last executing test programs: 5.023183425s ago: executing program 5 (id=15217): r0 = socket$xdp(0x2c, 0x3, 0x0) sendto(r0, 0x0, 0xffffffffffffff9f, 0x4044801, 0x0, 0x0) 4.734678384s ago: executing program 5 (id=15222): sched_setscheduler(0x0, 0x1, 0x0) syz_mount_image$ocfs2(&(0x7f0000004440), &(0x7f00000000c0)='./file1\x00', 0x200080, &(0x7f00000001c0)=ANY=[@ANYBLOB="61636c2c6865617274626561743d6e6f6e652c6572726f72733d72656d6f756e742d726f2c636f686572656e63793d66756c6c2c636f686572656e63793d66756c6c2c6c6f63616c666c6f636b732c6572726f72733d72656d6f756e742d726f2c61636c2c00a9b504852143b698d2e379891a0dde7f9adfca8cbec85bf8e749e04e"], 0x11, 0x4448, &(0x7f000000cd00)="$eJzs3c1rHOcdAOB3RnItuf6QXB9cKHShhpa2CMkntzJUkmXLkq26uLUpvaxX0tpWs9IaaRVyMES5GXIK5BByMAnkppPRIVfnT8glR+dsiA+5BAImCrs7knZGu3gjdqXYeZ6DZ+f93v3NxzuG0RsnKvcXV3OLq7nCcq48f3f1fO7tcmltqRjiA9K0/yMH1z/t6cZxctjH3i/ZjUtX/n37fAhfLHz1fGtraytU9YamRho+f/ftw/nG7bY4U6fabvPWOuV/IYQze8ZV1RNC+O/nIUQhhPEkbSLZ9ocQToR63u2H79/JdWg0T54VL+Zfzj7aHD03s/F4s/V3j0L4uPTbv95b+uYPPaNf/7lD3QMAAAAAAAAAAAAAAAAA8Jqbunnj1r+GR8LTKPRuRHvf151Ktq3ej93qmN93/8sCAAAAAAAAAAAAAAAAAADAz9Tu+/+56HST9/8nk+1Yi/pb/2iRcbSz46Q7pv95Y/Ly8Eiy/nu0J/9CFNa3Pw82Wfc9u/77eKZ+8/Xf9/azXxdqTVXubu8PhCge2no37O7H8dBQCJ8mC7+fjY7FpfJq5S93y2vLCx0bxmsrHf/66v2p6CQL+r8Y72kr/hOZ9ru//v9v9hxN1f07nTvE3mjp+Pe0LPfZe1Fb8b+UqXcQ8Wf/0vHvraX1NxYYq18AqvH/oPfV8Z/MtN+t+J8MIeSi6lhzqStAdQ5TTW81XyEtHf8jtbTUpTP5IVud/99n4n85036r+J/q2Ddofv1fz96IaCod/1/V0vpSJXbP/8G41fn/653SVzLtH8b9vzr+dff/tqTjnzy09aaK1H7Jdq//U5n2uxX/W3EyzpNR6gjYiOrprf5eHWnp+Pftyb+Q/LQvxuO25n9XM/UP5vlvt9/a81/Dc8ifovrzH82l49/fsly75/90pl63r/9jtfkf+5WO/7FaWnruPFD7t934z2Ta71b8a7OSvu34715PfjhaT//E/K8t6fgn87i4sUT9v/9q87/o1fP/a5n2D2P+Vx3/etzdXt8U6fgfb1muGv8v27j/X8/U6378Qxg219+3dPxPtCxXO//7Xh3/2Uy9bsf/j91sHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOA1MJFsB0IUD6X243hoKIRLyf7ZcCyaKyzk50rl+bdWQ5hM0nPhdHSvVJ4rlPKLy+WFYr5QKpXnQ7ic5J8JfdFqqVzJLxUeXNlpqz+6XyysVOaKhUoIYSpJ/104sd3W3GJlqfAghHB1J+9UXF55cL+wnF9YXPn78PDwcJjeGcNgVHynUlyu1Huv54Yws1N3IGoYXC372s5Yjkf/L6+tLBdKtfTrDXVK5flCqaHObJL3YRiMKitry/OFSjFfKt/b7u8wjSXbyemb/7l5fWRP/p2ovp042GEBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8BM9Hf3bRyGE3vpeHEIY2/4QNSv/5FnxYv7l7KPN0XMzG483n7cqBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwI/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYZeOUSIGojAAvxkLtfMYViHpbBMU0cKI4An0GB4mHsVLeAcLC1sLEcwMaNyFNLvV9zUP8vPyfkgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA1rm8G+9v2y4ixdHXYcTL4+vb7/y6zGmYZ17sH+ypJ7txdTOeX7Rd+e7pX35WHr33+Sf9/Hh6iA2zeh7+7i//p1m9c7y11zSs61/71bsnkXITEX3JT1POTbPuXQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8M0OHAgAAAAAAPm/NkJVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVUVduBYAAAAAECYv3UUfRsAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPArAAD//82QIFg=") 3.543144747s ago: executing program 3 (id=15238): syz_open_procfs(0x0, &(0x7f0000000180)='environ\x00') syz_usb_connect(0x5, 0x5a, &(0x7f00000000c0)=ANY=[@ANYBLOB="12010000ec13b2106d04f308280b0102030109024800010000000009046900000e0100002b4101"], 0x0) 3.011926678s ago: executing program 1 (id=15244): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000000), 0xa4242, 0x0) ioctl$BLKIOOPT(r0, 0x1279, &(0x7f0000000040)) 2.79285437s ago: executing program 5 (id=15245): bind$alg(0xffffffffffffffff, 0x0, 0x0) syz_usb_connect(0x2, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000070851d40cd061201183e01020301090224000100006f900904eb1002657c7d000905020240000000eb090505b2"], 0x0) 2.683363203s ago: executing program 1 (id=15247): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f0000000180)=[{0x200000000006, 0x0, 0x0, 0x7ffc0001}]}) syz_usb_connect(0x0, 0x24, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0xca, 0x9b, 0xd4, 0x10, 0x1199, 0xb000, 0xa898, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0x12, 0x1, 0x0, 0x0, 0x10, 0x0, [{{0x9, 0x4, 0x30, 0x2, 0x0, 0x17, 0xb5, 0x1b}}]}}]}}, 0x0) 2.203961527s ago: executing program 2 (id=15250): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000002c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f00000001c0)=ANY=[@ANYBLOB="7800000010000104000000004000000000000000", @ANYRES32=0x0, @ANYBLOB="03800000000000003c0019800500060003000000140005000a226f7b5c1fa666b739561bbbe4742614140400d2d6a87ac924a71870a7ff041868b4ac0500060002000000080004003a010000140003006272696467655f736c6176655f31"], 0x78}}, 0x0) 1.682541676s ago: executing program 4 (id=15253): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000140)=@newlink={0x58, 0x10, 0x401, 0xffffffff, 0x1000000, {0x0, 0x0, 0x0, 0x0, 0xf0ff, 0x200}, [@IFLA_LINKINFO={0x2c, 0x12, 0x0, 0x1, @ip6gretap={{0xe}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_REMOTE={0x14, 0x7, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02'}]}}}, @IFLA_ADDRESS={0xa, 0x1, @remote}]}, 0x58}, 0x1, 0x0, 0x0, 0x20081}, 0x0) 1.59521306s ago: executing program 2 (id=15254): r0 = syz_open_procfs(0x0, &(0x7f00000003c0)='net/wireless\x00') read$FUSE(r0, &(0x7f0000003800)={0x2020}, 0xfda3) 1.555360898s ago: executing program 3 (id=15255): r0 = openat$adsp1(0xffffffffffffff9c, &(0x7f0000000300), 0x0, 0x0) close_range(r0, 0xffffffffffffffff, 0x0) 1.500846023s ago: executing program 0 (id=15256): r0 = socket$netlink(0x10, 0x3, 0xa) sendmsg$nl_xfrm(r0, &(0x7f0000000740)={0x0, 0x0, &(0x7f0000000700)={&(0x7f00000034c0)=@allocspi={0xf8, 0x16, 0x400, 0x0, 0x0, {{{@in=@dev, @in6=@rand_addr=' \x01\x00'}, {}, @in6=@rand_addr=' \x01\x00', {0x0, 0x80000000000}}}}, 0xf8}}, 0x0) 1.198124446s ago: executing program 0 (id=15258): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x76, 0x101301) ioctl$USBDEVFS_CLEAR_HALT(r0, 0xc0105502, 0x0) 1.197475s ago: executing program 2 (id=15259): setreuid(0x0, 0xee00) request_key(&(0x7f0000000440)='rxrpc_s\x00', &(0x7f0000000480)={'syz', 0x3}, &(0x7f0000000500)='/dev/vcsu#\x00', 0xffffffffffffffff) 1.139937005s ago: executing program 4 (id=15260): r0 = socket$pppoe(0x18, 0x1, 0x0) ioctl$PPPOEIOCDFWD(r0, 0xb101, 0x0) 1.09424843s ago: executing program 3 (id=15261): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x8, 0x4, 0x4, 0x9}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x13, 0x8, &(0x7f0000000940)=ANY=[@ANYBLOB="1809000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7030000070400008500000021000000b70000000000000095"], &(0x7f0000000640)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) 1.004234916s ago: executing program 0 (id=15262): r0 = socket$nl_sock_diag(0x10, 0x3, 0x4) sendmsg$SOCK_DIAG_BY_FAMILY(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)={0x14, 0x14, 0x601, 0x3, 0x0, {0x2b, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x4001}, 0x4000) 989.363951ms ago: executing program 4 (id=15263): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x0) fcntl$lock(r0, 0x6, &(0x7f00000000c0)={0x0, 0x2, 0x7fffffffffffffff}) 939.179212ms ago: executing program 2 (id=15264): r0 = socket$can_j1939(0x1d, 0x2, 0x7) setsockopt$SO_J1939_ERRQUEUE(r0, 0x6b, 0x4, 0x0, 0x0) 826.932386ms ago: executing program 3 (id=15265): r0 = syz_open_procfs(0x0, &(0x7f0000000200)='task\x00') lseek(r0, 0xffffffffffffffff, 0x1) 763.848362ms ago: executing program 4 (id=15266): bpf$MAP_CREATE(0x0, 0x0, 0x0) syz_emit_ethernet(0x4e, &(0x7f0000000000)={@broadcast, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "122d92", 0x18, 0x3a, 0xff, @empty, @mcast2, {[], @ndisc_ns={0x87, 0x0, 0x0, @empty, [{0x0, 0x0, 'Qh'}]}}}}}}, 0x0) 763.696962ms ago: executing program 2 (id=15267): syz_mount_image$ext4(&(0x7f0000000b00)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0x21081e, &(0x7f0000000040)={[{@grpquota}, {@nomblk_io_submit}, {@minixdf}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") quotactl$Q_GETINFO(0xffffffff80000501, &(0x7f00000003c0)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000440)) 709.789148ms ago: executing program 0 (id=15268): r0 = socket$nl_audit(0x10, 0x3, 0x9) sendmmsg(r0, &(0x7f0000003f40)=[{{0x0, 0x0, &(0x7f00000005c0)=[{&(0x7f0000000500)="fe", 0x1}], 0x1}}, {{0x0, 0x0, &(0x7f0000002900)=[{&(0x7f0000000840)="88", 0x1}], 0x1, &(0x7f0000002940)=[{0x10, 0x1, 0x1}], 0x10}}], 0x2, 0x40002) 665.905244ms ago: executing program 1 (id=15269): mmap(&(0x7f0000000000/0xff5000)=nil, 0xff5000, 0x2, 0x4c831, 0xffffffffffffffff, 0xa1de8000) get_mempolicy(0x0, 0x0, 0x2fc, &(0x7f000027f000/0x1000)=nil, 0x3) 647.929682ms ago: executing program 5 (id=15270): mkdir(&(0x7f00000001c0)='./file0\x00', 0x0) keyctl$instantiate_iov(0x14, 0x0, &(0x7f0000000000), 0x1000000000000232, 0x0) 548.512937ms ago: executing program 5 (id=15271): syz_mount_image$vfat(&(0x7f0000000440), &(0x7f0000000280)='./file1\x00', 0x8008dc, &(0x7f00000002c0)=ANY=[@ANYBLOB='shortname=winnt,uni_xlate=1,rodir,uni_xlate=0,iocharset=macgaelic,shortname=lower,utf8=1,iocharset=iso8859-13,uni_xlate=1,rodir,shortname=win95,shortname=lower,codepage=874,shortname=lower,utf8=0,shortname=lower,uni_xlate=0,uni_xlate=0,nonumtail=0,short\b\x00\x00\x00\x00\x00\x00\x0095,rodir,uni_xlate=0,rodir,shortname=mixed,sFortname=lower,nnonumtail=1,showexec,\x00', @ANYBLOB="b0baffea7e7ba334f8fde1f7928de8eb76582a", @ANYRES16], 0x6, 0x2e7, &(0x7f0000000780)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000840)='memory.events.local\x00', 0x275a, 0x0) 511.058323ms ago: executing program 4 (id=15272): syz_mount_image$hfs(&(0x7f0000000480), &(0x7f0000000140)='./file1\x00', 0x3000840, &(0x7f00000004c0)=ANY=[@ANYBLOB="6469725f756d61736b3d303030303030303030303030303030342c66696c655f756d61736b3d30303030303030303030303030303030303030313334302c696f636861727365743d6d61637475726b6973682c636f6465706167653d69736f383835392d362c63726561746f723d4ddd71752c00eace691af6ae10469da9b01baceb6a9486a6be7f83429052dab3e6e5e287ba3d79e809945e4361c0019a8ed88ae1c6c541bb9a966c0e4d7bde2f8e3add0af5a9c74c520f889381fbcf573e0000000000"], 0x11, 0x2e1, &(0x7f0000000ac0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000340)='./file1\x00', 0x0) 483.096368ms ago: executing program 1 (id=15273): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0x3, &(0x7f0000000480)=@framed={{0x18, 0x0, 0x0, 0x0, 0x7}}, &(0x7f0000000500)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector=0x11, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000080)={@ifindex, r0, 0x11, 0x0, 0x0, @void, @value=0x0}, 0x20) 411.84928ms ago: executing program 3 (id=15274): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000440)=ANY=[@ANYBLOB="140000001000010000000000000000000100000a20000000000a01040000000000000000010000030900010073797a30000000002c000000030a01010000000000000000010000000900010073797a30000000000900030073797a320000000098000000060a010400000000000000000100000008000b400000000070000480340001800b000100657874686472000024000280080001400000000c0800034000000000080004400000002d0500020007000000380001800c0001006269747769736500280002800800014000000014080002400000001209000640000000030400048008000340000000010900010073797a30"], 0x10c}}, 0x0) 409.104517ms ago: executing program 1 (id=15275): r0 = syz_open_dev$amidi(&(0x7f0000000140), 0x2, 0x180) ioctl$SNDRV_RAWMIDI_IOCTL_INFO(r0, 0x40045731, &(0x7f0000001040)) 345.933424ms ago: executing program 0 (id=15276): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000a00)={0x14, 0x15, 0x301, 0x0, 0x0, {0xb}}, 0x14}, 0x1, 0x0, 0x0, 0x800}, 0x0) 330.030326ms ago: executing program 2 (id=15277): r0 = socket$inet(0x2, 0x4000000000000001, 0x0) ioctl$sock_SIOCSIFBR(r0, 0x8941, 0x0) 80.904309ms ago: executing program 1 (id=15278): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_inet_SIOCSIFFLAGS(r0, 0x8924, &(0x7f00000000c0)={'wlan0\x00', 0x1}) 79.75763ms ago: executing program 5 (id=15279): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x4, 0x5, &(0x7f0000000000)=@framed={{0x18, 0x2, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x8}, [@call={0x85, 0x0, 0x0, 0x30}, @call={0x85, 0x0, 0x0, 0x50}]}, &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x9, '\x00', 0x0, @fallback=0xe, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x2}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000600)={r0, 0x0, 0x14, 0x0, &(0x7f0000000900)="e02742e8680d85ff9782762f0800", 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 71.330197ms ago: executing program 3 (id=15280): r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000200), 0x200, 0x0) ioctl$FBIOGET_VSCREENINFO(r0, 0x4600, &(0x7f0000000240)) 69.860002ms ago: executing program 4 (id=15281): r0 = socket$can_raw(0x1d, 0x3, 0x1) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000180)={'sit0\x00', &(0x7f00000001c0)=@ethtool_cmd={0x4f, 0x16, 0x5, 0x4, 0x5c, 0x4, 0x2, 0x11, 0x0, 0xb2, 0x4, 0xc, 0x3, 0x1, 0x8e, 0x9, [0xffffff33, 0x7fff]}}) 0s ago: executing program 0 (id=15282): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='iocharset=cp850,time_offset=0x000000000000000e,keep_last_dots,iocharset=cp936,iocharset=iso8859-14,allow_utime=00000000000000000000007,gid=', @ANYRESHEX=0x0, @ANYBLOB=',dmask=00000000000000000002367,namecase=1,fmask=00000000000000000000100,uid=', @ANYRESDEC=0x0, @ANYBLOB="2c66736d616769633d307830303030003030301a303083eb3030312c657569643c9b55af560c9ead0fe606607cbae93fb1fab9baee62c37555aa8da9eb71193a01d65e5f2729c74b3e548f80bcb31008ab8da2dfb3b8ffaf5763b43aea2a9ba2b5cae2accb00"/112, @ANYRESDEC=0x0, @ANYBLOB="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", @ANYRESDEC=0x0, @ANYBLOB=',appraise_type=imasig,\x00'], 0x1, 0x152f, &(0x7f00000037c0)="$eJzs3AucTVX7OPDnWWvtMSSdJrkMa61nc5LLIklySZJLkiRJkltC0iSvJCSG3JKGJCSXIbkMIblMTBr3+/2SkCRNkoTklqz/Z8r81Vvv/33f39svv/9vnu/nsz+znrP2s/ba85yzz977nJlvug6r1aR29UZEBP8R/OVHIgDEAsAgALgGAAIAKB9XPi6zP6fExP9sI+zP9VDKlZ4Bu5K4/tkb1z974/pnb1z/7I3rn71x/bM3rn/2xvVnLDvbMqPgtbxk34Xv/2dn/P7/v0hG6XFfrCt9fTeAmH81hev//z/8D3K5/v9rBf/KSlz/7I3rn13FXukJsP8B+PWfHeT4hz1c/+yN689Ydvbre8GxcOXvR//VC0Sy92cgV/r5xxhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGMsezjrL1MAkNW+0vNijDHGGGOMMcbYn8fnuNIzYIwxxhhjjDHG2H8/BAESFAQQAzkgFnJCLhAAMVn910IcXAd54XrIB/mhABSEeCgEhUGDAQsEIRSBohCFG6AY3AjFoQSUhFLgoDSUgZugLNwM5eAWKA+3QgW4DSpCJagMVeB2qAp3QDW4E6rDXVADakItqA13Qx24B+rCvVAP7oP6cD80gAegITwIjeAhaAwPQxN4BJrCo9AMmkMLaAmt/kv5L0BPeBF6QW9IhD7QF16CftAfBsBAGAQvw2B4BYbAq5AEQ2EYvAbD4XUYAW/ASBgFo+FNGANvwVgYB+NhAiTDRJgEb8NkeAemwFSYBtMhBWbATHgXZsFsmAPvwVx4H+bBfFgACyEVPoBFsBjS4ENYAh9BOiyFZbAcVsBKWAWrYQ2shXWwHjbARtgEm2ELbIVtsB12wE7YBR/DbvgE9sBe2Aefwn747N/MP/N3+d0QEFCgQIUKYzAGYzEWc2EuzI25MQ/mwQhGMA7jMC/mxXyYDwtgAYzHeCyMhdGgQULCIlgEoxjFYlgMi2NxLIkl0aHDMlgGy+LNWA7LYXksjxWwAlbESlgJq2AVrIpVsRpWw+pYHWtgDayFtfBuvBv7YF2si/WwHtbH+lm3p7ARNsLG2BibYBNsik2xGTbDFtgCW2ErbI2tsQ22wXbYDttje+yAHTABE7AjdsRO2Ak7Y2fsgl2wK3bFbtgdu2e8kAPwRXwRe2MN0Qf7Yl/sh0k5BuBAHIgv42B8BV/BVzEJh+IwfA1fw9dxBJ7GkTgKR+NorCrewrE4DklMwGRMxkk4CSfjZJyCU3EqTscUnIEzcSbOwtk4G9/Dufg+vo/zcT4uxFRMxUW4GNMwDZfgGUzHpbgMl+MKXIkrcDWuwdW4DtfjOtyIG3EzbsatuBW343bciTvxY1QA+Anuxb2YhPtxPx7AA3gQD+IhPIQZmIGH8TAewSN4FI/iMTyGx/EEnsQTeApP4Wk8g2fxLJ7H83gBn4v/qvHHJdYmgcikhBIxIkbEiliRS+QSuUVukUfkEREREXEiTuQVeUU+kU8UEAVEvIgXhUVhYYQRJMLMI4WIiqgoJoqJ4qK4KClKCiecKCPKiLKirCgnyony4lZRQdwmKopKoq2rIqqIqqKdqybuFNVFdVFD1BS1RG1RW9QRdURdUVfUE/VEfVFfNBAPiIaiDw7Ah0RmZZqIodhUDMNmormQl45QrcUIbCPainbiCTEKR2IH0doliKdFRzEWO4m/iXH4rOgiJmBX8bzoJrqLHuIF0VO0cb1EbzEF+4i+Yjr2E/3FADFQzMKa4j2cm7OWeFUkiaFimHhNLMTXxQjxhhgpRonR4k0xRrwlxopxYryYIJLFRDFJvC0mi3fEFDFVTBPTRYqYIWaKd8UsMVvMEe+JueJ9MU/MFwvEQpEqPhCLxGKRJj4US8RHIl0sFcvEcrFCrBSrxGqxRqwV68R6sUFsFJvEZrFFbBXbxHaxQ+wUu8THYrf4ROwRe8U+8anYLz4TB8Tn4qD4QhwSX4oM8ZU4LL4WR8Q34qj4VhwT34nj4oQ4Kb4Xp8QP4rQ4I86Kc+K8+FFcED+Ji8ILkCiFlFLJQMbIHDJW5pS55FUytwyyjv8yTl4n88rrZT6ZXxaQBWW8LCQLSy2NtJJkKIvIojIqb5DF5I2yuCwhS8pS0snSsoy8SZaVN8ty8hZZXt4qK8jbZEVZSVaWVeTtsqq8Q0Lkl23UkDVlLVlb3i0T4R5ZV94r68n7ZH15v2wgH5AN5YOykXxINpYPyybyEdlUPiqbyeayhWwpW8nHZGv5uGwj28p28gnZXj4pO8inZIJ8WnaU/tJT5FnZRT4nu8rnZTfZXfaQP8mL0stesreEPiD7ypdkP9lfDpAD5SD5shwsX5FD5KsySQ6Vw+Rrcrh8XY6Qb8iRcpQcLd+UY+RbcqwcJ8fLCTJZTpST5NtysnxHTpFT5TQ5XabIGXLApZHmSPlP89/+g/whP299s9wit8ptcrvcIXfKXfJjuVvulnvkHrlP7pP75X55QB6QB+VBeUgekhkyQx6Wh+UReUQelUflMXlMHpcn5Dn5vTwlf5Cn5Rl5Rp6T5+V5eeHS7wAUKqGkUipQMSqHilU5VS51lcqtrlZ51DUqoq5Vceo6lVddr/Kp/KqAKqjiVSFVWGlllFWkQlVEFVVRdQNeesKokqqUcqq0KqNu+nfyVTF1oyquSvwmP2t+if9gfq1UK9VatVZtVBvVTrVT7VV71UF1UAkqQXVUHVUn1Ul1Vp1VF9VFdVVdVTfVTfVQPVRP1VP1Ur1UokpUfdVLqp/qrwaogWqQellk7sMQNUQlqSQ1TA1Tw9VwNUKNUCPVSDVajVZj1Bg1Vo1V49V4layS1SQ1SU1Wk9UUNUVNU9NUikpRM9VMNUvNUnPUHDVXzVXz1Dy1QC1QqSpVLVKLVJpKU0vUEpWulqqlarlarlaqlWq1Wq3WqrVqvVqvNqqNKl1tUVvUNrVN7VA71C61S+1Wu9UetUftU/vUfrVfHVAH1EF1UB1Sh1SGylCH1WF1RB1RR9VRdUwdU8fVcXVSnVSn1Cl1Wp1WZ9VZdV6dVxfUBXVRXcw87QtEIAIVqCAmiAlig9ggV5AryB3kDvIEeYJIEAnigrggb3B9kC/IHxQICgbxQaGgcKADE9hAXCp6NLghKBbcGBQPSgQlg1KBC0oHZYKbgrLBzUG54JagfHBrUCG4LagYVAoqB1WC24OqwR1BteDOoHpwV1AjqBnUCmoHdwd1gnuCusG9Qb3gvqB+cH/QIHggaBg8GDQKHgoaBw8HTYJHgqbBo0GzoHnQImgZtPpTx/f+dP7HXS/dWyfqPrqvfkn30/31AD1QD9Iv68H6FT1Ev6qT9FA9TL+mh+vX9Qj9hh6pR+nR+k09Rr+lx+pxeryeoJP1RD1Jv60n63f0FD1VT9PTdYqeoWfqd/UsPVvP0e/pufp9PU/P1wv0Qp2qP9CL9GKdpj/US/RHOl0v1cv0cr1Cr9Sr9Gq9Rq/V6/R6vUFv1Jv0Zr1Fb9Xb9Ha9Q+/Uu/THerf+RO/Re/U+/anerz/TB/Tn+qD+Qh/SX+oM/ZU+rL/WR/Q3+qj+Vh/T3+nj+oQ+qb/Xp/QP+rQ+o8/qc/q8/lFf0D/pi9pnntxnvr0bZZSJMTEm1sSaXCaXyW1ymzwmj4mYiIkzcSavyWvymXymgClg4k28KWwKm0xkyBQxRUzURE0xU8wUN8VNSVPSOONMGVPGlDVlTTlTzpQ35U0FU8FUNBVNZVPZ3G5uN3eYO8yd5k5zl7nL1DQ1TW1T29QxdUxdU9fUM/VMfVPfNDANTEPT0DQyjUxj09g0MU1MU9PUNDPNTAvTwrQyrUxr09q0MW1MO9POtDftTQfTwSSYBNPRdDSdTCfT2XQ2XUwX09V0Nd1MN9PD9DA9TU/Ty/QyiSbR9DV9TT/TzwwwA8wgM8gMNoPNEDPEJJkkM8wMM8PNcDPCjDAjzSgzOvNE1bxlxppxZryZYJJNsplkJpnJZrKZYqaYaWaaSTEpZqaZaWaZWWaOmWPmmrlmnplnFpgFJtWkmkVmkUkzaWaJWWLSTbpZZpaZFWaFWWVWmTVmjVln1pkNsMFsMpvMFrPFbDPbzA6zw+wyu8xus9vsMXvMPrPP7Df7zQFzwBw0B80hc8hkmAxz2Bw2R8wRc9QcNcfMMXPcHDcnzUlzypwyp81pc9acNedN/kvvl97E2pw2l73K5rZX2zz2Gvv3cQFb0MbbQraw1Tafzf+b2Fhri9sStqQtZZ0tbcvYm34XV7SVbGVbxd5uq9o7bLXfxXXsPbauvdfWs/fZ2vbu38T17f22gX3ENkQEsM1tY9vSNrGP2Kb2UdvMNrctbEvb3j5pO9inbIJ92na0z/wuXmQX2zV2rV1n19s9dq89a8/ZI/Ybe97+aHvZ3naQfdkOtq/YIfZVm2SH/i4ebd+0Y+xbdqwdZ8fbCb+Lp9npNsXOsDPtu3aWnf27ONV+YOfaNDvPzrcL7MKf48w5pdkP7RL7kU23ASyzy+0Ku9Kusqv/71yX2412k91sd9tP7Da73e6wO+2urBNhu9fus5/a/fYze9h+bQ/aL+whe9Rm2K9+jjP376j91h6z39nj9oQ9ab+3p+wPKis7c9+/tz/Zi9ZbICQgSYoCiqEcFEs5KRddRbnpaspD11CErqU4uo7y0vWUj/JTASpI8VSICpMmQ5aIQipCRSlKN1DW9EpSKXJUmsrQTVSWbqZydAuVp1upAt1GFakSVaYqdDtVpTuoGt1J1ekuqkE1qRbVprupDt1Ddeleqkf3UX26nxrQA9SQHqRG9BA1poepCT1CTelRakbNqQW1pFb0GLWmx6kNtaV29AS1pyepAz1FCfQ0daRnqBP9jTrTs9SFnqOu9Dx1o+7Ug16gnvQi9aLelEh9qC+9RP2oPw2ggTSIXqbB9AoNoVcpiYbSMHqNhtPrNILeoJE0ikbTmzSG3qKxNI7G0wRKpok0id6myfQOTaGpNI2mUwrNoJn0Ls2i2TSH3qO59D7No/m0gBZSKn1Ai2gxpdGHtIQ+onRaSstoOa2glbSKVtMaWkvraD1toI20iTbTFtpK22g77aCdtIs+pt30Ce2hvbSPPqX99BkdoM/pIH1Bh+hLyqCv6DB9TUfoGzpK3/re9B0dpxN0kr6nU/QDnaYzdJbO0Xn6kS7QT3SRPEGIoQhlqMIgjAlzhLFhzjBXeFWYO7w6zBNeE0bCa8O48Lowb3h9mC/MHxYIC4bxYaGwcKhDE9qQwjAsEhYNo+ENYbHwxrB4WCIsGZYKXVg6LBPeFJYNbw7LhbeE5cNbwwrhbWHFsFL4yH1VwtvDquEdYbXwzrB6eFdYI6wZ1gprh3eHdcJ7wrrhvWG98L6wXHh/2CB8IGwYPhg2Ch8KG4cPh03CR8Km4aNhs7B52CJsGbYKHwtbh4+HbcK2YbvwqrB9+GTYIXwqTAifDjuGz/zcf//irP4nftefGPYJ+4YvhS+F3t8rF0QXRlOjH0QXRRdH06IfRpdEP4qmR5dGl0WXR1dEV0ZXRVdH10TXRtdF10c3RDdGN0U3R72vnQMcOuGkUy5wMS6Hi3U5XS53lcvtrnZ53DUu4q51ce46l9dd7/K5/K6AK+jiXSFX2GlnnHXkQlfEFXVRd4Mr5m50xV0JV9KVcs6VdmVcS9fKtXKt3eOujWvr2rkn3BPuSfeke8o95Z52Hd0zrpP7m+vsnnVd3HPuOfe86+a6ux7uBdfTTczzy2sy0fV1fV0/188NcAPcIDfIDXaD3RA3xCW5JDfMDXPD3XA3wo1wI91IN9qNdmPcGDfWjXXj3XiX7JLdJDfJTXaT3RQ3xU1z01yKS3Ez3Uw3y81yVWf/spV5bp5b4Ba4VJfqFrnMc8Y0t8Qtceku3S1zy9wKt8KtcqvcGrfGrXPr3Aa3wW1ym9wWt8Vtc9vcDrfD7XK73G632+3x1/wyqNvvDrgD7qA76A65L12G+8oddl+7I+4bd9R9646579xxd8KddN+7U+4Hd9qdcWfdOXfe/eguuJ/cReddcmRiZFLk7cjkyDuRKZGpkWmR6ZGUyIzIzMi7kVmR2ZE5kfcicyPvR+ZF5kcWRBZGUiMfRBZFFkfSIh9GlkQ+iqRHlkaWRZZHVkRWRrwvtC30RXxRH/U3+GL+Rl/cl/AlfSnvfGlfxt/ky/qbfTl/iy/vb/UV/G2+oq/kK/tHfTPf3LfwLX0r/5hv7R/3bXxb384/4dv7J30H/5RP8E/7jv4Z38n/zXf2z/ou/jnf1T/vu/nuvod/wff0L/pevrdP9H18X/+S7+f7+wF+oB/kX/aD/St+iH/VJ/mhfph/zQ/3r/sR/g0/0o/yo2Pe9GOyLpFhgk/2E/0k/7af7N/xU/xUP81P9yl+hp/p3/Wz/Gw/x7/n5/r3/Tw/3y/wC32q/8Av8ot9mv/QL/Ef+XS/NOumsV/lV/s1fq1f59f7DX6j3+Q3+y1+q9/mt/sdfqff5T/2u/0nfo/f6/f5T/1+/5k/4D/3B/0X/pD/0mf4r/xh/7U/4r/xR/23/pj/zh/3J/xJ/70/5X/wp/0Zf9af8+f9j/6C/8lf5L9ZY4wxxhj7l0y83BS/7fnldn6fP8gRv1q5LwBcvb1gxq/7M88oN+T7pd1fxLePAMDTvbs+lLXUqJGYmHhp3XQJQdH5AFmfBGX6+asHl+Kl0A6ehARoC2X/cP79Rffz9E/Gj94KkOtXObFwOb48/ucAmPgH4z/2xOhFFcKzcf+P8ecDFC96OScnXI6XQruf76+0hXL/YP75W/+T+ef8Ihmgza9ycsPl+PL8y8Dj8Awk/GZNxhhjjDHGGGPsF/1F5c5Z159Z3/j8o+vzeHU5Jwdcjv/Z9TljjDHGGGOMMcauvGe793jqsYSEtp3//Ua1/1LWv9xoCv9dI3PjDxveA2Q9ogDgPxwQILMh/8q92PqXbCvp0kvn77tWnPMB/M8o5Z/RuMIHJsYYY4wxxtif7vJJ/28fV1dqQowxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGWDb0V/w7sSu9j4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxhhjjDHGGGOMMcYYY4wxxtiV9n8CAAD//7wUAB0=") chdir(&(0x7f00000004c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00') kernel