C0] R10: 00004000000005c0 R11: 0000000000000246 R12: 0000000000000000 [ 399.311761][ C0] R13: 0000000000000000 R14: 00007f25327a5fa0 R15: 00007ffe9d1f5148 [ 399.311786][ C0] [ 399.312720][ C1] rcu: rcu_preempt kthread starved for 10500 jiffies! g37969 f0x0 RCU_GP_WAIT_FQS(5) ->state=0x0 ->cpu=1 [ 399.972972][ C1] rcu: Unless rcu_preempt kthread gets sufficient CPU time, OOM is now expected behavior. [ 399.982959][ C1] rcu: RCU grace-period kthread stack dump: [ 399.988855][ C1] task:rcu_preempt state:R running task stack:25808 pid:17 tgid:17 ppid:2 task_flags:0x208040 flags:0x00004000 [ 400.002572][ C1] Call Trace: [ 400.005866][ C1] [ 400.008808][ C1] __schedule+0x190e/0x4c90 [ 400.013342][ C1] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 400.019274][ C1] ? __pfx___schedule+0x10/0x10 [ 400.024149][ C1] ? __pfx_lock_release+0x10/0x10 [ 400.029205][ C1] ? __pfx___mod_timer+0x10/0x10 [ 400.034166][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 400.040531][ C1] ? schedule+0x90/0x320 [ 400.044796][ C1] schedule+0x14b/0x320 [ 400.048980][ C1] schedule_timeout+0x15a/0x290 [ 400.053845][ C1] ? __pfx_schedule_timeout+0x10/0x10 [ 400.059234][ C1] ? __pfx_process_timeout+0x10/0x10 [ 400.064542][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.070218][ C1] ? prepare_to_swait_event+0x330/0x350 [ 400.075792][ C1] rcu_gp_fqs_loop+0x2df/0x1330 [ 400.080670][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 400.085908][ C1] ? __pfx_rcu_watching_snap_save+0x10/0x10 [ 400.091859][ C1] ? __pfx_rcu_gp_fqs_loop+0x10/0x10 [ 400.097172][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 400.103093][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.108757][ C1] ? finish_swait+0xd4/0x1e0 [ 400.113371][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 400.118610][ C1] rcu_gp_kthread+0xa7/0x3b0 [ 400.123229][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 400.128453][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 400.134374][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.140032][ C1] ? __kthread_parkme+0x169/0x1d0 [ 400.145083][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 400.150307][ C1] kthread+0x7ab/0x920 [ 400.154398][ C1] ? __pfx_kthread+0x10/0x10 [ 400.159014][ C1] ? __pfx_rcu_gp_kthread+0x10/0x10 [ 400.164253][ C1] ? __pfx_kthread+0x10/0x10 [ 400.168878][ C1] ? __pfx_kthread+0x10/0x10 [ 400.173500][ C1] ? __pfx_kthread+0x10/0x10 [ 400.178112][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 400.183327][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.188997][ C1] ? lockdep_hardirqs_on+0x99/0x150 [ 400.194217][ C1] ? __pfx_kthread+0x10/0x10 [ 400.198833][ C1] ret_from_fork+0x4d/0x80 [ 400.203271][ C1] ? __pfx_kthread+0x10/0x10 [ 400.207886][ C1] ret_from_fork_asm+0x1a/0x30 [ 400.212686][ C1] [ 400.215710][ C1] rcu: Stack dump where RCU GP kthread last ran: [ 400.222036][ C1] CPU: 1 UID: 0 PID: 11165 Comm: syz.4.1695 Not tainted 6.14.0-rc1-syzkaller-00235-g9946eaf552b1 #0 [ 400.232812][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024 [ 400.242883][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 400.248983][ C1] Code: 89 fb e8 23 00 00 00 48 8b 3d c4 f3 71 0c 48 89 de 5b e9 63 4f 5b 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 