last executing test programs:

10m23.111111688s ago: executing program 2 (id=7450):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000004c0)={0x54, 0x2, 0x6, 0x5, 0x0, 0x0, {0x7}, [@IPSET_ATTR_PROTOCOL={0x5, 0x1, 0x6}, @IPSET_ATTR_TYPENAME={0xd, 0x3, 'hash:net\x00'}, @IPSET_ATTR_SETNAME={0x9, 0x2, 'syz1\x00'}, @IPSET_ATTR_FAMILY={0x5, 0x5, 0x2}, @IPSET_ATTR_REVISION={0x5}, @IPSET_ATTR_DATA={0xc, 0x7, 0x0, 0x1, [@IPSET_ATTR_HASHSIZE={0x8, 0x12, 0x1, 0x0, 0x5}]}]}, 0x54}}, 0x0)

10m22.866853797s ago: executing program 2 (id=7455):
r0 = socket$inet6_mptcp(0xa, 0x1, 0x106)
getsockopt$inet6_tcp_int(r0, 0x6, 0x6, 0x0, &(0x7f0000000100)=0xffffff83)

10m22.592810006s ago: executing program 2 (id=7460):
r0 = openat$vicodec1(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
pwritev(r0, &(0x7f00000003c0)=[{&(0x7f0000000500)='`O', 0x2}], 0x1, 0xfffffffe, 0x4)

10m22.278717527s ago: executing program 2 (id=7465):
syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000500)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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")
mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

10m21.524114727s ago: executing program 2 (id=7473):
r0 = socket$inet6_udp(0xa, 0x2, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000000)=@raw={'raw\x00', 0x3c1, 0x3, 0x530, 0x320, 0x18c, 0x203, 0x320, 0x19030000, 0x460, 0x2e0, 0x2e0, 0x460, 0x2e0, 0x3, 0x0, {[{{@uncond, 0x300, 0x2d8, 0x320, 0x0, {}, [@common=@unspec=@bpf0={{0x230}, {0x13, [{0x0, 0x0, 0x8, 0x2000000}, {}, {}, {}, {}, {}, {}, {}, {0x0, 0x0, 0x0, 0x8}, {}, {0x0, 0x0, 0x0, 0xe}, {0x0, 0x0, 0x0, 0x3}, {0x0, 0x0, 0x3}, {0x2, 0x0, 0x4}, {}, {0x0, 0x0, 0x0, 0x1}, {0x0, 0x0, 0x8}, {}, {0x16}, {0x0, 0xff}, {}, {0x7}, {0x0, 0x0, 0x0, 0x4}, {0x0, 0x4, 0x0, 0x101}, {}, {0x0, 0x0, 0x5}, {}, {0x0, 0x0, 0x0, 0x9}, {0xfffc, 0x0, 0x0, 0x10}, {}, {0xfffe}, {}, {}, {}, {0xfffe, 0xfb}, {}, {0x7a04}, {}, {}, {0x20, 0x6}, {}, {}, {}, {0x0, 0x1, 0x0, 0x800}, {}, {0xb8c, 0x0, 0x0, 0xf00}, {0x0, 0x1, 0x0, 0x3}, {0x3}, {}, {}, {}, {}, {0x4}, {}, {}, {}, {}, {0x0, 0xfd}, {}, {}, {0x0, 0x0, 0x0, 0xfffffffd}, {}, {0x0, 0xb}, {0x4, 0x2}]}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0x2, 'syz0\x00', {0x8001}}}}, {{@uncond, 0x0, 0xf8, 0x140, 0x0, {}, [@inet=@rpfilter={{0x28}, {0xb}}, @inet=@rpfilter={{0x28}, {0xd}}]}, @common=@unspec=@IDLETIMER={0x48, 'IDLETIMER\x00', 0x0, {0xb, 'syz1\x00', {0x6c8}}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x590)

10m20.665584457s ago: executing program 2 (id=7480):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000023000100fcff0700040000000200000004004880140001"], 0x2c}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

10m19.774021539s ago: executing program 32 (id=7480):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000000c0)=ANY=[@ANYBLOB="2c00000023000100fcff0700040000000200000004004880140001"], 0x2c}, 0x1, 0x0, 0x0, 0x400c801}, 0x4008094)

8m0.566799474s ago: executing program 4 (id=9238):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDGKBLED(r0, 0x4b64, &(0x7f0000000100))

8m0.232059649s ago: executing program 4 (id=9242):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f00000008c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000100), 0x237}, 0x48)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x1f00, 0x18, 0x19, &(0x7f00000007c0)="9f44948721919580684010a40566", 0x0, 0x7ff, 0x0, 0xb1, 0x0, &(0x7f0000000700)="389ceff69d08b0af1cc71b6262d50660bbaf31a7f8cd6a6f911beb65d5fe6b54bf21a66489121f24fefd198059288c9b735e1898e77a7469489a249292c02a72bc193a3008ebdbf4e9dd4ee8fcceef55402c913c8dd0ebece1330aaa93ece835c5044a246a5967e3acd7c950b3b19f351830e545eb9bc3a9c6dd22ce97f1f857cfe8b68a2370b69ea336006b589368f92deb68f3dfc6f2bfee09f8342da437fce5dcdf658e453e3132bb42067575318c39", &(0x7f0000000380)="8c5911c525f5cf4c4ecf207ad2ec", 0x0, 0x0, 0xffffffff}, 0x23)

7m58.830122388s ago: executing program 4 (id=9261):
r0 = socket$alg(0x26, 0x5, 0x0)
ioctl$sock_SIOCGIFBR(r0, 0x8940, &(0x7f00000006c0)=@generic={0x1, 0x4, 0x7})

7m58.484761002s ago: executing program 4 (id=9266):
syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000040)='./file1\x00', 0x3010846, &(0x7f00000002c0)=ANY=[@ANYBLOB='iocharset=koi8-u,discard=0x0000000000000004,iocharset=iso8859-9,discard,iocharset=koi8-ru,errors=remount-ro,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c6e6f646973636172642c696f636861727365743d69736f383835392d332c005d245603bb5b494e31b3e32f7a4536f7389f889613f9bebfad670d9c5b69025afa2ed8a0983033c21a066b886aded885e0be89c3a88225b41e870229bff872d594d5a79ca2a73ae38725a8a4251c102dd8a175ce9f42f974c650e3f4d216c776b32d707119113d826189e7cc3f2b74b5191cce0209a7c007d15932d18b9ea2f49c0c2b7395277707"], 0x24, 0x62d7, &(0x7f0000021240)="$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")
mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x40, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f})

7m56.798802172s ago: executing program 4 (id=9289):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
sendmmsg$inet6(r0, &(0x7f0000000580)=[{{&(0x7f0000000140)={0xa, 0x4e20, 0x9, @private2={0xfc, 0x2, '\x00', 0x1}, 0x5}, 0x1c, &(0x7f0000000b40)=[{&(0x7f0000000340)="f2", 0x34000}], 0x1}}, {{&(0x7f0000000180)={0xa, 0x4e24, 0xff, @initdev={0xfe, 0x88, '\x00', 0x1, 0x0}, 0x1}, 0x1c, &(0x7f0000000400)=[{&(0x7f00000001c0)='f', 0x1}], 0x1}}], 0x2, 0x0)

7m55.712558525s ago: executing program 4 (id=9300):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0xff05, 0x8000000, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x157f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @broadcast}]}, 0x40}}, 0x20000840)

7m54.364587204s ago: executing program 33 (id=9300):
r0 = socket$netlink(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000540)={&(0x7f0000000000)=@newlink={0x40, 0x10, 0xff05, 0x8000000, 0x0, {0x0, 0x0, 0x4a00, 0x0, 0x157f}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x4}}}, @IFLA_ADDRESS={0xa, 0x1, @broadcast}]}, 0x40}}, 0x20000840)