console output (not intermixed with test programs): : 76 bytes leftover after parsing attributes in process `syz.2.13795'. [ 1427.922421][ T6111] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 1428.134323][ T8382] loop1: detected capacity change from 0 to 32768 [ 1428.146494][ T6111] usb 1-1: New USB device found, idVendor=055f, idProduct=c230, bcdDevice=b6.ac [ 1428.190203][ T6111] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1428.198704][ T8382] ocfs2: Slot 0 on device (7,1) was already allocated to this node! [ 1428.235061][ T6111] usb 1-1: Product: syz [ 1428.239306][ T6111] usb 1-1: Manufacturer: syz [ 1428.274743][ T8382] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1428.330845][ T6111] usb 1-1: SerialNumber: syz [ 1428.353506][T21871] (kworker/u8:10,21871,0):ocfs2_check_dir_entry:321 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214 [ 1428.402257][ T6111] usb 1-1: config 0 descriptor?? [ 1428.452658][ T6111] gspca_main: sunplus-2.14.0 probing 055f:c230 [ 1428.452814][ T8392] loop3: detected capacity change from 0 to 32768 [ 1428.608505][ T8392] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.13790 (8392) [ 1428.695704][ T8392] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1428.708948][ T5990] ocfs2: Unmounting device (7,1) on (node local) [ 1428.754882][ T8392] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm [ 1429.068982][ T6111] gspca_sunplus: reg_r err -71 [ 1429.073877][ T6111] sunplus 1-1:0.0: probe with driver sunplus failed with error -71 [ 1429.103959][ T6111] usb 1-1: USB disconnect, device number 6 [ 1429.199786][ T8392] BTRFS info (device loop3): enabling ssd optimizations [ 1429.256945][ T8392] BTRFS info (device loop3): enabling free space tree [ 1429.631921][ T8514] loop1: detected capacity change from 0 to 256 [ 1429.664060][ T8514] exfat: Deprecated parameter 'namecase' [ 1429.682375][ T5991] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1429.739346][ T8514] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xa6b7a7ad, utbl_chksum : 0xe619d30d) [ 1431.117220][ T8572] netlink: 56 bytes leftover after parsing attributes in process `syz.1.13833'. [ 1431.251298][ T8521] loop4: detected capacity change from 0 to 32768 [ 1431.291890][ T8579] loop2: detected capacity change from 0 to 256 [ 1431.314678][ T8521] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.13819 (8521) [ 1431.357889][ T8579] exfat: Deprecated parameter 'namecase' [ 1431.396430][ T8521] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1431.433442][ T8521] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 1431.451186][ T8579] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xa6b7a7ad, utbl_chksum : 0xe619d30d) [ 1431.488548][ T8590] loop1: detected capacity change from 0 to 16 [ 1431.579566][ T8590] erofs (device loop1): mounted with root inode @ nid 36. [ 1431.666181][ T8521] BTRFS info (device loop4): enabling ssd optimizations [ 1431.758717][ T8521] BTRFS info (device loop4): enabling free space tree [ 1431.858645][ T8619] loop5: detected capacity change from 0 to 256 [ 1431.906814][ T8619] exfat: Deprecated parameter 'namecase' [ 1431.992210][ T8619] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1432.038827][ T8628] loop3: detected capacity change from 0 to 64 [ 1432.072617][ T8628] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 1432.327420][ T5989] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1432.663436][ T8653] dlm: no locking on control device [ 1432.801345][T21871] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1432.813466][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1432.924954][ T8665] loop2: detected capacity change from 0 to 16 [ 1432.966776][ T8665] erofs (device loop2): mounted with root inode @ nid 36. [ 1432.988302][ T8665] syz.2.13854: attempt to access beyond end of device [ 1432.988302][ T8665] loop2: rw=524288, sector=167772159, nr_sectors = 1 limit=16 [ 1433.088943][ T8665] syz.2.13854: attempt to access beyond end of device [ 1433.088943][ T8665] loop2: rw=0, sector=167772159, nr_sectors = 1 limit=16 [ 1433.196636][ T30] audit: type=1800 audit(1359.448:397): pid=8665 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.13854" name="file1" dev="loop2" ino=86 res=0 errno=0 [ 1433.318978][ T8687] loop5: detected capacity change from 0 to 64 [ 1434.646856][ T8675] loop1: detected capacity change from 0 to 32768 [ 1434.693027][ T8675] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.13856 (8675) [ 1434.811045][ T8675] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1434.869537][ T8675] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm [ 1435.111178][ T8675] BTRFS info (device loop1): enabling ssd optimizations [ 1435.179451][ T8675] BTRFS info (device loop1): enabling free space tree [ 1435.274802][ T8758] netlink: 40 bytes leftover after parsing attributes in process `syz.2.13879'. [ 1435.498573][ T8785] loop5: detected capacity change from 0 to 1764 [ 1435.681271][ T8796] loop3: detected capacity change from 0 to 128 [ 1435.735038][ T8796] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256 [ 1435.815735][ T5990] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1435.835761][ T8796] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1435.870817][ T6004] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1436.016438][ T6004] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1436.911615][T27768] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 1437.114512][T27768] usb 3-1: Using ep0 maxpacket: 16 [ 1437.126444][T27768] usb 3-1: config 0 has an invalid interface number: 1 but max is 0 [ 1437.160083][T27768] usb 3-1: config 0 has no interface number 0 [ 1437.230083][T27768] usb 3-1: New USB device found, idVendor=1a86, idProduct=752d, bcdDevice=2d.4d [ 1437.253310][T27768] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1437.292702][T27768] usb 3-1: Product: syz [ 1437.304386][T27768] usb 3-1: Manufacturer: syz [ 1437.315797][T27768] usb 3-1: SerialNumber: syz [ 1437.330656][T27768] usb 3-1: config 0 descriptor?? [ 1437.353872][T27768] usb 3-1: Quirk or no altset; falling back to MIDI 1.0 [ 1437.655518][ T6111] usb 3-1: USB disconnect, device number 23 [ 1437.677568][ T8892] loop4: detected capacity change from 0 to 16 [ 1437.703806][ T8892] erofs (device loop4): mounted with root inode @ nid 36. [ 1437.766194][ T8892] syz.4.13911: attempt to access beyond end of device [ 1437.766194][ T8892] loop4: rw=524288, sector=167772159, nr_sectors = 1 limit=16 [ 1437.801815][ T8892] syz.4.13911: attempt to access beyond end of device [ 1437.801815][ T8892] loop4: rw=0, sector=167772159, nr_sectors = 1 limit=16 [ 1437.851340][ T30] audit: type=1800 audit(1363.788:398): pid=8892 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.13911" name="file1" dev="loop4" ino=86 res=0 errno=0 [ 1437.942908][ T5977] udevd[5977]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.1/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1438.814598][ T8849] loop0: detected capacity change from 0 to 32768 [ 1438.957119][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1439.147952][ T8972] loop3: detected capacity change from 0 to 22 [ 1439.155533][ T8972] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 1439.162419][T12645] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 1439.202783][ T8972] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 1439.245627][ T975] usb 6-1: new high-speed USB device number 47 using dummy_hcd [ 1439.353033][T12645] usb 5-1: Using ep0 maxpacket: 32 [ 1439.360629][T21878] read_mapping_page failed! [ 1439.379657][T12645] usb 5-1: unable to get BOS descriptor or descriptor too short [ 1439.392877][T21878] ERROR: (device loop0): txAbort: [ 1439.392877][T21878] [ 1439.400577][T12645] usb 5-1: config 7 has an invalid interface number: 187 but max is 0 [ 1439.432823][T12645] usb 5-1: config 7 has no interface number 0 [ 1439.441147][T21878] jfs_write_inode: jfs_commit_inode failed! [ 1439.447385][ T975] usb 6-1: config 1 has an invalid interface number: 253 but max is 1 [ 1439.455949][T12645] usb 5-1: config 7 interface 187 has no altsetting 0 [ 1439.466968][ T975] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1439.467172][ T8980] loop2: detected capacity change from 0 to 128 [ 1439.489920][ T975] usb 6-1: config 1 has 3 interfaces, different from the descriptor's value: 2 [ 1439.500042][T12645] usb 5-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1439.520261][T12645] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1439.521674][ T8980] FAT-fs (loop2): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 1439.528266][T12645] usb 5-1: Product: syz [ 1439.544700][ T975] usb 6-1: config 1 has no interface number 2 [ 1439.550845][ T975] usb 6-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1439.572826][ T975] usb 6-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 1439.586425][T12645] usb 5-1: Manufacturer: syz [ 1439.591033][T12645] usb 5-1: SerialNumber: syz [ 1439.605238][ T8980] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 1439.623611][ T975] usb 6-1: config 1 interface 1 has no altsetting 0 [ 1439.657147][ T975] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1439.688288][ T975] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1439.764225][ T975] usb 6-1: Product: syz [ 1439.768966][ T975] usb 6-1: Manufacturer: syz [ 1439.773607][ T975] usb 6-1: SerialNumber: syz [ 1439.797738][ T975] cdc_ncm 6-1:1.253: CDC Union missing and no IAD found [ 1439.804979][ T975] cdc_ncm 6-1:1.253: bind() failure [ 1439.889429][T12645] usb 5-1: Limiting number of CPorts to U8_MAX [ 1439.903005][T12645] usb 5-1: Not enough endpoints found in device, aborting! [ 1440.230152][ T975] usb 5-1: USB disconnect, device number 33 [ 1440.340368][T27768] usb 6-1: USB disconnect, device number 47 [ 1440.727137][ T9035] loop3: detected capacity change from 0 to 4096 [ 1440.753214][ T9049] loop0: detected capacity change from 0 to 16 [ 1440.778326][ T9035] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 1440.797946][ T9049] erofs (device loop0): mounted with root inode @ nid 36. [ 1440.904959][ T9055] loop2: detected capacity change from 0 to 256 [ 1440.916658][ T9049] syz.0.13943: attempt to access beyond end of device [ 1440.916658][ T9049] loop0: rw=524288, sector=8, nr_sectors = 24 limit=16 [ 1440.980855][ T9049] syz.0.13943: attempt to access beyond end of device [ 1440.980855][ T9049] loop0: rw=524288, sector=16, nr_sectors = 40 limit=16 [ 1440.997319][ T9055] FAT-fs (loop2): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 1441.097110][ T9049] erofs (device loop0): failed to decompress -26 in[46, 4050] out[8192] [ 1441.208891][ T9049] erofs (device loop0): read error -117 @ 1 of nid 89 [ 1441.276058][ T30] audit: type=1800 audit(1367.015:399): pid=9049 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.13943" name="file3" dev="loop0" ino=89 res=0 errno=0 [ 1441.565121][ T9085] cgroup: Unexpected value for 'nofavordynmods' [ 1441.754139][T27768] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 1441.855226][ T9104] netlink: 'syz.5.13959': attribute type 1 has an invalid length. [ 1441.893351][ T30] audit: type=1326 audit(1367.586:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.0.13958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc063d8eec9 code=0x7ffc0000 [ 1441.899491][ T9107] netlink: 'syz.3.13960': attribute type 11 has an invalid length. [ 1441.969483][ T30] audit: type=1326 audit(1367.632:401): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.0.13958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc063d8eec9 code=0x7ffc0000 [ 1441.997102][ T30] audit: type=1326 audit(1367.642:402): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.0.13958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=23 compat=0 ip=0x7fc063d8eec9 code=0x7ffc0000 [ 1442.022436][T27768] usb 5-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 1442.044991][T27768] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1442.053030][T27768] usb 5-1: Product: syz [ 1442.064650][T27768] usb 5-1: Manufacturer: syz [ 1442.074272][T27768] usb 5-1: SerialNumber: syz [ 1442.091219][ T975] usb 2-1: new high-speed USB device number 34 using dummy_hcd [ 1442.104379][ T30] audit: type=1326 audit(1367.642:403): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.0.13958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc063d8eec9 code=0x7ffc0000 [ 1442.130730][ T30] audit: type=1326 audit(1367.642:404): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9106 comm="syz.0.13958" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc063d8eec9 code=0x7ffc0000 [ 1442.159117][T27768] usb 5-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 1442.204034][T12645] usb 5-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 1442.281239][ T975] usb 2-1: config 0 has an invalid interface number: 69 but max is 0 [ 1442.292707][ T975] usb 2-1: config 0 has no interface number 0 [ 1442.298981][ T975] usb 2-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 1442.399086][ T975] usb 2-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1442.431867][ T9128] tmpfs: Bad value for 'mpol' [ 1442.449968][ T30] audit: type=1326 audit(1368.100:405): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9130 comm="syz.5.13966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc089f8eec9 code=0x7ffc0000 [ 1442.557090][ T975] usb 2-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 1442.577246][ T975] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1442.596577][ T30] audit: type=1326 audit(1368.147:406): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9130 comm="syz.5.13966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=6 compat=0 ip=0x7fc089f8eec9 code=0x7ffc0000 [ 1442.619001][ T975] usb 2-1: Product: syz [ 1442.642594][ T975] usb 2-1: Manufacturer: syz [ 1442.647376][ T975] usb 2-1: SerialNumber: syz [ 1442.663397][ T975] usb 2-1: config 0 descriptor?? [ 1442.669379][ T30] audit: type=1326 audit(1368.147:407): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9130 comm="syz.5.13966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc089f8eec9 code=0x7ffc0000 [ 1442.692523][ T9096] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 1442.710478][ T975] cyberjack 2-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 1442.723960][ T30] audit: type=1326 audit(1368.147:408): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9130 comm="syz.5.13966" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fc089f8eec9 code=0x7ffc0000 [ 1442.757512][ T975] usb 2-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 1443.004948][ C1] cyberjack ttyUSB0: cyberjack_read_int_callback - failed resubmitting read urb, error -22 [ 1443.069252][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1444.427386][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1444.564629][ T9187] netlink: 52 bytes leftover after parsing attributes in process `syz.3.13980'. [ 1444.629110][ T9187] netlink: 52 bytes leftover after parsing attributes in process `syz.3.13980'. [ 1444.704061][ T9187] netlink: 52 bytes leftover after parsing attributes in process `syz.3.13980'. [ 1445.075229][T27768] usb 5-1: USB disconnect, device number 34 [ 1445.089808][T12645] ath9k_htc 5-1:1.0: ath9k_htc: Target is unresponsive [ 1445.095189][ T9203] openvswitch: netlink: Missing key (keys=48, expected=10000000) [ 1445.096951][T12645] ath9k_htc: Failed to initialize the device [ 1445.121003][ T975] usb 2-1: USB disconnect, device number 34 [ 1445.138262][T27768] usb 5-1: ath9k_htc: USB layer deinitialized [ 1445.148002][ T975] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 1445.164067][ T975] cyberjack 2-1:0.69: device disconnected [ 1445.410856][ T9219] loop3: detected capacity change from 0 to 64 [ 1445.801458][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1445.807920][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1445.902232][ T9251] comedi comedi0: pcl711: a I/O base address must be specified [ 1446.496550][ T9269] bond4 (unregistering): Released all slaves [ 1446.873480][ T9353] loop5: detected capacity change from 0 to 64 [ 1447.009201][ T9241] loop4: detected capacity change from 0 to 32768 [ 1447.057649][ T9241] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.13994 (9241) [ 1447.177735][ T9241] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1447.250868][ T9241] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm [ 1447.316498][ T9369] loop2: detected capacity change from 0 to 2048 [ 1447.356126][ T9369] UDF-fs: error (device loop2): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1447.460413][ T9369] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1447.581541][ T9241] BTRFS info (device loop4): enabling ssd optimizations [ 1447.591480][ T9241] BTRFS info (device loop4): enabling free space tree [ 1447.698403][ T975] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 1447.925446][ T975] usb 1-1: New USB device found, idVendor=2770, idProduct=9052, bcdDevice=15.f5 [ 1447.943997][ T975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1447.974161][ T975] usb 1-1: Product: syz [ 1447.985394][ T5989] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2 [ 1447.995762][ T975] usb 1-1: Manufacturer: syz [ 1447.995800][ T975] usb 1-1: SerialNumber: syz [ 1448.000036][ T975] usb 1-1: config 0 descriptor?? [ 1448.049023][ T975] gspca_main: sq905c-2.14.0 probing 2770:9052 [ 1448.314041][ T9435] netlink: 7 bytes leftover after parsing attributes in process `syz.2.14028'. [ 1448.360293][ T9435] netlink: 32 bytes leftover after parsing attributes in process `syz.2.14028'. [ 1448.522714][ T975] gspca_sq905c: sq905c_read: usb_control_msg failed (-71) [ 1448.529895][ T975] sq905c 1-1:0.0: Reading version command failed [ 1448.575947][ T975] sq905c 1-1:0.0: probe with driver sq905c failed with error -71 [ 1448.659714][ T975] usb 1-1: USB disconnect, device number 7 [ 1449.021586][ T9471] vxcan1: entered promiscuous mode [ 1449.061998][T13829] vxcan1 speed is unknown, defaulting to 1000 [ 1449.093209][T13829] syz2: Port: 1 Link DOWN [ 1449.217925][T21878] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1449.640431][ T9507] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14047'. [ 1450.586797][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1450.653171][T27768] usb 2-1: new high-speed USB device number 35 using dummy_hcd [ 1450.830938][T27768] usb 2-1: Using ep0 maxpacket: 32 [ 