last executing test programs: 1m31.637504502s ago: executing program 4 (id=260): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_sctp_SCTP_SOCKOPT_CONNECTX_OLD(r0, 0x84, 0x6b, &(0x7f0000000240)=[@in={0x2, 0x0, @initdev={0xac, 0x1e, 0x0, 0x0}}], 0x10) shutdown(r0, 0x1) setsockopt$inet_sctp_SCTP_EVENTS(r0, 0x84, 0x6e, &(0x7f0000000000), 0xe) 1m31.434297393s ago: executing program 4 (id=263): mmap(&(0x7f0000000000/0xfbe000)=nil, 0xfbe000, 0x2, 0x31, 0xffffffffffffffff, 0x0) ioctl$UFFDIO_API(0xffffffffffffffff, 0xc018aa3f, &(0x7f0000000180)) madvise(&(0x7f0000000000/0x400000)=nil, 0x400000, 0x19) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x3) 1m31.241513283s ago: executing program 4 (id=266): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000007c0)='./file0\x00', 0x480, &(0x7f00000000c0), 0x1, 0x765, &(0x7f0000000800)="$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") close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x2040, 0x0) lseek(r0, 0xe510, 0x4) 1m30.877479415s ago: executing program 4 (id=269): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x3810082, &(0x7f0000001880)={[{@noadinicb}, {@gid}, {@dmode={'dmode', 0x3d, 0x4}}, {@rootdir={'rootdir', 0x3d, 0x401}}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@gid_forget}, {@gid_ignore}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@longad}]}, 0x1, 0xc32, &(0x7f0000001a40)="$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") syz_mount_image$msdos(&(0x7f0000000f00), &(0x7f0000000540)='./file1\x00', 0x61, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000f00)) syz_mount_image$fuse(0x0, &(0x7f0000000100)='./bus\x00', 0x100000, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000700)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 1m30.260089818s ago: executing program 4 (id=275): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000080)=ANY=[@ANYBLOB="62202a3a2a20ea"], 0x9) 1m29.561551242s ago: executing program 4 (id=284): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x44) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 1m29.150550133s ago: executing program 32 (id=284): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x22, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x44) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000f40)={&(0x7f0000000040)='percpu_alloc_percpu\x00', r0}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0xf, 0x0, &(0x7f0000000180)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @cgroup_skb, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) 52.376005074s ago: executing program 0 (id=568): chdir(0x0) r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000280)=ANY=[@ANYBLOB="1801000021000000000000003b810000850000006d000000850000000700000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) r1 = bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f0000000000)='ext4_es_lookup_extent_enter\x00', r0}, 0x10) bpf$OBJ_PIN_PROG(0x6, &(0x7f00000000c0)=@generic={&(0x7f0000000080)='./file0\x00', r1}, 0x18) 52.080105136s ago: executing program 0 (id=571): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000c00), 0xffffffffffffffff) ioctl$sock_SIOCGIFINDEX_80211(r0, 0x8933, &(0x7f00000002c0)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_STOP_NAN(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000140)={0x1c, r1, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}}, 0x1c}}, 0x0) 51.828517117s ago: executing program 0 (id=573): r0 = syz_io_uring_setup(0xf00, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, &(0x7f0000000240)=0x0, &(0x7f0000000140)=0x0) socketpair$unix(0x1, 0x1, 0x0, &(0x7f00000004c0)={0xffffffffffffffff, 0xffffffffffffffff}) syz_io_uring_submit(r1, r2, &(0x7f0000000480)=@IORING_OP_CONNECT={0x10, 0x0, 0x0, r3, 0x0, 0x0}) io_uring_enter(r0, 0x2, 0x0, 0x0, 0x0, 0xffffff39) 51.532449438s ago: executing program 0 (id=574): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) waitid(0x3, 0x0, 0x0, 0x8, 0x0) 50.041107816s ago: executing program 0 (id=592): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f00000000c0)='./file1\x00', 0x20081e, &(0x7f0000000040)={[{@nodelalloc}, {@grpid}, {@auto_da_alloc}]}, 0x1, 0x4ef, &(0x7f00000003c0)="$eJzs3U1vW1kZAODXzpeTyUwywywAAVOGgYKqOonbRlUXUFYIoUqILkFqQ+JGUew4ip3ShC7S/4BEJVaw5Aew7oo9GwQ7NmWBxEcEaiqxMLrXN6mb2k1oEjuKn0e6uvfcY/s9J849x36d+AQwsC5FxE5EjEbE/YiYys7nsi1ut7bkdi92Hy/u7T5ezEWzefefubQ+ORdt90m8lz1mISJ+9L2In+bejFvf2l5dqFTKG63i+Eyjuj5T39q+ulJdWC4vl9dKpfm5+dmb126UTq2vn1RHs6MvP//Dzrd+njRrMjvT3o/T1Or6yEGcxHBE/OAsgvXBUNaf0X43hHeSj4iPIuLT9PqfiqH02QQALrJmcyqaU+1lAOCiy6c5sFy+mOUCJiOfLxZbObyPYyJfqdUbVx7UNteWWrmy6RjJP1iplGezXOF0jOSS8lx6/KpcOlS+FhEfRsQvxsbTcnGxVlnq5wsfABhg7x2a//8z1pr/AYALrtDvBgAAPWf+B4DBY/4HgMFj/geAwWP+B4DBY/4HgMFj/geAgfLDO3eSrbmXff/10sOtzdXaw6tL5fpqsbq5WFysbawXl2u15fQ7e6pHPV6lVlufux6bj6a/vV5vzNS3tu9Va5trjXvp93rfK4/0pFcAwNt8+MmzP+ciYufWeLpF21oO5mq42PL9bgDQN0P9bgDQN1b7gsF1gvf40gNwQXRYovc1hYgYP3yy2Ww2z65JwBm7/AX5fxhUbfl/fwUMA0b+HwaX/D8MrmYzd9w1/+O4NwQAzjc5fqDL5/8fZfvfZh8O/GTp8C2enmWrAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4HzbX/+3mK0FPhn5fLEY8X5ETMdI7sFKpTwbER9ExJ/GRsaS8lyf2wwAnFT+b7ls/a/LU59NHq4dzb0cS/cR8bNf3f3lo4VGY+OPyfl/HZxvPM3Ol/rRfgDgKPvzdLpveyP/Yvfx4v7Wy/b8/bsRUWjF39sdjb2D+MMxnO4LMRIRE//OZeWWXFvu4iR2nkTE5zv1PxeTaQ6ktfLp4fhJ7Pd7Gj//Wvx8WtfaJz+Lz51CW2DQPEvGn9udrr98XEr3na//QjpCnVw2/iUPtbiXjoGv4u+Pf0Ndxr9Lx41x/fffbx2Nv1n3JOKLwxH7sffaxp/9+Lku8T87Zvy/fOkrn3ara/464nJ0jt8ea6ZRXZ+pb21fXakuLJeXy2ul0vzc/OzNazdKM2mOeqb7bPCPW1c+6FaX9H+iS/zCEf3/+jH7/5v/3v/xV98S/5tf6xQ/Hx+/JX4yJ37jmPEXJn5X6FaXxF/q0v+jnv8rx4z//K/bbywbDgD0T31re3WhUilv9PJg/4VET4M6uAAHyW/NOWhGx4Pv9CrWaPxf92o23ylWtxHjNLJuwHlwcNFHxMt+NwYAAAAAAAAAAAAAAOioF/+x1O8+AgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAcHH9LwAA//89fM7W") mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0\x00', 0x0, 0x101091, 0x0) mount(0x0, &(0x7f0000000040)='./file0/../file0/../file0\x00', 0x0, 0x834421, 0x0) quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000000)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000280)) 49.444770348s ago: executing program 0 (id=587): set_mempolicy(0x4005, &(0x7f0000000000)=0x7e, 0x8) r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000010c0)={0x0, 0x10, &(0x7f0000001040)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000001100)=0x10) getsockopt$bt_hci(r0, 0x84, 0x7c, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007) 34.420060392s ago: executing program 33 (id=587): set_mempolicy(0x4005, &(0x7f0000000000)=0x7e, 0x8) r0 = socket(0x2, 0x80805, 0x0) getsockopt$inet_sctp6_SCTP_SOCKOPT_CONNECTX3(r0, 0x84, 0x6f, &(0x7f00000010c0)={0x0, 0x10, &(0x7f0000001040)=[@in={0x2, 0x4e21, @initdev={0xac, 0x1e, 0x0, 0x0}}]}, &(0x7f0000001100)=0x10) getsockopt$bt_hci(r0, 0x84, 0x7c, &(0x7f0000000000)=""/4103, &(0x7f0000001080)=0x1007) 16.936779427s ago: executing program 5 (id=770): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = getpgrp(0x0) r1 = getpid() rt_tgsigqueueinfo(r1, r0, 0x0, &(0x7f0000000300)={0x0, 0x0, 0xc0000000}) 16.701255688s ago: executing program 5 (id=772): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f00000000c0)=0xf) ioctl$TCFLSH(r0, 0x400455c8, 0x4) ioctl$TIOCSTI(r0, 0x5412, &(0x7f0000000040)=0x31) 16.31524723s ago: executing program 5 (id=774): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x4001, 0x0, @dev={0xfe, 0x80, '\x00', 0x1c}, 0xd}, 0x1c) r1 = socket$kcm(0x10, 0x2, 0x4) sendmsg$inet(r1, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000280)="5c00000012006bab9e3fe3d86e6c1d000014a10d00000000000004b68675f8001d000a00a0e69ee517d34460bc24eab556a705251e6182949a36c23d3b48dfd8cdbf9367b4fa51f60a64c9f4080003000601000004000200040000", 0x5b}, {&(0x7f0000000680)='\'', 0x1}], 0x2, 0x0, 0x0, 0x1f00c00e}, 0x0) 16.009448102s ago: executing program 5 (id=776): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x3810082, &(0x7f0000001880)={[{@noadinicb}, {@gid}, {@dmode={'dmode', 0x3d, 0x4}}, {@rootdir={'rootdir', 0x3d, 0x401}}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@gid_forget}, {@gid_ignore}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@longad}]}, 0x1, 0xc32, &(0x7f0000001a40)="$eJzs3U1sXNd9N+D/uRyKI/l9KyZ2FCeNi0lbpLJiufqKqViFO6pptgFkWQjF7AJwJI7UgSmSIKlGNtKC6aaLLgIURRdZEWiNAikaGE0RdMm0LpBsvCiy6opoYSMoumCLAFkFLO6dM9KQIm1GFCVKeh6b+s3ce86dc+4Z3ysLOvcEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABDxe6+dP3EyPexWAAAP0sXxr5445f4PAE+Uy/7/HwAAAAAAAAAAAAAA9rsURTwdKeYurqXJ6n1X/UJn8OatidGxrasdTFXNgap8+VM/eer0mS+9NHK2lxc6Mx9R/377bLwxfvl849XZG3Pz7YWF9lRjYqZzdXaqveMj7Lb+ZseqE9C48ebNqWvXFhqnXjy9Yfet4Q+HnjoyfG7k+ePP9cpOjI6Njd8pUu8vX7vnhnRtN8PjQBRxPFK88L2fplZEFLH7c1F/sGO/2cGqE8eqTkyMjlUdme60ZhbLnZd6J6KIaPRVavbO0dZjEbXBB9qH7TUjlsrmlw0+VnZvfK4137oy3W5cas0vdhY7szOXUre1ZX8aUcTZFLEcEatDdx9uMIqoRYrvHF5LVyJioHcevlhNDN6+HcUe9nEHynY2BiOWi0dgzPaxoSji9Ujxs/eOxtV8namuNV+IeL3MH0S8U+YrEan8YpyJ+GCL7xGPploU8efl+J9bS1PV9aB3XbnwtcZXZq7N9pXtXVd+yfvDXVeKh3R/OLgpH4x9fm2qRxGt6oq/lu79NzsAAAAAAAAAAAAAAAAA3G8Ho4jPRIrX/u2PqnnFUc1LP3xu5PeH/3//nPFnP+Y4ZdkXI2Kp2Nmc3AN5YuCldCmlhzyX+ElWjyL+OM//+9bDbgwAAAAAAAAAAAAAAAAAAMATrYifRIqX3z+alqN/TfHOzPXG5daV6e6qsL21f3trpq+vr683UjebOSdzLuVczrmSczVnFLl+zmbOyZxLOZdzruRczRkDuX7OZs7JnEs5l3Ou5FzNGbVcP2cz52TOpZzLOVdyruaMfbJ2LwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADA46SIIn4RKb79jbUUKSKaEZPRzZWhh906AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKA0lIr4fqRo/EHz9rZaRKTq366j5S9nonmgzE9Gc6TMV6J5PmerylrzWw+h/ezOYCrix5FiqP7u7QHP4z/YfXf7axDvfPPOu8/WujnQ2zn84dBTRw6fGxn7tWe3e522asCxC52Zm7caE6NjY+N9m2v50z/Zt204f25xf7pORCy89fabrenp9vy9vyi/Aruo/gi9SLUnpadeVC+iti+a8XD6zhOgvP9/ECl++/1/793wu/f/evy/7rvbd/j4+Z/cuf+/vPlAO7z/1zbXy/f/8p6+1f3/6b5tL+ffjQzWIuqLN+YGj0TUF956+3jnRut6+3p75syJE18eGfny6RODByLq1zrT7b5X9+V0AQAAAAAAAAAAAAAAADw4qYjfjRStH6+lRkTcquZrDZ8bef74cwMxUM232jBv+43xy+cbr87emJtvLyy0pxoTM52rs1PtnX5cvZruNTE6tied+VgH97j9B+uvzs69Nd+5/oeLW+4/VD9/ZWFxvnV1691xMIqIZv+WY1WDJ0bHqkZPd1ozVdVLW06m/+UNpiL+I1JcPdNIn8/b8vz/zTP8N8z/X9p8oD2a//+Jvm3lZ6ZUxM8jxW/9xbPx+aqdh+Kuc5bL/U2kOHb2c7lcHCjL9drQfa5Ad2ZgWfZ/IsU//GJj2d58yKfvlD254xP7iCjH/3Ck+P6ffTd+PW/b+PyHrcf/0OYD7dH4P9O37dCG5xXsuuvk8T8eKV55+t34jbzto57/0Xv2xtFc+PbzOfZo/D/Vt204f+5v3p+uAwAAAAAAAAAAPNIGUxF/Gyl+OFZLL+VtO/n7f1ObD7RHf//r033bpu7PekUf+2LXJxUAAAAA9onBVMRPIsX1xXdvz6HeOP+7b/7n79yZ/zmaNu2t/pzvV6rnBtzPP//rN5w/d3L33QYAAAAAAAAAAAAAAAAAAIB9JaUiXsrrqU9W8/mntl1PfSVSvPZfL+Ry6UhZrrcO/HD1a/3i7Mzx89PTs1dbi60r0+3G+Fzrarus+0ykWPvrz+W6RbW+em+9+e4a73fWYp+PFGN/1yvbXYu9tzb5M72yS+2TZdlPRIr//PuNZXvrWH/qznFPlWX/KlJ8/Z+2LnvkTtnTZdnvRooffb3RK3uoLNt7Puqn75R98epssQejAgAAAAAAAAAAAAAAAAAAwJNmMBXxp5Hiv28s357Ln9f/H+x7W3nnm33r/W9yq1rnf7ha/3+71/ey/n/1XIGl7T4VAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAeTymKeDtSzF1cSytD5fuu+oXOzM1bE6NjW1c7mKqaA1X58qd+8tTpM196aeRsLz+6/v32mXhj/PL5xquzN+bm2wsL7anGxEzn6uxUe8dH2G39zY5VJ6Bx482bU9euLTROvXh6w+5bwx8OPXVk+NzI88ef65WdGB0bG+8rUxu850+/S9pm+4Eo4i8jxQvf+2n64VBEEbs/Fx/z3dlrB6tOHKs6MTE6VnVkutOaWSx3XuqdiCKi0Vep2TtHD2AsdqUZsVQ2v2zwsbJ743Ot+daV6XbjUmt+sbPYmZ25lLqtLfvTiCLOpojliFgduvtwg1HEm5HiO4fX0j8PRQz0zsMXL45/9cSp7dtR7GEfd6BsZ2MwYrn4qDHbosNsMBRF/GOk+Nl7R+NfhiJq0f2JL0S8XuYPIt6J7nin8otxJuIDp/WxUYsi/rcc/3Nr6b2h8nrQu65c+FrjKzPXZvvK9q4rj/z94UHa5/eTehTxo+qKv5b+1X/XAAAAAAAAAAAAAAAAAPtIEb8aKV5+/2iq5gffnlPcmbneuNy6Mt2d1teb+9ebM72+vr7eSN1s5pzMuZRzOedKztWcUeT6OZtl1tfXJ/P7pZzLOVdyruaMgVw/ZzPnZM6lnMs5V3Ku5oxarp+zmXMy51LO5ZwrOVdzxj6ZuwcAAAAAAAAAAAAAAAAAADxeiuqfFN/+xlpaH6rWlx7o7VuxHuhj7/8CAAD//0pa+Ck=") syz_mount_image$msdos(&(0x7f0000000f00), &(0x7f0000000540)='./file1\x00', 0x61, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000f00)) syz_mount_image$fuse(0x0, &(0x7f0000000100)='./bus\x00', 0x100000, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000700)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 15.217143736s ago: executing program 5 (id=784): r0 = socket$inet6_sctp(0xa, 0x801, 0x84) sendto$inet6(r0, &(0x7f0000000340)='0', 0x1, 0x0, &(0x7f0000000240)={0xa, 0x0, 0x0, @initdev={0xfe, 0x88, '\x00', 0x0, 0x0}, 0x1}, 0x1c) shutdown(r0, 0x1) getsockopt$bt_hci(r0, 0x84, 0xe, &(0x7f0000003140)=""/4095, &(0x7f0000000000)=0xfff) 14.437844659s ago: executing program 5 (id=791): pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x7000000) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) pipe2$9p(&(0x7f0000000100), 0x0) 14.377466859s ago: executing program 6 (id=792): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TCXONC(r0, 0x540a, 0x0) ioctl$TCSETA(r0, 0x5406, &(0x7f0000000200)={0x1, 0x0, 0x0, 0x6, 0x0, "5f730000a9003f00"}) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x1a) 14.061754031s ago: executing program 34 (id=791): pipe(&(0x7f00000000c0)={0xffffffffffffffff, 0xffffffffffffffff}) fcntl$setpipe(r0, 0x407, 0x7000000) capset(&(0x7f0000000080)={0x20071026}, &(0x7f0000000040)={0x200000, 0x200000}) pipe2$9p(&(0x7f0000000100), 0x0) 14.046904831s ago: executing program 6 (id=794): mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040)='./cgroup.net/syz0\x00', 0x1ff) r0 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000040), 0x200002, 0x0) r1 = openat$cgroup_devices(r0, &(0x7f0000000000)='devices.deny\x00', 0x2, 0x0) write$cgroup_devices(r1, &(0x7f0000000140)=ANY=[@ANYBLOB='b 75:*\trrr'], 0xa) 13.888296002s ago: executing program 6 (id=795): r0 = socket$inet6(0xa, 0x3, 0x8000000003c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @remote, 0x5}, 0x1c) sendmsg(r0, &(0x7f00000000c0)={0x0, 0x953c, &(0x7f0000000100)=[{&(0x7f0000000000)="2b10", 0xffbd}], 0x1, 0x0, 0x0, 0x2c}, 0x4) setsockopt$inet6_int(r0, 0x29, 0x1d, &(0x7f0000000040), 0x4) 13.550725313s ago: executing program 6 (id=798): syz_mount_image$udf(&(0x7f00000000c0), &(0x7f0000000180)='./file0\x00', 0x3810082, &(0x7f0000001880)={[{@noadinicb}, {@gid}, {@dmode={'dmode', 0x3d, 0x4}}, {@rootdir={'rootdir', 0x3d, 0x401}}, {@iocharset={'iocharset', 0x3d, 'cp1251'}}, {@gid_forget}, {@gid_ignore}, {@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@longad}]}, 0x1, 0xc32, &(0x7f0000001a40)="$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") syz_mount_image$msdos(&(0x7f0000000f00), &(0x7f0000000540)='./file1\x00', 0x61, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000f00)) syz_mount_image$fuse(0x0, &(0x7f0000000100)='./bus\x00', 0x100000, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./bus\x00', &(0x7f0000000080), 0x0, &(0x7f0000000700)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file0'}}, {@upperdir={'upperdir', 0x3d, './file1'}}]}) 12.847007797s ago: executing program 6 (id=803): r0 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX_80211(r1, 0x8933, &(0x7f0000000080)={'wlan0\x00', 0x0}) sendmsg$NL80211_CMD_JOIN_MESH(r1, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000140)={0x38, r0, 0x1, 0x0, 0x0, {{}, {@val={0x8, 0x3, r2}, @void}}, [@NL80211_ATTR_MESH_ID={0xa}, @NL80211_ATTR_TX_RATES={0x10, 0x5a, 0x0, 0x1, [@NL80211_BAND_5GHZ={0xc, 0x1, 0x0, 0x1, [@NL80211_TXRATE_HT={0x5, 0x2, [{0x5, 0x6}]}]}]}]}, 0x38}}, 0x0) 12.23621183s ago: executing program 6 (id=808): openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='pagemap\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 11.770564852s ago: executing program 35 (id=808): openat$misdntimer(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000240)='pagemap\x00') r1 = syz_open_procfs(0x0, &(0x7f00000000c0)='fd/3\x00') mount$9p_fd(0x0, &(0x7f0000000300)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB='trans=fd,rfdno=', @ANYRESHEX=r1, @ANYBLOB=',wfdno=', @ANYRESHEX=r0]) 4.765544546s ago: executing program 1 (id=839): r0 = socket$inet6_mptcp(0xa, 0x1, 0x106) connect$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x0, @remote, 0x12}, 0x1c) r1 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r1, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000280)="89000000120081ae08060cdc030ec0007f03e3f7ff1f000000e2ffca1b1f0000000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120800030006010000bdad446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) 4.455610338s ago: executing program 2 (id=842): mmap(&(0x7f00009fd000/0x600000)=nil, 0x600000, 0x3000002, 0x6031, 0xffffffffffffffff, 0x0) mremap(&(0x7f0000ceb000/0x2000)=nil, 0x2000, 0x800000, 0x3, &(0x7f0000130000/0x800000)=nil) mremap(&(0x7f00007ff000/0x4000)=nil, 0x4000, 0x4000, 0x3, &(0x7f0000580000/0x4000)=nil) mremap(&(0x7f0000580000/0x4000)=nil, 0x4000, 0x2000, 0x3, &(0x7f00007ff000/0x2000)=nil) 3.776780041s ago: executing program 2 (id=846): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB="1201000003005740ed0b0011c3ec000000010902120001000000000904"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000080)={0x44, &(0x7f0000000040)=ANY=[@ANYBLOB="00000100000005"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000400)={0x1c, &(0x7f0000000340)={0x0, 0x17, 0x2, "5fa6"}, 0x0, 0x0}) 3.715866832s ago: executing program 1 (id=847): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x6a855000) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) rt_sigsuspend(&(0x7f0000000000)={[0x6]}, 0x8) 2.571872887s ago: executing program 1 (id=848): syz_mount_image$iso9660(&(0x7f00000000c0), &(0x7f0000000080)='./file0\x00', 0x810, &(0x7f0000000380)=ANY=[], 0x1, 0xa1c, &(0x7f0000000d00)="$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") mount$nfs(&(0x7f0000000100)=',..', 0x0, 0x0, 0x0, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) 2.397665668s ago: executing program 1 (id=851): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_generic(0x10, 0x3, 0x10) fcntl$lock(r1, 0x25, &(0x7f0000000000)={0x0, 0x1, 0x24e, 0x7fffffffffffffff}) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)=@newlink={0x44, 0x10, 0x401, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bridge={{0xb}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BR_MCAST_MLD_VERSION={0x5, 0x2c, 0x2}, @IFLA_BR_AGEING_TIME={0x8}]}}}]}, 0x44}}, 0x0) 1.85766128s ago: executing program 2 (id=854): setsockopt$inet_sctp6_SCTP_STREAM_SCHEDULER(0xffffffffffffffff, 0x84, 0x7b, &(0x7f0000000080)={0x0, 0x8001}, 0x8) setsockopt$inet6_udp_int(0xffffffffffffffff, 0x11, 0x0, &(0x7f0000000080)=0x400a40, 0x4) r0 = socket$inet6_sctp(0xa, 0x5, 0x84) getsockopt$bt_hci(r0, 0x84, 0x7f, &(0x7f0000000080)=""/4057, &(0x7f0000000000)=0xfd9) 1.82390386s ago: executing program 3 (id=855): syz_mount_image$hfs(&(0x7f0000000080), &(0x7f0000000040)='./file0\x00', 