3.670266713s ago: executing program 6 (id=15351):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_TYPE(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000040)={0x14, 0xd, 0x6, 0x3, 0x0, 0x0, {0x5, 0x0, 0xa}}, 0x14}, 0x1, 0x0, 0x0, 0x20040010}, 0x80)

3.642554537s ago: executing program 0 (id=15352):
r0 = fsopen(&(0x7f0000000240)='ecryptfs\x00', 0x0)
close(r0)

3.395939775s ago: executing program 6 (id=15357):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x5001e}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GENEVE_REMOTE6={0x14, 0x7, @mcast2}]}}}]}, 0x48}, 0x1, 0x0, 0x0, 0x4090}, 0x2000000)

3.363387521s ago: executing program 0 (id=15358):
r0 = syz_open_dev$sndctrl(&(0x7f0000001440), 0x1, 0x2)
ioctl$SNDRV_CTL_IOCTL_ELEM_INFO(r0, 0xc1105511, &(0x7f0000000040)={{0xa, 0x4, 0x5, 0x4, '\x00', 0x80}, 0x6, 0x10, 0x115, 0x0, 0x0, 0xfa, 'syz0\x00', 0x0})

3.103627936s ago: executing program 6 (id=15362):
r0 = semget$private(0x0, 0x207, 0x70d)
semctl$GETALL(r0, 0x0, 0xd, &(0x7f00000005c0)=""/152)

3.067278946s ago: executing program 0 (id=15364):
r0 = openat$mice(0xffffffffffffff9c, &(0x7f00000000c0), 0x20040)
fsmount(r0, 0x1, 0x4)

2.853955587s ago: executing program 5 (id=15367):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_SYS_SET(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000480)=ANY=[@ANYBLOB="1800000007140100000032c83a110000050042"], 0x18}}, 0x0)

2.789180506s ago: executing program 0 (id=15368):
r0 = fsopen(&(0x7f0000000040)='fuseblk\x00', 0x0)
fgetxattr(r0, &(0x7f0000000380)=@known='security.apparmor\x00', 0x0, 0x0)

2.75288603s ago: executing program 6 (id=15369):
r0 = socket$inet6_sctp(0xa, 0x801, 0x84)
setsockopt(r0, 0x84, 0x83, &(0x7f00000002c0)="1a00000002000000", 0x8)

2.532440399s ago: executing program 5 (id=15373):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000200)={&(0x7f00000001c0)={0x18, 0x1404, 0x1, 0x70bd2b, 0x25dfdbfe, "", [@RDMA_NLDEV_ATTR_DEV_INDEX={0x8}]}, 0x18}}, 0x4010)