1450.861714][T27768] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1450.905598][T27768] usb 2-1: config 7 has an invalid interface number: 187 but max is 0 [ 1450.913847][T27768] usb 2-1: config 7 has no interface number 0 [ 1450.937583][T27768] usb 2-1: config 7 interface 187 has no altsetting 0 [ 1450.970943][T27768] usb 2-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1451.001499][T27768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1451.043095][T27768] usb 2-1: Product: syz [ 1451.054156][T27768] usb 2-1: Manufacturer: syz [ 1451.064652][T27768] usb 2-1: SerialNumber: syz [ 1451.196026][ T9583] loop0: detected capacity change from 0 to 256 [ 1451.230570][ T9586] kAFS: Can only specify source 'none' with -o dyn [ 1451.270696][ T9583] exfat: Deprecated parameter 'namecase' [ 1451.334888][T27768] usb 2-1: Limiting number of CPorts to U8_MAX [ 1451.358258][T27768] usb 2-1: Not enough endpoints found in device, aborting! [ 1451.371775][ T9583] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1451.497295][ T9583] fuse: Bad value for 'fd' [ 1451.591841][ T6111] usb 2-1: USB disconnect, device number 35 [ 1451.601684][ T9603] netlink: 28 bytes leftover after parsing attributes in process `syz.5.14078'. [ 1451.631674][ T9535] loop2: detected capacity change from 0 to 32768 [ 1451.642928][ T9603] netlink: 28 bytes leftover after parsing attributes in process `syz.5.14078'. [ 1451.752383][ T9535] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1451.957715][ T9535] XFS (loop2): Ending clean mount [ 1452.013062][ T9633] netlink: 'syz.5.14082': attribute type 303 has an invalid length. [ 1452.025706][ T9535] XFS (loop2): Quotacheck needed: Please wait. [ 1452.160624][ T9535] XFS (loop2): Quotacheck: Done. [ 1452.508630][ T9657] netlink: 76 bytes leftover after parsing attributes in process `syz.4.14089'. [ 1452.593637][ T9662] loop5: detected capacity change from 0 to 256 [ 1452.651746][ T9662] exfat: Deprecated parameter 'namecase' [ 1452.655680][ T6003] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1452.739128][ T9662] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x2b52634e, utbl_chksum : 0xe619d30d) [ 1452.815680][ T9675] netlink: 'syz.4.14096': attribute type 6 has an invalid length. [ 1453.452056][ T9703] netlink: 8 bytes leftover after parsing attributes in process `syz.4.14103'. [ 1453.463242][ T9702] netlink: 'syz.5.14104': attribute type 10 has an invalid length. [ 1453.471853][ T9703] netlink: 24 bytes leftover after parsing attributes in process `syz.4.14103'. [ 1453.471896][ T9703] netlink: 24 bytes leftover after parsing attributes in process `syz.4.14103'. [ 1453.567994][ T9705] loop2: detected capacity change from 0 to 2048 [ 1453.582826][ T9702] team0: Device veth1_macvtap failed to register rx_handler [ 1453.613991][ T9705] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1453.773939][ T9705] syz.2.14093: attempt to access beyond end of device [ 1453.773939][ T9705] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048 [ 1453.775103][ T9718] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1454.332057][ T9741] loop2: detected capacity change from 0 to 64 [ 1454.444827][ T9746] netlink: 'syz.4.14115': attribute type 10 has an invalid length. [ 1454.541748][ T9746] bridge0: port 3(team0) entered disabled state [ 1454.566912][ T9746] team0: left allmulticast mode [ 1454.577216][ T9746] team_slave_0: left allmulticast mode [ 1454.601528][ T9746] team_slave_1: left allmulticast mode [ 1454.626348][ T9746] team0: left promiscuous mode [ 1454.641814][ T9746] team_slave_0: left promiscuous mode [ 1454.664203][ T9746] team_slave_1: left promiscuous mode [ 1454.675555][ T9746] bridge0: port 3(team0) entered disabled state [ 1454.693072][ T9763] IPVS: length: 209 != 24 [ 1454.712655][ T9746] team0: Cannot enslave team device to itself [ 1455.238745][ T975] usb 5-1: new high-speed USB device number 35 using dummy_hcd [ 1455.375801][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1455.402993][ T9804] loop3: detected capacity change from 0 to 256 [ 1455.452106][ T975] usb 5-1: Using ep0 maxpacket: 16 [ 1455.470131][ T9804] FAT-fs (loop3): count of clusters too big (178174) [ 1455.480440][ T975] usb 5-1: config index 0 descriptor too short (expected 65, got 36) [ 1455.495532][ T9804] FAT-fs (loop3): Can't find a valid FAT filesystem [ 1455.502630][ T975] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 1455.570211][ T975] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 1455.641595][ T975] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 1455.666127][ T975] usb 5-1: New USB device found, idVendor=1781, idProduct=0898, bcdDevice= 0.00 [ 1455.683672][ T975] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1455.745193][ T975] usb 5-1: config 0 descriptor?? [ 1455.768735][ T975] input: PXRC Flight Controller Adapter as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input82 [ 1455.823019][ T6111] usb 4-1: new full-speed USB device number 35 using dummy_hcd [ 1455.824509][ T5191] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1455.910476][ T5191] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1456.028161][ T5191] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1456.042500][ T6111] usb 4-1: config 0 has an invalid interface number: 199 but max is 1 [ 1456.068772][ T6111] usb 4-1: config 0 has no interface number 1 [ 1456.077349][ T6193] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1456.095247][ T6111] usb 4-1: config 0 interface 199 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0 [ 1456.127641][ T6111] usb 4-1: config 0 interface 0 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1456.139153][ T9844] sctp: [Deprecated]: syz.1.14142 (pid 9844) Use of int in max_burst socket option deprecated. [ 1456.139153][ T9844] Use struct sctp_assoc_value instead [ 1456.159212][ T6111] usb 4-1: New USB device found, idVendor=0002, idProduct=0000, bcdDevice= 0.00 [ 1456.169544][ T9774] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1456.170184][ T6111] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1456.170225][ T6111] usb 4-1: SerialNumber: syz [ 1456.184148][ T6111] usb 4-1: config 0 descriptor?? [ 1456.211600][ T5191] pxrc 5-1:0.0: pxrc_open - usb_submit_urb failed, error: -90 [ 1456.248729][T13829] usb 5-1: USB disconnect, device number 35 [ 1456.414155][ T6111] uvcvideo 4-1:0.199: Found UVC 0.00 device (0002:0000) [ 1456.457607][ T6111] uvcvideo 4-1:0.199: No valid video chain found. [ 1456.500525][ T6111] usb 4-1: USB disconnect, device number 35 [ 1456.668435][ T9886] tmpfs: Bad value for 'mpol' [ 1456.743694][T21878] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1456.780679][ T9893] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14152'. [ 1457.332267][ T9914] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1457.416132][ T9919] mac80211_hwsim hwsim10 `ë˙˙: renamed from wlan1 [ 1457.514658][ T9918] loop4: detected capacity change from 0 to 2048 [ 1457.579744][ T9918] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1457.790148][ T975] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 1457.938009][ T9888] loop1: detected capacity change from 0 to 32768 [ 1457.957526][ T975] usb 1-1: Using ep0 maxpacket: 32 [ 1457.997708][ T975] usb 1-1: config 0 has an invalid interface number: 225 but max is 0 [ 1458.027941][ T975] usb 1-1: config 0 has no interface number 0 [ 1458.042963][ T975] usb 1-1: New USB device found, idVendor=0856, idProduct=ac30, bcdDevice=7e.79 [ 1458.089579][ T9888] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1458.098423][ T975] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1458.107882][ T975] usb 1-1: Product: syz [ 1458.115603][ T975] usb 1-1: Manufacturer: syz [ 1458.122104][ T975] usb 1-1: SerialNumber: syz [ 1458.168320][ T975] usb 1-1: config 0 descriptor?? [ 1458.324749][ T9973] netlink: 'syz.2.14172': attribute type 10 has an invalid length. [ 1458.402263][ T9973] team0: Device veth1_macvtap failed to register rx_handler [ 1458.465267][ T975] mos7840 1-1:0.225: required endpoints missing [ 1458.474604][ T9888] XFS (loop1): Ending clean mount [ 1458.488204][ T9888] XFS (loop1): Quotacheck needed: Please wait. [ 1458.657899][ T9888] XFS (loop1): Quotacheck: Done. [ 1458.716767][T27768] usb 1-1: USB disconnect, device number 8 [ 1459.005359][ T5990] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1459.113502][T10011] ip6gretap2: default qdisc (pfifo_fast) fail, fallback to noqueue [ 1459.684303][T10038] loop3: detected capacity change from 0 to 256 [ 1460.115297][T10062] loop1: detected capacity change from 0 to 64 [ 1460.180752][T10062] Trying to free block not in datazone [ 1460.209392][T10062] Trying to free block not in datazone [ 1460.238771][T10062] Trying to free block not in datazone [ 1460.277040][T10062] Trying to free block not in datazone [ 1460.304380][T10062] minix_free_block (loop1:6): bit already cleared [ 1460.356231][T10062] Trying to free block not in datazone [ 1460.377625][T10075] netlink: 'syz.0.14201': attribute type 6 has an invalid length. [ 1460.409329][T10062] Trying to free block not in datazone [ 1460.550391][T10080] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14203'. [ 1460.586577][T10080] netlink: 'syz.5.14203': attribute type 5 has an invalid length. [ 1460.627055][T10078] loop3: detected capacity change from 0 to 4096 [ 1460.644477][T10080] netlink: 20 bytes leftover after parsing attributes in process `syz.5.14203'. [ 1460.665194][T10078] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1460.710158][T10080] geneve3: entered promiscuous mode [ 1460.732379][T10080] geneve3: entered allmulticast mode [ 1460.759707][ T50] netdevsim netdevsim5 netdevsim0: set [1, 1] type 2 family 0 port 256 - 0 [ 1460.782098][ T50] netdevsim netdevsim5 netdevsim1: set [1, 1] type 2 family 0 port 256 - 0 [ 1460.820048][ T50] netdevsim netdevsim5 netdevsim2: set [1, 1] type 2 family 0 port 256 - 0 [ 1460.826488][T10093] loop1: detected capacity change from 0 to 256 [ 1460.851629][T10093] exfat: Deprecated parameter 'utf8' [ 1460.856961][T10093] exfat: Deprecated parameter 'utf8' [ 1460.863913][ T50] netdevsim netdevsim5 netdevsim3: set [1, 1] type 2 family 0 port 256 - 0 [ 1460.990530][T10093] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xf6dff195, utbl_chksum : 0xe619d30d) [ 1461.094942][T10099] pim6reg: entered allmulticast mode [ 1461.416850][ T30] audit: type=1326 audit(1385.854:409): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10115 comm="syz.2.14211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184858eec9 code=0x7ffc0000 [ 1461.493636][ T30] audit: type=1326 audit(1385.863:410): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10115 comm="syz.2.14211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7f184858eec9 code=0x7ffc0000 [ 1461.535414][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1461.580961][ T30] audit: type=1326 audit(1385.863:411): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10115 comm="syz.2.14211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184858eec9 code=0x7ffc0000 [ 1461.724122][ T30] audit: type=1326 audit(1385.863:412): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10115 comm="syz.2.14211" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f184858eec9 code=0x7ffc0000 [ 1461.753394][T10055] loop4: detected capacity change from 0 to 32768 [ 1461.815532][T10138] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14218'. [ 1461.895440][T10055] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1462.084631][T10158] loop5: detected capacity change from 0 to 128 [ 1462.183655][T10158] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 1462.254044][T10158] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1462.329786][T10055] XFS (loop4): Ending clean mount [ 1462.383244][T10055] XFS (loop4): Quotacheck needed: Please wait. [ 1462.451259][T27768] usb 2-1: new high-speed USB device number 36 using dummy_hcd [ 1462.512444][T10055] XFS (loop4): Quotacheck: Done. [ 1462.643929][T27768] usb 2-1: Using ep0 maxpacket: 32 [ 1462.675979][T27768] usb 2-1: config 0 interface 0 has no altsetting 0 [ 1462.689812][T27768] usb 2-1: New USB device found, idVendor=16d0, idProduct=10b8, bcdDevice=de.8e [ 1462.724035][T27768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1462.780766][T27768] usb 2-1: Product: syz [ 1462.805060][T27768] usb 2-1: Manufacturer: syz [ 1462.809719][T27768] usb 2-1: SerialNumber: syz [ 1462.818278][ T5989] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1462.865558][T27768] usb 2-1: config 0 descriptor?? [ 1462.901732][ T1152] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1463.336739][T27768] gs_usb 2-1:0.0: Couldn't get device config: (err=-71) [ 1463.365087][T27768] gs_usb 2-1:0.0: probe with driver gs_usb failed with error -71 [ 1463.427756][T27768] usb 2-1: USB disconnect, device number 36 [ 1463.475171][T10218] netlink: 'syz.0.14237': attribute type 1 has an invalid length. [ 1463.500123][T10218] netlink: 228 bytes leftover after parsing attributes in process `syz.0.14237'. [ 1463.561932][T10218] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14237'. [ 1463.734107][T10232] : renamed from bond_slave_0 (while UP) [ 1464.584074][T10279] usb usb8: usbfs: process 10279 (syz.4.14256) did not claim interface 0 before use [ 1464.800734][T10291] netlink: 68 bytes leftover after parsing attributes in process `syz.5.14261'. [ 1465.057856][T10303] netlink: 'syz.5.14265': attribute type 15 has an invalid length. [ 1465.101429][T10303] netlink: 24 bytes leftover after parsing attributes in process `syz.5.14265'. [ 1465.480412][T10317] loop5: detected capacity change from 0 to 2048 [ 1465.511294][T10317] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=27485, location=27485 [ 1465.570892][T10317] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1465.760330][T10270] loop2: detected capacity change from 0 to 32768 [ 1465.820959][T10270] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.14254 (10270) [ 1465.906164][T10270] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1465.985405][T10283] loop3: detected capacity change from 0 to 32768 [ 1466.000635][T10270] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm [ 1466.042253][T10283] BTRFS: device fsid e0cb6322-611b-4325-acdf-015f79de3787 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.14258 (10283) [ 1466.136745][T10283] BTRFS info (device loop3): first mount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1466.189589][T10270] BTRFS info (device loop2): enabling ssd optimizations [ 1466.196929][T10283] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 1466.253562][T10270] BTRFS info (device loop2): enabling free space tree [ 1466.517334][ T6003] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d [ 1466.544831][T10283] BTRFS info (device loop3): turning off barriers [ 1466.596658][T10283] BTRFS info (device loop3): enabling free space tree [ 1466.768224][T10403] netlink: 'syz.1.14284': attribute type 1 has an invalid length. [ 1466.894668][ T5991] BTRFS info (device loop3): last unmount of filesystem e0cb6322-611b-4325-acdf-015f79de3787 [ 1467.051513][T10416] netlink: 12 bytes leftover after parsing attributes in process `syz.2.14283'. [ 1467.112513][T10416] netlink: 8 bytes leftover after parsing attributes in process `syz.2.14283'. [ 1467.180712][T10421] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1467.582829][T10440] openvswitch: netlink: Flow get message rejected, Key attribute missing. [ 1467.700006][ T1152] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1468.187953][T10463] loop5: detected capacity change from 0 to 2048 [ 1468.245432][T10463] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1468.296442][T10468] loop3: detected capacity change from 0 to 2048 [ 1468.345179][T10477] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1468.370445][T10473] loop1: detected capacity change from 0 to 256 [ 1468.386687][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1468.423175][T10468] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1468.449369][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1468.513109][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1468.618168][T10473] FAT-fs (loop1): Directory bread(block 64) failed [ 1468.632810][T10463] Remounting filesystem read-only [ 1468.662939][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1468.670067][T10473] FAT-fs (loop1): Directory bread(block 65) failed [ 1468.676393][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1468.711305][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1468.717119][T10473] FAT-fs (loop1): Directory bread(block 66) failed [ 1468.752157][T10473] FAT-fs (loop1): Directory bread(block 67) failed [ 1468.775728][T10473] FAT-fs (loop1): Directory bread(block 68) failed [ 1468.805686][T10473] FAT-fs (loop1): Directory bread(block 69) failed [ 1468.813035][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1468.843142][T10473] FAT-fs (loop1): Directory bread(block 70) failed [ 1468.857691][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1468.879586][T10473] FAT-fs (loop1): Directory bread(block 71) failed [ 1468.886260][T10473] FAT-fs (loop1): Directory bread(block 72) failed [ 1468.915654][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1468.938498][T10473] FAT-fs (loop1): Directory bread(block 73) failed [ 1469.021672][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.070630][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.109592][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.120271][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.135387][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.148079][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.165316][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.177558][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.188965][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.216833][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.244206][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.282586][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.335686][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.380662][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.422955][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.464250][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.496355][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.529552][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.588524][T10463] NILFS (loop5): bad btree node (ino=16, blocknr=15): level = 1, flags = 0x0, nchildren = 157 [ 1469.645046][T10463] NILFS error (device loop5): nilfs_bmap_lookup_contig: broken bmap (inode number=16) [ 1469.680704][ T30] audit: type=1800 audit(1393.580:413): pid=10463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.14303" name="file2" dev="loop5" ino=16 res=0 errno=0 [ 1469.739522][T10459] loop2: detected capacity change from 0 to 32768 [ 1469.838356][T10459] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 1469.894480][T10459] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1469.932577][T10475] loop4: detected capacity change from 0 to 32768 [ 1470.040531][T10475] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 1470.073801][T10475] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1470.257312][T10459] XFS (loop2): Ending clean mount [ 1470.266964][T10475] XFS (loop4): Ending clean mount [ 1470.276038][T10459] XFS (loop2): Quotacheck needed: Please wait. [ 1470.287824][T10475] XFS (loop4): Quotacheck