0x802, &(0x7f0000001080)=ANY=[@ANYBLOB="636f6465706167653d69736f383835392d312c696f636861727365743d69736f383835392d362c756d61736b3d30303030303030303030303030303030303030303030352c66696c655f756d61736b3d30303030303030303030303030303030303030303130302c756d61736b3d30313737373737373737373737373737373737373737332c00cf43bf8763560152b0da748d27c637d7c8d8c6dd49844dfda3b18cea92bdb3b533d6e32265a47e2d340830f90974cb163ba7d9df4c71e4613a9131d481549258d56e87e1620c236ddb4fafc471"], 0x7, 0x2db, &(0x7f0000000800)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000004280)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000340)=""/100, 0x64) getdents64(r0, 0xfffffffffffffffe, 0x29) 1.761760681s ago: executing program 2 (id=856): r0 = socket$nl_generic(0x10, 0x3, 0x10) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000100)={'netdevsim0\x00', 0x0}) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x1, 0x3, 0x261, 0x2, 0x0, 0xffffffffffffffff, 0x0, '\x00', r1, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_LOOKUP_AND_DELETE_ELEM(0x15, &(0x7f0000000280)={r2, &(0x7f0000000180), 0x0}, 0x20) 1.641727022s ago: executing program 3 (id=857): r0 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000040)='/proc/asound/card0/oss_mixer\x00', 0x0, 0x0) r1 = openat$proc_mixer(0xffffffffffffff9c, &(0x7f0000000200)='/proc/asound/card0/oss_mixer\x00', 0x2002, 0x0) write$proc_mixer(r1, &(0x7f0000001200)=ANY=[@ANYBLOB="0148384c1e41c61da2ce6fdadc516e0909"], 0x8d) dup3(r0, r1, 0x0) 1.514870702s ago: executing program 3 (id=858): r0 = socket(0x10, 0x3, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000001500)=ANY=[@ANYBLOB="bf16000000000000b7070000060000005070000000000000480000000000e1ff95000000000000002ba7e1d30cb599e83f24b8a4efc02d459d9e32a3aa81d36bb3019c13bd23212fb56f040026fb41f2db3b1639b7bbc9af171b856de734cfe3cafafefc40056bdc17487960007102fa9ea41da123741c66be166992b2dcd72fa0fca047d41886d1d4d94f2f4e345c652fbc1626cca2a2ad35806150ae0209e62f51ee988e6e06c8cedf3ceb9fc404000000c588b277beee1cbf9b0a4def42d410f6accd3637110bec4e90a6341965c39e9ebab0e39622200e011ea661c45a3449abe802f5ab3e3101c0932ed4148d3b3e22278d00031e5388ee5c867de2c6211d6ececb0cd2b6d357b8000018ef4aafad197acc7dc1e955c685ceff7f000000000000491b8bc4748eda186872000007ce468ee23fd2f73902ebcfcf49822775985bf31b405b433a8acd715f5888b2007f00000000000000000100fb0000000000000000ff03000000000000b56780260ed652290f58fa64533500ebffffff00ca1276445432997f0000000000000008e75a89faff01210cce39bf405f1e846c12423a163b33e680846f26dc7add65873d9f87463ad6f7c2f3ee1a39244960b318778f2a047f6d0800000000000000e7a6520602a80d608df4d433623c850af895abba72bf14f6fbd7fbad2a436804eeae1de6d2c740cf0c0b74edbcb2d4b7746fa4bc5e32bd378af7c9136adf32ec7bf48cabecead649f96ea24c32872c490637c34360cb5d46ce680eeb80127eb23f9902519a693b85c6552051385e7e87a2db762cbb253fbd76b9117c1a11d18aa21a0c5f0c28999a639c0376678be35ffe99ff799a11d9b219c00c369a12bf8685b862d2000000bda1bae489bcef5ae59136aaacc59608f4d4e6067338b521eaf2e2465da053cfd5e95394e5520545364361d2c1465c5461a7c4174e5cd9c7976c9aa6342c5621dbc2dccedb5ab74e0b119252a23352fca272212d0c0104000014593d65d3f5e1e9b294669bcd2df061a4d6a835e40e7302f53f90da24cb256b34e95bca9c512f737486ecd037ce40d0a706a5b05e72f8c218366e321f9109ae4cf44b3b0104154a93394f42b4ab6125e0ba8b1a1d8c473852910b3cb7e8dc795ac01bad9a6b438b9db5f5c926940a3ac36daf2a9dc9d868ec11f51e08bc67a3d598039d328b4677229e8b587e8a00f1733adabd5d2837c084c164cf30010969c79a09ac7a9bffff5bc7e420baa9000cd49f77782205d3f6f4b6aa751f49a6b76e3d23635f1d33b906707563b8ec92dec767cc09fe9936acb43382bfc81c823ba32f25738d863cf20181208e23ce19966e729a7b4eefa68554fa4ccadac05c8eac1b52dd528b124285a16da468e3fcb3d9a24e9d670500956702fe9be5d8207d426450ca622e8e0197270cbb947231baf36e0567c0f5de639c99bb71ca0e60d2decb185cddd74d4f00000000000000000000006ed429a657a8203f6542e9dd19d7a70431aefcb9f1b673512e25503c603f19fa4c39ee9b08aadd2c7555543837770a812207bc2be9c86f94282b325e30971f0000000099106f0defa59616d3d18a4c8c04a45c204edfc4cefbd94c4c034dcbc90975b097ece2484b5287105335791eb3061ac500a6728677c72b5b76c18186d6f1a5c74aaddd22dc002fd4bd1bc3409e8d7144689c89f7a5e95fce153d4e9bf0fe0aaa3dfaa443c5081606fda5059146ef94586f5d1658ef0389734108a3af432c730175a7c6e3bb997ed39a0da78527b212001e573492190000d3acf262e0baae546c6bc16183f530a951ba461690245945ae55529e1aa0d80e36d945260e977f4dfe8105961ad69511a348fce1d1be1db324fb4e2f463ad9f17b4093e7f2ff1165a277e08bcc5f2411a05abff3b8f2dc2d896e9039181495414718ea32a3a6f786503f9485b3fc89409913883cec74b29aa74cc05a86323a972dc4d5e91460e9771a64bb899d8fb5c0031ae6997a3f512bd47b1748b2569ed5a1d7fd264d431d8aa1651ff99790567622f29c4fd60744b2b8c089869b888ed52ecaaeb123a3b5e699d84ef4341451e217"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) setsockopt$sock_attach_bpf(r0, 0x1, 0x32, &(0x7f00000047c0)=r1, 0x4) sendmsg$nl_route_sched(r0, &(0x7f00000037c0)={0x0, 0x0, &(0x7f0000003780)={&(0x7f0000007e00)=@newtaction={0x18, 0x30, 0x12f, 0x0, 0x0, {}, [{0x4}]}, 0x18}}, 0x0) 609.588256ms ago: executing program 2 (id=859): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f00000023c0)={0x26, 'hash\x00', 0x0, 0x0, 'crc32\x00'}, 0x58) r1 = accept4(r0, 0x0, 0x0, 0x0) sendto$inet6(r1, &(0x7f0000847fff)="03", 0xfffffffffffffd9f, 0x0, 0x0, 0x25) 530.788917ms ago: executing program 1 (id=860): mkdir(&(0x7f0000000040)='./file0\x00', 0x0) r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x42, 0x0) mount$fuse(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000002c0)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}) name_to_handle_at(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', &(0x7f00000000c0)=@FILEID_UDF_WITHOUT_PARENT, &(0x7f00000003c0), 0x0) 530.539017ms ago: executing program 3 (id=861): r0 = socket$inet6(0xa, 0x80002, 0x88) recvfrom(r0, 0x0, 0x2a, 0x0, 0x0, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x10010000004e20}, 0x1c) sendmmsg$inet(r0, &(0x7f0000001880)=[{{&(0x7f0000000100)={0x2, 0x4e20, @local}, 0x10, &(0x7f0000000440)=[{&(0x7f0000000140)="c1546a2561d9", 0x6}], 0x1}}], 0x1, 0x0) 233.056788ms ago: executing program 1 (id=862): r0 = socket$packet(0x11, 0xa, 0x300) setsockopt$sock_int(r0, 0x1, 0x28, &(0x7f0000000000)=0x1, 0x4) setsockopt$sock_int(r0, 0x1, 0x29, &(0x7f0000000140)=0x1d, 0x4) recvmsg(r0, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) 230.039349ms ago: executing program 3 (id=863): socket$kcm(0x29, 0x2, 0x0) socket$kcm(0x29, 0x2, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000180)='net/kcm\x00') preadv(r0, &(0x7f0000000800)=[{&(0x7f0000000300)=""/206, 0xce}, {&(0x7f00000004c0)=""/212, 0xd4}, {&(0x7f00000005c0)=""/244, 0xf4}], 0x3, 0x10, 0x1) 114.715459ms ago: executing program 2 (id=864): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000280)={0x18, 0x5, &(0x7f0000000040)=ANY=[@ANYBLOB="180100002100000000000000000000108500000075000000a50000002300000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000001c0)='mmap_lock_acquire_returned\x00', r0}, 0x10) r1 = syz_open_procfs(0x0, &(0x7f0000000000)='map_files\x00') getdents(r1, &(0x7f0000002040)=""/4086, 0xff6) 0s ago: executing program 3 (id=865): syz_mount_image$f2fs(&(0x7f0000000140), &(0x7f00000000c0)='./file1\x00', 0x0, &(0x7f0000005700)=ANY=[@ANYBLOB="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"], 0x1, 0x550f, &(0x7f00000001c0)="$eJzs3M9rI+UbAPAn7XZ/f/dbxIO3HViEFjZh0x+L3qru4g/sUlY9eNI0SUN2k0xp0rT25MGjePA/EQVPHv0bPHj2Jh4Ub0IlM1PdqgtC08RtPx+YPPO+efPM84Zl4ZkpCeDcmk9+/bkUN+JKRMxGxPWI7LxUHJm1PLwQETcjYuaJo1TM/zFxMSKuRsSNUfI8Z6l46/Pbw1urP731yzffXbpw7Yuvv5/eroFpezEiutv5+V43j2krj4+K+dqwncXuyrCI+Rvdx8U4zeNeczPLsFc7WlfL4nIrX59u7/ZHcatTq49iq72VzW/38gv2h62jPNkHHtV2snGjuZnFdj/NYusgr2v/IP+/7aA/yPM0inwfZeljMDiK+Xxzv5nvZ/txFuu9QTGf500bzf1RHBaxuFzU004jq2PzJN/0f9vb7d7ufjJs7vTbaS9ZrVRfqlTvlqs7aaM5aK6Ua93G3ZVkodUZLSsPmrXuWitNW51mpZ52F5OFVr1erlaThXvNzXatl1SrleXKnfLqYnF2O3n9wXtJp5EsjOKr7d7uoN3pJ1vpTpJ/YjFZqiy/vJjcqibvrG8kGw/v31/feDfuvf/glfU3XysW/a2sZGHpztJSuXqnvFRdPIP7/+Ap+/+kKHqM+4cTKU27AIBnj/4fmIbT6/93HsbhYTZ/mv1/6P/HYlz97+Ek+t/z3v+fwv7hRPT/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADn1g9zX76Rnczn42vF/P+KqeeKcSkiZiLi8B/MxsVjOWeLPHNPWT/3lxq+LUWWYXSNS8VxNSLWiuO3/5/2twAAAABn11cf3/ws79bzl/lpF8Qk5TdtZq5/OKZ8pYiYm/9xTNlmRi/PjylZ9u/7QuyPKVt2A+vymJLlt9wujCvbvzJ7LFx+IpTyMDPRcgAAgIk43glMtgsBAABgkj6ddgFMRymOHmUePQvO/vL+zweCV46NAAAAgGdQadoFAAAAAKcu6//9/h8AAACcbfnv/wEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/M7O/dyoDURxAH62cSD/FBTlnla4QRkpIcccIwpIE5RAWkgD1EBuKSGCFR4vWlbsaiWP7d3V90kwjAU/ZhA+zBtpAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOjT33q7+v3z66+uOYdjN3lmAwAAAFyzr7er5sU89d+31z+2lz63/SIiyoi4tnav4s1FZtXm1A+8v743hj8RTcLpO6bt411ELKqIRUT8/9T3rwAAAACv1269WabVenqajz0ghpSKNuWHb5nyioio5/8ypZWnvC+Zwpr/9yR+ZEprClizTGGp5DbJlfYkze1+rtrN7jRFasrHP59t7gAAwICqi2bYVQgAAABD+j72ABhHEbdbmeetwGlq2u29txc9AAAA4AUqxh4AAAAA0Ltm/f+sz/8L5/8BAABAV+n8PwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPq0r7er3Xqz7JpzOHaTZzYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA3LA/7ygQAmEQBnvXdyZz/8NKg6amJlUgfPyNwQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAb373l/8TU+NMMvfaWHoeSdZOja1TY+/cOPrD+Po1AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxf68pEAIBEEUzBn/O+n7H1YS9AwiREDDo4paNAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAX/e6X/xNT40wyd9pYOh5J1q4aW1eNvQeNowfj7d8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAxc79u0ZSxQEAfzOzs/FOxTXKFhFRsNDGy+2dd14nFkqw8E8QQm7vjLcqnim84xDS2Enqa0RLEUGJ3f0PVyeQJnYptohgYbUyszPJ5Ae4/prZZD8fePO+Owzzvm8WQr7zXgIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAKXh24dxkh064zguzm3tP1jJ+u1jfebRxs5C1rI4qjPps+HF6oeo21wiAAAAzI6krO9DCLvp5lLWx528/k/La7Ka/9unx3FZzx+v+8u+rP2z9svPe88fDNQZj5Pd9NbqoH/5ZCqt/2+W0+2Zv7yilT/5/N1Lkn8h8Xvrzw3T/HlGXz9+/E47D+fqyBYA+CculX0RlL8PZX2vycQAmBmtSuFd1v9Jp9mcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOowXA9PlnEUQlhoHcaZ7f0HK6f1jzZ2Fsp2/eHDjeo9s1ukIYRbq4P+5RrnMu0+v3f/zvJg0L9bf/BSCKGp0d8qpn/ngwkuDqGR5yP4j4K4+LKnJZ+zETT4QwkAgHMpLVpW1++mm0vZuWg+hNF3R+v/VytxmLD+3/vw+lZ1rGr936tthg2am+yyxbU/RqPRvfuvr368fLt/u//JG1d6b/au3rh27cZi/q5k0RsTAAAA/p120ar1fzx/cv3/YiUOE9b/n33T+7I6VjJr9f+EDhf9ms4EAABgtj378u+/Raecj9rt8MXy2trd3vh48PnK+NhAqn/bXNGq9X8y33RWAAAAQB2G69GR9f+blThMuP7/1Pcv/Fi9ZxJCuFCs/19a+XRws77pTLU6/py46TkCAADQrAtFq67/p/n+//hgy0McQnjtlXFc/BvAier/5N2vfqiOVd3/f7W+KU6luDt+HnnfDaHVbTojAAAAzrMnipYV+7+mm0sf/XTx/bb9/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB1+zMAAP//H1NCtw==") r0 = creat(&(0x7f0000000000)='./file0\x00', 0x0) pwritev(r0, &(0x7f0000002240)=[{&(0x7f0000000080)='E', 0x1}], 0x1, 0x0, 0x0) fadvise64(r0, 0x0, 0x1, 0x4) kernel console output (not intermixed with test programs): 77c-816d-cd80a5b93e5d [ 85.662768][ T4963] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 85.682804][ T4418] kernel write not supported for file /sg0 (pid: 4418 comm: kworker/0:10) [ 85.689282][ T4963] BTRFS info (device loop3): using free space tree [ 85.791273][ T4418] usb 2-1: USB disconnect, device number 2 [ 85.905786][ T4999] loop2: detected capacity change from 0 to 512 [ 85.925114][ T4999] EXT4-fs (loop2): Test dummy encryption mode enabled [ 85.977910][ T4999] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 86.082281][ T4999] EXT4-fs (loop2): 1 truncate cleaned up [ 86.091208][ T5012] loop0: detected capacity change from 0 to 64 [ 86.108020][ T4999] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 86.140087][ T4963] BTRFS info (device loop3): enabling ssd optimizations [ 86.221090][ T4999] EXT4-fs warning (device loop2): __ext4fs_dirhash:270: inode #2: comm syz.2.222: Siphash requires key [ 86.249912][ T4244] hfs: node 4:3 still has 1 user(s)! [ 86.348117][ T4252] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 86.353177][ T4247] EXT4-fs (loop2): unmounting filesystem. [ 86.509916][ T5021] loop4: detected capacity change from 0 to 2048 [ 86.542196][ T5021] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024) [ 86.586528][ T4464] udevd[4464]: incorrect nilfs2 checksum on /dev/loop4 [ 86.670747][ T5029] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 86.729430][ T5034] loop2: detected capacity change from 0 to 512 [ 86.753628][ T5034] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 86.862902][ T5034] EXT4-fs (loop2): orphan cleanup on readonly fs [ 86.919982][ T5034] EXT4-fs error (device loop2): ext4_ext_check_inode:520: inode #4: comm syz.2.232: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 2048(2048) [ 86.943356][ T5043] loop3: detected capacity change from 0 to 1024 [ 86.970944][ T5043] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869) [ 86.984036][ T5034] EXT4-fs error (device loop2): ext4_quota_enable:6995: comm syz.2.232: Bad quota inode: 4, type: 1 [ 86.997649][ T5043] EXT4-fs (loop3): invalid journal inode [ 87.013295][ T5034] EXT4-fs warning (device loop2): ext4_enable_quotas:7036: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 87.061793][ T5034] EXT4-fs (loop2): Cannot turn on quotas: error -117 [ 87.092349][ T5034] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 87.238558][ T4247] EXT4-fs (loop2): unmounting filesystem. [ 87.300931][ T5050] loop1: detected capacity change from 0 to 2048 [ 87.311694][ T5052] loop3: detected capacity change from 0 to 256 [ 87.678461][ T5063] vxcan1: tx address claim with dest, not broadcast [ 87.881128][ T5071] netlink: 20 bytes leftover after parsing attributes in process `syz.3.247'. [ 88.241718][ T27] kauditd_printk_skb: 11 callbacks suppressed [ 88.241735][ T27] audit: type=1326 audit(1732320059.699:4): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5082 comm="syz.4.253" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f817b37e819 code=0x0 [ 88.380874][ T5085] loop3: detected capacity change from 0 to 256 [ 88.508908][ T5085] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 88.590626][ T5067] loop2: detected capacity change from 0 to 32768 [ 88.655696][ T5067] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 88.950522][ T5092] program syz.3.255 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 88.981202][ T4247] ocfs2: Unmounting device (7,2) on (node local) [ 89.346645][ T5099] tun0: tun_chr_ioctl cmd 1074025672 [ 89.362091][ T5099] tun0: ignored: set checksum enabled [ 89.553372][ T5106] netlink: 84 bytes leftover after parsing attributes in process `syz.2.261'. [ 89.604332][ T5106] netlink: 72 bytes leftover after parsing attributes in process `syz.2.261'. [ 89.942746][ T5115] loop4: detected capacity change from 0 to 2048 [ 89.971421][ T5112] loop2: detected capacity change from 0 to 4096 [ 89.993180][ T5112] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 90.041407][ T5118] loop1: detected capacity change from 0 to 1024 [ 90.084554][ T5115] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 90.133915][ T4245] EXT4-fs (loop4): unmounting filesystem. [ 90.172055][ T5112] ntfs: volume version 3.1. [ 90.237166][ T5118] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 90.410568][ T5130] loop4: detected capacity change from 0 to 2048 [ 90.479655][ T5130] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 90.531490][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 90.532123][ T5130] overlayfs: upper fs needs to support d_type. [ 90.588570][ T5130] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 90.605136][ T5130] overlayfs: failed to set xattr on upper [ 90.617674][ T5130] overlayfs: ...falling back to index=off,metacopy=off. [ 90.774568][ T5136] loop3: detected capacity change from 0 to 512 [ 90.781613][ T5136] EXT4-fs: Ignoring removed oldalloc option [ 90.821341][ T5136] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 90.855047][ T4245] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh [ 90.871736][ T5136] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal [ 90.872643][ T4245] UDF-fs: error (device loop4): udf_read_inode: (ino 1317) failed !bh [ 90.976962][ T5141] netlink: 20 bytes leftover after parsing attributes in process `syz.2.276'. [ 91.223819][ T5147] netlink: 72 bytes leftover after parsing attributes in process `syz.1.279'. [ 91.539389][ T4305] netdevsim netdevsim4 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.737920][ T4305] netdevsim netdevsim4 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.868378][ T4305] netdevsim netdevsim4 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 91.996674][ T4305] netdevsim netdevsim4 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 92.118587][ T5151] loop2: detected capacity change from 0 to 32768 [ 92.274804][ T5151] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 92.291631][ T5143] loop0: detected capacity change from 0 to 32768 [ 92.463040][ T4247] ocfs2: Unmounting device (7,2) on (node local) [ 92.935334][ T4260] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 92.946290][ T4260] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 92.964873][ T4260] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 92.976363][ T4260] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 92.983940][ T4260] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 92.992411][ T4260] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 93.263452][ T5188] loop2: detected capacity change from 0 to 4096 [ 93.297135][ T5188] ntfs: (device loop2): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 93.414398][ T4418] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 93.464573][ T5188] ntfs: (device loop2): parse_options(): NLS character set macgreÿ not found. Using previous one utf8. [ 93.498686][ T5188] ntfs: (device loop2): read_ntfs_boot_sector(): Primary boot sector is invalid. [ 93.542692][ T5188] ntfs: (device loop2): read_ntfs_boot_sector(): Hot-fix: Recovering invalid primary boot sector from backup copy. [ 93.606809][ T4418] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 93.627575][ T4418] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 93.651393][ T5188] ntfs: volume version 3.1. [ 93.686618][ T4418] usb 4-1: config 0 descriptor?? [ 93.690319][ T5184] loop1: detected capacity change from 0 to 32768 [ 93.706249][ T5188] ntfs: (device loop2): ntfs_lookup_inode_by_name(): Corrupt directory. Aborting lookup. [ 93.733415][ T4418] cp210x 4-1:0.0: cp210x converter detected [ 93.745841][ T5188] ntfs: (device loop2): check_windows_hibernation_status(): Failed to find inode number for hiberfil.sys. [ 93.750720][ T5184] (syz.1.294,5184,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 93.774510][ T5188] ntfs: (device loop2): load_system_files(): Failed to determine if Windows