2.455879415s ago: executing program 6 (id=15374):
syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x4000, &(0x7f0000000140)=ANY=[@ANYBLOB="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", @ANYRES16=0x0, @ANYRES16], 0x1, 0x6246, &(0x7f0000000280)="$eJzs3c2OHFfZB/Cn+ms+/MaxsojyWghNEgMJIf4MxhAgyQIWbFggb5GtySSycADZBjmRhceaDQsuAoTEEhBLVlxAFmzZcQFYspGArFKoPOeMa5pu99jOdPXM+f2kcdVTp2r6lP5d092uqj4BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMT3vvuDM1VEXPp5WnAs4v+iH9GLWGnqtYhYWTuW1x9ExAvxoDmej4jhUkSVG5+NeCMiPj4ace/+rfVm0dk99uM7f/zbb3945Pt//f3w1L//dKP/5rT1bt781b/+fPvJ9xcAAABKVNd1XaWP+cfT5/te150CAOYiv/7XSV6uXrh6c8H6o1arD3w9XLD+qOdRt9WT3W4XEbHZ3qZ5z+B0PAAcMJvxSdddoEPyL9ogIo503QlgoVVdd4B9ce/+rfUq5Vu1Xw/WttvztSC78t+sdu7vmDadZfwak3k9v7aiH89N6c/KnPqwSHL+vfH8L223j9J6+53/vEzLf7R961Nxcv798fzHHJ78exPzL1XOf/BY+fflDwAAAAAACyz///+xjs//Lj39ruzJo87/rs2pDwAAAAAAAADwWXva8f92VMb/AwAAgEXVfFZv/Prow2XTvoutWX6xinhmbH2gMOlmmdWu+wEAAAAAAAAAAAAAJRlsX8N7sYoYRsQzq6t1XTc/beP143ra7Q+60vcfStb1H3kAANj28dGxe/mriOWIuJi+62+4urpa18srq/VqvbKU38+Olpbrldbn2jxtli2N9vCGeDCqm1+23Nqubdbn5Vnt47+veaxR3d9Dx+ajw8ABICK2X43ueUU6ZOr62ej6XQ4Hg+P/8HH8sxddP08BAACA/VfXdV2lr/M+ns7597ruFAAwF/n1f/y8gFqtVqvV6sNXt9WT3W4XEbHZ3qZ5z2A4fgA4YDbjk667QIfkX7RBRLzQdSeAhVZ13QH2xb37t9arlG/Vfj1I47vna0F25b9ZPdgubz9pOsv4NSbzen5tRT+em9Kf5+fUh0WS8++N539pu32U1tvv/OdlWv7Nfh7roD9dy/n3x/Mfc3jy703Mv1Q5/8Fj5d+XPwAAAAAALLD8///HFur87+hJd2emR53/Xdu3RwUAAAAAAACA/XXv/q31fN9rPv//uQnruf/zcMr5V/IvUs4/3f+/c+HNK2Pr9Vvzd995mP8/799a/92Nf/x/nu41/6U8U6VnVpWeEVV6pGqQpk+4Y1NsDfuj5pGGVa8/SNf81MP34kpcjY04vWvdXjoeHraf2dXe9HT4oL3ub7ef3dU+2GnP25/b1T5MVzrVK7n9ZKzHT+JqvPugvWlbmrH/yzPa6xntOf++479IOf9B66fJfzW1V2PTxt07vf857tvTSY/z9pXP//L0/u/OTFtxZ+LyZv9emntvYvsvzpFR/Oz6xrWTNy/fuHHtTKTJrqVnI00+Yzn/YfrJ+b/y8nZ7/rvfPl7v3hk9dv6LYisGO8/ttib/l1vzzf6+Oue+dSHnP0o/Of93U/vk4/8g59+fmv9rHfQHAAAAAAAAAAAAAAAAHqWu6we3iL4dEefT/T9d3ZsJAMxXfv2vk7x8XnX/Sbf/w+796Kr/avWc62rB+jPX+tN6sfqjXsj6PwvWn4Wr2+rJ3moXEfGX9jbNe4ZfTPplAMAi+zQi/t51J+iM/AuWv++vmZ7oujPAXF3/8KMfXb56dePa9a57AgAAAAAAAAA8qTz+51pr/OcTdV3fHltv1/iv78Ta047/OcgzOwOMThmouv/4+/QoW71Rv9cabvzFmDb+93Bn7lHjfw9mPN5wRvtoRvvSjPblGe0Tb/Royfm/2Brv/EREHB8bfr2E8V/Hx7wvQc7/pdbzucn/S2PrtfOvf3OQ8+/tyv/UjQ9+eur6hx+9fuWDy+9vvL/x43Nnzpw+d/78hQsXTr135erG6e1/O+zx/sr557GvXQdalpx/zlz+Zcn5fyHV8i9Lzv+LqZZ/WXL++f2e/MuS88+ffeRflpz/q6mWf1ly/l9OtfzLkvN/LdXyL0vO/yupln9Zcv6vp1r+Zcn5n0y1/MuS8z+V6j3mv7Lf/WI+cv75DJfjvyw5/3xlg/zLkvM/m2r5lyXnfy7V8i9Lzv+NVMu/LDn/r6Za/mXJ+Z9PtfzLkvP/WqrlX5ac/4VUy78sOf+vp1r+Zcn5fyPV8i9Lzv/NVMu/LDn/b6Za/mXJ+X8r1fIvS87/26mWf1ly/m+lWv5lefj9/2lmOcaXmDFjpriZrv8yAQAAAAAAAAAAAADj5nE5cdf7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwH/ZgQMBAAAAACD/10aoqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwg4cCAAAAAAA+b82QlVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVRX27i1Grru+A/iZvXnjQGIgpE5qwsYxwTib7PoSX2hdTLg23EpCKPSC7XrXZsE3vHYJNKodBUokjIoq2oaHtoBQm5cKq+KBVoDygFpVqkTaB/qCqFB5iKqAAlJVWgFbzZz//78zs7Mzu97x+sw5n48U/7wzZ+acOXNmdr/efOcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADN7nzD7KdqWZbVarX8gk1Z9qL6vGFiU+OS117f7QMAAADW7ueNP1+4OV1waAU3alrmn+749lcXFhYWsvcN/+no5xYW0hUTWTa6Icsa10VXvv/+WvMywRPZeG2o6euhHqsf7nH9SI/rR3tcP9bj+g09rh/vcf2SHbDEDVkt3dm2xl835bs0uyUbbVy3rcOtnqhtGKrvu3TbrNa4zcLo8WwuO5nNZtMty+fL1hrLf/3O+rremsV1DTWta0v9CPnxY8fiNtTCPt7Wsq7F+4x++Pps4ic/fuzYX59//rZOs+duaLm/fDu3b61v5yfCJfm21rINaZ/E7Rxq2s4tHZ6T4ZbtrDVuV/97+3a+sMLtHF7czHXV/pyPZ0ONvz/b2E8jtazDftoSLvvpXVmWXVrc7PZllqwrG8o2tlwytPj8jOdHZP0+6ofSS7ORVR2nd67gOK3PmW2tx2n7ayI+/3eG240ssw3NT9MPHx9ret5/tnA1x2lUf9TLvVbaj8F+v1aKcgzG4+LZxoN+suMxuC08/sfuXv4Y7HjsdDgG0+NuOga39joGh8aGG9ucnoRa4zaLx+DOluWHG2uqNeZzd3c/BqfOnzo7Nf+xj987d+roidkTs6d379w5vXvv3v37908dnzs5O53/eZV7u/g2ZkPpNbA17Lv4Gnh127LNh+rCF8eWvP9e7etwvMvrcFPbsv1+HY60P7ja+rwglx7T+WvjPfWdPn55KFvmNdZ4fnas/XWYHnfT63Ck6XXY8XtKh9fhyApeh/Vlzu5Y2c8sI03/ddqG5b8XrO0Y3NR0DLb/PNJ+DPb755GiHIPj4bj47o7lvxdsCdv75ORqfx4ZXnIMpocb3nvql6Sf98f3N0an4/L2+hU3jmUX5mfP3ffo0fPnz+3MwlgXL2s6VtqP141NjylbcrwOrfp4PTR3x5O3d7h8U9hX4/fW/xhf9rmqL7Pnvu7PVeO7W+f92XLpriyMPlvv/dnpu3l9f45l2ee/9fhD33js829Ydn/W8+Ynptb+s3jKpU3vv6PLvP/G3P+LfH3prp4YHh3JX7/Dae+Mtrwftz5VI433rlpj3S9Mrez9eDT8t97vx7d0eT/e3LZsv9+PR9sfXHw/rvX61461aX8+x8NxcnK6+/txfZnNu1Z7TI50fT++K8xa2P+vCUkh5aKmY2e54zata2RkNDyukbiG1uN0d8vyoyGb1df19K6rO06335Xf13B6dIvW6zidaFu238dp+rev5Y7TWq9/fbs67c/neDgubtnd/TitL/PMnrW/d94Q/9r03jnW6xgcHR6rb/NoOggb7/fZwg3xGLwvO5adyU5mM41rxxrHU62xrsn7V3YMjoX/1vu9cnOXY3B727L9PgbT97Hljr3ayNIH3wftz+d4OC6eur/7MVhf5o37+vuz6/ZwSVqm6WfX9n9fW+7fvG5v203X6lgZCdv5rX3d/222vszJ/avNmd330z3hkhs77Kf21+9yr6mZbH320+awnc/vX34/1benvsznDqzweDqUZdnFjzzw7Nb6U5//fuXvLnznqy2/d+n0O52LH3ngRy8+/o+r2X4ABt8v8rEx/17X9Juplfz+HwAAABgIMfcPhZnI/wAAAFAaMffH/ys8kf8BAACgNGLuHwkzqUj+3/zG5+d+cTFLzfyFIF6fdsOD+XKx4zodvp5