needed: Please wait. [ 1470.336640][T10529] loop1: detected capacity change from 0 to 4096 [ 1470.366786][T10529] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1470.399029][T10459] XFS (loop2): Quotacheck: Done. [ 1470.432758][T10475] XFS (loop4): Quotacheck: Done. [ 1470.518290][T10529] ntfs3(loop1): Failed to load $Extend (-22). [ 1470.555107][T10529] ntfs3(loop1): Failed to initialize $Extend. [ 1470.623380][ T6003] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1470.638463][T10529] ntfs3(loop1): ino=5, "/" indx_read [ 1470.669599][ T5989] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1471.870912][T10555] loop3: detected capacity change from 0 to 32768 [ 1471.883590][T10555] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.14323 (10555) [ 1471.923127][T10615] netlink: 'syz.4.14339': attribute type 1 has an invalid length. [ 1471.930990][T10615] netlink: 176 bytes leftover after parsing attributes in process `syz.4.14339'. [ 1471.968456][T10555] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1472.038326][T10555] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm [ 1472.423089][T10555] BTRFS info (device loop3): enabling ssd optimizations [ 1472.482757][T10555] BTRFS info (device loop3): enabling free space tree [ 1472.757569][T10665] loop4: detected capacity change from 0 to 512 [ 1472.764220][T10663] netlink: 'syz.0.14347': attribute type 1 has an invalid length. [ 1472.830760][T10665] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1472.853056][ T6123] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 1472.883376][ T5991] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1473.000286][T10606] loop5: detected capacity change from 0 to 32768 [ 1473.089273][ T6123] usb 3-1: Using ep0 maxpacket: 32 [ 1473.126736][ T6123] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1473.150061][ T6123] usb 3-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config [ 1473.164240][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1473.204675][ T6123] usb 3-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb [ 1473.214283][ T6123] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1473.227199][ T6123] usb 3-1: Product: syz [ 1473.231398][ T6123] usb 3-1: Manufacturer: syz [ 1473.236102][ T6123] usb 3-1: SerialNumber: syz [ 1473.422781][ T5989] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1473.517468][ T6123] usb 3-1: Cannot retrieve CPort count: 0 [ 1473.571315][ T6123] usb 3-1: Cannot retrieve CPort count: -5 [ 1473.577267][ T6123] es2_ap_driver 3-1:7.0: probe with driver es2_ap_driver failed with error -5 [ 1473.822855][T27768] usb 3-1: USB disconnect, device number 24 [ 1474.543321][T21878] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1475.068069][T10689] loop1: detected capacity change from 0 to 32768 [ 1475.078230][T10759] Unsupported ieee802154 address type: 0 [ 1475.083672][T10754] ALSA: mixer_oss: invalid OSS volume '' [ 1475.124200][T10754] ALSA: mixer_oss: invalid OSS volume 'ĘұBËÂě;T`ż@$™żľE÷ócXĆMYdźč,' [ 1475.190587][T10754] ALSA: mixer_oss: invalid OSS volume 'b«Ž@hé#' [ 1475.212264][T10754] ALSA: mixer_oss: invalid OSS volume '•‘h4ż–ĐX¬„S4v=0ť_>¤&äĎ' [ 1475.247506][T10754] ALSA: mixer_oss: invalid OSS volume '|ś/"tj' [ 1475.270849][T10754] ALSA: mixer_oss: invalid OSS volume '-z5˛Šc^÷Jĺ6$ĚąŹ' [ 1475.278559][T10754] ALSA: mixer_oss: invalid OSS volume '0ÉóT„®°yňÝäî¬ó‰´Ş‡—‚j–P&†łaďt' [ 1475.313841][T10754] ALSA: mixer_oss: invalid OSS volume '÷|áĄó~‚\' [ 1475.320380][T10754] ALSA: mixer_oss: invalid OSS volume '­É@ô^3bÉś‘}ÔGŤ$ş#\Ä("/řoúLŰ' [ 1475.343716][T10689] ERROR: (device loop1): dtSearch: DT_GETPAGE: dtree page corrupt [ 1475.343716][T10689] [ 1475.349286][T10754] ALSA: mixer_oss: invalid OSS volume 'I ‹Č:•ţŕâ' [ 1475.360989][T10754] ALSA: mixer_oss: invalid OSS volume '%^ÓvŞhcľGJP˙ĂĐöř¬rŞ('⍯Q=' [ 1475.369834][T10754] ALSA: mixer_oss: invalid OSS volume ' ‰Gjä;4÷ĘĂŚđŮĆzÜ3¸W´ŇĽ0ŮF=%ľ' [ 1475.380239][T10754] ALSA: mixer_oss: invalid OSS volume ';4— ĺ‚«4ňfhĘ߇GĄŽIב°Q÷5o“J' [ 1475.390749][T10689] ERROR: (device loop1): remounting filesystem as read-only [ 1475.403252][T10689] jfs_lookup: dtSearch returned -5 [ 1475.408970][T10754] ALSA: mixer_oss: invalid OSS volume 'WöŚ’ló]Y1Ő-¬žľŮJ<´¶łŞAĆ>ďo' [ 1476.167165][ T6111] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 1476.189157][T10802] loop1: detected capacity change from 0 to 64 [ 1476.275425][T10804] loop5: detected capacity change from 0 to 2048 [ 1476.363504][ T6111] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7 [ 1476.388280][ T6193] loop5: p1 < > p4 [ 1476.388280][ T6193] p4: [ 1476.408636][ T6111] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 8 [ 1476.438582][ T6193] loop5: p4 size 722688 extends beyond EOD, truncated [ 1476.460181][ T6111] usb 1-1: New USB device found, idVendor=0499, idProduct=103e, bcdDevice=4e.18 [ 1476.503392][ T6111] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1476.532498][ T6111] usb 1-1: Product: syz [ 1476.547292][T10804] loop5: p1 < > p4 [ 1476.547292][T10804] p4: [ 1476.552433][ T6111] usb 1-1: Manufacturer: syz [ 1476.571739][ T6111] usb 1-1: SerialNumber: syz [ 1476.608752][ T6111] usb 1-1: config 0 descriptor?? [ 1476.673734][T10804] loop5: p4 size 722688 extends beyond EOD, truncated [ 1476.763532][ T5206] loop5: p1 < > p4 [ 1476.763532][ T5206] p4: [ 1476.785896][ T5206] loop5: p4 size 722688 extends beyond EOD, truncated [ 1476.870988][ T6111] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 1477.022894][ T6111] usb 1-1: USB disconnect, device number 9 [ 1477.192217][ T6193] udevd[6193]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 1477.218169][ T6200] udevd[6200]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 1477.453834][ T6193] udevd[6193]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 1477.472278][ T6200] udevd[6200]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 1477.501290][ T5981] udevd[5981]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1477.732851][ T6200] udevd[6200]: inotify_add_watch(7, /dev/loop5p1, 10) failed: No such file or directory [ 1477.766868][ T6193] udevd[6193]: inotify_add_watch(7, /dev/loop5p4, 10) failed: No such file or directory [ 1478.347781][T10927] loop4: detected capacity change from 0 to 4096 [ 1478.435142][T10927] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1478.503658][T10948] loop1: detected capacity change from 0 to 164 [ 1478.566507][T10948] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1478.573121][T10927] ntfs3(loop4): ino=1a, mi_enum_attr [ 1478.580139][T10927] ntfs3(loop4): ino=1a, mi_enum_attr [ 1478.623527][T10948] rock: corrupted directory entry. extent=28, offset=16056320, size=0 [ 1478.635089][T10927] ntfs3(loop4): Failed to initialize $Extend/$Reparse. [ 1478.807952][ T6111] usb 4-1: new high-speed USB device number 36 using dummy_hcd [ 1478.870274][T10968] netlink: 4 bytes leftover after parsing attributes in process `syz.2.14422'. [ 1478.996499][ T6111] usb 4-1: New USB device found, idVendor=1a86, idProduct=7522, bcdDevice=35.36 [ 1479.022287][ T6111] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1479.073593][ T6111] usb 4-1: Product: syz [ 1479.095161][ T6111] usb 4-1: Manufacturer: syz [ 1479.114352][ T6111] usb 4-1: SerialNumber: syz [ 1479.135697][ T6111] usb 4-1: config 0 descriptor?? [ 1479.196790][ T6111] ch341 4-1:0.0: ch341-uart converter detected [ 1479.212995][T10988] loop1: detected capacity change from 0 to 256 [ 1479.322544][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1479.365083][ T6123] usb 6-1: new high-speed USB device number 48 using dummy_hcd [ 1479.410911][ T6111] usb 4-1: failed to receive control message: -71 [ 1479.440666][ T6111] ch341-uart ttyUSB0: probe with driver ch341-uart failed with error -71 [ 1479.488426][ T6111] usb 4-1: USB disconnect, device number 36 [ 1479.529268][ T6111] ch341 4-1:0.0: device disconnected [ 1479.604225][ T6123] usb 6-1: config index 0 descriptor too short (expected 63506, got 18) [ 1479.616370][ T6123] usb 6-1: New USB device found, idVendor=0830, idProduct=0060, bcdDevice=13.2b [ 1479.650666][ T6123] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1479.676227][ T6123] usb 6-1: Product: syz [ 1479.680556][ T6123] usb 6-1: Manufacturer: syz [ 1479.687371][ T6123] usb 6-1: SerialNumber: syz [ 1479.915986][T11029] loop4: detected capacity change from 0 to 512 [ 1479.928105][ T6123] visor 6-1:1.0: Handspring Visor / Palm OS converter detected [ 1479.949530][T11029] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=256, location=256 [ 1479.975436][ T6123] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1480.050108][ T6123] usb 6-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1480.169519][T27768] usb 6-1: USB disconnect, device number 48 [ 1480.209467][T27768] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1480.286761][T27768] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1480.324807][T27768] visor 6-1:1.0: device disconnected [ 1480.421147][T11066] loop3: detected capacity change from 0 to 2048 [ 1480.531794][T11066] loop3: p1 < > p4 [ 1480.531794][T11066] p4: [ 1480.583537][T11064] loop2: detected capacity change from 0 to 4096 [ 1480.606422][T11066] loop3: p4 size 722688 extends beyond EOD, truncated [ 1480.691226][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1480.709862][T11064] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1480.809354][T11064] ntfs3(loop2): ino=1a, mi_enum_attr [ 1480.828403][T11064] ntfs3(loop2): ino=1a, mi_enum_attr [ 1480.841637][T11064] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 1481.099672][T11103] loop4: detected capacity change from 0 to 512 [ 1481.129129][T11103] EXT4-fs: Ignoring removed mblk_io_submit option [ 1481.168439][T11103] EXT4-fs error (device loop4): ext4_orphan_get:1392: comm syz.4.14448: inode #13: comm syz.4.14448: iget: illegal inode # [ 1481.190341][T11114] sit2: entered promiscuous mode [ 1481.201918][T11103] EXT4-fs (loop4): Remounting filesystem read-only [ 1481.281949][T11103] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1481.331434][ T6123] usb 4-1: new high-speed USB device number 37 using dummy_hcd [ 1481.414950][T11132] binder: 11131:11132 unknown command 0 [ 1481.445753][T11132] binder: 11131:11132 ioctl c0306201 200000000480 returned -22 [ 1481.510680][ T5989] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1481.561899][ T6123] usb 4-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02 [ 1481.561968][ T6123] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1481.562016][ T6123] usb 4-1: Product: syz [ 1481.562051][ T6123] usb 4-1: Manufacturer: syz [ 1481.562089][ T6123] usb 4-1: SerialNumber: syz [ 1481.591048][ T6193] udevd[6193]: inotify_add_watch(7, /dev/loop3p4, 10) failed: No such file or directory [ 1481.613649][ T6123] usb 4-1: config 0 descriptor?? [ 1481.614692][ T6200] udevd[6200]: inotify_add_watch(7, /dev/loop3p1, 10) failed: No such file or directory [ 1481.895687][ T6123] hso 4-1:0.0: Failed to find BULK IN ep [ 1482.199814][T27768] usb 4-1: USB disconnect, device number 37 [ 1482.472257][T11204] loop0: detected capacity change from 0 to 4096 [ 1482.570194][T11204] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1482.651262][T11204] ntfs3(loop0): ino=1a, mi_enum_attr [ 1482.668844][T11204] ntfs3(loop0): ino=1a, mi_enum_attr [ 1482.699959][T11204] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 1483.036994][T11232] netlink: 512 bytes leftover after parsing attributes in process `syz.5.14473'. [ 1483.265896][T11244] veth1_vlan: left promiscuous mode [ 1483.674783][T11262] loop2: detected capacity change from 0 to 1024 [ 1483.727392][T11262] fuse: Bad value for 'fd' [ 1483.917383][ T12] hfsplus: b-tree write err: -5, ino 4 [ 1483.946899][T11283] netlink: 'syz.0.14488': attribute type 4 has an invalid length. [ 1483.969312][T11269] loop5: detected capacity change from 0 to 4096 [ 1484.020007][T11281] loop1: detected capacity change from 0 to 1024 [ 1484.176227][T11281] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1484.602127][ T6123] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 1484.614048][ T5990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1484.767901][T11333] loop4: detected capacity change from 0 to 64 [ 1484.805397][ T6123] usb 3-1: Using ep0 maxpacket: 8 [ 1484.819398][ T6123] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1484.859935][ T6123] usb 3-1: string descriptor 0 read error: -22 [ 1484.881198][ T6123] usb 3-1: New USB device found, idVendor=0789, idProduct=0160, bcdDevice=82.fe [ 1484.890766][ T6123] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1484.966707][T27768] usb 1-1: new full-speed USB device number 10 using dummy_hcd [ 1485.096194][T11346] loop5: detected capacity change from 0 to 8 [ 1485.186487][T27768] usb 1-1: New USB device found, idVendor=13d3, idProduct=3224, bcdDevice=cb.0d [ 1485.199870][ T6123] asix 3-1:7.0 (unnamed net_device) (uninitialized): invalid hw address, using random [ 1485.225158][T11346] SQUASHFS error: lzo decompression failed, data probably corrupt [ 1485.242403][T27768] usb 1-1: New USB device strings: Mfr=1, Product=12, SerialNumber=3 [ 1485.258890][T11346] SQUASHFS error: Failed to read block 0x1c0: -5 [ 1485.267463][T11346] SQUASHFS error: Unable to read metadata cache entry [1be] [ 1485.274090][T27768] usb 1-1: Product: syz [ 1485.295833][T27768] usb 1-1: Manufacturer: syz [ 1485.305465][T27768] usb 1-1: SerialNumber: syz [ 1485.353574][T27768] dvb-usb: found a 'DigitalNow TinyUSB 2 DVB-t Receiver' in warm state. [ 1485.427856][ T6123] asix 3-1:7.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 1485.449826][ T6123] asix 3-1:7.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 1485.472542][T11368] netlink: 'syz.3.14509': attribute type 11 has an invalid length. [ 1485.483062][ T1152] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1485.498951][ T6123] asix 3-1:7.0: probe with driver asix failed with error -71 [ 1485.537270][T11359] loop1: detected capacity change from 0 to 4096 [ 1485.569863][ T6123] usb 3-1: USB disconnect, device number 25 [ 1485.609544][T11359] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1485.775928][T11359] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 1485.810080][T11359] ntfs3(loop1): Failed to initialize $Extend/$Reparse. [ 1485.812781][T27768] vp7045: USB control message 'in' went wrong. [ 1485.848456][T27768] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 1485.889289][T27768] dvb-usb: DigitalNow TinyUSB 2 DVB-t Receiver error while loading driver (-19) [ 1485.939353][T27768] usb 1-1: USB disconnect, device number 10 [ 1486.128130][T11393] loop5: detected capacity change from 0 to 4096 [ 1486.140164][T20811] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22. [ 1486.160882][ T5990] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 1486.162808][T11393] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1486.173818][ T5990] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1486.217804][ T5990] ntfs3(loop1): ino=3, ntfs_set_state failed, -22. [ 1486.225776][T11393] ntfs3(loop5): It is recommened to use chkdsk. [ 1486.242588][T20811] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22. [ 1486.339182][T11393] ntfs3(loop5): Failed to load $Extend (-22). [ 1486.365477][T11393] ntfs3(loop5): Failed to initialize $Extend. [ 1486.499642][T11419] Device name not specified. [ 1486.499642][T11419] [ 1486.736081][T11424] loop4: detected capacity change from 0 to 1764 [ 1486.846749][T11424] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1486.855294][T21878] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1487.771794][T11488] netlink: 28 bytes leftover after parsing attributes in process `syz.1.14541'. [ 1487.961756][T11502] loop0: detected capacity change from 0 to 256 [ 1488.055943][T11502] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x4ec6003b, utbl_chksum : 0xe619d30d) [ 1488.952558][T11559] loop2: detected capacity change from 0 to 1024 [ 1488.970512][T11562] comedi comedi0: dac02: a I/O base address must be specified [ 1488.988436][T11564] bad cache= option: no%e [ 1488.988436][T11564] [ 1489.021179][T11564] CIFS: VFS: bad cache= option: no%e [ 1489.083976][T11559] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1489.200209][T11578] netlink: 48 bytes leftover after parsing attributes in process `syz.1.14569'. [ 1489.245160][T11559] EXT4-fs error (device loop2): ext4_get_first_dir_block:3552: inode #11: comm syz.2.14565: directory missing '..' [ 1489.583295][ T6003] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1489.964669][T11617] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14581'. [ 1491.134175][T11672] netlink: 2 bytes leftover after parsing attributes in process `syz.1.14600'. [ 1491.169294][T11672] batadv_slave_1: entered promiscuous mode [ 1491.380746][T11681] loop4: detected capacity change from 0 to 16 [ 1491.400943][T11621] loop5: detected capacity change from 0 to 32768 [ 1491.407118][T11681] MTD: Attempt to mount non-MTD device "/dev/loop4" [ 1491.440887][T11621] BTRFS: device fsid 3a375e4e-b156-4d76-a2ad-16e198ce1409 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.14582 (11621) [ 1491.552263][T11621] BTRFS info (device loop5): first mount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 1491.600391][T11621] BTRFS info (device loop5): using xxhash64 (xxhash64-generic) checksum algorithm [ 1491.640445][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1491.696946][T11694] netlink: 'syz.3.14605': attribute type 11 has an invalid length. [ 1491.735352][T11694] netlink: 'syz.3.14605': attribute type 11 has an invalid length. [ 1491.765410][T11694] netlink: 224 bytes leftover after parsing attributes in process `syz.3.14605'. [ 1491.809294][T11640] loop0: detected capacity change from 0 to 32768 [ 1491.884117][T11621] BTRFS info (device loop5): enabling ssd optimizations [ 1491.891163][T11621] BTRFS info (device loop5): enabling free space tree [ 1491.904100][T11640] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.14589 (11640) [ 1492.106832][T11640] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1492.167434][T11640] BTRFS info (device loop0): using sha256 (sha256-lib) checksum algorithm [ 1492.340629][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1492.574569][T11640] BTRFS info (device loop0): enabling ssd optimizations [ 1492.608580][T11640] BTRFS info (device loop0): enabling free space tree [ 1492.653898][ T6123] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 1492.688833][ T6004] BTRFS info (device loop5): last unmount of filesystem 3a375e4e-b156-4d76-a2ad-16e198ce1409 [ 1492.893025][ T6123] usb 5-1: Using ep0 maxpacket: 16 [ 1492.934283][ T6123] usb 5-1: config 3 has an invalid interface number: 155 but max is 0 [ 1492.961307][ T6123] usb 5-1: config 3 has an invalid interface association descriptor of length 3, skipping [ 1492.983097][ T6123] usb 5-1: config 3 has an invalid descriptor of length 0, skipping remainder of the config [ 1493.072871][ T6123] usb 5-1: config 3 has no interface number 0 [ 1493.098976][ T6123] usb 5-1: config 3 interface 155 has no altsetting 0 [ 1493.140575][ T6123] usb 5-1: New USB device found, idVendor=05a9, idProduct=264a, bcdDevice=e5.4c [ 1493.165189][ T6123] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1493.192015][ T6123] usb 5-1: Product: syz [ 1493.199172][ T5992] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1493.218075][ T6123] usb 5-1: Manufacturer: syz [ 1493.240113][ T6123] usb 5-1: SerialNumber: syz [ 1493.546862][ T6123] uvcvideo 5-1:3.155: probe with driver uvcvideo failed with error -22 [ 1493.647714][ T6123] usb 5-1: USB disconnect, device number 36 [ 1494.183142][ T30] audit: type=1326 audit(1416.498:414): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11821 comm="syz.3.14626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe36f78eec9 code=0x7ffc0000 [ 1494.205102][ C0] vkms_vblank_simulate: vblank timer overrun [ 1494.306322][ T30] audit: type=1326 audit(1416.554:415): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11821 comm="syz.3.14626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe36f78eec9 code=0x7ffc0000 [ 1494.328268][ C0] vkms_vblank_simulate: vblank timer overrun [ 1494.467659][ T30] audit: type=1326 audit(1416.554:416): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11821 comm="syz.3.14626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=245 compat=0 ip=0x7fe36f78eec9 code=0x7ffc0000 [ 1494.489616][ C0] vkms_vblank_simulate: vblank timer overrun [ 1494.651287][ T30] audit: type=1326 audit(1416.554:417): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11821 comm="syz.3.14626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe36f78eec9 code=0x7ffc0000 [ 1494.802784][ T30] audit: type=1326 audit(1416.554:418): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11821 comm="syz.3.14626" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe36f78eec9 code=0x7ffc0000 [ 1495.121203][T11863] syz.3.14637: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 1495.128643][T11865] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14636'. [ 1495.211656][T11863] CPU: 0 UID: 0 PID: 11863 Comm: syz.3.14637 Not tainted syzkaller #0 PREEMPT(full) [ 1495.211728][T11863] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1495.211759][T11863] Call Trace: [ 1495.211774][T11863] [ 1495.211792][T11863] dump_stack_lvl+0x16c/0x1f0 [ 1495.211863][T11863] warn_alloc+0x248/0x3a0 [ 1495.211938][T11863] ? __pfx_warn_alloc+0x10/0x10 [ 1495.212004][T11863] ? __pfx_stack_trace_save+0x10/0x10 [ 1495.212104][T11863] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1495.212171][T11863] ? kasan_save_stack+0x42/0x60 [ 1495.212252][T11863] ? kasan_save_stack+0x33/0x60 [ 1495.212332][T11863] ? kasan_save_track+0x14/0x30 [ 1495.212411][T11863] ? xskq_create+0x52/0x1d0 [ 1495.212460][T11863] ? xsk_setsockopt+0x74e/0x9a0 [ 1495.212501][T11863] ? do_sock_setsockopt+0xf3/0x1d0 [ 1495.212555][T11863] ? xskq_create+0xfb/0x1d0 [ 1495.212608][T11863] __vmalloc_node_range_noprof+0xfbc/0x1480 [ 1495.212690][T11863] ? xskq_create+0xfb/0x1d0 [ 1495.212751][T11863] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 1495.212833][T11863] ? xskq_create+0xfb/0x1d0 [ 1495.212885][T11863] vmalloc_user_noprof+0x9e/0xe0 [ 1495.212947][T11863] ? xskq_create+0xfb/0x1d0 [ 1495.213002][T11863] xskq_create+0xfb/0x1d0 [ 1495.213059][T11863] xsk_setsockopt+0x74e/0x9a0 [ 1495.213104][T11863] ? __pfx_aa_sk_perm+0x10/0x10 [ 1495.213163][T11863] ? __pfx_xsk_setsockopt+0x10/0x10 [ 1495.213210][T11863] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1495.213274][T11863] ? find_held_lock+0x2b/0x80 [ 1495.213359][T11863] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1495.213417][T11863] ? aa_sock_opt_perm+0xfd/0x1c0 [ 1495.213489][T11863] ? __pfx_xsk_setsockopt+0x10/0x10 [ 1495.213538][T11863] do_sock_setsockopt+0xf3/0x1d0 [ 1495.213595][T11863] __sys_setsockopt+0x1a0/0x230 [ 1495.213682][T11863] __x64_sys_setsockopt+0xbd/0x160 [ 1495.213756][T11863] ? do_syscall_64+0x91/0x4e0 [ 1495.213823][T11863] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1495.213885][T11863] ? lockdep_hardirqs_on+0x7c/0x110 [ 1495.213948][T11863] do_syscall_64+0xcd/0x4e0 [ 1495.214016][T11863] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1495.214067][T11863] RIP: 0033:0x7fe36f78eec9 [ 1495.214105][T11863] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 1495.214163][T11863] RSP: 002b:00007fe370573038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036 [ 1495.214209][T11863] RAX: ffffffffffffffda RBX: 00007fe36f9e5fa0 RCX: 00007fe36f78eec9 [ 1495.214245][T11863] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003 [ 1495.214278][T11863] RBP: 00007fe36f811f91 R08: 0000000000000052 R09: 0000000000000000 [ 1495.214311][T11863] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000 [ 1495.214345][T11863] R13: 00007fe36f9e6038 R14: 00007fe36f9e5fa0 R15: 00007ffc104e7738 [ 1495.214407][T11863] [ 1495.613980][T11863] Mem-Info: [ 1495.617176][T11863] active_anon:9375 inactive_anon:0 isolated_anon:0 [ 1495.617176][T11863] active_file:14519 inactive_file:44445 isolated_file:0 [ 1495.617176][T11863] unevictable:768 dirty:525 writeback:0 [ 1495.617176][T11863] slab_reclaimable:12688 slab_unreclaimable:119181 [ 1495.617176][T11863] mapped:36311 shmem:1421 pagetables:1769 [ 1495.617176][T11863] sec_pagetables:0 bounce:0 [ 1495.617176][T11863] kernel_misc_reclaimable:0 [ 1495.617176][T11863] free:1265341 free_pcp:10350 free_cma:0 [ 1495.662830][T11863] Node 0 active_anon:37500kB inactive_anon:0kB active_file:58076kB inactive_file:177532kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:145244kB dirty:2100kB writeback:0kB shmem:4148kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13228kB pagetables:6944kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1495.695713][T11863] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:248kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:48kB pagetables:132kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB [ 1495.725938][T11863] Node 0 DMA free:15356kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1495.756135][T11863] lowmem_reserve[]: 0 2488 2488 2488 2488 [ 1495.761972][T11863] Node 0 DMA32 free:1135500kB boost:0kB min:34152kB low:42688kB high:51224kB reserved_highatomic:0KB free_highatomic:0KB active_anon:37400kB inactive_anon:0kB active_file:58076kB inactive_file:177532kB unevictable:1536kB writepending:2100kB zspages:0kB present:3129332kB managed:2547888kB mlocked:0kB bounce:0kB free_pcp:40292kB local_pcp:18860kB free_cma:0kB [ 1495.803120][T11863] lowmem_reserve[]: 0 0 0 0 0 [ 1495.808020][T11863] Node 0 Normal free:0kB boost:0kB min:0kB low:0kB high:0kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:108kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 1495.969621][T11863] lowmem_reserve[]: 0 0 0 0 0 [ 1496.028967][T11863] Node 1 Normal free:3910508kB boost:0kB min:55748kB low:69684kB high:83620kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:248kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:1444kB local_pcp:1444kB free_cma:0kB [ 1496.207374][T11863] lowmem_reserve[]: 0 0 0 0 0 [ 1496.233010][T11863] Node 0 DMA: 1*4kB (U) 1*8kB (U) 1*16kB (U) 1*32kB (U) 1*64kB (U) 1*128kB (U) 1*256kB (U) 1*512kB (U) 0*1024kB 1*2048kB (M) 3*4096kB (M) = 15356kB [ 1496.291492][T11891] overlayfs: failed to resolve './file0': -2 [ 1496.298087][ T975] usb 3-1: new low-speed USB device number 26 using dummy_hcd [ 1496.310236][T11863] Node 0 DMA32: 2599*4kB (UME) 1328*8kB (UM) 588*16kB (UME) 292*32kB (UME) 784*64kB (UME) 623*128kB (UME) 472*256kB (UM) 289*512kB (UME) 171*1024kB (UM) 4*2048kB (UM) 126*4096kB (UM) = 1137884kB [ 1496.440198][T11863] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 1496.494824][ T975] usb 3-1: config index 0 descriptor too short (expected 6427, got 27) [ 1496.527862][T11863] Node 1 Normal: 187*4kB (UE) 54*8kB (UME) 37*16kB (UE) 224*32kB (UE) 102*64kB (UME) 30*128kB (UME) 14*256kB (UME) 5*512kB (UME) 4*1024kB (UME) 1*2048kB (U) 947*4096kB (M) = 3910508kB [ 1496.530343][ T975] usb 3-1: config 0 has an invalid interface number: 21 but max is 0 [ 1496.610930][T11863] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1496.661054][ T975] usb 3-1: config 0 has no interface number 0 [ 1496.665913][T11863] Node 0 hugepages_total=4 hugepages_free=4 hugepages_surp=2 hugepages_size=2048kB [ 1496.667219][ T975] usb 3-1: config 0 interface 21 altsetting 0 has an endpoint descriptor with address 0xFF, changing to 0x8F [ 1496.680074][T11902] loop0: detected capacity change from 0 to 8 [ 1496.739519][T11863] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 1496.755607][ T975] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 10 [ 1496.780600][T11902] MTD: Attempt to mount non-MTD device "/dev/loop0" [ 1496.787689][T11863] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB [ 1496.815180][ T6200] udevd[6200]: incorrect cramfs checksum on /dev/loop0 [ 1496.815426][T11863] 62921 total pagecache pages [ 1496.822168][ T975] usb 3-1: config 0 interface 21 altsetting 0 endpoint 0x8F has invalid maxpacket 65535, setting to 8 [ 1496.822253][ T975] usb 3-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4 [ 1496.822304][ T975] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1496.859113][T11902] cramfs: Error -5 while decompressing! [ 1496.875067][T11902] cramfs: ffffffff9a980128(26)->ffff88806a84c000(4096) [ 1496.884969][ T975] usb 3-1: config 0 descriptor?? [ 1496.893359][T11902] cramfs: Error -3 while decompressing! [ 1496.903803][T11902] cramfs: ffffffff9a980142(26)->ffff888043c68000(4096) [ 1496.912544][T11881] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1496.960440][T11863] 0 pages in swap cache [ 1496.964646][T11863] Free swap = 124996kB [ 1496.969408][T11902] cramfs: Error -3 while decompressing! [ 1496.992280][ T6200] udevd[6200]: incorrect cramfs checksum on /dev/loop0 [ 1497.026165][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1497.067325][T11902] cramfs: ffffffff9a98015c(16)->ffff88807557f000(4096) [ 1497.074538][T11863] Total swap = 124996kB [ 1497.080638][T11902] cramfs: Error -5 while decompressing! [ 1497.086424][T11863] 2097051 pages RAM [ 1497.107955][T11863] 0 pages HighMem/MovableOnly [ 1497.114405][T11902] cramfs: ffffffff9a980128(26)->ffff88806a84c000(4096) [ 1497.141678][T11863] 428437 pages reserved [ 1497.180373][T11863] 0 pages cma reserved [ 1497.213409][ T30] audit: type=1800 audit(1419.332:419): pid=11902 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.14645" name="file2" dev="loop0" ino=348 res=0 errno=0 [ 1497.358626][T11871] loop1: detected capacity change from 0 to 32768 [ 1497.390450][T11923] loop4: detected capacity change from 0 to 1024 [ 1497.484683][T11871] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1497.486214][ T975] usb 3-1: USB disconnect, device number 26 [ 1497.572633][T11871] XFS (loop1): Ending clean mount [ 1497.589854][T11871] XFS (loop1): Quotacheck needed: Please wait. [ 1497.687931][T21871] hfsplus: b-tree write err: -5, ino 8 [ 1497.920806][T11871] XFS (loop1): Quotacheck: Done. [ 1497.961621][T11871] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1498.024778][T11968] program syz.4.14655 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 1498.479526][ T1152] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1498.787682][T11987] loop0: detected capacity change from 0 to 4096 [ 1498.950775][T12000] binder: 11999:12000 ioctl c0306201 200000000100 returned -22 [ 1499.785201][T12045] netlink: 'syz.5.14680': attribute type 11 has an invalid length. [ 1500.023851][T12054] netlink: 32 bytes leftover after parsing attributes in process `syz.2.14681'. [ 1500.902605][T12089] delete_channel: no stack [ 1500.914523][T12041] loop4: detected capacity change from 0 to 32768 [ 1500.961260][T12041] (syz.4.14677,12041,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1500.991314][T12041] (syz.4.14677,12041,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1501.133632][T12041] JBD2: Ignoring recovery information on journal [ 1501.259437][T12041] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode. [ 1501.266157][T12108] loop5: detected capacity change from 0 to 764 [ 1502.006149][ T5989] ocfs2: Unmounting device (7,4) on (node local) [ 1502.195700][T12153] PM: Enabling pm_trace changes system date and time during resume. [ 1502.195700][T12153] PM: Correct system time has to be restored manually after resume. [ 1502.791354][T12183] netlink: 'syz.4.14707': attribute type 5 has an invalid length. [ 1502.978168][T12182] loop1: detected capacity change from 0 to 4096 [ 1503.009972][T12188] loop5: detected capacity change from 0 to 2048 [ 1503.019397][T12182] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512). [ 1503.058720][T12188] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1503.134922][T12182] ntfs3(loop1): Mark volume as dirty due to NTFS errors [ 1503.166413][T12182] ntfs3(loop1): mft corrupted [ 1503.193095][T12182] ntfs3(loop1): Failed to load $Extend (-22). [ 1503.236669][T12182] ntfs3(loop1): Failed to initialize $Extend. [ 1503.269110][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1503.418079][T12182] ntfs3(loop1): ino=1e, mi_enum_attr [ 1503.433336][T12182] ntfs3(loop1): ino=1e, mi_enum_attr [ 1504.020874][T12157] loop3: detected capacity change from 0 to 32768 [ 1504.117605][T12157] (syz.3.14712,12157,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1504.190404][T12157] (syz.3.14712,12157,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1504.219565][T12233] bond4 (unregistering): Released all slaves [ 1504.309726][T12157] JBD2: Ignoring recovery information on journal [ 1504.320896][T12299] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14734'. [ 1504.436447][T12157] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 1504.647485][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1504.932956][ T5991] ocfs2: Unmounting device (7,3) on (node local) [ 1505.753389][T12381] loop5: detected capacity change from 0 to 1024 [ 1505.812690][T12381] EXT4-fs (loop5): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 1505.847404][ T6111] usb 4-1: new high-speed USB device number 38 using dummy_hcd [ 1505.936028][T12381] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1506.059465][ T6111] usb 4-1: Using ep0 maxpacket: 16 [ 1506.115288][ T6111] usb 4-1: New USB device found, idVendor=1004, idProduct=61aa, bcdDevice=4f.75 [ 1506.147527][ T6111] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1506.184980][T12381] EXT4-fs error (device loop5): ext4_xattr_inode_iget:441: inode #11: comm syz.5.14748: missing EA_INODE flag [ 1506.213221][ T6111] usb 4-1: Product: syz [ 1506.217464][ T6111] usb 4-1: Manufacturer: syz [ 1506.234251][T12388] loop0: detected capacity change from 0 to 4096 [ 1506.234745][ T6111] usb 4-1: SerialNumber: syz [ 1506.291203][T12381] EXT4-fs (loop5): Remounting filesystem read-only [ 1506.299258][T12388] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 1506.328261][ T6111] usb 4-1: config 0 descriptor?? [ 1506.363519][ T6111] usb 4-1: bad CDC descriptors [ 1506.496882][T12388] ntfs3(loop0): Failed to initialize $Extend/$Reparse. [ 1506.599683][ T6004] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1506.666052][T27768] usb 4-1: USB disconnect, device number 38 [ 1506.897787][T12436] loop5: detected capacity change from 0 to 256 [ 1507.499026][T12450] loop0: detected capacity change from 0 to 4096 [ 1507.644202][T12471] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1507.664834][T12406] loop4: detected capacity change from 0 to 32768 [ 1507.755937][T12450] NILFS (loop0): nilfs_palloc_commit_free_entry (ino=6): entry number 15 already freed [ 1508.003276][T12482] loop5: detected capacity change from 0 to 512 [ 1508.007771][T21878] read_mapping_page failed! [ 1508.031328][T21878] ERROR: (device loop4): txAbort: [ 1508.031328][T21878] [ 1508.049510][T12483] delete_channel: no stack [ 1508.106547][T21878] jfs_write_inode: jfs_commit_inode failed! [ 1508.169974][T12492] IPv6: Can't replace route, no match found [ 1508.233111][T12482] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1508.652564][T12500] bond3 (unregistering): Released all slaves [ 1508.752797][ T6004] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1508.923791][T12588] loop3: detected capacity change from 0 to 512 [ 1508.958084][T12588] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 1509.008027][ C0] vkms_vblank_simulate: vblank timer overrun [ 1509.033030][T12588] EXT4-fs (loop3): 1 truncate cleaned up [ 1509.044761][T12588] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1509.387875][T12604] loop1: detected capacity change from 0 to 2048 [ 1509.429864][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1509.442329][ T5991] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1509.471816][T12604] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1509.559993][ T5981] udevd[5981]: incorrect nilfs2 checksum on /dev/loop1 [ 1509.568565][T12616] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1510.023930][T12643] netlink: 'syz.5.14797': attribute type 2 has an invalid length. [ 1510.077750][T12643] netlink: 'syz.5.14797': attribute type 3 has an invalid length. [ 1510.200544][T12655] netlink: 'syz.2.14799': attribute type 12 has an invalid length. [ 1510.827121][T12689] netlink: get zone limit has 8 unknown bytes [ 1510.851500][T12672] loop2: detected capacity change from 0 to 4096 [ 1510.867762][T12672] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 1510.984512][T12696] loop4: detected capacity change from 0 to 64 [ 1511.046885][T12696] /dev/loop4: Can't open blockdev [ 1511.108568][T12672] ntfs3(loop2): ino=3, ntfs_set_state failed, -22. [ 1511.150638][T12672] ntfs3(loop2): Failed to initialize $Extend/$Reparse. [ 1511.299146][T12672] ntfs3(loop2): ino=1e, mi_enum_attr [ 1511.304513][T12672] ntfs3(loop2): ino=1e, mi_enum_attr [ 1511.329536][T12672] ntfs3(loop2): ino=1e, mi_enum_attr [ 1511.353415][T12710] loop3: detected capacity change from 0 to 1024 [ 1511.397074][T12710] EXT4-fs (loop3): stripe (3) is not aligned with cluster size (16), stripe is disabled [ 1511.451623][T12720] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1511.483985][ T1297] ieee802154 phy0 wpan0: encryption failed: -22 [ 1511.503547][ T1297] ieee802154 phy1 wpan1: encryption failed: -22 [ 1511.504859][T20811] ntfs3(loop2): ino=3, ntfs3_write_inode failed, -22. [ 1511.514723][T12710] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1511.553387][ T6003] ntfs3(loop2): ino=3, ntfs_set_state failed, -22. [ 1511.559972][ T6003] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1511.587365][T12710] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #11: comm syz.3.14817: missing EA_INODE flag [ 1511.610496][T12710] EXT4-fs (loop3): Remounting filesystem read-only [ 1511.661034][ T6003] ntfs3(loop2): ino=3, ntfs_set_state failed, -22. [ 1511.878141][ T5991] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1511.954859][T12740] loop2: detected capacity change from 0 to 256 [ 1512.307921][T12759] loop4: detected capacity change from 0 to 256 [ 1512.375333][T12759] FAT-fs (loop4): error, fat_free_clusters: deleting FAT entry beyond EOF [ 1512.435366][T12759] FAT-fs (loop4): Filesystem has been set read-only [ 1512.875183][T12706] loop5: detected capacity change from 0 to 32768 [ 1512.980414][T12706] JFS: metapage_get_blocks failed [ 1513.016605][T12706] ERROR: (device loop5): release_metapage: metapage_write_one() failed [ 1513.016605][T12706] [ 1513.050369][T27768] usb 3-1: new high-speed USB device number 27 using dummy_hcd [ 1513.058408][T12794] netlink: 'syz.3.14838': attribute type 10 has an invalid length. [ 1513.094565][T12706] ERROR: (device loop5): remounting filesystem as read-only [ 1513.130134][T12794] bridge0: port 3(team0) entered disabled state [ 1513.136901][T12794] bridge0: port 2(bridge_slave_1) entered disabled state [ 1513.144337][T12794] bridge0: port 1() entered disabled state [ 1513.151413][T12797] loop0: detected capacity change from 0 to 512 [ 1513.200092][T12794] bridge0: port 3(team0) entered blocking state [ 1513.206742][T12794] bridge0: port 3(team0) entered forwarding state [ 1513.213680][T12794] bridge0: port 2(bridge_slave_1) entered blocking state [ 1513.220904][T12794] bridge0: port 2(bridge_slave_1) entered forwarding state [ 1513.228466][T12794] bridge0: port 1() entered blocking state [ 1513.234613][T12794] bridge0: port 1() entered forwarding state [ 1513.252056][T12797] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 1513.263598][T27768] usb 3-1: Using ep0 maxpacket: 8 [ 1513.274869][T27768] usb 3-1: unable to get BOS descriptor or descriptor too short [ 1513.289390][T12794] bridge0: entered promiscuous mode [ 1513.317594][T27768] usb 3-1: config 4 interface 0 has no altsetting 0 [ 1513.319959][T12797] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #11: comm syz.0.14840: invalid indirect mapped block 4294967295 (level 1) [ 1513.328532][T27768] usb 3-1: string descriptor 0 read error: -22 [ 1513.349977][ T111] blkno = 8ed2c, nblocks = 1 [ 1513.354606][ T111] ERROR: (device loop5): dbUpdatePMap: blocks are outside the map [ 1513.354606][ T111] [ 1513.365436][T27768] usb 3-1: New USB device found, idVendor=058f, idProduct=6610, bcdDevice=48.05 [ 1513.391819][T27768] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1513.406531][T12794] bond0: (slave bridge0): Enslaving as an active interface with an up link [ 1513.423334][T12797] EXT4-fs error (device loop0): ext4_free_branches:1020: inode #11: comm syz.0.14840: invalid indirect mapped block 4294967295 (level 1) [ 1513.459816][T27768] usb 3-1: dvb_usb_v2: found a 'Sigmatek DVB-110' in warm state [ 1513.476606][T12797] EXT4-fs (loop0): 2 truncates cleaned up [ 1513.494725][T27768] usb 3-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 1513.511542][T12797] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1513.556202][T27768] dvbdev: DVB: registering new adapter (Sigmatek DVB-110) [ 1513.569386][T12801] loop4: detected capacity change from 0 to 8192 [ 1513.590310][T27768] usb 3-1: media controller created [ 1513.644566][T27768] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 1513.924531][ T5992] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1514.425876][ T975] usb 3-1: USB disconnect, device number 27 [ 1514.725221][T12877] netlink: 140 bytes leftover after parsing attributes in process `syz.4.14853'. [ 1515.233416][T12909] random: crng reseeded on system resumption [ 1515.481898][T12919] loop4: detected capacity change from 0 to 64 [ 1515.521738][T12919] hfs: unable to locate alternate MDB [ 1515.532556][T12919] hfs: continuing without an alternate MDB [ 1515.587535][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1516.509416][T12921] loop2: detected capacity change from 0 to 32768 [ 1516.701383][T12921] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 1516.721419][T12935] loop5: detected capacity change from 0 to 32768 [ 1516.734032][T12935] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.14868 (12935) [ 1516.765980][T12935] BTRFS info (device loop5): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1516.809661][T12935] BTRFS info (device loop5): using crc32c (crc32c-lib) checksum algorithm [ 1516.855599][T12935] BTRFS warning (device loop5): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 1517.026886][ T6003] ocfs2: Unmounting device (7,2) on (node local) [ 1517.093122][T12935] BTRFS info (device loop5): rebuilding free space tree [ 1517.227358][T12935] BTRFS info (device loop5): disabling free space tree [ 1517.252025][T12935] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1517.321818][T12935] BTRFS info (device loop5): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1517.412460][T12935] BTRFS info (device loop5): checking UUID tree [ 1517.440454][T12935] BTRFS info (device loop5): enabling ssd optimizations [ 1517.475847][T12935] BTRFS info (device loop5): turning off barriers [ 1517.482335][T12935] BTRFS info (device loop5): disabling tree log [ 1517.519343][T12935] BTRFS info (device loop5): turning on flush-on-commit [ 1517.526366][T12935] BTRFS info (device loop5): enabling disk space caching [ 1517.576179][T13015] netlink: 12 bytes leftover after parsing attributes in process `syz.4.14887'. [ 1517.585388][T12935] BTRFS info (device loop5): force clearing of disk cache [ 1517.592521][T12935] BTRFS info (device loop5): use zstd compression, level 3 [ 1517.615751][T13017] netlink: 8 bytes leftover after parsing attributes in process `syz.1.14888'. [ 1517.646399][T13017] netdevsim netdevsim1 netdevsim0: entered promiscuous mode [ 1517.654025][T12935] BTRFS info (device loop5): max_inline set to 0 [ 1517.678508][T13017] netdevsim netdevsim1 netdevsim0: left allmulticast mode [ 1517.827755][T13024] nbd: couldn't find a device at index -1605786504 [ 1517.855109][ T6004] BTRFS info (device loop5): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1518.751903][T13058] loop4: detected capacity change from 0 to 4096 [ 1519.019661][T13079] loop3: detected capacity change from 0 to 16 [ 1519.104718][T13079] erofs (device loop3): mounted with root inode @ nid 36. [ 1519.585152][T13084] loop0: detected capacity change from 0 to 4096 [ 1519.638658][T13084] ntfs3(loop0): ino=0, mi_enum_attr [ 1519.721787][T13084] ntfs3(loop0): ino=0, mi_enum_attr [ 1519.727070][T13084] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 1520.007637][T13063] loop1: detected capacity change from 0 to 32768 [ 1520.057741][T13063] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.14901 (13063) [ 1520.131921][T13067] loop2: detected capacity change from 0 to 32768 [ 1520.148814][T13063] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1520.171442][T13074] loop5: detected capacity change from 0 to 32768 [ 1520.210220][T13074] (syz.5.14891,13074,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1520.223333][T13063] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm [ 1520.244279][T13067] XFS (loop2): DAX unsupported by block device. Turning off DAX. [ 1520.257183][T13067] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1520.282462][T13074] (syz.5.14891,13074,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1520.457074][T13074] JBD2: Ignoring recovery information on journal [ 1520.541829][T13063] BTRFS info (device loop1): enabling ssd optimizations [ 1520.594228][T13063] BTRFS info (device loop1): enabling free space tree [ 1520.654344][T13074] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1520.655725][T13067] XFS (loop2): Ending clean mount [ 1520.805370][T13067] XFS (loop2): Quotacheck needed: Please wait. [ 1520.972094][ T5990] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1521.033705][T13067] XFS (loop2): Quotacheck: Done. [ 1521.160515][T13161] loop0: detected capacity change from 0 to 1764 [ 1521.258971][ T6004] ocfs2: Unmounting device (7,5) on (node local) [ 1521.390711][ T30] audit: type=1326 audit(1441.950:420): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13170 comm="syz.1.14920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1521.500833][ T6003] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1521.514284][ T30] audit: type=1326 audit(1441.950:421): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13170 comm="syz.1.14920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1521.540801][ T30] audit: type=1326 audit(1442.006:422): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13170 comm="syz.1.14920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1521.563657][ T30] audit: type=1326 audit(1442.006:423): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13170 comm="syz.1.14920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1521.619258][ T30] audit: type=1326 audit(1442.006:424): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13170 comm="syz.1.14920" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1521.752283][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1522.203916][T13193] netlink: 8 bytes leftover after parsing attributes in process `syz.5.14921'. [ 1522.228425][T13146] loop3: detected capacity change from 0 to 32768 [ 1522.386610][T13146] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 1522.397248][T13146] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1522.567369][T13146] XFS (loop3): Ending clean mount [ 1522.603162][T13206] loop1: detected capacity change from 0 to 4096 [ 1522.620709][T13146] XFS (loop3): Quotacheck needed: Please wait. [ 1522.743059][T20811] XFS (loop3): Metadata corruption detected at xfs_dinode_verify.part.0+0x93e/0x1760, inode 0x1143 dinode [ 1522.847435][T20811] XFS (loop3): Unmount and run xfs_repair [ 1522.885066][T20811] XFS (loop3): First 128 bytes of corrupted metadata buffer: [ 1522.931850][T20811] 00000000: 49 4e 41 ed 03 01 00 00 00 00 00 00 00 00 00 00 INA............. [ 1522.991974][T20811] 00000010: 00 00 00 02 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1523.031508][T20811] 00000020: 34 f7 58 68 a5 a5 b6 11 34 f7 58 68 a5 a5 b6 11 4.Xh....4.Xh.... [ 1523.067845][T20811] 00000030: 34 f7 58 68 a5 a5 b6 11 00 00 00 00 00 00 00 20 4.Xh........... [ 1523.090539][T20811] 00000040: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 1523.122812][T20811] 00000050: 00 00 00 02 00 00 00 00 00 00 00 00 3f 08 c9 94 ............?... [ 1523.179433][T20811] 00000060: ff ff ff ff 49 55 aa 1c 00 00 00 00 00 00 00 04 ....IU.......... [ 1523.218121][T20811] 00000070: 00 00 00 01 00 00 00 10 00 00 00 00 00 00 00 08 ................ [ 1523.418285][T13146] XFS (loop3): Quotacheck: Unsuccessful (Error -117): Disabling quotas. [ 1523.548195][T13251] loop0: detected capacity change from 0 to 1024 [ 1523.587069][T13251] EXT4-fs: Ignoring removed bh option [ 1523.662601][T13251] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1523.836245][T13251] EXT4-fs error (device loop0): ext4_get_first_dir_block:3540: inode #11: comm syz.0.14941: directory missing '.' [ 1523.865783][ T5991] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1523.925915][ T5991] XFS (loop3): Uncorrected metadata errors detected; please run xfs_repair. [ 1523.947433][T13251] EXT4-fs (loop0): Remounting filesystem read-only [ 1524.133852][T13280] netlink: 'syz.1.14950': attribute type 11 has an invalid length. [ 1524.153330][ T5992] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1524.361729][T13289] netlink: 288 bytes leftover after parsing attributes in process `syz.4.14952'. [ 1524.739339][T13304] netlink: 'syz.0.14956': attribute type 11 has an invalid length. [ 1524.767544][T13304] netlink: 'syz.0.14956': attribute type 5 has an invalid length. [ 1524.808286][T13304] netlink: 4112 bytes leftover after parsing attributes in process `syz.0.14956'. [ 1525.104639][T13321] loop5: detected capacity change from 0 to 8 [ 1525.202054][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1525.406851][T13332] loop3: detected capacity change from 0 to 1024 [ 1525.408538][T13318] loop1: detected capacity change from 0 to 4096 [ 1525.465750][T13318] ntfs3(loop1): Different NTFS sector size (1024) and media sector size (512). [ 1525.576615][T13273] loop2: detected capacity change from 0 to 40427 [ 1525.585971][T13341] bridge4: trying to set multicast query interval above maximum, setting to 8640000 (86400000ms) [ 1525.639867][T13273] F2FS-fs (loop2): invalid crc value [ 1525.686611][ T12] hfsplus: b-tree write err: -5, ino 4 [ 1526.111569][T13273] F2FS-fs (loop2): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1526.159279][T13368] loop1: detected capacity change from 0 to 64 [ 1526.199443][T13273] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 1526.847100][T13399] mac80211_hwsim hwsim9 wlan0: entered promiscuous mode [ 1527.237386][T13369] loop5: detected capacity change from 0 to 32768 [ 1527.332687][T13369] find_entry called with index >= next_index [ 1527.353754][T13369] find_entry called with index >= next_index [ 1527.390912][T13369] find_entry called with index >= next_index [ 1527.732196][T13429] netlink: 40 bytes leftover after parsing attributes in process `syz.5.14991'. [ 1527.899446][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1527.999888][T13439] loop2: detected capacity change from 0 to 2048 [ 1528.032737][T13439] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=27485, location=27485 [ 1528.061263][T13445] loop4: detected capacity change from 0 to 8 [ 1528.101500][T13439] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1528.131082][T13445] SQUASHFS error: zlib decompression failed, data probably corrupt [ 1528.166655][T13445] SQUASHFS error: Failed to read block 0x4e8: -5 [ 1528.198585][T13445] SQUASHFS error: zlib decompression failed, data probably corrupt [ 1528.240722][T13445] SQUASHFS error: Failed to read block 0x4ee: -5 [ 1528.295742][T13445] SQUASHFS error: zlib decompression failed, data probably corrupt [ 1528.348065][T13445] SQUASHFS error: Failed to read block 0x4ef: -5 [ 1528.414716][ T30] audit: type=1800 audit(1448.498:425): pid=13445 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.4.14995" name="file1" dev="loop4" ino=5 res=0 errno=0 [ 1528.644038][T13419] loop3: detected capacity change from 0 to 32768 [ 1528.720398][T13469] siw: device registration error -23 [ 1528.766837][T13419] jfs_create: dtInsert returned -EIO [ 1528.773083][T13419] ERROR: (device loop3): txAbort: [ 1528.773083][T13419] [ 1528.856215][T13475] loop1: detected capacity change from 0 to 64 [ 1528.875091][T13419] ERROR: (device loop3): remounting filesystem as read-only [ 1530.658814][T13553] loop5: detected capacity change from 0 to 256 [ 1530.737605][T13553] FAT-fs (loop5): error, corrupted directory (invalid entries) [ 1530.741065][T13563] loop2: detected capacity change from 0 to 128 [ 1530.810468][T13553] FAT-fs (loop5): Filesystem has been set read-only [ 1531.015428][T13503] loop4: detected capacity change from 0 to 32768 [ 1531.111746][T13503] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.15010 (13503) [ 1531.192223][T13503] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1531.252686][T13503] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm [ 1531.295382][T13584] loop2: detected capacity change from 0 to 764 [ 1531.321559][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1531.451990][T13503] BTRFS info (device loop4): enabling ssd optimizations [ 1531.483863][T13503] BTRFS info (device loop4): enabling free space tree [ 1531.496198][T13584] Symlink component flag not implemented [ 1531.541533][T13584] Symlink component flag not implemented [ 1531.572521][T13584] Symlink component flag not implemented (128) [ 1531.612310][T13584] Symlink component flag not implemented (122) [ 1531.746023][T13620] loop3: detected capacity change from 0 to 8 [ 1531.815347][T13622] netlink: 'syz.1.15040': attribute type 1 has an invalid length. [ 1531.835345][T13622] netlink: 'syz.1.15040': attribute type 6 has an invalid length. [ 1531.867882][T13620] SQUASHFS error: lzo decompression failed, data probably corrupt [ 1531.897354][T13622] netlink: 224 bytes leftover after parsing attributes in process `syz.1.15040'. [ 1531.904871][T13620] SQUASHFS error: Failed to read block 0x1dd: -5 [ 1531.915563][ T5989] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1531.947957][T13620] SQUASHFS error: Unable to read metadata cache entry [1db] [ 1531.994837][T13620] SQUASHFS error: Unable to read inode 0xa7 [ 1532.110525][T13637] netlink: 44 bytes leftover after parsing attributes in process `syz.5.15044'. [ 1532.464098][T13652] netlink: 44 bytes leftover after parsing attributes in process `syz.3.15047'. [ 1532.605824][T13659] netlink: 'syz.2.15049': attribute type 1 has an invalid length. [ 1532.673138][T13659] netlink: 'syz.2.15049': attribute type 3 has an invalid length. [ 1532.769616][T13659] netlink: 224 bytes leftover after parsing attributes in process `syz.2.15049'. [ 1533.170056][T13685] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15055'. [ 1533.348024][T13689] wg1: entered allmulticast mode [ 1533.398588][ T50] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1533.541388][T13702] loop4: detected capacity change from 0 to 64 [ 1534.088502][T13727] IPv6: NLM_F_CREATE should be specified when creating new route [ 1534.657271][T27768] usb 4-1: new high-speed USB device number 39 using dummy_hcd [ 1534.829171][T13768] loop4: detected capacity change from 0 to 1764 [ 1534.847883][T27768] usb 4-1: Using ep0 maxpacket: 16 [ 1534.888325][T27768] usb 4-1: config 2 has an invalid descriptor of length 0, skipping remainder of the config [ 1534.918171][T27768] usb 4-1: config 2 has 1 interface, different from the descriptor's value: 2 [ 1534.951609][T27768] usb 4-1: New USB device found, idVendor=04b4, idProduct=6831, bcdDevice=88.56 [ 1534.964780][T27768] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1534.984069][T27768] usb 4-1: Product: syz [ 1534.989597][T27768] usb 4-1: Manufacturer: syz [ 1534.994267][T27768] usb 4-1: SerialNumber: syz [ 1535.069925][T13781] loop5: detected capacity change from 0 to 2048 [ 1535.152803][T13781] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1535.306541][T27768] ums-cypress 4-1:2.0: USB Mass Storage device detected [ 1535.489411][ C1] vkms_vblank_simulate: vblank timer overrun [ 1535.532707][T27768] usb 4-1: USB disconnect, device number 39 [ 1535.915172][T13834] netlink: 64 bytes leftover after parsing attributes in process `syz.1.15096'. [ 1535.921534][T13839] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15099'. [ 1535.943098][T13839] netlink: 4 bytes leftover after parsing attributes in process `syz.4.15099'. [ 1536.184897][T27768] usb 6-1: new high-speed USB device number 49 using dummy_hcd [ 1536.410070][T27768] usb 6-1: config 0 has an invalid interface number: 255 but max is 0 [ 1536.418912][T27768] usb 6-1: config 0 has no interface number 0 [ 1536.429678][T27768] usb 6-1: New USB device found, idVendor=0b95, idProduct=2790, bcdDevice=c4.f4 [ 1536.440337][T27768] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1536.451035][T27768] usb 6-1: Product: syz [ 1536.461839][T27768] usb 6-1: Manufacturer: syz [ 1536.469579][T27768] usb 6-1: SerialNumber: syz [ 1536.496558][T27768] usb 6-1: config 0 descriptor?? [ 1536.615962][T13875] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 1536.795826][ T1152] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1536.838898][T27768] usb 6-1: USB disconnect, device number 49 [ 1537.523605][T13864] loop4: detected capacity change from 0 to 32768 [ 1537.613675][T13864] XFS (loop4): DAX unsupported by block device. Turning off DAX. [ 1537.639732][T13864] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1537.770996][T13937] loop1: detected capacity change from 0 to 512 [ 1537.827788][T13937] EXT4-fs: Ignoring removed oldalloc option [ 1537.886216][T13937] EXT4-fs error (device loop1): ext4_xattr_inode_iget:436: comm syz.1.15127: Parent and EA inode have the same ino 15 [ 1538.044443][T13864] XFS (loop4): Ending clean mount [ 1538.072114][T13937] EXT4-fs (loop1): Remounting filesystem read-only [ 1538.103826][T13864] XFS (loop4): Quotacheck needed: Please wait. [ 1538.114650][T13937] EXT4-fs warning (device loop1): ext4_evict_inode:274: xattr delete (err -30) [ 1538.141519][T13937] EXT4-fs (loop1): 1 orphan inode deleted [ 1538.149726][T13937] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1538.269041][T27768] usb 3-1: new high-speed USB device number 28 using dummy_hcd [ 1538.356706][T13864] XFS (loop4): Quotacheck: Done. [ 1538.399631][ T5990] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1538.448071][ C1] vkms_vblank_simulate: vblank timer overrun [ 1538.504488][T27768] usb 3-1: Using ep0 maxpacket: 32 [ 1538.519029][T27768] usb 3-1: config 155 has an invalid descriptor of length 249, skipping remainder of the config [ 1538.554614][T27768] usb 3-1: config 155 interface 0 altsetting 0 has an endpoint descriptor with address 0xE2, changing to 0x82 [ 1538.602414][T27768] usb 3-1: config 155 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 216, changing to 11 [ 1538.620497][T13979] netlink: 20 bytes leftover after parsing attributes in process `syz.5.15137'. [ 1538.641411][T27768] usb 3-1: config 155 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 42027, setting to 1024 [ 1538.697846][T27768] usb 3-1: config 155 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 11 [ 1538.733881][ T5989] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1538.744087][T27768] usb 3-1: New USB device found, idVendor=15c2, idProduct=ffdc, bcdDevice=bd.30 [ 1538.758346][T27768] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1538.770343][T27768] usb 3-1: Product: syz [ 1538.778134][T27768] usb 3-1: Manufacturer: syz [ 1538.785693][T27768] usb 3-1: SerialNumber: syz [ 1538.811402][T13954] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1538.847235][ C1] imon 3-1:155.0: imon usb_rx_callback_intf0: status(-71) [ 1538.877830][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1538.937567][T27768] input: iMON Panel, Knob and Mouse(15c2:ffdc) as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:155.0/input/input85 [ 1539.143406][T27768] imon:send_packet: packet tx failed (-71) [ 1539.166962][T27768] imon 3-1:155.0: panel buttons/knobs setup failed [ 1539.182930][T27768] imon 3-1:155.0: Unknown 0xffdc device, defaulting to VFD and iMON IR [ 1539.194199][T27768] (id 0x00) [ 1539.242492][ T6111] usb 4-1: new full-speed USB device number 40 using dummy_hcd [ 1539.336715][T14015] loop5: detected capacity change from 0 to 64 [ 1539.381839][T27768] rc_core: IR keymap rc-imon-pad not found [ 1539.387803][T27768] Registered IR keymap rc-empty [ 1539.398668][T27768] imon 3-1:155.0: Looks like you're trying to use an IR protocol this device does not support [ 1539.409506][ T6111] usb 4-1: config 8 has an invalid interface number: 80 but max is 0 [ 1539.409561][ T6111] usb 4-1: config 8 has an invalid descriptor of length 0, skipping remainder of the config [ 1539.409605][ T6111] usb 4-1: config 8 has no interface number 0 [ 1539.409675][ T6111] usb 4-1: config 8 interface 80 altsetting 0 has an endpoint descriptor with address 0xE7, changing to 0x87 [ 1539.454952][T27768] imon 3-1:155.0: Unsupported IR protocol specified, overriding to iMON IR protocol [ 1539.468070][ T6111] usb 4-1: config 8 interface 80 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1539.479187][ T6111] usb 4-1: config 8 interface 80 altsetting 0 endpoint 0x4 has invalid wMaxPacketSize 0 [ 1539.491912][ T6111] usb 4-1: config 8 interface 80 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 14 [ 1539.539130][T27768] imon:send_packet: packet tx failed (-71) [ 1539.550863][ T6111] usb 4-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.6f [ 1539.562781][T27768] imon 3-1:155.0: remote input dev register failed [ 1539.569515][T27768] imon 3-1:155.0: imon_init_intf0: rc device setup failed [ 1539.572466][ T6111] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1539.684421][ T6111] usb 4-1: NFC: intf ffff8880271ea000 id ffffffff8f0bb380 [ 1539.743503][T27768] imon 3-1:155.0: unable to initialize intf0, err 0 [ 1539.803530][T27768] imon:imon_probe: failed to initialize context! [ 1539.824972][ T6111] nfcmrvl 4-1:8.80: NFC: registered with nci successfully [ 1539.855960][T27768] imon 3-1:155.0: unable to register, err -19 [ 1539.948219][T27768] usb 3-1: USB disconnect, device number 28 [ 1539.953192][ T6111] usb 4-1: USB disconnect, device number 40 [ 1539.979513][ T6111] usb 4-1: NFC: intf ffff8880271ea000 [ 1540.407993][T27768] usb 3-1: new full-speed USB device number 29 using dummy_hcd [ 1540.483838][T14080] netlink: 199836 bytes leftover after parsing attributes in process `syz.5.15154'. [ 1540.531474][T14021] loop1: detected capacity change from 0 to 32768 [ 1540.571421][T14021] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.15144 (14021) [ 1540.615113][T27768] usb 3-1: config 0 has an invalid interface number: 235 but max is 0 [ 1540.632929][T27768] usb 3-1: config 0 has no interface number 0 [ 1540.650700][T27768] usb 3-1: config 0 interface 235 altsetting 16 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1540.661538][T14021] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1540.706667][T27768] usb 3-1: config 0 interface 235 has no altsetting 0 [ 1540.713858][T14021] BTRFS info (device loop1): using crc32c (crc32c-lib) checksum algorithm [ 1540.737225][T14021] BTRFS warning (device loop1): space cache v1 is being deprecated and will be removed in a future release, please use -o space_cache=v2 [ 1540.758565][T27768] usb 3-1: New USB device found, idVendor=06cd, idProduct=0112, bcdDevice=3e.18 [ 1540.787510][T27768] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1540.811253][T27768] usb 3-1: Product: syz [ 1540.816865][T27768] usb 3-1: Manufacturer: syz [ 1540.821624][T27768] usb 3-1: SerialNumber: syz [ 1540.868449][T27768] usb 3-1: config 0 descriptor?? [ 1540.880850][T27768] keyspan 3-1:0.235: Keyspan 1 port adapter converter detected [ 1540.944550][T27768] keyspan 3-1:0.235: found no endpoint descriptor for endpoint 87 [ 1540.956135][T14021] BTRFS info (device loop1): rebuilding free space tree [ 1541.001140][T27768] keyspan 3-1:0.235: found no endpoint descriptor for endpoint 7 [ 1541.051396][T14021] BTRFS info (device loop1): disabling free space tree [ 1541.070589][T14021] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 1541.087688][T27768] keyspan 3-1:0.235: found no endpoint descriptor for endpoint 81 [ 1541.109836][T27768] keyspan 3-1:0.235: found no endpoint descriptor for endpoint 1 [ 1541.141027][T27768] keyspan 3-1:0.235: found no endpoint descriptor for endpoint 85 [ 1541.144754][T14021] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 1541.176001][T14112] loop4: detected capacity change from 0 to 4096 [ 1541.189988][T27768] usb 3-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1541.209973][T14112] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1541.226803][T14021] BTRFS info (device loop1): checking UUID tree [ 1541.252987][T14021] BTRFS info (device loop1): enabling ssd optimizations [ 1541.264167][T14133] loop5: detected capacity change from 0 to 8 [ 1541.266750][T27768] usb 3-1: USB disconnect, device number 29 [ 1541.281657][T14021] BTRFS info (device loop1): turning off barriers [ 1541.327923][T27768] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1541.360588][T27768] keyspan 3-1:0.235: device disconnected [ 1541.375337][T14021] BTRFS info (device loop1): disabling tree log [ 1541.409031][T14021] BTRFS info (device loop1): turning on flush-on-commit [ 1541.436971][T14112] ntfs3(loop4): ino=19, mi_enum_attr [ 1541.466023][T14133] SQUASHFS error: xz decompression failed, data probably corrupt [ 1541.473805][T14112] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 1541.480942][T14021] BTRFS info (device loop1): enabling disk space caching [ 1541.498406][T14133] SQUASHFS error: Failed to read block 0x60: -5 [ 1541.512830][T14133] SQUASHFS error: xz decompression failed, data probably corrupt [ 1541.520727][T14021] BTRFS info (device loop1): force clearing of disk cache [ 1541.540382][T14021] BTRFS info (device loop1): use zstd compression, level 3 [ 1541.555082][T14133] SQUASHFS error: Failed to read block 0x60: -5 [ 1541.575670][T14021] BTRFS info (device loop1): max_inline set to 0 [ 1541.593772][ T30] audit: type=1800 audit(1460.845:426): pid=14133 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.15161" name="file1" dev="loop5" ino=1 res=0 errno=0 [ 1541.656500][T14112] ntfs3(loop4): failed to convert "c46c" to iso8859-2 [ 1541.686030][T14112] ntfs3(loop4): ino=20, mi_enum_attr [ 1541.981825][ T5990] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1542.184594][T14169] loop3: detected capacity change from 0 to 256 [ 1542.288612][T27768] usb 6-1: new full-speed USB device number 50 using dummy_hcd [ 1542.318199][T14169] FAT-fs (loop3): Directory bread(block 64) failed [ 1542.347077][T14169] FAT-fs (loop3): Directory bread(block 65) failed [ 1542.405639][T14169] FAT-fs (loop3): Directory bread(block 66) failed [ 1542.419150][T14169] FAT-fs (loop3): Directory bread(block 67) failed [ 1542.426389][T14169] FAT-fs (loop3): Directory bread(block 68) failed [ 1542.448938][T14169] FAT-fs (loop3): Directory bread(block 69) failed [ 1542.488123][T14169] FAT-fs (loop3): Directory bread(block 70) failed [ 1542.517131][T27768] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1542.520505][T14169] FAT-fs (loop3): Directory bread(block 71) failed [ 1542.544400][T27768] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 1542.589172][T14169] FAT-fs (loop3): Directory bread(block 72) failed [ 1542.595111][T14187] loop4: detected capacity change from 0 to 16 [ 1542.595757][T14169] FAT-fs (loop3): Directory bread(block 73) failed [ 1542.621498][T14187] erofs: Unknown parameter '˙˙˙˙0xffffffffffffffff˙˙18446744073709551615' [ 1542.656075][T27768] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 1542.667055][T27768] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 1542.690783][T14187] cgroup: Invalid name [ 1542.716156][T27768] usb 6-1: SerialNumber: syz [ 1542.753273][ C1] vkms_vblank_simulate: vblank timer overrun [ 1542.828687][T27768] usb 6-1: 0:2 : does not exist [ 1542.966339][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1543.031408][T14207] loop2: detected capacity change from 0 to 1024 [ 1543.158260][T14207] hfsplus: xattr searching failed [ 1543.228091][ T6111] usb 6-1: USB disconnect, device number 50 [ 1543.428344][ C1] vkms_vblank_simulate: vblank timer overrun [ 1543.447776][ T1152] hfsplus: b-tree write err: -5, ino 4 [ 1543.501449][ C1] vkms_vblank_simulate: vblank timer overrun [ 1543.910268][T14260] loop4: detected capacity change from 0 to 16 [ 1543.973272][T14260] erofs (device loop4): mounted with root inode @ nid 36. [ 1544.024546][T14260] erofs (device loop4): bogus lookback distance 1388 @ lcn 42 of nid 36 [ 1544.051883][T14260] erofs (device loop4): failed to decompress -3 in[47, 4049] out[1851] [ 1544.095414][T14260] erofs (device loop4): read error -117 @ 43 of nid 36 [ 1544.248513][T14275] loop3: detected capacity change from 0 to 512 [ 1544.366113][T14275] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 1544.440290][T14275] EXT4-fs error (device loop3): ext4_orphan_get:1392: inode #15: comm syz.3.15190: iget: bogus i_mode (755) [ 1544.536695][T14275] EXT4-fs error (device loop3): ext4_orphan_get:1395: comm syz.3.15190: couldn't read orphan inode 15 (err -117) [ 1544.612780][T14275] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1544.791738][T14275] EXT4-fs error (device loop3): ext4_map_blocks:778: inode #2: block 4: comm syz.3.15190: lblock 0 mapped to illegal pblock 4 (length 1) [ 1545.029517][ T12] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1545.041057][ T5991] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1545.180962][T14315] loop4: detected capacity change from 0 to 256 [ 1545.236790][T14319] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 1545.345079][T14315] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 1545.435000][T14282] loop1: detected capacity change from 0 to 32768 [ 1545.565011][T14282] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1545.611022][T14346] netlink: 'syz.2.15207': attribute type 10 has an invalid length. [ 1545.620916][T14346] macvlan0: entered promiscuous mode [ 1545.628086][T14346] veth1_vlan: entered promiscuous mode [ 1545.633701][T14346] veth1_vlan: entered allmulticast mode [ 1545.644670][T14346] bond0: (slave macvlan0): Enslaving as an active interface with an up link [ 1545.888846][T14359] loop2: detected capacity change from 0 to 256 [ 1545.973319][T14359] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1545.985799][T14282] XFS (loop1): Ending clean mount [ 1546.412364][ T5990] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 1546.995922][T14410] netlink: 60 bytes leftover after parsing attributes in process `syz.2.15228'. [ 1547.661031][T14437] loop0: detected capacity change from 0 to 736 [ 1547.812066][T14387] loop5: detected capacity change from 0 to 32768 [ 1547.923027][T14387] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1548.008850][T14387] (syz.5.15222,14387,0):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode. [ 1548.040975][T13829] usb 4-1: new high-speed USB device number 41 using dummy_hcd [ 1548.092990][T14387] ocfs2: Unmounting device (7,5) on (node local) [ 1548.233517][T13829] usb 4-1: Using ep0 maxpacket: 16 [ 1548.252688][T13829] usb 4-1: config 0 has an invalid interface number: 105 but max is 0 [ 1548.292558][T13829] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1548.348263][T13829] usb 4-1: config 0 has no interface number 0 [ 1548.388125][T13829] usb 4-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28 [ 1548.407137][T13829] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1548.436000][T13829] usb 4-1: Product: syz [ 1548.459152][T13829] usb 4-1: Manufacturer: syz [ 1548.480632][T13829] usb 4-1: SerialNumber: syz [ 1548.561148][T13829] usb 4-1: config 0 descriptor?? [ 1548.588088][ T30] audit: type=1326 audit(1467.393:427): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1548.670238][T13829] uvcvideo 4-1:0.105: Found Unit with invalid ID 0 [ 1548.697100][T13829] uvcvideo 4-1:0.105: Found UVC 0.00 device syz (046d:08f3) [ 1548.717951][T13829] uvcvideo 4-1:0.105: No valid video chain found. [ 1548.728879][ T30] audit: type=1326 audit(1467.393:428): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa336f8eec9 code=0x7ffc0000 [ 1548.805365][ T30] audit: type=1326 audit(1467.393:429): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa336f8d710 code=0x7ffc0000 [ 1548.842220][ T6111] usb 6-1: new full-speed USB device number 51 using dummy_hcd [ 1548.863506][T27768] usb 2-1: new high-speed USB device number 37 using dummy_hcd [ 1548.880861][T14501] loop4: detected capacity change from 0 to 512 [ 1548.914474][T12645] usb 4-1: USB disconnect, device number 41 [ 1548.916937][ T30] audit: type=1326 audit(1467.393:430): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1548.942214][ C0] vkms_vblank_simulate: vblank timer overrun [ 1548.956344][ T30] audit: type=1326 audit(1467.393:431): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1548.985086][T14501] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1549.026396][ T30] audit: type=1326 audit(1467.430:432): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1549.066493][ T6111] usb 6-1: config 0 has an invalid interface number: 235 but max is 0 [ 1549.074710][ T6111] usb 6-1: config 0 has no interface number 0 [ 1549.083082][ T6111] usb 6-1: config 0 interface 235 altsetting 16 endpoint 0x5 has invalid wMaxPacketSize 0 [ 1549.092184][T27768] usb 2-1: Using ep0 maxpacket: 16 [ 1549.094316][ T30] audit: type=1326 audit(1467.430:433): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1549.119983][ C0] vkms_vblank_simulate: vblank timer overrun [ 1549.122136][T27768] usb 2-1: config 0 has an invalid interface number: 48 but max is 0 [ 1549.131616][ T6111] usb 6-1: config 0 interface 235 has no altsetting 0 [ 1549.149590][T20811] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1549.183452][T14516] netlink: 28 bytes leftover after parsing attributes in process `syz.2.15250'. [ 1549.199276][ T30] audit: type=1326 audit(1467.514:434): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1549.199901][T27768] usb 2-1: config 0 has no interface number 0 [ 1549.221791][ T30] audit: type=1326 audit(1467.589:435): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1549.245258][T14501] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1549.250114][ T6111] usb 6-1: New USB device found, idVendor=06cd, idProduct=0112, bcdDevice=3e.18 [ 1549.272411][ T6111] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1549.275590][T14516] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check. [ 1549.280819][ T30] audit: type=1326 audit(1467.683:436): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14483 comm="syz.1.15247" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fa336f8eacb code=0x7ffc0000 [ 1549.281184][ T6111] usb 6-1: Product: syz [ 1549.319474][ C0] vkms_vblank_simulate: vblank timer overrun [ 1549.370145][T27768] usb 2-1: config 0 interface 48 has no altsetting 0 [ 1549.392160][T27768] usb 2-1: New USB device found, idVendor=1199, idProduct=b000, bcdDevice=a8.98 [ 1549.420172][ T6111] usb 6-1: Manufacturer: syz [ 1549.424885][ T6111] usb 6-1: SerialNumber: syz [ 1549.434039][T27768] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1549.461117][T27768] usb 2-1: Product: syz [ 1549.466049][ T6111] usb 6-1: config 0 descriptor?? [ 1549.472198][T27768] usb 2-1: Manufacturer: syz [ 1549.480039][ T5989] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1549.498908][ T6111] keyspan 6-1:0.235: Keyspan 1 port adapter converter detected [ 1549.519680][T27768] usb 2-1: SerialNumber: syz [ 1549.520043][ T6111] keyspan 6-1:0.235: found no endpoint descriptor for endpoint 87 [ 1549.533864][ T6111] keyspan 6-1:0.235: found no endpoint descriptor for endpoint 7 [ 1549.556985][T27768] usb 2-1: config 0 descriptor?? [ 1549.605976][ T6111] keyspan 6-1:0.235: found no endpoint descriptor for endpoint 81 [ 1549.643757][ T6111] keyspan 6-1:0.235: found no endpoint descriptor for endpoint 1 [ 1549.651628][ T6111] keyspan 6-1:0.235: found no endpoint descriptor for endpoint 85 [ 1549.688915][ T6111] usb 6-1: Keyspan 1 port adapter converter now attached to ttyUSB0 [ 1549.741218][ T6111] usb 6-1: USB disconnect, device number 51 [ 1549.819392][ T6111] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0 [ 1549.838087][T27768] usb 2-1: USB disconnect, device number 37 [ 1549.886185][ T6111] keyspan 6-1:0.235: device disconnected [ 1550.514750][T14593] loop2: detected capacity change from 0 to 512 [ 1550.554876][T14593] EXT4-fs: Ignoring removed nomblk_io_submit option [ 1550.618711][T14593] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1550.817439][T14612] loop4: detected capacity change from 0 to 64 [ 1550.839701][ T6003] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1550.847837][T14614] loop5: detected capacity change from 0 to 256 [ 1551.158677][ T50] [ 1551.161046][ T50] ====================================================== [ 1551.168065][ T50] WARNING: possible circular locking dependency detected [ 1551.175085][ T50] syzkaller #0 Not tainted [ 1551.179502][ T50] ------------------------------------------------------ [ 1551.186521][ T50] kworker/u8:3/50 is trying to acquire lock: [ 1551.192509][ T50] ffff888033e6c878 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa5/0xcd0 [ 1551.203286][ T50] [ 1551.203286][ T50] but task is already holding lock: [ 1551.210662][ T50] ffff88802932a0b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x19c/0x310 [ 1551.220233][ T50] [ 1551.220233][ T50] which lock already depends on the new lock. [ 1551.220233][ T50] [ 1551.230732][ T50] [ 1551.230732][ T50] the existing