is hibernated. Mounting read-only. Run chkdsk. [ 93.819275][ T5184] (syz.1.294,5184,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 93.962474][ T5178] chnl_net:caif_netlink_parms(): no params data found [ 94.030957][ T5184] JBD2: Ignoring recovery information on journal [ 94.104477][ T4418] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 94.131680][ T5184] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 94.330062][ T4418] cp210x 4-1:0.0: failed to get vendor val 0x370c size 15: -71 [ 94.357809][ T4246] ocfs2: Unmounting device (7,1) on (node local) [ 94.370484][ T4418] cp210x 4-1:0.0: GPIO initialisation failed: -71 [ 94.428850][ T4418] usb 4-1: cp210x converter now attached to ttyUSB0 [ 94.499681][ T4418] usb 4-1: USB disconnect, device number 3 [ 94.544003][ T4418] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 94.636007][ T4418] cp210x 4-1:0.0: device disconnected [ 94.998224][ T5178] bridge0: port 1(bridge_slave_0) entered blocking state [ 95.014517][ T4258] Bluetooth: hci2: command 0x0409 tx timeout [ 95.018893][ T5178] bridge0: port 1(bridge_slave_0) entered disabled state [ 95.037005][ T5178] device bridge_slave_0 entered promiscuous mode [ 95.051081][ T5178] bridge0: port 2(bridge_slave_1) entered blocking state [ 95.096176][ T5178] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.126570][ T5178] device bridge_slave_1 entered promiscuous mode [ 95.131992][ T5249] loop2: detected capacity change from 0 to 1024 [ 95.155981][ T5249] EXT4-fs: Ignoring removed nobh option [ 95.233931][ T5249] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 95.475079][ T4247] EXT4-fs (loop2): unmounting filesystem. [ 95.536539][ T5178] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 95.601392][ T5178] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 95.743000][ T4305] device hsr_slave_0 left promiscuous mode [ 95.768221][ T4305] device hsr_slave_1 left promiscuous mode [ 95.801643][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 95.830810][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 95.852502][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 95.871317][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 95.881483][ T4305] device bridge_slave_1 left promiscuous mode [ 95.895962][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state [ 95.919991][ T4305] device bridge_slave_0 left promiscuous mode [ 95.934162][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state [ 96.005814][ T4305] device veth1_macvtap left promiscuous mode [ 96.012481][ T4305] device veth0_macvtap left promiscuous mode [ 96.019679][ T4305] device veth1_vlan left promiscuous mode [ 96.025946][ T4305] device veth0_vlan left promiscuous mode [ 96.107077][ T5247] loop3: detected capacity change from 0 to 32768 [ 96.240447][ T5247] find_entry called with index = 0 [ 96.266162][ T5247] read_mapping_page failed! [ 96.283800][ T5247] ERROR: (device loop3): txCommit: [ 96.283800][ T5247] [ 96.441063][ T5262] loop1: detected capacity change from 0 to 32768 [ 96.478719][ T5262] XFS: noikeep mount option is deprecated. [ 96.618984][ T5262] XFS (loop1): Mounting V5 Filesystem [ 96.772252][ T5262] XFS (loop1): Ending clean mount [ 96.792774][ T5262] XFS (loop1): Quotacheck needed: Please wait. [ 96.899025][ T5262] XFS (loop1): Quotacheck: Done. [ 97.057062][ T4246] XFS (loop1): Unmounting Filesystem [ 97.094544][ T4258] Bluetooth: hci2: command 0x041b tx timeout [ 97.259531][ T5272] loop3: detected capacity change from 0 to 32768 [ 97.553305][ T5284] loop1: detected capacity change from 0 to 128 [ 97.596309][ T5284] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 97.608610][ T4305] team0 (unregistering): Port device team_slave_1 removed [ 97.622192][ T5284] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 97.751984][ T4305] team0 (unregistering): Port device team_slave_0 removed [ 97.832494][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 97.911464][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 98.044379][ T4940] usb 2-1: new high-speed USB device number 3 using dummy_hcd [ 98.247201][ T4940] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 98.274147][ T4940] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 98.303004][ T4940] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 98.325415][ T4940] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 98.354881][ T4940] usb 2-1: SerialNumber: syz [ 98.606194][ T4940] usb 2-1: 0:2 : does not exist [ 98.611412][ T4940] usb 2-1: unit 49 not found! [ 98.624383][ T4940] usb 2-1: unit 55 not found! [ 98.664841][ T5296] loop0: detected capacity change from 0 to 32768 [ 98.702600][ T4940] usb 2-1: USB disconnect, device number 3 [ 98.725825][ T5296] find_entry called with index = 0 [ 98.731255][ T5296] read_mapping_page failed! [ 98.763337][ T5296] ERROR: (device loop0): txCommit: [ 98.763337][ T5296] [ 98.975649][ T4305] bond0 (unregistering): Released all slaves [ 99.067891][ T4464] udevd[4464]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 99.085006][ T5303] loop0: detected capacity change from 0 to 1024 [ 99.120818][ T5178] team0: Port device team_slave_0 added [ 99.174403][ T4258] Bluetooth: hci2: command 0x040f tx timeout [ 99.326138][ T5178] team0: Port device team_slave_1 added [ 99.508174][ T5313] loop3: detected capacity change from 0 to 512 [ 99.513613][ T5178] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 99.521612][ T5178] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.575806][ T5313] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 99.600055][ T5313] process 'syz.3.330' launched './file1' with NULL argv: empty string added [ 99.662805][ T4252] EXT4-fs (loop3): unmounting filesystem. [ 99.678032][ T5178] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 99.691896][ T5178] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 99.699454][ T5178] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 99.729489][ T5178] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 99.847333][ T5325] loop2: detected capacity change from 0 to 256 [ 99.875416][ T5178] device hsr_slave_0 entered promiscuous mode [ 99.928473][ T5324] loop3: detected capacity change from 0 to 1764 [ 99.928733][ T5178] device hsr_slave_1 entered promiscuous mode [ 99.941457][ T5325] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 99.964384][ T5178] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 99.980665][ T5178] Cannot create hsr debugfs directory [ 100.530693][ T5178] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 100.597959][ T5178] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 100.638266][ T5178] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 100.669769][ T5178] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 100.768311][ T5347] loop3: detected capacity change from 0 to 512 [ 100.793365][ T5347] EXT4-fs: Ignoring removed mblk_io_submit option [ 100.800437][ T5347] ext4: Bad value for 'debug_want_extra_isize' [ 100.824085][ T5349] syz.2.340[5349] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 100.824437][ T5349] syz.2.340[5349] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 100.851738][ T4464] blk_print_req_error: 13 callbacks suppressed [ 100.851754][ T4464] I/O error, dev loop3, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 101.083466][ T5358] device gretap0 entered promiscuous mode [ 101.132851][ T5358] device erspan0 entered promiscuous mode [ 101.153468][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr1: link becomes ready [ 101.176139][ T5361] loop0: detected capacity change from 0 to 1024 [ 101.218586][ T5361] EXT4-fs: Ignoring removed orlov option [ 101.238382][ T5361] EXT4-fs: Ignoring removed nomblk_io_submit option [ 101.250062][ T5178] 8021q: adding VLAN 0 to HW filter on device bond0 [ 101.270972][ T4258] Bluetooth: hci2: command 0x0419 tx timeout [ 101.333528][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 101.347241][ T5361] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 101.365282][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 101.436002][ T5178] 8021q: adding VLAN 0 to HW filter on device team0 [ 101.494075][ T5372] loop1: detected capacity change from 0 to 1024 [ 101.510797][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 101.540377][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 101.584812][ T75] bridge0: port 1(bridge_slave_0) entered blocking state [ 101.591956][ T75] bridge0: port 1(bridge_slave_0) entered forwarding state [ 101.623349][ T5361] syz.0.343 (5361) used greatest stack depth: 19312 bytes left [ 101.640427][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 101.654879][ T27] audit: type=1804 audit(1732320073.109:5): pid=5372 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.1.347" name="/newroot/81/file0/bus" dev="loop1" ino=26 res=1 errno=0 [ 101.666103][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 101.756082][ T5282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 101.778716][ T5282] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 101.817900][ T5282] bridge0: port 2(bridge_slave_1) entered blocking state [ 101.825079][ T5282] bridge0: port 2(bridge_slave_1) entered forwarding state [ 101.840387][ T4305] hfsplus: b-tree write err: -5, ino 4 [ 101.872843][ T5282] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 101.902673][ T5282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 101.974988][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 102.041293][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 102.072226][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 102.105531][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 102.132162][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 102.139435][ T5347] loop3: detected capacity change from 0 to 32768 [ 102.160509][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 102.203333][ T5347] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop3 scanned by syz.3.338 (5347) [ 102.228862][ T5178] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 102.256316][ T5178] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 102.288503][ T5347] BTRFS info (device loop3): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 102.293374][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 102.345109][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 102.364581][ T5347] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 102.373288][ T5347] BTRFS info (device loop3): using free space tree [ 102.384697][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 102.679194][ T5347] BTRFS info (device loop3): enabling ssd optimizations [ 102.753318][ T5370] loop2: detected capacity change from 0 to 32768 [ 102.829995][ T5370] BTRFS: device fsid 3d39d0ba-bdae-447e-827b-b091e1a68885 devid 1 transid 8 /dev/loop2 scanned by syz.2.346 (5370) [ 102.830807][ T5416] loop0: detected capacity change from 0 to 4096 [ 102.862630][ T4252] BTRFS info (device loop3): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 102.905841][ T5370] BTRFS info (device loop2): first mount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 102.952668][ T5370] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm [ 103.006448][ T5370] BTRFS info (device loop2): using free space tree [ 103.083652][ T5178] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 103.092439][ T5416] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 103.200819][ T27] audit: type=1800 audit(1732320074.649:6): pid=5416 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.353" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 103.201780][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 103.334461][ T4262] Bluetooth: hci2: command 0x0411 tx timeout [ 103.334878][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 103.396467][ T5370] BTRFS info (device loop2): enabling ssd optimizations [ 103.430083][ T5389] loop1: detected capacity change from 0 to 32768 [ 103.599817][ T5389] XFS (loop1): Mounting V5 Filesystem [ 103.631387][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 103.660802][ T4247] BTRFS info (device loop2): last unmount of filesystem 3d39d0ba-bdae-447e-827b-b091e1a68885 [ 103.785110][ T5389] XFS (loop1): Ending clean mount [ 104.019631][ T5389] XFS (loop1): Quotacheck needed: Please wait. [ 104.138005][ T5389] XFS (loop1): Quotacheck: Done. [ 104.250888][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 104.284949][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 104.307538][ T5472] loop0: detected capacity change from 0 to 256 [ 104.343105][ T5178] device veth0_vlan entered promiscuous mode [ 104.390993][ T4246] XFS (loop1): Unmounting Filesystem [ 104.394682][ T5472] FAT-fs (loop0): Directory bread(block 64) failed [ 104.428370][ T5472] FAT-fs (loop0): Directory bread(block 65) failed [ 104.435228][ T5472] FAT-fs (loop0): Directory bread(block 66) failed [ 104.441856][ T5472] FAT-fs (loop0): Directory bread(block 67) failed [ 104.461722][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 104.494431][ T5472] FAT-fs (loop0): Directory bread(block 68) failed [ 104.501021][ T5472] FAT-fs (loop0): Directory bread(block 69) failed [ 104.509253][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 104.540460][ T5178] device veth1_vlan entered promiscuous mode [ 104.560897][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 104.569478][ T5472] FAT-fs (loop0): Directory bread(block 70) failed [ 104.575076][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 104.584545][ T5472] FAT-fs (loop0): Directory bread(block 71) failed [ 104.609752][ T5472] FAT-fs (loop0): Directory bread(block 72) failed [ 104.615008][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 104.624751][ T5476] ./bus: Can't open blockdev [ 104.632684][ T5472] FAT-fs (loop0): Directory bread(block 73) failed [ 104.705882][ T5178] device veth0_macvtap entered promiscuous mode [ 104.741955][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 104.760793][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 104.807201][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 104.838464][ T5178] device veth1_macvtap entered promiscuous mode [ 104.856216][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 104.879484][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 104.923819][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 104.989954][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.030633][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 105.095690][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.124033][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 105.187488][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.227285][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 105.251071][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.316636][ T5178] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 105.324300][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 105.344096][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 105.368011][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.413530][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.469467][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.502709][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.521285][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.542976][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.560954][ T5178] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 105.571614][ T5178] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 105.583548][ T5178] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 105.592716][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 105.608992][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 105.640226][ T5178] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.652701][ T5178] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.666813][ T5178] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.676531][ T5178] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 105.774341][ T4292] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 105.900608][ T4601] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 105.927465][ T4601] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 105.973072][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 105.985586][ T4292] usb 4-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 106.009757][ T4292] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 106.017649][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 106.044392][ T4292] usb 4-1: Product: syz [ 106.052504][ T4292] usb 4-1: Manufacturer: syz [ 106.061206][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 106.070010][ T4292] usb 4-1: SerialNumber: syz [ 106.103856][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 106.106944][ T4292] usb 4-1: config 0 descriptor?? [ 106.224246][ T4940] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 106.424318][ T4940] usb 1-1: Using ep0 maxpacket: 32 [ 106.431423][ T4940] usb 1-1: New USB device found, idVendor=055f, idProduct=d001, bcdDevice=88.92 [ 106.450983][ T4940] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 106.486362][ T4940] usb 1-1: config 0 descriptor?? [ 106.525664][ T4940] gspca_main: nw80x-2.14.0 probing 055f:d001 [ 106.548497][ T4292] usb 4-1: Firmware: major: 0, minor: 248, hardware type: ATUSB (0) [ 106.751352][ T4292] usb 4-1: failed to fetch extended address, random address set [ 106.836331][ T4292] usb 4-1: USB disconnect, device number 4 [ 107.333604][ T4940] gspca_nw80x: reg_r err -71 [ 107.343592][ T27] audit: type=1326 audit(1732320078.799:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.365895][ T4940] nw80x: probe of 1-1:0.0 failed with error -71 [ 107.394564][ T4940] usb 1-1: USB disconnect, device number 3 [ 107.441692][ T27] audit: type=1326 audit(1732320078.799:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.494634][ T27] audit: type=1326 audit(1732320078.799:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.526729][ T5560] netlink: 4 bytes leftover after parsing attributes in process `syz.3.383'. [ 107.554432][ T5030] usb 3-1: new high-speed USB device number 4 using dummy_hcd [ 107.554932][ T27] audit: type=1326 audit(1732320078.799:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.649533][ T27] audit: type=1326 audit(1732320078.799:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=265 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.724515][ T27] audit: type=1326 audit(1732320078.799:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.781344][ T27] audit: type=1326 audit(1732320078.799:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=332 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.811969][ T5030] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 107.826973][ T27] audit: type=1326 audit(1732320078.799:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5556 comm="syz.1.382" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8ca7d7e819 code=0x7ffc0000 [ 107.849906][ T5030] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 107.924375][ T5030] usb 3-1: New USB device found, idVendor=05ac, idProduct=0265, bcdDevice= 0.00 [ 107.989881][ T5030] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 108.033408][ T5030] usb 3-1: config 0 descriptor?? [ 108.463604][ T5030] magicmouse 0003:05AC:0265.0003: unknown main item tag 0x0 [ 108.489019][ T5594] loop1: detected capacity change from 0 to 256 [ 108.491564][ T5030] magicmouse 0003:05AC:0265.0003: unknown main item tag 0x0 [ 108.500195][ T5594] exfat: Deprecated parameter 'utf8' [ 108.511071][ T5594] exfat: Deprecated parameter 'utf8' [ 108.531657][ T5594] exfat: Deprecated parameter 'utf8' [ 108.532575][ T5030] magicmouse 0003:05AC:0265.0003: unknown main item tag 0x0 [ 108.582421][ T5594] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d) [ 108.588481][ T5030] magicmouse 0003:05AC:0265.0003: hidraw0: USB HID v0.00 Device [HID 05ac:0265] on usb-dummy_hcd.2-1/input0 [ 108.644113][ T5030] magicmouse 0003:05AC:0265.0003: magicmouse input not registered [ 108.668431][ T5030] magicmouse: probe of 0003:05AC:0265.0003 failed with error -12 [ 108.714682][ T5030] usb 3-1: USB disconnect, device number 4 [ 108.805757][ T5602] device vlan2 entered promiscuous mode [ 108.835009][ T5602] device bridge0 entered promiscuous mode [ 108.875710][ T5602] bridge0: port 3(vlan2) entered blocking state [ 108.884570][ T5602] bridge0: port 3(vlan2) entered disabled state [ 108.950021][ T5602] device bridge0 left promiscuous mode [ 109.158608][ T5613] loop3: detected capacity change from 0 to 16 [ 109.315178][ T5613] erofs: (device loop3): mounted with root inode @ nid 36. [ 110.004861][ T5632] loop3: detected capacity change from 0 to 4096 [ 110.040113][ T5632] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 110.191560][ T5632] ntfs3: loop3: failed to convert "c46c" to iso8859-6 [ 110.213455][ T5607] loop1: detected capacity change from 0 to 32768 [ 110.291496][ T5607] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 110.345618][ T5607] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 110.389136][ T5640] loop5: detected capacity change from 0 to 8192 [ 110.413605][ T5611] loop0: detected capacity change from 0 to 32768 [ 110.508760][ T27] audit: type=1800 audit(1732320081.969:15): pid=5607 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.398" name="file1" dev="loop1" ino=17058 res=0 errno=0 [ 110.619258][ T5611] XFS (loop0): Mounting V5 Filesystem [ 110.623751][ T4246] ocfs2: Unmounting device (7,1) on (node local) [ 110.893012][ T5611] XFS (loop0): Ending clean mount [ 111.082860][ T4244] XFS (loop0): Unmounting Filesystem [ 111.211870][ T5674] loop1: detected capacity change from 0 to 164 [ 111.328511][ T5674] Unable to read rock-ridge attributes [ 111.367402][ T5674] Unable to read rock-ridge attributes [ 111.412052][ T5674] iso9660: Corrupted directory entry in block 4 of inode 1792 [ 111.710771][ T5687] loop2: detected capacity change from 0 to 2048 [ 111.813496][ T5687] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 111.892510][ T5687] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 112.356364][ T5708] bridge0: port 1(bridge_slave_0) entered disabled state [ 112.378543][ T5708] bridge0: port 2(bridge_slave_1) entered disabled state [ 112.951398][ T5725] loop0: detected capacity change from 0 to 4096 [ 113.026053][ T5725] ntfs: volume version 3.1. [ 113.206674][ T5735] loop3: detected capacity change from 0 to 512 [ 113.321735][ T5735] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 113.355021][ T5735] fs-verity: sha256 using implementation "sha256-avx2" [ 113.363911][ T5735] EXT4-fs warning (device loop3): ext4_begin_enable_verity:137: inode #13: comm syz.3.442: verity is only allowed on extent-based files [ 113.388330][ T5743] loop0: detected capacity change from 0 to 512 [ 113.451951][ T4252] EXT4-fs (loop3): unmounting filesystem. [ 113.460107][ T5743] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 113.487196][ T5743] ext4 filesystem being mounted at /79/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 113.499631][ T5711] loop5: detected capacity change from 0 to 40427 [ 113.538329][ T5711] F2FS-fs (loop5): Mismatch start address, segment0(8) cp_blkaddr(0) [ 113.580989][ T5711] F2FS-fs (loop5): Can't find valid F2FS filesystem in 2th superblock [ 113.618049][ T5711] F2FS-fs (loop5): invalid crc value [ 113.642027][ T5711] F2FS-fs (loop5): Found nat_bits in checkpoint [ 113.650341][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 113.784378][ T5711] F2FS-fs (loop5): Try to recover 2th superblock, ret: 0 [ 113.791705][ T5711] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 113.946315][ T5178] syz-executor: attempt to access beyond end of device [ 113.946315][ T5178] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 114.037068][ T5760] loop1: detected capacity change from 0 to 2048 [ 114.083518][ T5760] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 114.224308][ T4940] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 114.454353][ T4940] usb 4-1: Using ep0 maxpacket: 16 [ 114.484349][ T4940] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 114.498968][ T4940] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 114.520009][ T4940] usb 4-1: Product: syz [ 114.524399][ T4940] usb 4-1: Manufacturer: syz [ 114.558870][ T4940] usb 4-1: SerialNumber: syz [ 114.575820][ T4940] r8152-cfgselector 4-1: config 0 descriptor?? [ 114.817505][ T4940] r8152-cfgselector 4-1: Unknown version 0x0000 [ 114.837656][ T4940] r8152-cfgselector 4-1: Unknown version 0x0000 [ 114.867603][ T4940] r8152-cfgselector 4-1: bad CDC descriptors [ 114.901834][ T4940] usbip-host 4-1: 4-1 is not in match_busid table... skip! [ 115.094385][ T4292] usb 4-1: USB disconnect, device number 5 [ 115.118046][ T5791] loop5: detected capacity change from 0 to 2048 [ 115.166205][ T5791] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 115.412640][ T5800] loop1: detected capacity change from 0 to 1024 [ 115.870425][ T4305] hfsplus: b-tree write err: -5, ino 4 [ 115.988176][ T5817] loop1: detected capacity change from 0 to 1024 [ 116.107416][ T5816] loop3: detected capacity change from 0 to 4096 [ 116.218054][ T5820] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 116.259688][ T27] audit: type=1800 audit(1732320087.719:16): pid=5816 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.475" name="file2" dev="loop3" ino=16 res=0 errno=0 [ 116.279973][ C1] vkms_vblank_simulate: vblank timer overrun [ 116.330209][ T5804] loop5: detected capacity change from 0 to 32768 [ 116.382978][ T5804] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop5 scanned by syz.5.469 (5804) [ 116.458933][ T5804] BTRFS info (device loop5): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 116.485047][ T5804] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 116.513593][ T5804] BTRFS info (device loop5): setting nodatacow, compression disabled [ 116.554439][ T4418] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 116.575193][ T5804] BTRFS info (device loop5): setting datacow [ 116.581277][ T5804] BTRFS info (device loop5): doing ref verification [ 116.604354][ T5804] BTRFS info (device loop5): force clearing of disk cache [ 116.611554][ T5804] BTRFS info (device loop5): turning off barriers [ 116.658120][ T5804] BTRFS info (device loop5): enabling ssd optimizations [ 116.667171][ T5831] sch_tbf: burst 0 is lower than device veth0_to_bridge mtu (1514) ! [ 116.697200][ T5804] BTRFS info (device loop5): using spread ssd allocation scheme [ 116.744771][ T5804] BTRFS info (device loop5): using free space tree [ 116.766227][ T4418] usb 1-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice= 0.00 [ 116.787862][ T4418] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 116.805528][ T5833] loop3: detected capacity change from 0 to 2048 [ 116.860339][ T4418] usb 1-1: config 0 descriptor?? [ 116.892008][ T5833] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 117.097256][ T5824] loop1: detected capacity change from 0 to 32768 [ 117.126599][ T5857] loop2: detected capacity change from 0 to 256 [ 117.137617][ T5804] BTRFS info (device loop5): rebuilding free space tree [ 117.201327][ T5824] XFS (loop1): Mounting V5 Filesystem [ 117.311266][ T5868] loop3: detected capacity change from 0 to 1024 [ 117.333586][ T4418] playstation 0003:054C:0DF2.0004: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.0-1/input0 [ 117.365568][ T5824] XFS (loop1): Ending clean mount [ 117.425975][ T5824] XFS (loop1): Quotacheck needed: Please wait. [ 117.533201][ T5824] XFS (loop1): Quotacheck: Done. [ 117.534257][ T4418] playstation 0003:054C:0DF2.0004: Failed to retrieve feature with reportID 9: -71 [ 117.588374][ T4418] playstation 0003:054C:0DF2.0004: Failed to retrieve DualSense pairing info: -71 [ 117.638610][ T4418] playstation 0003:054C:0DF2.0004: Failed to get MAC address from DualSense [ 117.651700][ T5872] bridge0: port 3(ipvlan2) entered blocking state [ 117.667917][ T4418] playstation 0003:054C:0DF2.0004: Failed to create dualsense. [ 117.704834][ T4418] playstation: probe of 0003:054C:0DF2.0004 failed with error -71 [ 117.709416][ T5872] bridge0: port 3(ipvlan2) entered disabled state [ 117.741572][ T5178] BTRFS info (device loop5): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 117.758477][ T4246] XFS (loop1): Unmounting Filesystem [ 117.779264][ T4418] usb 1-1: USB disconnect, device number 4 [ 118.037197][ T4305] hfsplus: b-tree write err: -5, ino 4 [ 118.159845][ T5876] ALSA: seq fatal error: cannot create timer (-22) [ 118.351869][ T5880] loop0: detected capacity change from 0 to 1024 [ 118.402256][ T5882] loop3: detected capacity change from 0 to 256 [ 118.483369][ T5882] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 118.891169][ T5895] loop1: detected capacity change from 0 to 2048 [ 118.932404][ T5895] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 119.162860][ T5903] loop0: detected capacity change from 0 to 256 [ 119.310202][ T5905] loop1: detected capacity change from 0 to 4096 [ 119.374310][ T4529] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 119.395523][ T5906] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 119.422187][ T5886] loop2: detected capacity change from 0 to 32768 [ 119.583639][ T5886] add_index: next_index = 0. Resetting! [ 119.604013][ T5886] find_entry called with index >= next_index [ 119.610211][ T5886] find_entry called with index >= next_index [ 119.615284][ T4529] usb 4-1: New USB device found, idVendor=1d50, idProduct=606f, bcdDevice=14.d4 [ 119.616340][ T5886] find_entry called with index >= next_index [ 119.631841][ T5886] find_entry called with index >= next_index [ 119.639498][ T5886] find_entry called with index >= next_index [ 119.639874][ T5910] loop5: detected capacity change from 0 to 8192 [ 119.659248][ T4529] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 119.677391][ T4529] usb 4-1: config 0 descriptor?? [ 119.688338][ T5886] find_entry called with index >= next_index [ 119.709199][ T5910] loop5: p1 p2 p3 p4 [ 119.723655][ T5910] loop5: partition table partially beyond EOD, truncated [ 119.732725][ T5913] bridge0: port 3(ipvlan2) entered blocking state [ 119.733760][ T5886] find_entry called with index >= next_index [ 119.739965][ T5913] bridge0: port 3(ipvlan2) entered disabled state [ 119.752638][ T5910] loop5: p1 size 108922248 extends beyond EOD, truncated [ 119.762022][ T5910] loop5: p2 start 861536256 is beyond EOD, truncated [ 119.782834][ T5910] loop5: p3 start 851968 is beyond EOD, truncated [ 119.790735][ T5886] read_mapping_page failed! [ 119.805669][ T5886] ERROR: (device loop2): txCommit: [ 119.805669][ T5886] [ 119.812867][ T5910] loop5: p4 start 393216 is beyond EOD, truncated [ 119.841520][ T5886] ERROR: (device loop2): remounting filesystem as read-only [ 120.105871][ T4529] gs_usb 4-1:0.0: Configuring for 2 interfaces [ 120.334484][ T4292] usb 2-1: new high-speed USB device number 4 using dummy_hcd [ 120.422226][ T5932] loop0: detected capacity change from 0 to 128 [ 120.455485][ T5932] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 120.481636][ T5932] ext4 filesystem being mounted at /95/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 120.508445][ T4529] gs_usb 4-1:0.0: Disabling termination support for channel 0 (-EPROTO) [ 120.528638][ T4529] gs_usb 4-1:0.0: Couldn't get bit timing const for channel 1 (-EPROTO) [ 120.529644][ T5932] fscrypt (loop0, inode 12): Can't use IV_INO_LBLK_64 policy with contents mode other than AES-256-XTS [ 120.537273][ T4292] usb 2-1: Using ep0 maxpacket: 16 [ 120.574443][ T4292] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 120.585572][ T4292] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 120.596071][ T4292] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2d5a, bcdDevice= 0.00 [ 120.605506][ T4292] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 120.616165][ T4292] usb 2-1: config 0 descriptor?? [ 120.625013][ T4529] gs_usb: probe of 4-1:0.0 failed with error -71 [ 120.635071][ T5938] loop2: detected capacity change from 0 to 64 [ 120.648056][ T4529] usb 4-1: USB disconnect, device number 6 [ 120.680852][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 120.910658][ T27] audit: type=1326 audit(1732320092.369:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 120.932773][ C1] vkms_vblank_simulate: vblank timer overrun [ 120.955598][ T5944] TCP: request_sock_TCP: Possible SYN flooding on port 20002. Sending cookies. Check SNMP counters. [ 121.038742][ T27] audit: type=1326 audit(1732320092.419:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 121.040404][ T4292] savu 0003:1E7D:2D5A.0005: hidraw0: USB HID v0.00 Device [HID 1e7d:2d5a] on usb-dummy_hcd.1-1/input0 [ 121.060889][ C1] vkms_vblank_simulate: vblank timer overrun [ 121.136550][ T27] audit: type=1326 audit(1732320092.429:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 121.176015][ T27] audit: type=1326 audit(1732320092.429:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 121.255056][ T27] audit: type=1326 audit(1732320092.439:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 121.308811][ T4292] usb 2-1: USB disconnect, device number 4 [ 121.366280][ T27] audit: type=1326 audit(1732320092.439:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=251 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 121.395860][ T5954] bridge0: port 3(ipvlan2) entered blocking state [ 121.449365][ T5954] bridge0: port 3(ipvlan2) entered disabled state [ 121.494713][ T27] audit: type=1326 audit(1732320092.439:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5941 comm="syz.0.516" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff21237e819 code=0x7ffc0000 [ 122.447170][ T5998] mmap: syz.3.535 (5998) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 122.907850][ T6008] bridge0: port 3(ipvlan2) entered blocking state [ 122.934529][ T6008] bridge0: port 3(ipvlan2) entered disabled state [ 123.172661][ T5971] loop0: detected capacity change from 0 to 40427 [ 123.213358][ T5980] loop2: detected capacity change from 0 to 40427 [ 123.224457][ T5971] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 123.253146][ T5971] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 123.271165][ T5980] F2FS-fs (loop2): invalid crc value [ 123.310289][ T5971] F2FS-fs (loop0): invalid crc value [ 123.323257][ T5980] F2FS-fs (loop2): Found nat_bits in checkpoint [ 123.349516][ T5971] F2FS-fs (loop0): Found nat_bits in checkpoint [ 123.430112][ T5980] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 123.461170][ T5971] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 123.471897][ T5971] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 123.557082][ T4247] syz-executor: attempt to access beyond end of device [ 123.557082][ T4247] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 123.649641][ T4244] syz-executor: attempt to access beyond end of device [ 123.649641][ T4244] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 124.005480][ T6041] bridge0: port 3(ipvlan2) entered blocking state [ 124.024486][ T6041] bridge0: port 3(ipvlan2) entered disabled state [ 125.034365][ T4940] usb 2-1: new high-speed USB device number 5 using dummy_hcd [ 125.083725][ T6038] loop5: detected capacity change from 0 to 32768 [ 125.245254][ T4940] usb 2-1: Using ep0 maxpacket: 8 [ 125.248280][ T6038] XFS (loop5): Mounting V5 Filesystem [ 125.252333][ T4940] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 125.370042][ T6053] loop3: detected capacity change from 0 to 32768 [ 125.377086][ T4940] usb 2-1: New USB device found, idVendor=07c0, idProduct=1512, bcdDevice=30.22 [ 125.390971][ T4940] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 125.401645][ T6038] XFS (loop5): Ending clean mount [ 125.417342][ T6038] XFS (loop5): Quotacheck needed: Please wait. [ 125.424089][ T4940] usb 2-1: config 0 descriptor?? [ 125.532709][ T6038] XFS (loop5): Quotacheck: Done. [ 125.540700][ T6053] XFS (loop3): Mounting V5 Filesystem [ 125.646967][ T4940] iowarrior 2-1:0.0: IOWarrior product=0x1512, serial= interface=0 now attached to iowarrior0 [ 125.686519][ T6053] XFS (loop3): Ending clean mount [ 125.720451][ T5178] XFS (loop5): Unmounting Filesystem [ 125.792352][ T6053] syz.3.544 (6053) used greatest stack depth: 18880 bytes left [ 125.837992][ T4252] XFS (loop3): Unmounting Filesystem [ 125.966482][ T6065] loop0: detected capacity change from 0 to 40427 [ 125.994252][ T6065] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 126.026819][ T6065] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 126.114294][ T6065] F2FS-fs (loop0): Found nat_bits in checkpoint [ 126.291068][ T6065] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 126.306325][ T6065] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 126.413138][ T4940] usb 2-1: USB disconnect, device number 5 [ 126.436305][ T4940] iowarrior 2-1:0.0: I/O-Warror #0 now disconnected [ 126.483533][ T6087] loop2: detected capacity change from 0 to 32768 [ 126.611106][ T6087] XFS (loop2): Mounting V5 Filesystem [ 126.721894][ T6087] XFS (loop2): Ending clean mount [ 126.738769][ T6087] XFS (loop2): Quotacheck needed: Please wait. [ 126.866540][ T6087] XFS (loop2): Quotacheck: Done. [ 127.035414][ T4247] XFS (loop2): Unmounting Filesystem [ 127.622678][ T6145] loop3: detected capacity change from 0 to 4096 [ 127.684490][ T6145] ntfs3: loop3: Different NTFS' sector size (1024) and media sector size (512) [ 127.782135][ T6145] ntfs3: loop3: Failed to load $Extend. [ 127.834741][ T27] audit: type=1800 audit(1732320099.289:24): pid=6145 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.561" name="file1" dev="loop3" ino=30 res=0 errno=0 [ 128.160782][ T6142] loop5: detected capacity change from 0 to 32768 [ 128.213048][ T6142] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 scanned by syz.5.559 (6142) [ 128.278068][ T6142] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 128.298781][ T6142] BTRFS info (device loop5): using sha256 (sha256-avx2) checksum algorithm [ 128.331886][ T6142] BTRFS info (device loop5): using free space tree [ 128.481736][ T6142] BTRFS info (device loop5): enabling ssd optimizations [ 128.524387][ T4288] usb 2-1: new high-speed USB device number 6 using dummy_hcd [ 128.729831][ T5178] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 128.743346][ T4288] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 128.771803][ T4288] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 128.842197][ T4288] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 128.867245][ T4288] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 128.918603][ T4288] usb 2-1: SerialNumber: syz [ 129.170608][ T4288] usb 2-1: 0:2 : does not exist [ 129.184614][ T4288] usb 2-1: unit 255 not found! [ 129.236272][ T4288] usb 2-1: USB disconnect, device number 6 [ 129.248121][ T6214] loop3: detected capacity change from 0 to 256 [ 129.382293][ T6214] FAT-fs (loop3): Directory bread(block 64) failed [ 129.399158][ T6179] loop2: detected capacity change from 0 to 40427 [ 129.406365][ T6214] FAT-fs (loop3): Directory bread(block 65) failed [ 129.413016][ T6214] FAT-fs (loop3): Directory bread(block 66) failed [ 129.436288][ T6214] FAT-fs (loop3): Directory bread(block 67) failed [ 129.452611][ T6214] FAT-fs (loop3): Directory bread(block 68) failed [ 129.462194][ T6179] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 129.485229][ T6214] FAT-fs (loop3): Directory bread(block 69) failed [ 129.492032][ T6214] FAT-fs (loop3): Directory bread(block 70) failed [ 129.509843][ T4464] udevd[4464]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 129.513124][ T6179] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 129.543013][ T6214] FAT-fs (loop3): Directory bread(block 71) failed [ 129.595712][ T6214] FAT-fs (loop3): Directory bread(block 72) failed [ 129.615213][ T6214] FAT-fs (loop3): Directory bread(block 73) failed [ 129.633072][ T6179] F2FS-fs (loop2): Found nat_bits in checkpoint [ 129.815112][ T6179] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 129.833316][ T6179] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 130.527796][ T6220] loop5: detected capacity change from 0 to 32768 [ 130.677999][ T6220] XFS (loop5): Mounting V5 Filesystem [ 130.882765][ T6220] XFS (loop5): Ending clean mount [ 130.962307][ T6220] XFS (loop5): Quotacheck needed: Please wait. [ 131.046847][ T6220] XFS (loop5): Quotacheck: Done. [ 131.240652][ T5178] XFS (loop5): Unmounting Filesystem [ 131.248804][ T6274] loop0: detected capacity change from 0 to 512 [ 131.441124][ T6274] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 131.450789][ T6274] ext4 filesystem being mounted at /108/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 131.470899][ T6245] loop3: detected capacity change from 0 to 32768 [ 131.491879][ T6274] EXT4-fs (loop0): re-mounted. Quota mode: writeback. [ 131.584633][ T6245] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.579 (6245) [ 131.603819][ T4244] EXT4-fs error (device loop0): ext4_readdir:260: inode #12: block 32: comm syz-executor: path /108/file1/file0: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=3, rec_len=0, size=2048 fake=0 [ 131.676573][ T6245] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 131.720790][ T6245] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 131.764515][ T6245] BTRFS info (device loop3): turning off barriers [ 131.770994][ T6245] BTRFS info (device loop3): setting nodatasum [ 131.827999][ T6245] BTRFS info (device loop3): enabling auto defrag [ 131.858488][ T6245] BTRFS info (device loop3): force zlib compression, level 3 [ 131.898985][ T6245] BTRFS info (device loop3): doing ref verification [ 131.929369][ T6245] BTRFS info (device loop3): using free space tree [ 132.146493][ T6277] loop2: detected capacity change from 0 to 32768 [ 132.226083][ T6277] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.584 (6277) [ 132.354322][ T6277] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 132.401107][ T4252] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 132.404306][ T6277] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 132.493768][ T6277] BTRFS info (device loop2): turning off barriers [ 132.524345][ T6277] BTRFS info (device loop2): force clearing of disk cache [ 132.560572][ T6277] BTRFS info (device loop2): doing ref verification [ 132.574554][ T6277] BTRFS info (device loop2): using free space tree [ 132.829888][ T6283] loop1: detected capacity change from 0 to 32768 [ 132.860170][ T1276] ieee802154 phy0 wpan0: encryption failed: -22 [ 132.866611][ T1276] ieee802154 phy1 wpan1: encryption failed: -22 [ 132.874539][ T4529] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 132.883170][ T6283] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.586 (6283) [ 132.974873][ T6277] BTRFS info (device loop2): enabling ssd optimizations [ 133.024270][ T6277] BTRFS info (device loop2): rebuilding free space tree [ 133.032421][ T6283] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 133.084366][ T6283] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 133.093169][ T6283] BTRFS info (device loop1): metadata ratio 2 [ 133.096260][ T4529] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 133.120615][ T6277] BTRFS info (device loop2): checking UUID tree [ 133.145020][ T4529] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 133.149222][ T6283] BTRFS info (device loop1): force zlib compression, level 3 [ 133.193471][ T4529] usb 6-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 133.209864][ T6283] BTRFS info (device loop1): use zlib compression, level 3 [ 133.238443][ T4529] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 133.255050][ T6283] BTRFS info (device loop1): enabling auto defrag [ 133.261706][ T6283] BTRFS info (device loop1): max_inline at 0 [ 133.283622][ T4529] usb 6-1: SerialNumber: syz [ 133.304422][ T6283] BTRFS info (device loop1): using free space tree [ 133.369079][ T4247] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 133.551592][ T4529] usb 6-1: 0:2 : does not exist [ 133.567524][ T4529] usb 6-1: unit 255 not found! [ 133.597982][ T4529] usb 6-1: USB disconnect, device number 2 [ 133.685387][ T6283] BTRFS info (device loop1): enabling ssd optimizations [ 133.876555][ T4236] udevd[4236]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 134.048501][ T6329] loop3: detected capacity change from 0 to 32768 [ 134.206920][ T6329] XFS (loop3): Mounting V5 Filesystem [ 134.221085][ T4246] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 134.698155][ T6329] XFS (loop3): Ending clean mount [ 134.722077][ T6329] XFS (loop3): Quotacheck needed: Please wait. [ 134.833313][ T6329] XFS (loop3): Quotacheck: Done. [ 134.982785][ T4252] XFS (loop3): Unmounting Filesystem [ 136.007047][ T6368] loop1: detected capacity change from 0 to 40427 [ 136.041071][ T6368] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 136.089967][ T6368] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 136.166296][ T6368] F2FS-fs (loop1): Found nat_bits in checkpoint [ 136.311841][ T6368] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 136.314661][ T6378] loop2: detected capacity change from 0 to 32768 [ 136.329574][ T6368] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 136.463581][ T6378] XFS (loop2): Mounting V5 Filesystem [ 136.478143][ T6386] loop3: detected capacity change from 0 to 32768 [ 136.491759][ T6386] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.603 (6386) [ 136.547880][ T6386] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 136.604449][ T6386] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 136.613707][ T6386] BTRFS info (device loop3): metadata ratio 2 [ 136.649333][ T6378] XFS (loop2): Ending clean mount [ 136.661765][ T6378] XFS (loop2): Quotacheck needed: Please wait. [ 136.687336][ T6386] BTRFS info (device loop3): force zlib compression, level 3 [ 136.713761][ T6386] BTRFS info (device loop3): use zlib compression, level 3 [ 136.748455][ T6378] XFS (loop2): Quotacheck: Done. [ 136.772261][ T6386] BTRFS info (device loop3): enabling auto defrag [ 136.788603][ T6378] syz.2.600: attempt to access beyond end of device [ 136.788603][ T6378] loop2: rw=4096, sector=15102180043050188799, nr_sectors = 1 limit=32768 [ 136.810677][ T6386] BTRFS info (device loop3): max_inline at 0 [ 136.818779][ T6386] BTRFS info (device loop3): using free space tree [ 136.984577][ T4247] XFS (loop2): Unmounting Filesystem [ 137.108899][ T6386] BTRFS info (device loop3): enabling ssd optimizations [ 137.360650][ T4252] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 139.366825][ T6441] loop5: detected capacity change from 0 to 32768 [ 139.419915][ T6441] XFS (loop5): Mounting V5 Filesystem [ 139.454718][ T6441] XFS (loop5): Ending clean mount [ 139.487115][ T27] audit: type=1800 audit(1732320110.949:25): pid=6441 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.615" name="file1" dev="loop5" ino=6150 res=0 errno=0 [ 139.525577][ T5178] XFS (loop5): Unmounting Filesystem [ 139.757076][ T6462] loop3: detected capacity change from 0 to 4096 [ 139.826696][ T6462] NILFS (loop3): invalid segment: Checksum error in segment payload [ 139.875119][ T6462] NILFS (loop3): trying rollback from an earlier position [ 139.931010][ T6462] NILFS (loop3): recovery complete [ 139.955447][ T6469] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 140.536507][ T6485] loop3: detected capacity change from 0 to 256 [ 140.565941][ T6485] exfat: Deprecated parameter 'utf8' [ 140.571303][ T6485] exfat: Deprecated parameter 'utf8' [ 140.587200][ T6485] exfat: Deprecated parameter 'utf8' [ 140.612576][ T6485] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x18acca35, utbl_chksum : 0xe619d30d) [ 140.840515][ T6487] loop3: detected capacity change from 0 to 256 [ 140.885190][ T6487] exfat: Deprecated parameter 'utf8' [ 140.921503][ T6487] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 141.236747][ T6475] loop5: detected capacity change from 0 to 40427 [ 141.273917][ T6475] F2FS-fs (loop5): Invalid log_blocksize (268), supports only 12 [ 141.322769][ T6475] F2FS-fs (loop5): Can't find valid F2FS filesystem in 1th superblock [ 141.395952][ T6475] F2FS-fs (loop5): Found nat_bits in checkpoint [ 141.466959][ T6482] loop2: detected capacity change from 0 to 32768 [ 141.525639][ T6482] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 scanned by syz.2.628 (6482) [ 141.584809][ T6475] F2FS-fs (loop5): Try to recover 1th superblock, ret: 0 [ 141.592035][ T6475] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 141.600516][ T6482] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 141.604639][ T6483] loop1: detected capacity change from 0 to 32768 [ 141.630973][ T6482] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 141.687104][ T6482] BTRFS info (device loop2): setting nodatacow, compression disabled [ 141.714353][ T6482] BTRFS info (device loop2): metadata ratio 8 [ 141.751101][ T6482] BTRFS info (device loop2): doing ref verification [ 141.762335][ T6483] XFS (loop1): Mounting V5 Filesystem [ 141.793233][ T6482] BTRFS info (device loop2): metadata ratio 32769 [ 141.841191][ T6498] loop3: detected capacity change from 0 to 4096 [ 141.855156][ T6482] BTRFS info (device loop2): turning off barriers [ 141.861794][ T6482] BTRFS info (device loop2): enabling ssd optimizations [ 141.907941][ T6482] BTRFS info (device loop2): using spread ssd allocation scheme [ 141.949943][ T6482] BTRFS info (device loop2): turning on barriers [ 141.952849][ T6483] XFS (loop1): Ending clean mount [ 141.986358][ T6482] BTRFS info (device loop2): using free space tree [ 141.989578][ T6483] XFS (loop1): Quotacheck needed: Please wait. [ 142.114820][ T6483] XFS (loop1): Quotacheck: Done. [ 142.305149][ T4252] ntfs3: loop3: ntfs_evict_inode r=5 failed, -22. [ 142.311948][ T4252] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 142.404427][ T4246] XFS (loop1): Unmounting Filesystem [ 142.487853][ T4247] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 143.012262][ T6535] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.022257][ T6535] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.031478][ T6535] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.040254][ T6535] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 143.051490][ T6535] device vxlan0 entered promiscuous mode [ 143.086233][ T6535] netdevsim netdevsim2 netdevsim0: unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.095576][ T6535] netdevsim netdevsim2 netdevsim1: unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.104561][ T6535] netdevsim netdevsim2 netdevsim2: unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.113451][ T6535] netdevsim netdevsim2 netdevsim3: unset [0, 0] type 1 family 0 port 8472 - 0 [ 143.757673][ T6541] loop5: detected capacity change from 0 to 32768 [ 143.812699][ T6541] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 scanned by syz.5.643 (6541) [ 143.854442][ T4292] usb 3-1: new high-speed USB device number 5 using dummy_hcd [ 143.876510][ T6541] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 143.904688][ T6541] BTRFS info (device loop5): using crc32c (crc32c-intel) checksum algorithm [ 143.913452][ T6541] BTRFS info (device loop5): setting nodatacow, compression disabled [ 143.942223][ T6541] BTRFS info (device loop5): max_inline at 0 [ 143.954396][ T6541] BTRFS info (device loop5): enabling disk space caching [ 143.961492][ T6541] BTRFS info (device loop5): turning off barriers [ 143.991842][ T6541] BTRFS info (device loop5): turning on flush-on-commit [ 144.009348][ T6541] BTRFS info (device loop5): doing ref verification [ 144.025575][ T6541] BTRFS info (device loop5): force clearing of disk cache [ 144.040513][ T6541] BTRFS info (device loop5): enabling ssd optimizations [ 144.049795][ T4292] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 144.073548][ T6541] BTRFS info (device loop5): max_inline at 4096 [ 144.083448][ T4292] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 144.102749][ T6541] BTRFS info (device loop5): disk space caching is enabled [ 144.125856][ T4292] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 144.138789][ T4292] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 144.178186][ T4292] usb 3-1: SerialNumber: syz [ 144.394380][ T6541] BTRFS info (device loop5): rebuilding free space tree [ 144.410275][ T4292] usb 3-1: 0:2 : does not exist [ 144.440923][ T6543] loop3: detected capacity change from 0 to 32768 [ 144.450856][ T4292] usb 3-1: USB disconnect, device number 5 [ 144.453654][ T6541] BTRFS info (device loop5): disabling free space tree [ 144.494392][ T6541] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 144.499174][ T6543] XFS: ikeep mount option is deprecated. [ 144.504124][ T6541] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 144.530328][ T6543] XFS: noikeep mount option is deprecated. [ 144.632261][ T6543] XFS (loop3): Mounting V5 Filesystem [ 144.786224][ T5178] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 144.815699][ T6543] XFS (loop3): Ending clean mount [ 144.823040][ T6543] XFS (loop3): Quotacheck needed: Please wait. [ 145.102082][ T6560] loop1: detected capacity change from 0 to 32768 [ 145.208945][ T6543] XFS (loop3): Quotacheck: Done. [ 145.302886][ T6560] XFS (loop1): Mounting V5 Filesystem [ 145.400777][ T4252] XFS (loop3): Unmounting Filesystem [ 145.485415][ T6560] XFS (loop1): Ending clean mount [ 145.632898][ T4246] XFS (loop1): Unmounting Filesystem [ 145.772803][ T6596] netlink: 596 bytes leftover after parsing attributes in process `syz.2.654'. [ 146.189037][ T6604] loop1: detected capacity change from 0 to 512 [ 146.257516][ T6604] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 146.350483][ T6604] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 146.374591][ T6604] ext4 filesystem being mounted at /144/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 146.528119][ T6602] loop5: detected capacity change from 0 to 32768 [ 146.605244][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 146.754570][ T6602] XFS (loop5): Mounting V5 Filesystem [ 146.864302][ T6602] XFS (loop5): Ending clean mount [ 147.012248][ T6623] device syz_tun entered promiscuous mode [ 147.024141][ T5178] XFS (loop5): Unmounting Filesystem [ 147.102376][ T6623] device syz_tun left promiscuous mode [ 147.375502][ T4262] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 147.386823][ T4262] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 147.396459][ T4262] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 147.414533][ T4262] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 147.424846][ T4262] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 147.432202][ T4262] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 147.511385][ T4244] EXT4-fs (loop0): unmounting