YWFS//IEvz/73P1xc2bqHsiz72YN/0HH5zQ/G7cpNhO288qbWy5f46r0rWveRRy6m9Tb3178Q7j8+npUeBp0quNNZln395s801jPx/suN+cyDRxrzoUtPPlFf5oUD+dfx9s+9LF/+L0L599Dxoy23fy7shx+EOf22zvsj3u4rl1+zZd97F9cXb1fbelPjYT/1gfx+4+fkfPaJfPm4n5fb/m98+umv1Jd/9FWdt//iUOftfzrc75fD/N9X5Ms3Pwf1r+PtPhm2P64v3u6+L32z4/Zf+VS+/Nk358sdCTOuf3v4etubn59r3l+P1o62PK7sLflycf3T3/njxvXx/uL9t2//+OHLLfuj/fh45t/y+5lqWz5eHtcT/X3b+uv303x8xvU//UdHWvZzr/Vfeei5V9Tvt33997Qtd/YjOxrrX7y/1k9s+stPfqbj+uL2HPrbsy2P59C7w+s4rP+pD4TjMVz/f1fy+2v/dIUj7259/4nLf2HTxZbHE731J/n6r7zuRGNuGL9h440vevFNl15Z33dZ9uyG/P56rf/EX51p2f4v3prvj3h97Oi3r385cf3nPjp5+sz8hbmZtFcfu7nx2Tlvz7cnbu/N4b21/evDZ85/cPbcxPTEdJZNlPcj9K7al8L8UT4udV96Yck76I5HwvN5+59/fePd//rpePm/vye//PLb8u9brw7LfTZcvik8f6tb/1JP3Xlr4/VdeyZs4cLSzwteiy3b/mv/ihYMj7/954J4vJ99+Qcb+6F+XeP7Rnxdr3H7vzeT38/Xwn5dCJ/MvPXWxfU1Lx8/G+Hyw/nrfc37L7zNxef1b8Lz/Y4f5Pcftys+3u+Fn2O+ubn1/S4eH1+7ONR+/41P8bgU3k+yS/n1cam4vy+/cGvHzYufQ5Jduq3x9Z+k+7ltVQ9zOfMfm586OXf6wqNT52fnz0/Nf+zjh0+duXD6/OHGZ3ke/lCv2y++P21svD/NzO7dkzXerc7k4xq73tt/9pFjM/um756ZPX70wvHzj5ydPXfi2Pz8sdmZ+buPHj8++9Fet5+bObhz14Hd+3ZNnpibObj/wIHdBybnTp+pb0a+UT3snf7w5Olzhxs3mT+458DO++/fMz156szM7MF909OTF3rdvvG9abJ+69+fPDd78uj5uVOzk/NzH589uPPA3r27en4a4Kmzx+cnps5dOD11YX723FT+WCbONy6uf+/rdXvKaf4/8p9n29XyD+LL3nXP3vT5rHVffnzZu8oXafsA0efDZ9H880vO7l/J1zH3j4aZVCT/AwAAQBXE3D8WZiL/AwAAQGnE3L8hzET+BwAAgNKIuX88zKQi+b90/f/NF1e0fv3/vvT/Fy7q/+v/D2L//+Gi9f/z9wv9//5Ya/9e/z/Q/9f/1//X/9f/pw+K1v+Puf+GLKtk/gcAAIAqiLl/Y5iJ/A8AAAClEXP/jWEm8j8AAACURsz9LwozqUj+1//X/3f+f/1//f/O69f/H0z6/93p//eg/z+VVav/f6mf26//r//PUkXr/8fc/+Iwk4rkfwAAAKiCmPtvCjOR/wEAAKA0Yu6/OcxE/gcAAIDSiLl/U5hJRfK//r/+v/6//r/+f+f16/8PJv3/7vT/e9D/d/5//X/9f/qqaP3/mPtfEmZSkfwPAAAAVRBz/0vDTOR/AAAAKJ6Rq7tZzP0vCzNZkv+vcgUAAADAdRdz/y1ZWxG8Ir//1//X/y9+/39Duk7/X/8/K2T/fzjT/y8O/f/u9P970P/X/9f/1/+nr4rW/2/k/mw8e3mYSUXyPwAAAFRBzP23hpnI/wAAAFAaMff/UpiJ/A8AAAClEXP/5jCTiuR//X/9/+L3/53/X/+/6P1/5/8vEv3/7vT/e9D/1//X/9f/p6+K1v+Puf+2MJOK5H8AAACogpj7bw8zkf8BAACgNGLu/+UwE/kfAAAASiPm/i1hJhXJ//r/Be//x+ao/r/+v/6//r/+/4ro/3en/9+D/r/+v/6//j99VbT+f8z9rwgzqUj+BwAAgCqIuf+OMBP5HwAAAEoj5v5XhpnI/wAAAFAaMfdPhJlUJP/r/xe8/5/34Mec/1//X/9f/1//f2X0/7vT/+9B/1//vy/9/4WLHfr/G3rdXv+fMipa/z/m/jvDTCqS/wEAAKAKYu7fGmYi/wMAAEBpxNx/V5iJ/A8AAAClEXP/tjCTiuR//f+B6P9n+v/6//r/+v/6/yuj/9+d/n8P+v/6/87/r/9PXxWt/x9z/6vCTCqS/wEAAKAKYu6/O8xE/gcAAIDSiLn/1WEm8j8AAACURsz928NMKpL/9f/1//X/9f/1/zuvX/9/MK21f1//UUD/X/9f/1//X/9f/5/+KFr/P+b+14SZVCT/AwAAQBXE3L8jzET+BwAAgNKIuf+eMBP5HwAAAEoj5v7JMJOK5H/9f/1//X/9f/3/zuvX/x9Mzv/fnf5/D/r/+v/6//r/9FXR+v8x998bZlKR/A8AAABVEHP/fWEm8j8AAACURsz9U2Em8j8AAACURsz902EmFcn/+v/6//r/+v+r6v+/cvF+9f9z+v/Fov/fnf5/DyXp/4+u6kEvut79+bW63tvfn/7/qP4/pVK0/n/M/TvDTCqS/wEAAKAKYu7fFWYi/wMAAEBpxNy/O8xE/gcAAIDSiLl/T5hJRfK//r/+v/6//r/z/3dev/7/YNL/767//f/4EPX/i9T/v1rXuz8/6Nvv/P/6/yxVtP5/zP33h5lUJP8DAABAFcTcvzfMRP4HAACA0oi5f1+YifwPAAAApRFz//4wk4rkf/1//f/r2f/Pskv6//r/+v/6/32l/9+d8//3oP+v/6//r//PGj38h81fFa3/H3P/gTCTiuR/AAAAqIKY+18bZiL/AwAAQGnE3P8rYSbyPwAAAJRGzP2/GmZSkfyv/9/SPa8/XP1/5//X/9f/b9D/H0z6/93p//eg/6//r/+v/09fLdv/D9F7vfv/MfcfDDOpSP4HAACAKoi5/9fCTOR/AAAAKI2Y+18XZiL/AwAAQGnE3H8ozKQi+V//f/DO/x/rM/r/+v/6/+Xq/4/F+9X/X5M19O8bT63+f6D/r/+v/6//r/9PHxTt/P8x978+zKQi+R8AAACqIOb+B8JM5H8AAAAojZj73xBmIv8DAABAacTc/8Ywk4rkf/3/wev/O/+//r/+f65s/X/n/+8P5//vTv+/B/1//X/9f/1/+qpo/f+Y+98UZlKR/A8AAABVEHP/m8NM5H8AAAAojZj73xJmIv8DAABAacTc/9Ywk4rk/3Xv/zcVhfX/9f/1//X/9f/1//tt7f3/n4U9rf+v/6//r/+v/6//z1oVrf8fc/+vh5lUJP8DAABAFcTc/2CYifwPAAAApRFz/9vCTOR/AAAAKI2Y+98eZlKR/O/8//r/+v/6//r/ndev/z+YnP+/uwHr///8pnC5/n9O/7/Y27/a/v9I29fXpP///eX6/wsb2m+v/8+1ULT+f8z97wgzqUj+BwAAgCqIuf+dYSbyPwAAAJRGzP3vCjOR/wEAAKA0Yu7/jTCTiuR//f/6diy2l/X/y9r/H9L/1//X/68I/f/uBqz/Pwjn/x/W/1+k/+/8//r/tCta/z/m/neHmVQk/wMAAEAVxNz/UJiJ/A8AAAClEXP/w2Em8j8AAACURsz97wkzqUj+1/93/v9q9P+d/z/T/9f/rwj9/+70/3tw/n/9/6L1//9T/5/BVrT+f8z9j4SZVCT/AwAAQBXE3P/eMBP5HwAAAEoj5v7fDDOR/wEAAKA0Yu5/X5hJRfK//v+g9P8nBrT//7j+/zXs/99xU76c/r/+P4v0/7vT/+9B/1//v2j9f+f/Z8AVrf8fc//7w0xWnv/HV7wkAAAAcF3E3P9bYSYV+f0/AAAAVEHM/b8dZiL/AwAAQGnE3P87YSYVyf/6/4PS/3f+/0z/3/n/2x6P/r/+fyfr1/+P7zz6//r/+v+R/r/+v/4/7YrW/4+5/3fDTCqS/wEAAKAKYu7/QJiJ/A8AAAADodP/k90u5v7DYSbyPwAAAJRGzP1Hwkwqkv/1//X/9f8L2v//s63/8t1vv/PITv1//X/9/1VZ1/P/11/8zv+v/6//n+j/6//r/9OuaP3/mPuPhplUJP8DAABAFcTc/3thJvI/AAAAlEbM/cfCTOR/AAAAKI2Y+2fCTCqS//X/9f/1/wva/x/g8//H/aH/36pv/f/4pqv/31Hev09H0bXt/793sSeu/7/a/v9Yx0v1//X/B3n79f/1/1mqaP3/mPtnw0wqkv8BAACgCkLuHzqez8Ur5H8AAAAojZj7T4SZyP8AAABQGjH3fzDMpCL5X/9f/1//X//f+f87r79b/7824vz/RZX69z9tvFD0/9sUp//fmf6//v8gb7/+v/4/SxWt/x9z/1yYSUXyPwAAAFRBzP0fCjOR/wEAAKA0Yu7/cJiJ/A8AAAClEXP/yTCTiuR//X/9f/1//X/9/87rL+z5//X/u1pr/17/P9D/r3b//3/0//X/9f/pj6L1/2PuPxVm8v/s3UeTZfV5x/Hb9uDpKbzwzgtvXOWlXwILe22/AC+88cZVLi9wwDbODMY5YCEJZQmBckABBAIkgXIAJSSUQRLKOaCERqJGRffzPNPh9LndM7dvn/P/fz6LeUx7mntFTc3wm54vp5P9DwAAAD3I3X9l3GL/AwAAQDNy9/9Z3GL/AwAAQDNy9/953NLJ/tf/X0r/f6FS1v/vfv+T6P9/R/9/0Ovr//X/LdP/j9P/L6H/9/x//b/+n5WaWv+fu/8v4pZO9j8AAAD0IHf/X8Yt9j8AAAA0I3f/VXGL/Q8AAADNyN3/V3FLJ/t/T/+/seiz/8+M1/P/W+r/Pf//wNfX/+v/W7be/v/aJ3/m0//r//X/Qf9/qP7/9EGfr/+nRVPr/3P3/3Xc0sn+BwAAgB7k7v+buMX+BwAAgGbk7r86brH/AQAAoBm5+/82bulk/6/u+f9ntj4+0/6/6P/1/1sf0P/r//X/s+X5/+N66v+veujyKx+78zfuOsrr6//1/57/f7T+f+d/zED/z5Cp9f+5+/8ubulk/wMAAEAPcvf/fdxi/wMAAEAzcvf/Q9xi/wMAAEAzcvf/Y9zSyf5fXf8/6+f/F/2//n/rA/p//b/+f7b0/+N66v8v5vX1//p//b/n/7NaU+v/c/f/U9zSyf4HAACAHuTu/+e4xf4HAACAZuTuvyZusf8BAACgGbn7z8Ytnex//f/x9/9P6P/1/3H1//p//f/x0/+P0/8vof/X/+v/9f+s1NT6/9z918Ytnex/AAAA6EHu/n+JW+x/AAAAaEbu/uviFvsfAAAAmpG7/1/jlk72v/7f8//1//p//f/w6+v/50n/P07/v4T+/1L7+cv0//p//T87HbH/Pzfy0/ZK+v/c/f8Wt3Sy/wEAAKAHufv/PW6x/wEAAKAZufv/I26x/wEAAKAZufv/M27pZP/r//X/+n/9/0X3//t/6G3R/w/T/6+H/n/cZPr/jVODH9b/z77/9/x//b/+n12m9vz/3P3/Fbd0sv8BAACgB7n7/ztuGdn/R/7NfAAAAOBE5e7/n7jF1/8BAABg9rI6y93/v3FLJ/tf/6//1//r/z3/f/j1x/r/u3a8P/3/tOj/x02m/z+A/l//P+f3r//X/7Pf1Pr/3P3/F7d0sv8BAACgB7n7r49b7H8AAABoRu7+/49b7H8AAABoRu7+p8Qtnez/4f7/wv9f/384+v/d71//P/zjY1X9f/4d9f+j/f/vev5/n/T/49bf/5/W/+/+++v/j9FJv//G+/8zyz5f/8+QqfX/uftviFs62f8AAADQg9z9T41b7H8AAABoRu7+p8Ut9j8AAAA0I3f/0+OWTva/5//r//X/8+v/Pf9/20k+/3+x9v7/lP7/kPT/4zz/fwn9v/5f/+/5/6zU1Pr/3P03xi2d7H8AAADowY2PL7Z2/zMWC/sfAAAA5mjnnx3Y+wdKQ+7+Z8Yt9j8AAAA0I3f/s+KWTva//l//r//X/+v/h19/Wv2/5/8flv5/3Fz6/zP6/8G3N9P+/1Rj/f9NB33+FPr/a/T/TMyu/v/eCx8/qf4/d/+z45ZO9j8AAAD0IHf/c+IW+x8AAACakbv/uXGL/Q8AAADNyN3/vLilk/1/7P3/mYNfW/+v/9f/6//1//r/VdP/j5tL/+/5/031/57/7/n/+v+OXej/d/98eFL9f+7+58ctnex/AAAA6EHu/hfELfY/AAAANCN3/01xi/0PAAAAzcjd/8K4pZP97/n/+n/9v/5f/z/8+vr/edL/j9P/L6H/1//r//X/rNSu5//vcFL9f+7+m+OWTvY/AAAA9CB3/y1xi/0PAAAAzcjd/6K4xf4HAACAZuTuf3Hc0sn+1/8fb/+fH9f/6/8X+n/9v/5/Lbrt/zeGfiXa74D+/4E/Ofv7uz+i/9f/6//1//p/VmAS/f/5C/92mbv/JXFLJ/sfAAAAepC7/6Vxi/0PAAAAzcjd/7K4xf4HAACAZuTuf3nccsT9/2srfVfro//3/H/9v/5f/z/8+vr/eeq2/z8kz/9fQv+v/9f/6/9ZqUn0/zv+Onf/K+IWX/8HAACAZuTuf2XcYv8DAABAM3L3vypusf8BAACgGbn7Xx23dLL/9f/6f/2//l//P/z6R+//t38kbi6G6f/XQ/8/Tv+/hP5f/6//1/+zUlPr/3P33xq3dLL/AQAAoAe5+18Tt9j/AAAA0Izc/a+NW+x/AAAAaEbu/tfFLZ3sf/2//l//r//X/w+/vuf/z5P+f5z+f7FY3DbyBob6//On9f/6f/2//p+LNLX+P3f/6+OWTvY/AAAA9CB3/21xi/0PAAAAzcjdf3vcYv8DAABAM3L3vyFu6WT/6//1//p//b/+f/j19f/zpP8fp/9fwvP/9f/6f/0/KzW1/j93/x1xSyf7HwAAAHqQu//OuMX+BwAAgGbk7n9j3GL/AwAAQDNy998Vt3Sy//X/+n/9v/7/WPr/s/r/vfT/63F8/f9C/6//1/8vof/X/+v/2Wtd/f+5+Pl+Wf+fu//uuKWT/Q8AAAA9yN1/T9xi/wMAAEAzcve/KW6x/wEAAKAZufvfHLd0sv/1//p//b/+3/P/h19f/z9Pnv8/Tv+/hP5f/6//1/+zUuvq/w/q/ff+de7+t8Qtnex/AAAA6EHu/nvjFvsfAAAAmpG7/764xf4HAACAZuTuf2vc0sn+1//r/3f3/4uF/l//r//ftob+f3Oh/185/f84/f8S+v82+/9fWjTU/5858PP1/0zR1Pr/3P1vi1s62f8AAADQg9z9b49b7H8AAABoRu7+d8Qt9j8AAAA0I3f/O+OWlvb/Ewenb/Pv/0/v+UT9/2KxePhqz//X/4+8vv5/Mv1//VPV/6+O/n+c/n8J/X+b/b/n/+v/OTFT6/9z978rbmlp/wMAAEDncve/O26x/wEAAKAZufvfE7fY/wAAANCM3P3vjVs62f/z7//3fqL+f3FJz//X/299QP+v/9f/z9al9vc3b8avafp//b/+f7Cf3zjg33sW+n/9v/6fAVPr/3P3vy9u6WT/AwAAQA9y998ft9j/AAAA0Izc/Q/ELfY/AAAANCN3//vjlk72v/5f/6//n2f/v6n/1//r/wdN5fn/V1zxew/q//X/Lfb/Y/T/+n/9P3tNrf/P3f+BuKWT/Q8AAAA9yN3/wbjF/gcAAIBm5O7/UNxi/wMAAEAzcvd/OG7pZP/v7/8vW2wXqtuG+v9o1PT/O+j/d79//f/wjw/P/9f/6/+P31T6/2k8/3//r076/yX0//r/dfX/v7n/8/X/tGhq/X/u/gfjlk72PwAAAPQgd/9H4hb7HwAAAJqRu/+jcYv9DwAAAM3I3f9Q3NLJ/vf8f/2//l//r/8ffn39/zzp/8fp/5fQ/196P58/q+r/5/v8/1/W/7M6U+v/c/d/LG7ZGn6/9asX+T8TAAAAmJDc/R+PWzr5+j8AAAD0IHf/J+IW+x8AAACakbv/k3FLJ/tf/6//1//r//X/w6+v/58n/f84/f8S/fT/m0MfPOl+/lKd9Ptvpv/3/H9WaGr9f+7+T8Utnex/AAAAaNvjW9/m7v903GL/AwAAQDNy938mbrH/AQAAoBm5+x+OWzrZ//p//X/7/f8f6f/3vL7+f+39/3V36//XRv+fv6IP0/8v0U//P+ik+/m5v3/9v/6f/abW/+fufyRu6WT/AwAAQA9y9382brH/AQAAoBm5+z8Xt9j/AAAA0Izc/Z+PWzrZ//r/vvr/jUWP/b/n/+v/T7z/36L/X4/59P+3nBr6qOf/6//1//N9//p//T/7Ta3/z93/6MapLvc/AAAAzNUf/PafPnLY7/vo1rebiy/ELfY/AAAANCN3/xfjFvsfAAAAmpG7/0txSyf7X//fV//f5/P/9f/6f/1/T+bT/w/T/+v/9f/zff/6f/0/+02t/8/d/+W4ZcfwG/wP9AAAAAAn51eO9t1z938lbunk6/8AAADQg9z9X41b9u3/84f8U+0AAADA1OTu/1rc0snX//X/E+//F8fU/8f30/9v0//r/4deX/8/T/r/cZfY/5/f0P/r/0fo//X/+n/2mlr/n7v/njsWXe5/AAAAaNSu31H4+ta3m4tvxC32PwAAADQjd/834xb7HwAAAJqRu/9bcUsn+1//P/H+/6Ke/3+m/i/P/++8/79+c/D19f/6/5bp/8d5/v8S+n/9v/5f/89KHaH/3xqkx93/5+7/dtzSyf4HAACAHuTu/07cYv8DAABAM3L3fzdusf8BAACgGbn7vxe3dLL/9f8n0P/fcHqxONb+/xDP/9f/99H/H/D67fT/v3752fv/8I9vv1X/zwXr7P/zx4L+X/+v/9+m/9f/6//Za2rP/8/d//24pZP9DwAAAD3I3f9Y3GL/AwAAQDNy9/8gbnly/993Uu8KAAAAWKXc/T+MWzr5+r/+v8Xn/8+z/89/1ifQ/5+dX/+fTXHv/b/n/+v/9/P8/3H6/yX0//p//b/+n5WaWv+fu/9HcUsn+x8AAAB6kLv/x3FL7v+NI//WPQAAADAxuft/Erf4+j8AAAA0I3f/43FLJ/t/jv3/uT3vcfcn6v8XM+3/k+f/X/g8z//fpv/X/x+F/n+c/n8J/b/+X/+v/2elptb/5+7/adzSyf4HAACAHuTuPxe32P8AAADQjNz9P4tb7H8AAABoRu7+n8ctnez/Ofb/nv+v/9f/6/8X+n/9/wH0/+P0/0vo//X/+n/9Pys1tf4/d/8vAgAA///bQndU")
openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x42, 0x0)