80 d6 03 00 65 8b 15 d0 76 [ 400.268618][ C1] RSP: 0018:ffffc90000a16d38 EFLAGS: 00000246 [ 400.274712][ C1] RAX: 0000000000000100 RBX: 0000000000000001 RCX: ffff88802c098000 [ 400.282699][ C1] RDX: ffff88802c098000 RSI: 0000000000000001 RDI: 0000000000000001 [ 400.290685][ C1] RBP: ffffc90000a16fb8 R08: ffffffff855f98be R09: 1ffffffff2036b8e [ 400.298673][ C1] R10: dffffc0000000000 R11: fffffbfff2036b8f R12: 0000000000000009 [ 400.306665][ C1] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000009 [ 400.314741][ C1] FS: 00007f8f3615d6c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 400.323685][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 400.330281][ C1] CR2: 00007fa5c2ed56c0 CR3: 000000002f8de000 CR4: 0000000000350ef0 [ 400.338268][ C1] Call Trace: [ 400.341555][ C1] [ 400.344413][ C1] ? rcu_check_gp_kthread_starvation+0x278/0x310 [ 400.350802][ C1] ? print_other_cpu_stall+0x1481/0x15c0 [ 400.356489][ C1] ? __pfx_print_other_cpu_stall+0x10/0x10 [ 400.362321][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.367981][ C1] ? cgroup_rstat_updated+0x13b/0xc30 [ 400.373391][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.379051][ C1] ? kvm_check_and_clear_guest_paused+0x6a/0xd0 [ 400.385314][ C1] ? rcu_sched_clock_irq+0xa26/0x10e0 [ 400.390709][ C1] ? __pfx_rcu_sched_clock_irq+0x10/0x10 [ 400.396357][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.402025][ C1] ? update_process_times+0x242/0x2f0 [ 400.407424][ C1] ? tick_nohz_handler+0x37c/0x500 [ 400.412558][ C1] ? __pfx_tick_nohz_handler+0x10/0x10 [ 400.418046][ C1] ? __hrtimer_run_queues+0x553/0xd30 [ 400.423542][ C1] ? ktime_get_update_offsets_now+0x2d/0x3b0 [ 400.429569][ C1] ? __pfx___hrtimer_run_queues+0x10/0x10 [ 400.435324][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.440984][ C1] ? ktime_get_update_offsets_now+0x38e/0x3b0 [ 400.447080][ C1] ? hrtimer_interrupt+0x403/0xa40 [ 400.452240][ C1] ? __sysvec_apic_timer_interrupt+0x112/0x420 [ 400.458426][ C1] ? sysvec_apic_timer_interrupt+0x52/0xc0 [ 400.464258][ C1] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20 [ 400.470444][ C1] ? virtqueue_add+0x148e/0x4770 [ 400.475400][ C1] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 400.481494][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.487154][ C1] virtqueue_add+0x184a/0x4770 [ 400.491931][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.497612][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.503272][ C1] ? __virt_addr_valid+0x183/0x530 [ 400.508408][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.514066][ C1] ? __pfx_virtqueue_add+0x10/0x10 [ 400.519195][ C1] ? __virt_addr_valid+0x183/0x530 [ 400.524333][ C1] ? __pfx_lock_release+0x10/0x10 [ 400.529375][ C1] ? __virt_addr_valid+0x183/0x530 [ 400.534521][ C1] ? __virt_addr_valid+0x183/0x530 [ 400.539666][ C1] virtqueue_add_outbuf+0xc3/0x110 [ 400.544800][ C1] ? __pfx_virtqueue_add_outbuf+0x10/0x10 [ 400.550548][ C1] start_xmit+0x109f/0x23d0 [ 400.555088][ C1] ? __pfx_start_xmit+0x10/0x10 [ 400.559954][ C1] ? dev_queue_xmit_nit+0x2b/0xca0 [ 400.565097][ C1] ? dev_queue_xmit_nit+0x2b/0xca0 [ 400.570237][ C1] dev_hard_start_xmit+0x27c/0x7d0 [ 400.575375][ C1] sch_direct_xmit+0x29c/0x5d0 [ 400.580173][ C1] ? __pfx_sch_direct_xmit+0x10/0x10 [ 400.585495][ C1] __dev_queue_xmit+0x1a8f/0x3f50 [ 400.590540][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.596210][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.601875][ C1] ? __dev_queue_xmit+0x2f4/0x3f50 [ 400.607120][ C1] ? __pfx___dev_queue_xmit+0x10/0x10 [ 400.612539][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.618203][ C1] ? __ip_queue_xmit+0x1258/0x1d50 [ 400.623331][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.628994][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.634651][ C1] ? mark_lock+0x9a/0x360 [ 400.639007][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.644663][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 400.650672][ C1] ? ip_finish_output2+0xaff/0x12b0 [ 400.655886][ C1] ? ip_finish_output2+0x44c/0x12b0 [ 400.661104][ C1] ip_finish_output2+0xd76/0x12b0 [ 400.666149][ C1] ? ip_finish_output2+0x44c/0x12b0 [ 400.671366][ C1] ? __pfx_ip_finish_output2+0x10/0x10 [ 400.676846][ C1] ? ip_skb_dst_mtu+0x6ba/0x9b0 [ 400.681710][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.687365][ C1] ? __ip_finish_output+0x349/0x400 [ 400.692578][ C1] ? __ip_queue_xmit+0x5d/0x1d50 [ 400.697526][ C1] __ip_queue_xmit+0x1258/0x1d50 [ 400.702484][ C1] ? __pfx___tcp_select_window+0x10/0x10 [ 400.708145][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.713801][ C1] ? csum_tcpudp_nofold+0x1e/0x60 [ 400.718856][ C1] ? __ip_queue_xmit+0x5d/0x1d50 [ 400.723807][ C1] ? __pfx_ip_queue_xmit+0x10/0x10 [ 400.728934][ C1] __tcp_transmit_skb+0x2582/0x3ca0 [ 400.734184][ C1] ? __pfx___tcp_transmit_skb+0x10/0x10 [ 400.739753][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.745437][ C1] ? __tcp_send_ack+0x17e/0x600 [ 400.750301][ C1] tcp_rcv_established+0x1420/0x1f20 [ 400.755603][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.761275][ C1] ? __pfx_tcp_rcv_established+0x10/0x10 [ 400.766921][ C1] ? do_raw_spin_lock+0x14f/0x370 [ 400.771965][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.777626][ C1] tcp_v4_do_rcv+0x96d/0xc70 [ 400.782244][ C1] tcp_v4_rcv+0x2dc0/0x37f0 [ 400.786816][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 400.791700][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 400.796571][ C1] ? __pfx_tcp_v4_rcv+0x10/0x10 [ 400.801443][ C1] ip_protocol_deliver_rcu+0x22e/0x440 [ 400.806926][ C1] ? ip_local_deliver_finish+0x230/0x5f0 [ 400.812577][ C1] ip_local_deliver_finish+0x341/0x5f0 [ 400.818062][ C1] ? __pfx_ip_local_deliver_finish+0x10/0x10 [ 400.824061][ C1] NF_HOOK+0x3a6/0x450 [ 400.828151][ C1] ? NF_HOOK+0x9a/0x450 [ 400.832326][ C1] ? __pfx_NF_HOOK+0x10/0x10 [ 400.836930][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.842586][ C1] ? skb_dst_set_noref+0x2a/0xf0 [ 400.847550][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.853208][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.858879][ C1] ip_sublist_rcv_finish+0x3be/0x4f0 [ 400.864198][ C1] ip_sublist_rcv+0x75d/0xab0 [ 400.868910][ C1] ? __pfx_ip_sublist_rcv+0x10/0x10 [ 400.874127][ C1] ? skb_orphan+0xae/0xd0 [ 400.878477][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.884134][ C1] ? ip_rcv_core+0x801/0xd10 [ 400.888758][ C1] ip_list_rcv+0x42b/0x480 [ 400.893290][ C1] ? __pfx_ip_list_rcv+0x10/0x10 [ 