filesystem. [ 147.563865][ T11] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.771094][ T11] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 147.865921][ T6633] netlink: 8 bytes leftover after parsing attributes in process `syz.2.664'. [ 147.978432][ T11] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.192615][ T11] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 148.251490][ T6647] loop3: detected capacity change from 0 to 512 [ 148.262540][ T6643] loop5: detected capacity change from 0 to 2048 [ 148.277724][ T6643] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 148.299862][ T6647] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 148.312612][ T6621] loop1: detected capacity change from 0 to 40427 [ 148.329578][ T6621] F2FS-fs (loop1): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 148.337638][ T6621] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 148.349835][ T6621] F2FS-fs (loop1): invalid crc value [ 148.408919][ T6651] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 148.483781][ T6621] F2FS-fs (loop1): Found nat_bits in checkpoint [ 148.490321][ T6647] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 148.516432][ T6647] ext4 filesystem being mounted at /145/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 148.738665][ T6621] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 148.767820][ T11] tipc: Left network mode [ 148.772829][ T6624] chnl_net:caif_netlink_parms(): no params data found [ 148.786946][ T6621] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 148.861652][ T4252] EXT4-fs (loop3): unmounting filesystem. [ 149.189963][ T6671] netlink: 'syz.2.677': attribute type 1 has an invalid length. [ 149.202783][ T6624] bridge0: port 1(bridge_slave_0) entered blocking state [ 149.230714][ T6624] bridge0: port 1(bridge_slave_0) entered disabled state [ 149.253753][ T6624] device bridge_slave_0 entered promiscuous mode [ 149.353951][ T6624] bridge0: port 2(bridge_slave_1) entered blocking state [ 149.383663][ T6624] bridge0: port 2(bridge_slave_1) entered disabled state [ 149.411518][ T6624] device bridge_slave_1 entered promiscuous mode [ 149.494593][ T4258] Bluetooth: hci0: command 0x0409 tx timeout [ 149.683737][ T6624] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 149.716255][ T6624] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 149.775349][ T6696] device syz_tun entered promiscuous mode [ 149.792718][ T6696] device syz_tun left promiscuous mode [ 149.800362][ T6695] loop1: detected capacity change from 0 to 2048 [ 149.890916][ T6697] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 149.947846][ T6624] team0: Port device team_slave_0 added [ 149.976896][ T6624] team0: Port device team_slave_1 added [ 150.188702][ T6624] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 150.205266][ T6624] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 150.294782][ T6624] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 150.385347][ T6624] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 150.402935][ T6624] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 150.457229][ T6624] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 150.606257][ T6624] device hsr_slave_0 entered promiscuous mode [ 150.643380][ T6624] device hsr_slave_1 entered promiscuous mode [ 150.659322][ T6624] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 150.683520][ T6624] Cannot create hsr debugfs directory [ 150.846415][ T6711] loop5: detected capacity change from 0 to 4096 [ 150.985401][ T6700] loop3: detected capacity change from 0 to 32768 [ 151.050974][ T6700] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.684 (6700) [ 151.149355][ T6700] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 151.194458][ T6700] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 151.203955][ T6700] BTRFS info (device loop3): using free space tree [ 151.548933][ T6700] BTRFS info (device loop3): enabling ssd optimizations [ 151.574310][ T4258] Bluetooth: hci0: command 0x041b tx timeout [ 151.769840][ T11] device hsr_slave_0 left promiscuous mode [ 151.880782][ T11] device hsr_slave_1 left promiscuous mode [ 151.910135][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 151.975246][ T11] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 151.998412][ T11] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 152.006040][ T4252] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 152.047646][ T6761] loop1: detected capacity change from 0 to 128 [ 152.067666][ T11] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 152.100691][ T6761] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 152.111380][ T11] device bridge_slave_1 left promiscuous mode [ 152.135484][ T11] bridge0: port 2(bridge_slave_1) entered disabled state [ 152.378639][ T11] device bridge_slave_0 left promiscuous mode [ 152.397694][ T11] bridge0: port 1(bridge_slave_0) entered disabled state [ 152.474693][ T11] device veth1_macvtap left promiscuous mode [ 152.480805][ T11] device veth0_macvtap left promiscuous mode [ 152.502721][ T11] device veth1_vlan left promiscuous mode [ 152.520185][ T11] device veth0_vlan left promiscuous mode [ 152.794631][ T5462] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 152.988675][ T5462] usb 6-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08 [ 153.014238][ T5462] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 153.035230][ T5462] usb 6-1: config 0 descriptor?? [ 153.141566][ T6788] program syz.2.708 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 153.155278][ T6782] loop1: detected capacity change from 0 to 32768 [ 153.201870][ T6782] XFS (loop1): Mounting V5 Filesystem [ 153.260997][ T5462] [drm] vendor descriptor length:6 data:06 5f 01 00 00 00 00 00 00 00 00 [ 153.269727][ T5462] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor [ 153.294942][ T6782] XFS (loop1): Ending clean mount [ 153.431352][ T4246] XFS (loop1): Unmounting Filesystem [ 153.462028][ T5462] [drm:udl_init] *ERROR* Selecting channel failed [ 153.512898][ T5462] [drm] Initialized udl 0.0.1 20120220 for 6-1:0.0 on minor 2 [ 153.520937][ T5462] [drm] Initialized udl on minor 2 [ 153.530187][ T5462] udl 6-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9 [ 153.544937][ T5462] udl 6-1:0.0: [drm] Cannot find any crtc or sizes [ 153.555973][ T5462] usb 6-1: USB disconnect, device number 3 [ 153.654569][ T4258] Bluetooth: hci0: command 0x040f tx timeout [ 153.842861][ T11] team0 (unregistering): Port device team_slave_1 removed [ 153.906327][ T11] team0 (unregistering): Port device team_slave_0 removed [ 153.962940][ T11] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 154.042250][ T11] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 154.304384][ T4938] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 154.528373][ T4938] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 154.539681][ T4938] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 154.550522][ T4938] usb 6-1: New USB device found, idVendor=056a, idProduct=0003, bcdDevice= 0.00 [ 154.559699][ T4938] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 154.572244][ T4938] usb 6-1: config 0 descriptor?? [ 154.632399][ T11] bond0 (unregistering): Released all slaves [ 154.938579][ T6624] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 154.986914][ T4938] wacom 0003:056A:0003.0006: Unknown device_type for 'HID 056a:0003'. Assuming pen. [ 154.988606][ T6624] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 155.046083][ T4938] wacom 0003:056A:0003.0006: hidraw0: USB HID v0.00 Device [HID 056a:0003] on usb-dummy_hcd.5-1/input0 [ 155.068915][ T4938] input: Wacom Cintiq Partner Pen as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/0003:056A:0003.0006/input/input8 [ 155.085505][ T6624] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 155.140857][ T6624] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 155.232668][ T4938] usb 6-1: USB disconnect, device number 4 [ 155.336359][ T4258] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0 [ 155.345125][ T4258] Bluetooth: hci1: Injecting HCI hardware error event [ 155.356781][ T4262] Bluetooth: hci1: hardware error 0x00 [ 155.520952][ T6624] 8021q: adding VLAN 0 to HW filter on device bond0 [ 155.534539][ T4419] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 155.556794][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 155.591178][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 155.616760][ T6624] 8021q: adding VLAN 0 to HW filter on device team0 [ 155.638618][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 155.656353][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 155.676852][ T4601] bridge0: port 1(bridge_slave_0) entered blocking state [ 155.683999][ T4601] bridge0: port 1(bridge_slave_0) entered forwarding state [ 155.718998][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 155.727268][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 155.734375][ T4258] Bluetooth: hci0: command 0x0419 tx timeout [ 155.737145][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 155.741403][ T4419] usb 4-1: Using ep0 maxpacket: 32 [ 155.750034][ T4601] bridge0: port 2(bridge_slave_1) entered blocking state [ 155.761702][ T4601] bridge0: port 2(bridge_slave_1) entered forwarding state [ 155.774435][ T4938] usb 2-1: new high-speed USB device number 7 using dummy_hcd [ 155.806416][ T4419] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 155.841295][ T4419] usb 4-1: config 0 has no interface number 0 [ 155.868918][ T4601] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 155.888875][ T4419] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 155.953250][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 155.954617][ T4419] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 155.972453][ T4938] usb 2-1: Using ep0 maxpacket: 8 [ 155.981496][ T4938] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 156.017384][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 156.036538][ T6843] loop5: detected capacity change from 0 to 512 [ 156.056547][ T4938] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 156.067853][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 156.073479][ T4419] usb 4-1: Product: syz [ 156.093204][ T4938] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 156.104037][ T4419] usb 4-1: Manufacturer: syz [ 156.121335][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 156.134119][ T4419] usb 4-1: SerialNumber: syz [ 156.140280][ T6843] EXT4-fs (loop5): Test dummy encryption mode enabled [ 156.154140][ T4938] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 156.175156][ T4419] usb 4-1: config 0 descriptor?? [ 156.184089][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 156.195677][ T6843] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 156.208468][ T4419] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 156.218343][ T4938] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 156.238335][ T4938] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 156.239099][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 156.270237][ T6843] EXT4-fs (loop5): 1 truncate cleaned up [ 156.283104][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 156.287959][ T6843] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 156.293661][ T6848] loop2: detected capacity change from 0 to 2048 [ 156.326800][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 156.338479][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 156.348023][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 156.370083][ T6624] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 156.384743][ T6843] EXT4-fs warning (device loop5): __ext4fs_dirhash:270: inode #2: comm syz.5.723: Siphash requires key [ 156.422589][ T4419] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 156.457619][ T4419] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 156.490031][ T4938] usb 2-1: GET_CAPABILITIES returned 0 [ 156.500754][ T4938] usbtmc 2-1:16.0: can't read capabilities [ 156.612131][ T5178] EXT4-fs (loop5): unmounting filesystem. [ 156.751950][ T6834] usb 2-1: usbtmc_ioctl_clear_out_halt returned -32 [ 156.815771][ T4938] usb 2-1: USB disconnect, device number 7 [ 156.850384][ T6827] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 156.871938][ T6827] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 157.096429][ T6868] loop2: detected capacity change from 0 to 1024 [ 157.099086][ C0] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 157.115039][ T4938] usb 4-1: USB disconnect, device number 7 [ 157.125347][ T6868] EXT4-fs: Ignoring removed orlov option [ 157.153303][ T4938] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 157.153747][ T6868] EXT4-fs (loop2): Test dummy encryption mode enabled [ 157.189472][ T6868] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 157.202013][ T4938] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 157.209945][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 157.221328][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 157.260130][ T6624] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 157.309364][ T4938] quatech2 4-1:0.51: device disconnected [ 157.325192][ T6875] netlink: 'syz.5.729': attribute type 6 has an invalid length. [ 157.414557][ T4262] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 157.522855][ T6881] loop5: detected capacity change from 0 to 1024 [ 157.562601][ T6881] EXT4-fs (loop5): ext4_check_descriptors: Checksum for group 0 failed (24866!=20869) [ 157.603420][ T6881] EXT4-fs (loop5): invalid journal inode [ 157.657291][ T6888] loop1: detected capacity change from 0 to 512 [ 157.671584][ T6868] fscrypt: AES-256-CTS-CBC using implementation "cts-cbc-aes-aesni" [ 157.846693][ T4247] EXT4-fs (loop2): unmounting filesystem. [ 157.870043][ T6888] EXT4-fs error (device loop1): ext4_clear_blocks:883: inode #13: comm syz.1.733: attempt to clear invalid blocks 2 len 1 [ 157.940264][ T6888] EXT4-fs error (device loop1): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 218 vs 220 free clusters [ 158.046970][ T6888] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.733: invalid indirect mapped block 1819239214 (level 0) [ 158.150810][ T6888] EXT4-fs error (device loop1): ext4_free_branches:1030: inode #13: comm syz.1.733: invalid indirect mapped block 1819239214 (level 1) [ 158.196308][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 158.211100][ T9] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 158.233662][ T6888] EXT4-fs (loop1): 1 truncate cleaned up [ 158.253653][ T6888] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 158.297488][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 158.325724][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 158.345628][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 158.356270][ T6888] EXT4-fs warning (device loop1): dx_probe:833: inode #2: comm syz.1.733: Unrecognised inode hash code 20 [ 158.373451][ T75] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 158.409739][ T6888] EXT4-fs warning (device loop1): dx_probe:966: inode #2: comm syz.1.733: Corrupt directory, running e2fsck is recommended [ 158.426094][ T6624] device veth0_vlan entered promiscuous mode [ 158.459944][ T6624] device veth1_vlan entered promiscuous mode [ 158.475107][ T4530] usb 4-1: new high-speed USB device number 8 using dummy_hcd [ 158.535634][ T4246] EXT4-fs (loop1): unmounting filesystem. [ 158.553184][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready [ 158.583480][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready [ 158.629512][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 158.642621][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 158.675781][ T6624] device veth0_macvtap entered promiscuous mode [ 158.688271][ T4530] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 158.693510][ T6624] device veth1_macvtap entered promiscuous mode [ 158.714845][ T4530] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 158.745892][ T4530] usb 4-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 158.760276][ T6918] loop1: detected capacity change from 0 to 2048 [ 158.768724][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 158.789008][ T4530] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 158.805401][ T4464] udevd[4464]: incorrect nilfs2 checksum on /dev/loop1 [ 158.820488][ T4530] usb 4-1: config 0 descriptor?? [ 158.827677][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 158.829550][ T6918] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 158.877962][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 158.912006][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 158.949452][ T6924] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 158.961562][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 158.995058][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.015558][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 159.044358][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.076400][ T6624] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 159.088649][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.122136][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.142454][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.157229][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.184800][ T5028] usb 3-1: new full-speed USB device number 6 using dummy_hcd [ 159.193498][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.205307][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.215587][ T6624] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 159.226312][ T6624] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 159.244067][ T6624] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 159.258550][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready [ 159.269982][ T4530] hid (null): bogus close delimiter [ 159.282598][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 159.317611][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 159.349075][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 159.363803][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 159.377573][ T5028] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 159.382196][ T4305] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 