2.447950345s ago: executing program 0 (id=15376):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$nl_generic(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000680)={&(0x7f0000002ac0)={0x28, 0x1e, 0x9, 0x2, 0x25dfdbff, {0x7}, [@typed={0x11, 0x1, 0x0, 0x0, @str='/dev/rnullb0\x00'}]}, 0x28}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000)

2.087446587s ago: executing program 3 (id=15379):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_TIMEOUT_DEFAULT_GET(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f00000003c0)={&(0x7f0000000440)=ANY=[@ANYBLOB="24000000040801080000000000000000010000040500030084000000060002"], 0x24}, 0x1, 0x0, 0x0, 0x48801}, 0x8824)

2.076575669s ago: executing program 1 (id=15380):
r0 = socket(0x2000000015, 0x80005, 0x0)
bind$inet6(r0, &(0x7f0000000180)={0xa, 0x0, 0x4, @loopback}, 0xe)

2.069447608s ago: executing program 0 (id=15381):
ioctl$PIO_UNISCRNMAP(0xffffffffffffffff, 0x4b6a, &(0x7f0000000080)="fc5d233e437cbb6dff0eb54622c7747fc6d241971767ad7129417a9655bbf9c16943db12240c6edecba4c4311f8928ca9d5b")
syz_usb_connect(0x0, 0x36, &(0x7f0000000080)=ANY=[@ANYBLOB="120100000cb78a405e0483020b990102030109022400010000000009040000025c291d000905090000000000000905"], 0x0)

1.83925162s ago: executing program 3 (id=15383):
r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000380)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x3, '\x00', 0x0, 0x0}, 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x13, &(0x7f0000000580)=ANY=[@ANYBLOB="180000008f000000000000000b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000700008500000086000000bf090000000000005509010000000000950000000000000007000000000000004500f4fffcffffff18000000060000040000000009000000bf91200000000000b702000003000000850000002a000000b70000000000000095"], &(0x7f0000000080)='GPL\x00', 0x1, 0x0, 0x0, 0x41100, 0x2}, 0x94)

1.770228504s ago: executing program 7 (id=15384):
r0 = io_uring_setup(0x3450, &(0x7f0000000080)={0x0, 0x1539, 0x0, 0x2})
io_uring_register$IORING_REGISTER_BUFFERS_UPDATE(r0, 0x10, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}, 0x20)

1.752447221s ago: executing program 1 (id=15385):
r0 = syz_open_dev$cec(&(0x7f00000000c0), 0x0, 0x800)
ioctl$CEC_ADAP_S_LOG_ADDRS(r0, 0xc05c6104, &(0x7f0000000380)={"1b00", 0x0, 0x4d, 0x2, 0x9, 0x0, "f759e10000001000000000fc6300", "0100", "00000100", '\x00', ["8bada940edff000a00", "c2fed61b2000006906528640", "0000030000006d8609810020", "00000000e6000000000100"]})

1.645802043s ago: executing program 7 (id=15386):
r0 = io_uring_setup(0x21e9, &(0x7f00000001c0)={0x0, 0xf467, 0x400, 0x2, 0x383})
io_uring_register$IORING_REGISTER_FILES_UPDATE2(r0, 0xd, &(0x7f0000000140)={0x7, 0x0, 0x0, 0x0, 0x54174a9edea0ea24}, 0x20)

1.524548898s ago: executing program 3 (id=15387):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000006c0)={0x0, 0x0, &(0x7f0000000280)={&(0x7f0000001100)=ANY=[@ANYBLOB="3c00000010000d042abd70000000000000000000", @ANYBLOB="01000000000000001c001280090001"], 0x3c}, 0x1, 0x0, 0x0, 0x40040}, 0x0)

1.469715207s ago: executing program 1 (id=15388):
r0 = syz_open_procfs(0x0, &(0x7f0000000240)='clear_refs\x00')
writev(r0, &(0x7f0000000400)=[{&(0x7f0000000280)='3', 0x1}, {&(0x7f0000000340)="2009f5", 0x3}], 0x2)

1.387410853s ago: executing program 7 (id=15389):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_GET(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000003c0)={0x48, 0x1, 0x1, 0x201, 0x0, 0x0, {0xa, 0x0, 0x2}, [@CTA_TUPLE_REPLY={0x18, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x14, 0x1, 0x0, 0x1, @ipv4={{0x8, 0x1, @multicast1}, {0x8, 0x2, @dev={0xac, 0x14, 0x14, 0x3a}}}}]}, @CTA_STATUS_MASK={0x8, 0x1a, 0x1, 0x0, 0x6}, @CTA_FILTER={0xc, 0x19, 0x0, 0x1, [@CTA_FILTER_REPLY_FLAGS={0x8, 0x2, 0x2}]}, @CTA_STATUS={0x8}]}, 0x48}}, 0x808)