400.898251][ C1] ? __pfx_ip_list_rcv+0x10/0x10 [ 400.903208][ C1] __netif_receive_skb_list_core+0x94e/0x980 [ 400.909206][ C1] ? dev_gro_receive+0x1318/0x2510 [ 400.914340][ C1] ? __pfx___netif_receive_skb_list_core+0x10/0x10 [ 400.920863][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.926524][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.932190][ C1] ? netif_receive_skb_list_internal+0x4e8/0xe30 [ 400.938541][ C1] netif_receive_skb_list_internal+0xa51/0xe30 [ 400.944814][ C1] ? netif_receive_skb_list_internal+0x4e8/0xe30 [ 400.951170][ C1] ? __pfx_netif_receive_skb_list_internal+0x10/0x10 [ 400.957864][ C1] ? put_page+0xe0/0x260 [ 400.962126][ C1] ? __pfx_virtnet_receive_done+0x10/0x10 [ 400.967887][ C1] napi_complete_done+0x2b5/0x870 [ 400.972938][ C1] ? __pfx_napi_complete_done+0x10/0x10 [ 400.978509][ C1] ? __pfx_receive_buf+0x10/0x10 [ 400.983475][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 400.989141][ C1] ? virtqueue_get_buf_ctx+0x48e/0xde0 [ 400.994655][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.000331][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.005987][ C1] ? virtqueue_enable_cb_prepare+0x283/0x540 [ 401.011987][ C1] virtnet_poll+0x2de9/0x39b0 [ 401.016694][ C1] ? __lock_acquire+0x1397/0x2100 [ 401.021744][ C1] ? __pfx_validate_chain+0x10/0x10 [ 401.026952][ C1] ? __pfx_virtnet_poll+0x10/0x10 [ 401.031994][ C1] ? validate_chain+0x11e/0x5920 [ 401.036935][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.042594][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.048257][ C1] ? __lock_acquire+0x1397/0x2100 [ 401.053306][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.058966][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.064665][ C1] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 401.070668][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.076325][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 401.082673][ C1] __napi_poll+0xcd/0x490 [ 401.087022][ C1] net_rx_action+0x89b/0x1240 [ 401.091738][ C1] ? __pfx_net_rx_action+0x10/0x10 [ 401.096880][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.102538][ C1] ? sched_clock+0x4a/0x70 [ 401.106989][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 401.113356][ C1] handle_softirqs+0x2d6/0x9b0 [ 401.118136][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.123802][ C1] ? __irq_exit_rcu+0xf7/0x220 [ 401.128585][ C1] ? __pfx_handle_softirqs+0x10/0x10 [ 401.133882][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.139540][ C1] ? irqtime_account_irq+0xd1/0x1d0 [ 401.144769][ C1] __irq_exit_rcu+0xf7/0x220 [ 401.149375][ C1] ? __pfx___irq_exit_rcu+0x10/0x10 [ 401.154596][ C1] irq_exit_rcu+0x9/0x30 [ 401.158847][ C1] common_interrupt+0xb9/0xd0 [ 401.163663][ C1] [ 401.166603][ C1] [ 401.169541][ C1] asm_common_interrupt+0x26/0x40 [ 401.174586][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x8/0x70 [ 401.180674][ C1] Code: 8b 3d c4 f3 71 0c 48 89 de 5b e9 63 4f 5b 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 <65> 48 8b 0c 25 80 d6 03 00 65 8b 15 d0 76 44 7e 81 e2 00 01 ff 00 [ 401.200301][ C1] RSP: 0018:ffffc90004e8f4d8 EFLAGS: 00000202 [ 401.206391][ C1] RAX: ffffffff81b37b65 RBX: 1ffff110170c8c99 RCX: 0000000000080000 [ 401.214381][ C1] RDX: ffffc9000d55c000 RSI: 000000000007ffff RDI: 0000000000080000 [ 401.222362][ C1] RBP: ffffc90004e8f6e0 R08: ffffffff81b37b30 R09: 1ffffffff285f30e [ 401.230345][ C1] R10: dffffc0000000000 R11: fffffbfff285f30f R12: ffff8880b873fb48 [ 401.238339][ C1] R13: ffff8880b86464c8 R14: ffff8880b873fb40 R15: 0000000000000000 [ 401.246327][ C1] ? smp_call_function_many_cond+0x1b90/0x2d30 [ 401.252512][ C1] ? smp_call_function_many_cond+0x1bc5/0x2d30 [ 401.258700][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.264357][ C1] smp_call_function_many_cond+0x1bc5/0x2d30 [ 401.270365][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.276022][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.281676][ C1] ? tlb_remove_table+0xf4/0x550 [ 401.286641][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.292301][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.297960][ C1] ? free_pgd_range+0xd57/0xdd0 [ 401.302862][ C1] ? __pfx_smp_call_function_many_cond+0x10/0x10 [ 401.309222][ C1] ? __pfx_free_pgd_range+0x10/0x10 [ 401.314453][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.320110][ C1] ? rcu_is_watching+0x15/0xb0 [ 401.324886][ C1] ? __pfx_flush_tlb_func+0x10/0x10 [ 401.330110][ C1] on_each_cpu_cond_mask+0x3f/0x80 [ 401.335250][ C1] flush_tlb_mm_range+0x42d/0x710 [ 401.340291][ C1] ? __pfx_flush_tlb_mm_range+0x10/0x10 [ 401.345856][ C1] ? __pfx_free_pgtables+0x10/0x10 [ 401.351001][ C1] tlb_flush_mmu+0x1aa/0x680 [ 401.355628][ C1] tlb_finish_mmu+0xd4/0x200 [ 401.360251][ C1] vms_clear_ptes+0x432/0x530 [ 401.364961][ C1] ? __pfx_vms_clear_ptes+0x10/0x10 [ 401.370195][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.375874][ C1] vms_complete_munmap_vmas+0x210/0x8f0 [ 401.381464][ C1] ? __mas_set_range+0x133/0x3c0 [ 401.386424][ C1] do_vmi_align_munmap+0x5ef/0x6f0 [ 401.391602][ C1] ? __pfx_do_vmi_align_munmap+0x10/0x10 [ 401.397287][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.403023][ C1] ? srso_alias_return_thunk+0x5/0xfbef5 [ 401.408691][ C1] ? mas_find+0x8c0/0xbb0 [ 401.413045][ C1] ? __vm_munmap+0x211/0x510 [ 401.417655][ C1] do_vmi_munmap+0x24e/0x2d0 [ 401.422283][ C1] __vm_munmap+0x372/0x510 [ 401.426718][ C1] ? __pfx___vm_munmap+0x10/0x10 [ 401.431690][ C1] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 401.438050][ C1] ? do_syscall_64+0x100/0x230 [ 401.442852][ C1] __x64_sys_munmap+0x60/0x70 [ 401.447552][ C1] do_syscall_64+0xf3/0x230 [ 401.452094][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 401.458008][ C1] RIP: 0033:0x7f8f3538ce77 [ 401.462436][ C1] Code: 00 00 00 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 48 c7 c0 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 0b 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 401.482059][ C1] RSP: 002b:00007f8f3615ce18 EFLAGS: 00000246 ORIG_RAX: 000000000000000b [ 401.490495][ C1] RAX: ffffffffffffffda RBX: 00000000013bd7ef RCX: 00007f8f3538ce77 [ 401.498479][ C1] RDX: 0000000000000000 RSI: 0000000008400000 RDI: 00007f8f2ac00000 [ 401.506469][ C1] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000005585 [ 401.514453][ C1] R10: 00000000000003cc R11: 0000000000000246 R12: 0000000000000003 [ 401.522433][ C1] R13: 00007f8f3615cef0 R14: 00007f8f3615ceb0 R15: 00007f8f2ac00000 [ 401.530433][ C1]