159.403320][ T5028] usb 3-1: New USB device found, idVendor=04d8, idProduct=00dd, bcdDevice= 0.00 [ 159.416547][ T6624] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.434259][ T6624] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.444696][ T5028] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.453293][ T6624] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.470250][ T6624] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 159.486735][ T5028] usb 3-1: config 0 descriptor?? [ 159.532764][ T4291] usb 6-1: new high-speed USB device number 5 using dummy_hcd [ 159.598282][ T75] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 159.611331][ T75] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 159.645432][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready [ 159.660700][ T75] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 159.669908][ T75] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 159.681616][ T4530] uclogic 0003:256C:006D.0007: failed retrieving Huion firmware version: -71 [ 159.692332][ T4530] uclogic 0003:256C:006D.0007: failed probing parameters: -71 [ 159.693325][ T46] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready [ 159.744614][ T4530] uclogic: probe of 0003:256C:006D.0007 failed with error -71 [ 159.744975][ T4291] usb 6-1: Using ep0 maxpacket: 8 [ 159.765255][ T4291] usb 6-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid maxpacket 56832, setting to 1024 [ 159.768667][ T4530] usb 4-1: USB disconnect, device number 8 [ 159.781864][ T4291] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 1024 [ 159.812998][ T4291] usb 6-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32 [ 159.836547][ T4291] usb 6-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3 [ 159.853473][ T4291] usb 6-1: New USB device found, idVendor=ee8d, idProduct=db1a, bcdDevice=61.23 [ 159.871162][ T4291] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 159.921064][ T5028] mcp2221 0003:04D8:00DD.0008: USB HID v0.00 Device [HID 04d8:00dd] on usb-dummy_hcd.2-1/input0 [ 160.103134][ T4291] usb 6-1: GET_CAPABILITIES returned 0 [ 160.111075][ T4291] usbtmc 6-1:16.0: can't read capabilities [ 160.155010][ T5028] usb 3-1: USB disconnect, device number 6 [ 160.410477][ T6931] usb 6-1: usbtmc_ioctl_clear_out_halt returned -32 [ 160.431897][ T4940] usb 6-1: USB disconnect, device number 5 [ 160.536084][ T6940] loop6: detected capacity change from 0 to 32768 [ 160.570706][ T6940] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop6 scanned by syz.6.659 (6940) [ 160.604456][ T6940] BTRFS info (device loop6): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 160.618566][ T6940] BTRFS info (device loop6): using crc32c (crc32c-intel) checksum algorithm [ 160.628852][ T6940] BTRFS info (device loop6): setting nodatacow, compression disabled [ 160.634420][ T4291] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 160.660221][ T6940] BTRFS info (device loop6): max_inline at 0 [ 160.704438][ T6940] BTRFS info (device loop6): enabling disk space caching [ 160.735265][ T6940] BTRFS info (device loop6): turning off barriers [ 160.741758][ T6940] BTRFS info (device loop6): turning on flush-on-commit [ 160.769389][ T6940] BTRFS info (device loop6): doing ref verification [ 160.794342][ T6940] BTRFS info (device loop6): force clearing of disk cache [ 160.801611][ T6940] BTRFS info (device loop6): enabling ssd optimizations [ 160.829413][ T6940] BTRFS info (device loop6): max_inline at 4096 [ 160.848824][ T6940] BTRFS info (device loop6): disk space caching is enabled [ 160.867099][ T4291] usb 2-1: too many configurations: 9, using maximum allowed: 8 [ 160.895718][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 160.915605][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 160.963049][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 160.982843][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.058931][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.076354][ T5462] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 161.084053][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.104853][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.116999][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.140789][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.155504][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.204380][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.234260][ T6940] BTRFS info (device loop6): rebuilding free space tree [ 161.241374][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.284370][ T5462] usb 3-1: Using ep0 maxpacket: 32 [ 161.291473][ T5462] usb 3-1: config 0 has an invalid interface number: 51 but max is 0 [ 161.300595][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.312874][ T6940] BTRFS info (device loop6): disabling free space tree [ 161.318126][ T5462] usb 3-1: config 0 has no interface number 0 [ 161.333591][ T6940] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 161.346714][ T5462] usb 3-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 161.352960][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.376223][ T5462] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 161.383440][ T6940] BTRFS info (device loop6): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 161.402491][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.404303][ T5462] usb 3-1: Product: syz [ 161.423560][ T5462] usb 3-1: Manufacturer: syz [ 161.433664][ T5462] usb 3-1: SerialNumber: syz [ 161.435296][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.449712][ T5462] usb 3-1: config 0 descriptor?? [ 161.468992][ T5462] quatech2 3-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 161.481194][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.519743][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.565795][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.604650][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.632609][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.664037][ T4291] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 9 [ 161.676549][ T5462] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 161.703011][ T5462] usb 3-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 161.704113][ T4291] usb 2-1: config 0 interface 0 altsetting 2 endpoint 0x8D has an invalid bInterval 0, changing to 7 [ 161.822758][ T4291] usb 2-1: config 0 interface 0 has no altsetting 0 [ 161.866843][ T4291] usb 2-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=49.8e [ 161.907653][ T6624] BTRFS info (device loop6): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 161.928260][ T4291] usb 2-1: New USB device strings: Mfr=41, Product=64, SerialNumber=168 [ 161.963330][ T4291] usb 2-1: Product: syz [ 161.965357][ T6959] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 161.986690][ T4291] usb 2-1: Manufacturer: syz [ 161.991703][ T4291] usb 2-1: SerialNumber: syz [ 162.025875][ T6959] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 162.038032][ T6982] loop3: detected capacity change from 0 to 32768 [ 162.052535][ T4291] usb 2-1: config 0 descriptor?? [ 162.099862][ T6982] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.748 (6982) [ 162.115144][ T4291] yurex 2-1:0.0: USB YUREX device now attached to Yurex #0 [ 162.193648][ T7004] netlink: 8 bytes leftover after parsing attributes in process `syz.5.753'. [ 162.404784][ C1] usb 3-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 162.415440][ T5462] usb 3-1: USB disconnect, device number 7 [ 162.432489][ C0] usb 2-1: yurex_control_callback - control failed: -71 [ 162.437849][ T5462] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 162.466858][ T4290] usb 2-1: USB disconnect, device number 8 [ 162.476595][ T6982] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 162.505215][ T4290] yurex 2-1:0.0: USB YUREX #0 now disconnected [ 162.527134][ T6982] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 162.563331][ T5462] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 162.604394][ T6982] BTRFS info (device loop3): using free space tree [ 162.632039][ T5462] quatech2 3-1:0.51: device disconnected [ 162.944420][ T6982] BTRFS info (device loop3): enabling ssd optimizations [ 163.143853][ T7049] tap0: tun_chr_ioctl cmd 1074025677 [ 163.180446][ T7049] tap0: linktype set to 512 [ 163.205508][ T4252] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 163.401609][ T7056] sctp: [Deprecated]: syz.6.761 (pid 7056) Use of struct sctp_assoc_value in delayed_ack socket option. [ 163.401609][ T7056] Use struct sctp_sack_info instead [ 164.002969][ T27] audit: type=1326 audit(1732320135.459:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7074 comm="syz.2.767" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f070097e819 code=0x0 [ 164.222447][ T7082] loop6: detected capacity change from 0 to 2048 [ 164.291794][ T7082] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 164.524587][ T4260] Bluetooth: hci5: sending frame failed (-49) [ 164.533493][ T7094] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 164.541524][ T4262] Bluetooth: hci5: Opcode 0x1003 failed: -49 [ 164.555056][ T6624] EXT4-fs (loop6): unmounting filesystem. [ 164.567212][ T7090] loop3: detected capacity change from 0 to 4096 [ 164.586272][ T7090] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 164.770263][ T7065] loop1: detected capacity change from 0 to 32768 [ 164.781043][ T7090] ntfs: volume version 3.1. [ 164.811325][ T7065] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.763 (7065) [ 164.859401][ T7065] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 164.914376][ T7065] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm [ 164.961806][ T7065] BTRFS info (device loop1): setting nodatacow, compression disabled [ 164.992135][ T7065] BTRFS info (device loop1): max_inline at 0 [ 165.019094][ T7106] loop2: detected capacity change from 0 to 8 [ 165.039175][ T7065] BTRFS info (device loop1): enabling disk space caching [ 165.073113][ T7065] BTRFS info (device loop1): turning off barriers [ 165.091361][ T7065] BTRFS info (device loop1): turning on flush-on-commit [ 165.123962][ T7065] BTRFS info (device loop1): doing ref verification [ 165.143775][ T7106] SQUASHFS error: Failed to read block 0x260685: -5 [ 165.149774][ T7065] BTRFS info (device loop1): force clearing of disk cache [ 165.185446][ T7065] BTRFS info (device loop1): enabling ssd optimizations [ 165.200625][ T7106] SQUASHFS error: Unable to read metadata cache entry [260685] [ 165.213070][ T7065] BTRFS info (device loop1): max_inline at 4096 [ 165.225338][ T7106] SQUASHFS error: Unable to read directory block [260685:0] [ 165.233041][ T7108] loop5: detected capacity change from 0 to 2048 [ 165.254433][ T7065] BTRFS info (device loop1): disk space caching is enabled [ 165.353640][ T7108] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 165.448733][ T7108] overlayfs: upper fs needs to support d_type. [ 165.478927][ T7065] BTRFS info (device loop1): rebuilding free space tree [ 165.503223][ T7126] Driver unsupported XDP return value 0 on prog (id 80) dev N/A, expect packet loss! [ 165.505208][ T7108] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 165.515820][ T7065] BTRFS info (device loop1): disabling free space tree [ 165.538037][ T7065] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 165.569082][ T7065] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 165.590376][ T7108] overlayfs: failed to set xattr on upper [ 165.638628][ T7108] overlayfs: ...falling back to index=off,metacopy=off. [ 165.833935][ T5178] UDF-fs: error (device loop5): udf_read_inode: (ino 1317) failed !bh [ 165.873997][ T5178] UDF-fs: error (device loop5): udf_read_inode: (ino 1317) failed !bh [ 165.941393][ T4246] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 166.089450][ T7146] Bluetooth: hci5: received HCILL_GO_TO_SLEEP_ACK in state 2 [ 166.383575][ T7154] loop6: detected capacity change from 0 to 1024 [ 166.471670][ T7154] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 166.651652][ T6624] EXT4-fs (loop6): unmounting filesystem. [ 166.712927][ T4305] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 166.869775][ T4305] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.033786][ T4305] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.137165][ T4305] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 167.691193][ T4258] Bluetooth: hci2: unexpected cc 0x0c03 length: 249 > 1 [ 167.719522][ T7180] loop6: detected capacity change from 0 to 2048 [ 167.739832][ T4258] Bluetooth: hci2: unexpected cc 0x1003 length: 249 > 9 [ 167.757591][ T4258] Bluetooth: hci2: unexpected cc 0x1001 length: 249 > 9 [ 167.795427][ T4258] Bluetooth: hci2: unexpected cc 0x0c23 length: 249 > 4 [ 167.805916][ T4258] Bluetooth: hci2: unexpected cc 0x0c25 length: 249 > 3 [ 167.813246][ T4258] Bluetooth: hci2: unexpected cc 0x0c38 length: 249 > 2 [ 167.868452][ T7180] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 167.960326][ T7180] overlayfs: upper fs needs to support d_type. [ 168.006725][ T7180] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 168.041591][ T7180] overlayfs: failed to set xattr on upper [ 168.048143][ T7180] overlayfs: ...falling back to index=off,metacopy=off. [ 168.134393][ T4262] Bluetooth: hci5: Opcode 0x1003 failed: -110 [ 168.134729][ T4260] Bluetooth: hci5: command 0x1003 tx timeout [ 168.212106][ T6624] UDF-fs: error (device loop6): udf_read_inode: (ino 1317) failed !bh [ 168.245305][ T6624] UDF-fs: error (device loop6): udf_read_inode: (ino 1317) failed !bh [ 168.330939][ T7173] loop3: detected capacity change from 0 to 32768 [ 168.398775][ T7173] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.797 (7173) [ 168.531250][ T7173] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 168.596363][ T7173] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm [ 168.634903][ T7173] BTRFS info (device loop3): setting nodatacow, compression disabled [ 168.657112][ T7173] BTRFS info (device loop3): max_inline at 0 [ 168.693627][ T7173] BTRFS info (device loop3): enabling disk space caching [ 168.744393][ T7173] BTRFS info (device loop3): turning off barriers [ 168.751662][ T7173] BTRFS info (device loop3): turning on flush-on-commit [ 168.790690][ T7173] BTRFS info (device loop3): doing ref verification [ 168.815330][ T7173] BTRFS info (device loop3): force clearing of disk cache [ 168.839292][ T7173] BTRFS info (device loop3): enabling ssd optimizations [ 168.860816][ T7173] BTRFS info (device loop3): max_inline at 4096 [ 168.881463][ T7173] BTRFS info (device loop3): disk space caching is enabled [ 168.891344][ T7205] loop1: detected capacity change from 0 to 4096 [ 168.910985][ T7205] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 168.998143][ T7205] ntfs: volume version 3.1. [ 169.305465][ T7181] chnl_net:caif_netlink_parms(): no params data found [ 169.356931][ T7173] BTRFS info (device loop3): rebuilding free space tree [ 169.407814][ T7173] BTRFS info (device loop3): disabling free space tree [ 169.443299][ T7173] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 169.474311][ T7173] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 169.578301][ T7208] loop2: detected capacity change from 0 to 32768 [ 169.894802][ T4260] Bluetooth: hci2: command 0x0409 tx timeout [ 169.908138][ T4260] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1 [ 169.920683][ T4260] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9 [ 169.929436][ T4260] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9 [ 169.963222][ T4260] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4 [ 169.971182][ T4260] Bluetooth: hci0: unexpected cc 0x0c25 length: 249 > 3 [ 169.982067][ T4260] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2 [ 169.995100][ T7] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 170.040168][ T4252] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 170.081313][ T7181] bridge0: port 1(bridge_slave_0) entered blocking state [ 170.114717][ T7181] bridge0: port 1(bridge_slave_0) entered disabled state [ 170.161149][ T7181] device bridge_slave_0 entered promiscuous mode [ 170.207097][ T7] usb 2-1: New USB device found, idVendor=20b7, idProduct=1540, bcdDevice=b7.5a [ 170.224872][ T7] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.243178][ T7] usb 2-1: Product: syz [ 170.253302][ T7] usb 2-1: Manufacturer: syz [ 170.258718][ T7] usb 2-1: SerialNumber: syz [ 170.286303][ T7] usb 2-1: config 0 descriptor?? [ 170.645617][ T7181] bridge0: port 2(bridge_slave_1) entered blocking state [ 170.652773][ T7181] bridge0: port 2(bridge_slave_1) entered disabled state [ 170.691510][ T7181] device bridge_slave_1 entered promiscuous mode [ 170.700169][ T7] usb 2-1: Firmware: major: 0, minor: 203, hardware type: UNKNOWN (143) [ 170.850563][ T4305] device hsr_slave_0 left promiscuous mode [ 170.875765][ T7243] loop2: detected capacity change from 0 to 32768 [ 170.884615][ T4305] device hsr_slave_1 left promiscuous mode [ 170.891258][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 170.901121][ T7] usb 2-1: failed to fetch extended address, random address set [ 170.922691][ T7] usb 2-1: atusb_probe: initialization failed, error = -524 [ 170.935506][ T7] atusb: probe of 2-1:0.0 failed with error -524 [ 170.947880][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 170.952515][ T7243] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 170.974679][ T7] usb 2-1: USB disconnect, device number 9 [ 171.024298][ T7243] JBD2: Ignoring recovery information on journal [ 171.034999][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 171.051973][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 171.096461][ T4305] device bridge_slave_1 left promiscuous mode [ 171.103151][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state [ 171.103510][ T7243] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 171.159914][ T4305] device bridge_slave_0 left promiscuous mode [ 171.172166][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state [ 171.221517][ T4305] device veth1_macvtap left promiscuous mode [ 171.228145][ T4305] device veth0_macvtap left promiscuous mode [ 171.234831][ T4305] device veth1_vlan left promiscuous mode [ 171.250959][ T4305] device veth0_vlan left promiscuous mode [ 171.322353][ T4247] ocfs2: Unmounting device (7,2) on (node local) [ 171.325243][ T7264] sg_write: process 363 (syz.3.816) changed security contexts after opening file descriptor, this is not allowed. [ 171.359742][ T7264] program syz.3.816 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 171.789035][ T7275] netlink: 2300 bytes leftover after parsing attributes in process `syz.1.820'. [ 171.975828][ T4262] Bluetooth: hci2: command 0x041b tx timeout [ 172.054367][ T4260] Bluetooth: hci0: command 0x0409 tx timeout [ 172.150434][ T4305] team0 (unregistering): Port device team_slave_1 removed [ 172.199005][ T4305] team0 (unregistering): Port device team_slave_0 removed [ 172.242245][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 172.290420][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 172.788711][ T4305] bond0 (unregistering): Released all slaves [ 172.883378][ T7181] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 172.900443][ T7181] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 173.052693][ T7181] team0: Port device team_slave_0 added [ 173.135383][ T7181] team0: Port device team_slave_1 added [ 173.205170][ T7282] netlink: 12 bytes leftover after parsing attributes in process `syz.3.823'. [ 173.224967][ T7181] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 173.264688][ T7181] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 173.304923][ T7181] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 173.317569][ T7181] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 173.324690][ T7181] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 173.351145][ T7181] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 173.386803][ T7290] pim6reg0: tun_chr_ioctl cmd 35108 [ 173.581131][ T7181] device hsr_slave_0 entered promiscuous mode [ 173.672089][ T7181] device hsr_slave_1 entered promiscuous mode [ 173.685033][ T7181] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 173.706897][ T7181] Cannot create hsr debugfs directory [ 174.055974][ T4260] Bluetooth: hci2: command 0x040f tx timeout [ 174.096486][ T7239] chnl_net:caif_netlink_parms(): no params data found [ 174.134664][ T4260] Bluetooth: hci0: command 0x041b tx timeout [ 174.312012][ T4305] netdevsim netdevsim6 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.462452][ T4305] netdevsim netdevsim6 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.557134][ T7319] loop3: detected capacity change from 0 to 32768 [ 174.570358][ T7319] BTRFS: device fsid a6a605fc-d5f1-4e66-8595-3726e2b761d6 devid 1 transid 8 /dev/loop3 scanned by syz.3.831 (7319) [ 174.598419][ T7319] BTRFS info (device loop3): first mount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 174.637853][ T4305] netdevsim netdevsim6 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.654036][ T7319] BTRFS info (device loop3): using blake2b (blake2b-256-generic) checksum algorithm [ 174.669391][ T7319] BTRFS info (device loop3): using free space tree [ 174.669437][ T7239] bridge0: port 1(bridge_slave_0) entered blocking state [ 174.690015][ T7239] bridge0: port 1(bridge_slave_0) entered disabled state [ 174.698608][ T7239] device bridge_slave_0 entered promiscuous mode [ 174.769678][ T4305] netdevsim netdevsim6 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 174.804629][ T7239] bridge0: port 2(bridge_slave_1) entered blocking state [ 174.811749][ T7239] bridge0: port 2(bridge_slave_1) entered disabled state [ 174.820947][ T7239] device bridge_slave_1 entered promiscuous mode [ 174.835424][ T7319] BTRFS info (device loop3): enabling ssd optimizations [ 174.902612][ T7318] loop2: detected capacity change from 0 to 40427 [ 174.963001][ T7239] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 175.000195][ T7181] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 175.020099][ T7239] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 175.036881][ T4252] BTRFS info (device loop3): last unmount of filesystem a6a605fc-d5f1-4e66-8595-3726e2b761d6 [ 175.043119][ T7] kernel write not supported for file /sg0 (pid: 7 comm: kworker/0:0) [ 175.061877][ T7318] F2FS-fs (loop2): Found nat_bits in checkpoint [ 175.283222][ T7355] loop1: detected capacity change from 0 to 128 [ 175.295427][ T7318] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 175.528872][ T7181] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 175.602160][ T7362] Bluetooth: MGMT ver 1.22 [ 175.609101][ T4246] sysv_free_block: flc_count > flc_size [ 175.623649][ T7239] team0: Port device team_slave_0 added [ 175.630966][ T4247] syz-executor: attempt to access beyond end of device [ 175.630966][ T4247] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 175.657873][ T7181] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 175.676690][ T4246] sysv_free_block: flc_count > flc_size [ 175.689577][ T4246] sysv_free_block: flc_count > flc_size [ 175.725632][ T7181] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 175.734611][ T4246] sysv_free_block: flc_count > flc_size [ 175.740196][ T4246] sysv_free_block: flc_count > flc_size [ 175.769880][ T7239] team0: Port device team_slave_1 added [ 175.800729][ T4246] sysv_free_block: flc_count > flc_size [ 175.817401][ T4246] sysv_free_block: flc_count > flc_size [ 175.827593][ T4246] sysv_free_block: flc_count > flc_size [ 175.833177][ T4246] sysv_free_block: flc_count > flc_size [ 175.852747][ T4246] sysv_free_block: flc_count > flc_size [ 175.875726][ T4246] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 175.902625][ T7239] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 175.923917][ T7239] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.030765][ T7239] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 176.154525][ T4260] Bluetooth: hci2: command 0x0419 tx timeout [ 176.214651][ T4260] Bluetooth: hci0: command 0x040f tx timeout [ 176.351988][ T7239] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 176.384002][ T7239] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 176.417671][ T7239] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 176.741683][ T7239] device hsr_slave_0 entered promiscuous mode [ 176.765079][ T7239] device hsr_slave_1 entered promiscuous mode [ 176.774079][ T7239] debugfs: Directory 'hsr0' with parent 'hsr' already present! [ 176.789702][ T7239] Cannot create hsr debugfs directory [ 177.065479][ T7181] 8021q: adding VLAN 0 to HW filter on device bond0 [ 177.142878][ T7181] 8021q: adding VLAN 0 to HW filter on device team0 [ 177.162513][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 177.186926][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 177.238274][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 177.281718][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 177.304985][ T11] bridge0: port 1(bridge_slave_0) entered blocking state [ 177.312178][ T11] bridge0: port 1(bridge_slave_0) entered forwarding state [ 177.427837][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 177.514739][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 177.537595][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 177.552877][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 177.560104][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 177.568753][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 177.577913][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 177.587764][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 177.599700][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 177.619022][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 177.640635][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 177.654566][ T4530] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 177.876012][ T7181] hsr0: Slave A (hsr_slave_0) is not up; please bring it up to get a fully working HSR network [ 177.876183][ T4530] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 177.910711][ T7181] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 177.923296][ T4530] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.950602][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready [ 177.961993][ T4530] usb 3-1: config 0 descriptor?? [ 177.968077][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 177.980602][ T4530] cp210x 3-1:0.0: cp210x converter detected [ 178.000179][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 178.029609][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 178.059577][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 178.124351][ T11] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready [ 178.304940][ T4260] Bluetooth: hci0: command 0x0419 tx timeout [ 178.385729][ T4530] cp210x 3-1:0.0: failed to get vendor val 0x000e size 3: -32 [ 178.424066][ T4305] device hsr_slave_0 left promiscuous mode [ 178.435120][ T4305] device hsr_slave_1 left promiscuous mode [ 178.442640][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 178.461911][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 178.495561][ T4305] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 178.504387][ T4305] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 178.516101][ T4305] device bridge_slave_1 left promiscuous mode [ 178.522516][ T4305] bridge0: port 2(bridge_slave_1) entered disabled state [ 178.547559][ T4305] device bridge_slave_0 left promiscuous mode [ 178.561906][ T4305] bridge0: port 1(bridge_slave_0) entered disabled state [ 178.563161][ T7428] loop1: detected capacity change from 0 to 1764 [ 178.613589][ T4530] cp210x 3-1:0.0: failed to get vendor val 0x370c size 15: -71 [ 178.634586][ T4530] cp210x 3-1:0.0: GPIO initialisation failed: -71 [ 178.645918][ T4530] usb 3-1: cp210x converter now attached to ttyUSB0 [ 178.655624][ T4530] usb 3-1: USB disconnect, device number 8 [ 178.663803][ T4530] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 178.672589][ T4530] cp210x 3-1:0.0: device disconnected [ 178.684806][ T4305] device veth1_macvtap left promiscuous mode [ 178.694721][ T4305] device veth0_macvtap left promiscuous mode [ 178.700859][ T4305] device veth1_vlan left promiscuous mode [ 178.729638][ T7430] loop3: detected capacity change from 0 to 4096 [ 178.736232][ T4305] device veth0_vlan left promiscuous mode [ 178.752353][ T7430] ntfs3: loop3: Different NTFS' sector size (4096) and media sector size (512) [ 178.833945][ T7430] ntfs3: loop3: failed to convert "c46c" to cp775 [ 178.960763][ T7434] loop3: detected capacity change from 0 to 1024 [ 178.980678][ T7434] hfsplus: walked past end of dir [ 179.291529][ T7441] loop3: detected capacity change from 0 to 64 [ 179.476904][ T7446] ALSA: mixer_oss: invalid OSS volume 'H8LAÆ¢ÎoÚÜQn' [ 179.630723][ T4305] team0 (unregistering): Port device team_slave_1 removed [ 179.682992][ T4305] team0 (unregistering): Port device team_slave_0 removed [ 179.726999][ T4305] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 179.778060][ T4305] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 180.272655][ T4305] bond0 (unregistering): Released all slaves [ 180.416804][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready [ 180.444659][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready [ 180.472983][ T7181] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 180.488490][ T7239] netdevsim netdevsim8 netdevsim0: renamed from eth0 [ 180.526632][ T7239] netdevsim netdevsim8 netdevsim1: renamed from eth1 [ 180.576595][ T7239] netdevsim netdevsim8 netdevsim2: renamed from eth2 [ 180.637093][ T7239] netdevsim netdevsim8 netdevsim3: renamed from eth3 [ 180.974039][ T7239] 8021q: adding VLAN 0 to HW filter on device bond0 [ 181.024501][ T4262] Bluetooth: hci3: command 0x0406 tx timeout Connection to 10.128.1.103 closed by remote host. [ 181.157483][ T7239] 8021q: adding VLAN 0 to HW filter on device team0 [ 181.187582][ T5282] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 181.239924][ T5282] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 182.216260][ T7311] ------------[ cut here ]------------ [ 182.221995][ T7311] sysfs group 'byte_queue_limits' not found for kobject 'tx-0' [ 182.231314][ T7311] WARNING: CPU: 1 PID: 7311 at fs/sysfs/group.c:280 sysfs_remove_group+0x179/0x2a0 [ 182.240961][ T7311] Modules linked in: [ 182.244970][ T7311] CPU: 1 PID: 7311 Comm: kbnepd bnep0 Not tainted 6.1.119-syzkaller #0 [ 182.253225][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 182.263377][ T7311] RIP: 0010:sysfs_remove_group+0x179/0x2a0 [ 182.269374][ T7311] Code: 8b 36 4c 89 e0 48 c1 e8 03 80 3c 28 00 74 08 4c 89 e7 e8 7a a4 c7 ff 49 8b 14 24 48 c7 c7 e0 73 1c 8b 4c 89 f6 e8 57 35 38 ff <0f> 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 31 1b 70 ff [ 182.289092][ T7311] RSP: 0018:ffffc900036b7910 EFLAGS: 00010246 [ 182.295308][ T7311] RAX: 44b221964ec47600 RBX: ffff88805695ac50 RCX: ffff88801af6bb80 [ 182.303299][ T7311] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 182.311361][ T7311] RBP: dffffc0000000000 R08: ffffffff8152b88e R09: fffff520006d6ec1 [ 182.319423][ T7311] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88805695ac20 [ 182.327559][ T7311] R13: 1ffffffff180f560 R14: ffffffff8c07b240 R15: ffff8880601fd828 [ 182.335583][ T7311] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 182.344798][ T7311] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 182.351394][ T7311] CR2: 00005581c6475bf8 CR3: 000000002f844000 CR4: 00000000003506e0 [ 182.359504][ T7311] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 182.367512][ T7311] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 182.375520][ T7311] Call Trace: [ 182.378800][ T7311] [ 182.381730][ T7311] ? __warn+0x15a/0x520 [ 182.385927][ T7311] ? sysfs_remove_group+0x179/0x2a0 [ 182.391146][ T7311] ? report_bug+0x2af/0x500 [ 182.395698][ T7311] ? sysfs_remove_group+0x179/0x2a0 [ 182.400945][ T7311] ? handle_bug+0x3d/0x70 [ 182.405318][ T7311] ? exc_invalid_op+0x16/0x40 [ 182.410001][ T7311] ? asm_exc_invalid_op+0x16/0x20 [ 182.415061][ T7311] ? __warn_printk+0x28e/0x350 [ 182.419832][ T7311] ? sysfs_remove_group+0x179/0x2a0 [ 182.425078][ T7311] netdev_queue_update_kobjects+0x3ce/0x480 [ 182.430998][ T7311] netdev_unregister_kobject+0x10d/0x250 [ 182.436701][ T7311] unregister_netdevice_many+0x12bf/0x17a0 [ 182.442567][ T7311] ? alloc_netdev_mqs+0xeb0/0xeb0 [ 182.447678][ T7311] ? mutex_lock_nested+0x10/0x10 [ 182.452644][ T7311] ? read_lock_is_recursive+0x10/0x10 [ 182.458126][ T7311] unregister_netdev+0x19b/0x210 [ 182.463096][ T7311] ? clear_nonspinnable+0x60/0x60 [ 182.468194][ T7311] ? unlist_netdevice+0x7f0/0x7f0 [ 182.473266][ T7311] bnep_session+0x2db9/0x2fa0 [ 182.478041][ T7311] ? bnep_add_connection+0xd80/0xd80 [ 182.483341][ T7311] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 182.489271][ T7311] ? _raw_spin_unlock+0x40/0x40 [ 182.494159][ T7311] ? release_firmware_map_entry+0x186/0x186 [ 182.500126][ T7311] ? wait_woken+0x1d0/0x1d0 [ 182.504690][ T7311] ? _raw_spin_unlock+0x40/0x40 [ 182.509573][ T7311] ? __kthread_parkme+0x168/0x1c0 [ 182.514674][ T7311] kthread+0x28d/0x320 [ 182.518746][ T7311] ? bnep_add_connection+0xd80/0xd80 [ 182.524021][ T7311] ? kthread_blkcg+0xd0/0xd0 [ 182.528687][ T7311] ret_from_fork+0x1f/0x30 [ 182.533145][ T7311] [ 182.536218][ T7311] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 182.543514][ T7311] CPU: 1 PID: 7311 Comm: kbnepd bnep0 Not tainted 6.1.119-syzkaller #0 [ 182.551773][ T7311] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/30/2024 [ 182.561812][ T7311] Call Trace: [ 182.565084][ T7311] [ 182.568021][ T7311] dump_stack_lvl+0x1e3/0x2cb [ 182.572704][ T7311] ? nf_tcp_handle_invalid+0x642/0x642 [ 182.578154][ T7311] ? panic+0x764/0x764 [ 182.582222][ T7311] ? vscnprintf+0x59/0x80 [ 182.586551][ T7311] panic+0x318/0x764 [ 182.590440][ T7311] ? __warn+0x169/0x520 [ 182.594590][ T7311] ? memcpy_page_flushcache+0xfc/0xfc [ 182.599962][ T7311] ? ret_from_fork+0x1f/0x30 [ 182.604553][ T7311] __warn+0x348/0x520 [ 182.608618][ T7311] ? sysfs_remove_group+0x179/0x2a0 [ 182.613812][ T7311] report_bug+0x2af/0x500 [ 182.618134][ T7311] ? sysfs_remove_group+0x179/0x2a0 [ 182.623327][ T7311] handle_bug+0x3d/0x70 [ 182.627485][ T7311] exc_invalid_op+0x16/0x40 [ 182.631984][ T7311] asm_exc_invalid_op+0x16/0x20 [ 182.636839][ T7311] RIP: 0010:sysfs_remove_group+0x179/0x2a0 [ 182.642640][ T7311] Code: 8b 36 4c 89 e0 48 c1 e8 03 80 3c 28 00 74 08 4c 89 e7 e8 7a a4 c7 ff 49 8b 14 24 48 c7 c7 e0 73 1c 8b 4c 89 f6 e8 57 35 38 ff <0f> 0b 48 83 c4 08 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 31 1b 70 ff [ 182.662247][ T7311] RSP: 0018:ffffc900036b7910 EFLAGS: 00010246 [ 182.668340][ T7311] RAX: 44b221964ec47600 RBX: ffff88805695ac50 RCX: ffff88801af6bb80 [ 182.676307][ T7311] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 0000000000000000 [ 182.684281][ T7311] RBP: dffffc0000000000 R08: ffffffff8152b88e R09: fffff520006d6ec1 [ 182.692280][ T7311] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88805695ac20 [ 182.700251][ T7311] R13: 1ffffffff180f560 R14: ffffffff8c07b240 R15: ffff8880601fd828 [ 182.708222][ T7311] ? __warn_printk+0x28e/0x350 [ 182.712997][ T7311] netdev_queue_update_kobjects+0x3ce/0x480 [ 182.718902][ T7311] netdev_unregister_kobject+0x10d/0x250 [ 182.724535][ T7311] unregister_netdevice_many+0x12bf/0x17a0 [ 182.730353][ T7311] ? alloc_netdev_mqs+0xeb0/0xeb0 [ 182.735377][ T7311] ? mutex_lock_nested+0x10/0x10 [ 182.740311][ T7311] ? read_lock_is_recursive+0x10/0x10 [ 182.745694][ T7311] unregister_netdev+0x19b/0x210 [ 182.750637][ T7311] ? clear_nonspinnable+0x60/0x60 [ 182.755665][ T7311] ? unlist_netdevice+0x7f0/0x7f0 [ 182.760700][ T7311] bnep_session+0x2db9/0x2fa0 [ 182.765408][ T7311] ? bnep_add_connection+0xd80/0xd80 [ 182.770693][ T7311] ? _raw_spin_unlock_irqrestore+0xd9/0x130 [ 182.776599][ T7311] ? _raw_spin_unlock+0x40/0x40 [ 182.781448][ T7311] ? release_firmware_map_entry+0x186/0x186 [ 182.787338][ T7311] ? wait_woken+0x1d0/0x1d0 [ 182.791838][ T7311] ? _raw_spin_unlock+0x40/0x40 [ 182.796687][ T7311] ? __kthread_parkme+0x168/0x1c0 [ 182.801726][ T7311] kthread+0x28d/0x320 [ 182.805787][ T7311] ? bnep_add_connection+0xd80/0xd80 [ 182.811066][ T7311] ? kthread_blkcg+0xd0/0xd0 [ 182.815656][ T7311] ret_from_fork+0x1f/0x30 [ 182.820075][ T7311] [ 182.823351][ T7311] Kernel Offset: disabled [ 182.827737][ T7311] Rebooting in 86400 seconds..