dependency chain (in reverse order) is: [ 1551.239758][ T50] [ 1551.239758][ T50] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}: [ 1551.247883][ T50] __mutex_lock+0x193/0x1060 [ 1551.253013][ T50] hfs_find_init+0x19c/0x310 [ 1551.258150][ T50] hfs_ext_read_extent+0x19b/0x9e0 [ 1551.263800][ T50] hfs_get_block+0x568/0x830 [ 1551.268921][ T50] block_read_full_folio+0x457/0x850 [ 1551.274745][ T50] filemap_read_folio+0xc8/0x2a0 [ 1551.280218][ T50] do_read_cache_folio+0x263/0x5c0 [ 1551.285869][ T50] read_cache_page+0x5b/0x160 [ 1551.291098][ T50] __hfs_bnode_create+0x70b/0x9b0 [ 1551.296686][ T50] hfs_bnode_find+0x2cc/0xd40 [ 1551.301882][ T50] hfs_brec_find+0x3a2/0x650 [ 1551.307014][ T50] hfs_brec_read+0x26/0x120 [ 1551.312058][ T50] hfs_cat_find_brec+0xd8/0x2c0 [ 1551.317436][ T50] hfs_fill_super+0x524/0x800 [ 1551.322650][ T50] get_tree_bdev_flags+0x38c/0x620 [ 1551.328314][ T50] vfs_get_tree+0x8e/0x340 [ 1551.333261][ T50] path_mount+0x7b9/0x23a0 [ 1551.338206][ T50] __x64_sys_mount+0x293/0x310 [ 1551.343497][ T50] do_syscall_64+0xcd/0x4e0 [ 1551.348535][ T50] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1551.354952][ T50] [ 1551.354952][ T50] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}: [ 1551.364186][ T50] __lock_acquire+0x12a6/0x1ce0 [ 1551.369572][ T50] lock_acquire+0x179/0x350 [ 1551.374606][ T50] __mutex_lock+0x193/0x1060 [ 1551.379733][ T50] hfs_extend_file+0xa5/0xcd0 [ 1551.384956][ T50] hfs_bmap_reserve+0x2ab/0x3a0 [ 1551.390364][ T50] __hfs_ext_write_extent+0x3cf/0x520 [ 1551.396302][ T50] hfs_ext_write_extent+0x1b5/0x1f0 [ 1551.402033][ T50] hfs_write_inode+0xcc/0xab0 [ 1551.407245][ T50] __writeback_single_inode+0xb3e/0xfb0 [ 1551.413329][ T50] writeback_sb_inodes+0x60d/0xfa0 [ 1551.418982][ T50] wb_writeback+0x419/0xb70 [ 1551.424019][ T50] wb_workfn+0x14d/0xbe0 [ 1551.428795][ T50] process_one_work+0x9cf/0x1b70 [ 1551.434268][ T50] worker_thread+0x6c8/0xf10 [ 1551.439393][ T50] kthread+0x3c5/0x780 [ 1551.443988][ T50] ret_from_fork+0x56d/0x730 [ 1551.449104][ T50] ret_from_fork_asm+0x1a/0x30 [ 1551.454401][ T50] [ 1551.454401][ T50] other info that might help us debug this: [ 1551.454401][ T50] [ 1551.464615][ T50] Possible unsafe locking scenario: [ 1551.464615][ T50] [ 1551.472050][ T50] CPU0 CPU1 [ 1551.477400][ T50] ---- ---- [ 1551.482750][ T50] lock(&tree->tree_lock#2/1); [ 1551.487626][ T50] lock(&HFS_I(tree->inode)->extents_lock); [ 1551.496130][ T50] lock(&tree->tree_lock#2/1); [ 1551.503524][ T50] lock(&HFS_I(tree->inode)->extents_lock); [ 1551.509503][ T50] [ 1551.509503][ T50] *** DEADLOCK *** [ 1551.509503][ T50] [ 1551.517631][ T50] 3 locks held by kworker/u8:3/50: [ 1551.522731][ T50] #0: ffff88801c2ed948 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12a2/0x1b70 [ 1551.533488][ T50] #1: ffffc90000bb7d10 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x929/0x1b70 [ 1551.545376][ T50] #2: ffff88802932a0b0 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x19c/0x310 [ 1551.555394][ T50] [ 1551.555394][ T50] stack backtrace: [ 1551.561282][ T50] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) [ 1551.561322][ T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1551.561347][ T50] Workqueue: writeback wb_workfn (flush-7:4) [ 1551.561403][ T50] Call Trace: [ 1551.561416][ T50] [ 1551.561430][ T50] dump_stack_lvl+0x116/0x1f0 [ 1551.561478][ T50] print_circular_bug+0x275/0x350 [ 1551.561515][ T50] check_noncircular+0x14c/0x170 [ 1551.561554][ T50] __lock_acquire+0x12a6/0x1ce0 [ 1551.561600][ T50] lock_acquire+0x179/0x350 [ 1551.561634][ T50] ? hfs_extend_file+0xa5/0xcd0 [ 1551.561675][ T50] ? __pfx___might_resched+0x10/0x10 [ 1551.561724][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.561769][ T50] ? hfs_extend_file+0xa5/0xcd0 [ 1551.561805][ T50] __mutex_lock+0x193/0x1060 [ 1551.561848][ T50] ? hfs_extend_file+0xa5/0xcd0 [ 1551.561885][ T50] ? __lock_acquire+0x107f/0x1ce0 [ 1551.561925][ T50] ? __pfx___mutex_lock+0x10/0x10 [ 1551.561974][ T50] ? __pfx___might_resched+0x10/0x10 [ 1551.562023][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562063][ T50] ? rcu_is_watching+0x12/0xc0 [ 1551.562115][ T50] ? hfs_extend_file+0xa5/0xcd0 [ 1551.562151][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562191][ T50] hfs_extend_file+0xa5/0xcd0 [ 1551.562232][ T50] ? __pfx_hfs_extend_file+0x10/0x10 [ 1551.562270][ T50] ? hfs_brec_find+0x4dc/0x650 [ 1551.562327][ T50] hfs_bmap_reserve+0x2ab/0x3a0 [ 1551.562360][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562406][ T50] __hfs_ext_write_extent+0x3cf/0x520 [ 1551.562445][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562491][ T50] hfs_ext_write_extent+0x1b5/0x1f0 [ 1551.562531][ T50] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1551.562574][ T50] ? blk_finish_plug+0x16/0xa0 [ 1551.562605][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562645][ T50] ? mpage_writepages+0x159/0x1c0 [ 1551.562694][ T50] ? __pfx_mpage_writepages+0x10/0x10 [ 1551.562746][ T50] hfs_write_inode+0xcc/0xab0 [ 1551.562790][ T50] ? __pfx_hfs_write_inode+0x10/0x10 [ 1551.562831][ T50] ? __lock_acquire+0xb97/0x1ce0 [ 1551.562870][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562909][ T50] ? __lock_acquire+0xb97/0x1ce0 [ 1551.562952][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.562997][ T50] __writeback_single_inode+0xb3e/0xfb0 [ 1551.563043][ T50] ? __pfx___writeback_single_inode+0x10/0x10 [ 1551.563087][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563126][ T50] ? do_raw_spin_unlock+0x172/0x230 [ 1551.563170][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563213][ T50] writeback_sb_inodes+0x60d/0xfa0 [ 1551.563267][ T50] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1551.563311][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563380][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563419][ T50] ? rcu_is_watching+0x12/0xc0 [ 1551.563467][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563510][ T50] ? queue_io+0x3f6/0x520 [ 1551.563548][ T50] wb_writeback+0x419/0xb70 [ 1551.563596][ T50] ? __pfx_wb_writeback+0x10/0x10 [ 1551.563638][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563683][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563722][ T50] ? mark_held_locks+0x49/0x80 [ 1551.563759][ T50] wb_workfn+0x14d/0xbe0 [ 1551.563805][ T50] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1551.563844][ T50] ? __pfx_wb_workfn+0x10/0x10 [ 1551.563890][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563931][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.563973][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.564013][ T50] ? rcu_is_watching+0x12/0xc0 [ 1551.564064][ T50] process_one_work+0x9cf/0x1b70 [ 1551.564116][ T50] ? __pfx_process_one_work+0x10/0x10 [ 1551.564158][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.564203][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.564242][ T50] ? assign_work+0x1a0/0x250 [ 1551.564282][ T50] worker_thread+0x6c8/0xf10 [ 1551.564333][ T50] ? __pfx_worker_thread+0x10/0x10 [ 1551.564375][ T50] kthread+0x3c5/0x780 [ 1551.564414][ T50] ? __pfx_kthread+0x10/0x10 [ 1551.564452][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1551.564495][ T50] ? rcu_is_watching+0x12/0xc0 [ 1551.564543][ T50] ? __pfx_kthread+0x10/0x10 [ 1551.564582][ T50] ret_from_fork+0x56d/0x730 [ 1551.564617][ T50] ? __pfx_kthread+0x10/0x10 [ 1551.564655][ T50] ret_from_fork_asm+0x1a/0x30 [ 1551.564712][ T50] [ 1551.986733][ C0] vkms_vblank_simulate: vblank timer overrun [ 1552.009275][T14643] loop0: detected capacity change from 0 to 256 [ 1552.016687][T14643] exfat: Deprecated parameter 'namecase' [ 1552.018348][T21878] IPVS: Schedule: port zero only supported in persistent services, check your ipvs configuration [ 1552.060862][ T50] hfs: new node 0 already hashed? [ 1552.066401][ T50] ------------[ cut here ]------------ [ 1552.072252][ T50] WARNING: CPU: 0 PID: 50 at fs/hfs/bnode.c:520 hfs_bnode_create+0x14c/0x5e0 [ 1552.081329][ T50] Modules linked in: [ 1552.085258][ T50] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) [ 1552.094838][ T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1552.105324][ T50] Workqueue: writeback wb_workfn (flush-7:4) [ 1552.111381][ T50] RIP: 0010:hfs_bnode_create+0x14c/0x5e0 [ 1552.117404][ T50] Code: e9 18 ff 45 39 fc 75 9e e8 e1 ee 18 ff 4c 89 f7 e8 49 ed af 08 e8 d4 ee 18 ff 44 89 e6 48 c7 c7 20 c5 8a 8b e8 35 91 f7 fe 90 <0f> 0b 90 e8 bc ee 18 ff 48 89 d8 48 83 c4 28 5b 5d 41 5c 41 5d 41 [ 1552.124198][T14643] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 1552.137410][ T50] RSP: 0018:ffffc90000bb7080 EFLAGS: 00010286 [ 1552.155987][ T50] RAX: 000000000000001f RBX: ffff888089bd4500 RCX: ffffffff8199c7a9 [ 1552.163978][ T50] RDX: 0000000000000000 RSI: ffffffff819a42d6 RDI: 0000000000000005 [ 1552.172525][ T50] RBP: ffff88802932a000 R08: 0000000000000005 R09: 0000000000000000 [ 1552.180752][ T50] R10: 0000000080000000 R11: 77656e203a736668 R12: 0000000000000000 [ 1552.189277][ T50] R13: dffffc0000000000 R14: ffff88802932a0e0 R15: 0000000000000000 [ 1552.197286][ T50] FS: 0000000000000000(0000) GS:ffff888124e6a000(0000) knlGS:0000000000000000 [ 1552.206308][ T50] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1552.213003][ T50] CR2: 00007fc064b156c0 CR3: 000000003269d000 CR4: 0000000000350ef0 [ 1552.221097][ T50] Call Trace: [ 1552.224392][ T50] [ 1552.227333][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.233064][ T50] ? hfs_bnode_put+0x20c/0x460 [ 1552.237880][ T50] hfs_bmap_alloc+0x7d7/0x960 [ 1552.242648][ T50] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1552.247885][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.253654][ T50] ? hfs_bnode_read.part.0+0x16b/0x5d0 [ 1552.259190][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.264929][ T50] ? const_folio_flags+0x5b/0x100 [ 1552.269999][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.275931][ T50] ? folio_mark_accessed+0xc1/0xc00 [ 1552.281188][ T50] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1552.287016][ T50] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1552.293469][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.299228][ T50] ? _raw_spin_unlock+0x28/0x50 [ 1552.304103][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.309854][ T50] ? hfs_bnode_put+0x20c/0x460 [ 1552.314661][ T50] hfs_brec_insert+0x8b1/0xc40 [ 1552.319512][ T50] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1552.324808][ T50] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1552.329935][ T50] __hfs_ext_write_extent+0x3fa/0x520 [ 1552.335346][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.341122][ T50] hfs_ext_write_extent+0x1b5/0x1f0 [ 1552.346406][ T50] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1552.352233][ T50] ? blk_finish_plug+0x16/0xa0 [ 1552.357025][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.362774][ T50] ? mpage_writepages+0x159/0x1c0 [ 1552.367850][ T50] ? __pfx_mpage_writepages+0x10/0x10 [ 1552.373337][ T50] hfs_write_inode+0xcc/0xab0 [ 1552.378049][ T50] ? __pfx_hfs_write_inode+0x10/0x10 [ 1552.383473][ T50] ? __lock_acquire+0xb97/0x1ce0 [ 1552.388449][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.394165][ T50] ? __lock_acquire+0xb97/0x1ce0 [ 1552.399167][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.404928][ T50] __writeback_single_inode+0xb3e/0xfb0 [ 1552.410526][ T50] ? __pfx___writeback_single_inode+0x10/0x10 [ 1552.416701][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.422365][ T50] ? do_raw_spin_unlock+0x172/0x230 [ 1552.427638][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.433299][ T50] writeback_sb_inodes+0x60d/0xfa0 [ 1552.438495][ T50] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1552.444171][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.450001][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.455735][ T50] ? rcu_is_watching+0x12/0xc0 [ 1552.460516][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.466234][ T50] ? queue_io+0x3f6/0x520 [ 1552.470609][ T50] wb_writeback+0x419/0xb70 [ 1552.475132][ T50] ? __pfx_wb_writeback+0x10/0x10 [ 1552.480227][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.485892][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.491609][ T50] ? mark_held_locks+0x49/0x80 [ 1552.496404][ T50] wb_workfn+0x14d/0xbe0 [ 1552.500728][ T50] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1552.506579][ T50] ? __pfx_wb_workfn+0x10/0x10 [ 1552.511422][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.517086][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.522824][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.528488][ T50] ? rcu_is_watching+0x12/0xc0 [ 1552.533559][ T50] process_one_work+0x9cf/0x1b70 [ 1552.538552][ T50] ? __pfx_process_one_work+0x10/0x10 [ 1552.544026][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.549716][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.555493][ T50] ? assign_work+0x1a0/0x250 [ 1552.560167][ T50] worker_thread+0x6c8/0xf10 [ 1552.564875][ T50] ? __pfx_worker_thread+0x10/0x10 [ 1552.570021][ T50] kthread+0x3c5/0x780 [ 1552.574274][ T50] ? __pfx_kthread+0x10/0x10 [ 1552.578926][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.584801][ T50] ? rcu_is_watching+0x12/0xc0 [ 1552.589608][ T50] ? __pfx_kthread+0x10/0x10 [ 1552.594310][ T50] ret_from_fork+0x56d/0x730 [ 1552.598926][ T50] ? __pfx_kthread+0x10/0x10 [ 1552.603523][ T50] ret_from_fork_asm+0x1a/0x30 [ 1552.608368][ T50] [ 1552.611396][ T50] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 1552.618672][ T50] CPU: 0 UID: 0 PID: 50 Comm: kworker/u8:3 Not tainted syzkaller #0 PREEMPT(full) [ 1552.627965][ T50] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 1552.638020][ T50] Workqueue: writeback wb_workfn (flush-7:4) [ 1552.644060][ T50] Call Trace: [ 1552.647335][ T50] [ 1552.650267][ T50] dump_stack_lvl+0x3d/0x1f0 [ 1552.654872][ T50] vpanic+0x640/0x6f0 [ 1552.658877][ T50] ? hfs_bnode_create+0x14c/0x5e0 [ 1552.663910][ T50] panic+0xca/0xd0 [ 1552.667640][ T50] ? __pfx_panic+0x10/0x10 [ 1552.672073][ T50] ? check_panic_on_warn+0x1f/0xb0 [ 1552.677217][ T50] check_panic_on_warn+0xab/0xb0 [ 1552.682173][ T50] __warn+0xf6/0x3c0 [ 1552.686081][ T50] ? hfs_bnode_create+0x14c/0x5e0 [ 1552.691112][ T50] report_bug+0x3c3/0x580 [ 1552.695455][ T50] ? hfs_bnode_create+0x14c/0x5e0 [ 1552.700485][ T50] handle_bug+0x184/0x210 [ 1552.704836][ T50] exc_invalid_op+0x17/0x50 [ 1552.709360][ T50] asm_exc_invalid_op+0x1a/0x20 [ 1552.714220][ T50] RIP: 0010:hfs_bnode_create+0x14c/0x5e0 [ 1552.719860][ T50] Code: e9 18 ff 45 39 fc 75 9e e8 e1 ee 18 ff 4c 89 f7 e8 49 ed af 08 e8 d4 ee 18 ff 44 89 e6 48 c7 c7 20 c5 8a 8b e8 35 91 f7 fe 90 <0f> 0b 90 e8 bc ee 18 ff 48 89 d8 48 83 c4 28 5b 5d 41 5c 41 5d 41 [ 1552.739481][ T50] RSP: 0018:ffffc90000bb7080 EFLAGS: 00010286 [ 1552.745563][ T50] RAX: 000000000000001f RBX: ffff888089bd4500 RCX: ffffffff8199c7a9 [ 1552.753532][ T50] RDX: 0000000000000000 RSI: ffffffff819a42d6 RDI: 0000000000000005 [ 1552.761503][ T50] RBP: ffff88802932a000 R08: 0000000000000005 R09: 0000000000000000 [ 1552.769474][ T50] R10: 0000000080000000 R11: 77656e203a736668 R12: 0000000000000000 [ 1552.777446][ T50] R13: dffffc0000000000 R14: ffff88802932a0e0 R15: 0000000000000000 [ 1552.785429][ T50] ? __wake_up_klogd.part.0+0x99/0xf0 [ 1552.790824][ T50] ? vprintk_emit+0x1e6/0x680 [ 1552.795531][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.801178][ T50] ? hfs_bnode_put+0x20c/0x460 [ 1552.805956][ T50] hfs_bmap_alloc+0x7d7/0x960 [ 1552.810644][ T50] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 1552.815849][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.821495][ T50] ? hfs_bnode_read.part.0+0x16b/0x5d0 [ 1552.826981][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.832629][ T50] ? const_folio_flags+0x5b/0x100 [ 1552.837683][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.843334][ T50] ? folio_mark_accessed+0xc1/0xc00 [ 1552.848567][ T50] hfs_btree_inc_height.isra.0+0xff/0x820 [ 1552.854297][ T50] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 1552.860635][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.866282][ T50] ? _raw_spin_unlock+0x28/0x50 [ 1552.871140][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.876787][ T50] ? hfs_bnode_put+0x20c/0x460 [ 1552.881558][ T50] hfs_brec_insert+0x8b1/0xc40 [ 1552.886340][ T50] ? __pfx_hfs_brec_insert+0x10/0x10 [ 1552.891634][ T50] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 1552.896668][ T50] __hfs_ext_write_extent+0x3fa/0x520 [ 1552.902051][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.907698][ T50] hfs_ext_write_extent+0x1b5/0x1f0 [ 1552.912907][ T50] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 1552.918640][ T50] ? blk_finish_plug+0x16/0xa0 [ 1552.923407][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.929048][ T50] ? mpage_writepages+0x159/0x1c0 [ 1552.934091][ T50] ? __pfx_mpage_writepages+0x10/0x10 [ 1552.939485][ T50] hfs_write_inode+0xcc/0xab0 [ 1552.944180][ T50] ? __pfx_hfs_write_inode+0x10/0x10 [ 1552.949488][ T50] ? __lock_acquire+0xb97/0x1ce0 [ 1552.954439][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.960081][ T50] ? __lock_acquire+0xb97/0x1ce0 [ 1552.965033][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.970686][ T50] __writeback_single_inode+0xb3e/0xfb0 [ 1552.976256][ T50] ? __pfx___writeback_single_inode+0x10/0x10 [ 1552.982337][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.987980][ T50] ? do_raw_spin_unlock+0x172/0x230 [ 1552.993199][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1552.998851][ T50] writeback_sb_inodes+0x60d/0xfa0 [ 1553.003990][ T50] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 1553.009639][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.015314][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.020959][ T50] ? rcu_is_watching+0x12/0xc0 [ 1553.025742][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.031387][ T50] ? queue_io+0x3f6/0x520 [ 1553.035728][ T50] wb_writeback+0x419/0xb70 [ 1553.040257][ T50] ? __pfx_wb_writeback+0x10/0x10 [ 1553.045304][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.050953][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.056595][ T50] ? mark_held_locks+0x49/0x80 [ 1553.061372][ T50] wb_workfn+0x14d/0xbe0 [ 1553.065634][ T50] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 1553.071452][ T50] ? __pfx_wb_workfn+0x10/0x10 [ 1553.076236][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.081881][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.087525][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.093168][ T50] ? rcu_is_watching+0x12/0xc0 [ 1553.097959][ T50] process_one_work+0x9cf/0x1b70 [ 1553.102922][ T50] ? __pfx_process_one_work+0x10/0x10 [ 1553.108307][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.113954][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.119600][ T50] ? assign_work+0x1a0/0x250 [ 1553.124207][ T50] worker_thread+0x6c8/0xf10 [ 1553.128826][ T50] ? __pfx_worker_thread+0x10/0x10 [ 1553.133951][ T50] kthread+0x3c5/0x780 [ 1553.138030][ T50] ? __pfx_kthread+0x10/0x10 [ 1553.142631][ T50] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1553.148276][ T50] ? rcu_is_watching+0x12/0xc0 [ 1553.153067][ T50] ? __pfx_kthread+0x10/0x10 [ 1553.157673][ T50] ret_from_fork+0x56d/0x730 [ 1553.162293][ T50] ? __pfx_kthread+0x10/0x10 [ 1553.166925][ T50] ret_from_fork_asm+0x1a/0x30 [ 1553.171722][ T50] [ 1553.174989][ T50] Kernel Offset: disabled [ 1553.179308][ T50] Rebooting in 86400 seconds..