1.186765648s ago: executing program 1 (id=15390):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000200)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000000)=@newlink={0x48, 0x10, 0xffffffffffffffff, 0x70bd25, 0x25dfdbfe, {0x0, 0x0, 0x0, 0x0, 0x224, 0x52000}, [@IFLA_LINKINFO={0x28, 0x12, 0x0, 0x1, @erspan={{0xb}, {0x18, 0x2, 0x0, 0x1, [@IFLA_GRE_COLLECT_METADATA={0x4}, @IFLA_GRE_ERSPAN_DIR={0x5, 0x17, 0x1}, @IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x2}]}}}]}, 0x48}}, 0x8000)

1.17347531s ago: executing program 5 (id=15391):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000006c0)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x7}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x401, 0x0, 0x0, {0x1, 0x0, 0x8000}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x1, 0x0, 0x3}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz2\x00'}]}, @NFT_MSG_NEWRULE={0x94, 0x6, 0xa, 0x401, 0x0, 0x0, {0x1}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x6c, 0x4, 0x0, 0x1, [{0x34, 0x1, 0x0, 0x1, @exthdr={{0xb}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_EXTHDR_DREG={0x8, 0x1, 0x1, 0x0, 0xc}, @NFTA_EXTHDR_OFFSET={0x8, 0x3, 0x1, 0x0, 0x3b}, @NFTA_EXTHDR_LEN={0x8, 0x4, 0x1, 0x0, 0x22}, @NFTA_EXTHDR_TYPE={0x5, 0x2, 0x7}]}}}, {0x34, 0x1, 0x0, 0x1, @bitwise={{0xc}, @val={0x24, 0x2, 0x0, 0x1, [@NFTA_BITWISE_LEN={0x8, 0x3, 0x1, 0x0, 0x4}, @NFTA_BITWISE_SREG={0x8, 0x1, 0x1, 0x0, 0x14}, @NFTA_BITWISE_DREG={0x8, 0x2, 0x1, 0x0, 0x12}, @NFTA_BITWISE_OP={0x8, 0x6, 0x1, 0x0, 0x5}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14, 0x11, 0x1, 0x0, 0x0, {0x7}}}, 0x108}}, 0x0)

1.127341884s ago: executing program 3 (id=15392):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000440)={{0x14, 0x10, 0x1, 0x0, 0x0, {0x5}}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x3, 0x0, 0x0, {0x7}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x4c, 0x9, 0xa, 0x401, 0x0, 0x0, {0x7, 0x0, 0x2}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz1\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0xa}, @NFTA_SET_EXPR={0x10, 0x11, 0x0, 0x1, @meta={{0x9}, @void}}]}], {0x14, 0x10, 0x1, 0x0, 0x0, {0x0, 0x84}}}, 0x94}, 0x1, 0x0, 0x0, 0x4040054}, 0x0)

1.104530454s ago: executing program 7 (id=15393):
r0 = openat$comedi(0xffffff9c, &(0x7f00000000c0)='/dev/comedi4\x00', 0x2c83, 0x0)
ioctl$COMEDI_INSN(r0, 0x8028640c, &(0x7f0000000000)={0xc000002, 0x0, 0x0, 0x2, 0x4})

844.981631ms ago: executing program 3 (id=15394):
r0 = socket$inet6(0xa, 0x2, 0x0)
setsockopt$inet6_MCAST_JOIN_GROUP(r0, 0x29, 0x2a, &(0x7f0000000140)={0x0, {{0xa, 0x10, 0x0, @mcast2}}}, 0x88)

817.247019ms ago: executing program 7 (id=15395):
syz_mount_image$hfsplus(&(0x7f0000000040), &(0x7f00000001c0)='./file1\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x3, 0x5fe, &(0x7f0000000b00)="$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")
openat(0xffffffffffffff9c, &(0x7f0000000040)='./file2\x00', 0x0, 0x1)

816.195591ms ago: executing program 5 (id=15396):
prctl$PR_SET_SECCOMP(0x16, 0x0, &(0x7f0000000000)={0x2, &(0x7f0000000040)=[{0xfffd, 0x0, 0xbc}, {0x7, 0x2, 0xf, 0x2}]})
mount(0x0, &(0x7f0000000240)='.\x00', &(0x7f000015bffc)='nfs\x00', 0x0, &(0x7f0000000000))

780.43354ms ago: executing program 1 (id=15397):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
sendmsg$netlink(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f00000035c0)=[{&(0x7f00000000c0)={0x14, 0x15, 0x1, 0x0, 0x0, "", [@generic="05"]}, 0x14}], 0x1}, 0x0)

712.153143ms ago: executing program 6 (id=15398):
r0 = openat$comedi(0xffffffffffffff9c, &(0x7f0000000080)='/dev/comedi3\x00', 0x80400, 0x0)
ioctl$COMEDI_DEVCONFIG(r0, 0x40946400, &(0x7f0000000180)={'multiq3\x00', [0x300, 0xe9e, 0x40003, 0x800002, 0x7ffffffe, 0x100, 0x3, 0x20000000, 0x8, 0xb, 0x0, 0x3, 0x1, 0x3fe, 0x10001, 0x4, 0x0, 0x8, 0x9, 0x401, 0x7, 0x5, 0x8001, 0x9, 0x48, 0x9, 0x7, 0x6a77, 0x1, 0x7, 0x10008]})

528.191182ms ago: executing program 3 (id=15399):
r0 = syz_open_dev$vcsu(&(0x7f0000000240), 0x1ff, 0x0)
readv(r0, &(0x7f00000008c0)=[{&(0x7f00000002c0)=""/132, 0x84}, {&(0x7f00000001c0)=""/22, 0x16}], 0x2)

339.240287ms ago: executing program 1 (id=15400):
r0 = openat$sequencer2(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$SNDCTL_SEQ_OUTOFBAND(r0, 0x40085112, &(0x7f0000000080)=@e={0xff, 0xa, 0x0, 0x0, @SEQ_NOTEON=@special})

339.024922ms ago: executing program 5 (id=15401):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$cgroup(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000040), 0x0, &(0x7f0000000100)={[{@subsystem='cpuset'}]})

293.704758ms ago: executing program 7 (id=15402):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0xe, 0x4, 0x8, 0x7}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f0000000500)={0xc, 0xc, &(0x7f0000000380)=@framed={{0x18, 0x0, 0x0, 0x0, 0x4, 0x0, 0x0, 0x0, 0xaa9a}, [@ringbuf_output={{0x18, 0x5, 0x1, 0x0, r0}, {0x7, 0x0, 0xb, 0x8, 0x0, 0x0, 0x80000000}, {0x3, 0x3, 0x3, 0xa, 0x5}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x1e}}]}, &(0x7f0000000100)='syzkaller\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @fallback=0x10, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)

0s ago: executing program 5 (id=15403):
r0 = openat$uhid(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
write$UHID_INPUT2(r0, &(0x7f0000000040), 0x6)

kernel console output (not intermixed with test programs):

oop7: detected capacity change from 0 to 1764
[ 1561.966725][ T5228] loop0: detected capacity change from 0 to 64
[ 1562.365223][ T5235] loop6: detected capacity change from 0 to 4096
[ 1562.497804][ T5143] lo speed is unknown, defaulting to 1000
[ 1562.508385][ T5246] loop7: detected capacity change from 0 to 16
[ 1562.535461][ T5246] erofs (device loop7): mounted with root inode @ nid 36.
[ 1562.567659][ T5235] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1562.608594][ T5235] ntfs3(loop6): Failed to load $Extend (-22).
[ 1562.645694][ T5235] ntfs3(loop6): Failed to initialize $Extend.
[ 1562.761960][ T5235] ntfs3(loop6): ino=5, "/" indx_read_ra
[ 1562.935511][T23334] ntfs3(loop6): ino=9, ntfs_sync_fs failed, -22.
[ 1563.014663][ T5259] nfs: Unknown parameter 'ntext'
[ 1563.019990][ T4699] usb 2-1: new high-speed USB device number 85 using dummy_hcd
[ 1563.207490][ T4699] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1563.235706][ T4699] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1563.270941][ T4699] usb 2-1: Product: syz
[ 1563.282037][ T4699] usb 2-1: Manufacturer: syz
[ 1563.311455][ T4699] usb 2-1: SerialNumber: syz
[ 1563.346462][ T4699] usb 2-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1563.382244][ T4709] usb 2-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1563.442420][ T5269] loop6: detected capacity change from 0 to 512
[ 1563.543440][ T5269] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1563.567836][ T5269] ext4 filesystem being mounted at /971/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1563.739657][T23334] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1563.919474][ T4688] usb 2-1: USB disconnect, device number 85
[ 1564.139076][ T5143] lo speed is unknown, defaulting to 1000
[ 1564.259099][ T5292] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 1564.493553][ T4709] ath9k_htc 2-1:1.0: ath9k_htc: Target is unresponsive
[ 1564.525424][ T4709] ath9k_htc: Failed to initialize the device
[ 1564.555690][ T4688] usb 2-1: ath9k_htc: USB layer deinitialized
[ 1564.771826][ T5310] netlink: 44 bytes leftover after parsing attributes in process `syz.7.13811'.
[ 1565.095134][ T5143] lo speed is unknown, defaulting to 1000
[ 1565.338802][ T5322] netlink: 'syz.7.13817': attribute type 7 has an invalid length.
[ 1565.607768][ T5298] loop0: detected capacity change from 0 to 32768
[ 1565.649212][ T5298] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.13805 (5298)
[ 1565.735329][ T5298] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1565.778331][ T5298] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1565.923968][ T5308] loop1: detected capacity change from 0 to 32768
[ 1565.935591][ T5298] BTRFS info (device loop0): enabling ssd optimizations
[ 1565.985494][ T5298] BTRFS info (device loop0): turning on async discard
[ 1566.021030][ T5298] BTRFS info (device loop0): enabling free space tree
[ 1566.069613][ T5143] lo speed is unknown, defaulting to 1000
[ 1566.113055][ T5308] *** Log Is Dirty ! ***
[ 1566.144405][ T5308] lmLogInit: exit(-22)
[ 1566.182837][ T5308] lmLogOpen: exit(-22)
[ 1566.342781][ T5700] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1566.431473][ T5349] loop6: detected capacity change from 0 to 4096
[ 1566.590711][ T5357] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1567.431208][ T5377] program syz.1.13835 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1567.780456][ T5143] lo speed is unknown, defaulting to 1000
[ 1568.203619][ T5406] netlink: 28 bytes leftover after parsing attributes in process `syz.0.13848'.
[ 1568.625218][   T31] audit: type=1326 audit(1781795595.047:249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1568.667976][ T5423] loop1: detected capacity change from 0 to 16
[ 1568.690594][ T5423] erofs (device loop1): mounted with root inode @ nid 36.
[ 1568.721306][   T31] audit: type=1326 audit(1781795595.047:250): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1568.782737][ T5432] netlink: 20 bytes leftover after parsing attributes in process `syz.0.13858'.
[ 1568.837677][   T31] audit: type=1326 audit(1781795595.056:251): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1568.915721][   T31] audit: type=1326 audit(1781795595.084:252): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1568.947866][ T5434] netlink: 'syz.7.13859': attribute type 2 has an invalid length.
[ 1568.975240][   T31] audit: type=1326 audit(1781795595.084:253): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=246 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1569.058319][   T31] audit: type=1326 audit(1781795595.084:254): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1569.134154][ T5426] bond0: (slave macvlan1): Releasing backup interface
[ 1569.153915][   T31] audit: type=1326 audit(1781795595.084:255): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1569.262447][   T31] audit: type=1326 audit(1781795595.084:256): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=5420 comm="syz.7.13856" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f72dff9ce59 code=0x7ffc0000
[ 1569.272924][ T5441] comedi comedi3: driver 'ni_daq_700' does not support attach using comedi_config
[ 1569.583868][ T5452] loop5: detected capacity change from 0 to 16
[ 1569.632642][ T5452] erofs (device loop5): mounted with root inode @ nid 36.
[ 1569.691174][ T5452] erofs (device loop5): readahead error at folio 3 @ nid 89
[ 1569.723936][ T5452] erofs (device loop5): readahead error at folio 2 @ nid 89
[ 1569.762722][ T5452] erofs (device loop5): readahead error at folio 1 @ nid 89
[ 1569.809318][ T5452] erofs (device loop5): readahead error at folio 0 @ nid 89
[ 1569.842044][ T5452] erofs (device loop5): read error -22 @ 0 of nid 89
[ 1569.871961][   T31] audit: type=1800 audit(1781795596.217:257): pid=5452 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.13868" name="file2" dev="loop5" ino=89 res=0 errno=0
[ 1570.473011][ T4761] usb 8-1: new high-speed USB device number 22 using dummy_hcd
[ 1570.554112][ T5489] netlink: 'syz.1.13886': attribute type 21 has an invalid length.
[ 1570.590368][ T5489] netlink: 128 bytes leftover after parsing attributes in process `syz.1.13886'.
[ 1570.658523][ T4761] usb 8-1: Using ep0 maxpacket: 32
[ 1570.684441][ T4761] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1570.705394][ T4761] usb 8-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1570.747846][ T4761] usb 8-1: New USB device found, idVendor=3b82, idProduct=00eb, bcdDevice= 0.40
[ 1570.768222][ T4761] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=8
[ 1570.789646][ T4761] usb 8-1: Product: syz
[ 1570.799731][ T4761] usb 8-1: Manufacturer: syz
[ 1570.813006][ T4761] usb 8-1: SerialNumber: syz
[ 1570.952958][ T5489] netlink: 3 bytes leftover after parsing attributes in process `syz.1.13886'.
[ 1571.157992][ T4761] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1571.191653][ T4761] usb 8-1: MIDIStreaming interface descriptor not found
[ 1571.446314][ T4761] usb 8-1: USB disconnect, device number 22
[ 1571.644895][ T6044] udevd[6044]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1572.130618][ T5543] loop3: detected capacity change from 0 to 1024
[ 1572.199414][ T5546] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1572.228017][ T5543] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1572.567135][ T5708] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1572.741859][ T5567] netlink: 8 bytes leftover after parsing attributes in process `syz.0.13922'.
[ 1573.027669][ T5575] loop0: detected capacity change from 0 to 16
[ 1573.058388][ T5575] erofs (device loop0): mounted with root inode @ nid 36.
[ 1573.401551][ T5583] netlink: 8 bytes leftover after parsing attributes in process `syz.6.13930'.
[ 1573.767330][ T5598] loop6: detected capacity change from 0 to 256
[ 1573.843374][ T5598] FAT-fs (loop6): Directory bread(block 64) failed
[ 1573.850862][ T5599] loop3: detected capacity change from 0 to 512
[ 1573.864903][ T5598] FAT-fs (loop6): Directory bread(block 65) failed
[ 1573.900326][ T5598] FAT-fs (loop6): Directory bread(block 66) failed
[ 1573.924115][ T5599] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1573.937100][ T5598] FAT-fs (loop6): Directory bread(block 67) failed
[ 1573.943969][ T5598] FAT-fs (loop6): Directory bread(block 68) failed
[ 1573.950637][ T5598] FAT-fs (loop6): Directory bread(block 69) failed
[ 1573.958840][ T5598] FAT-fs (loop6): Directory bread(block 70) failed
[ 1573.965499][ T5598] FAT-fs (loop6): Directory bread(block 71) failed
[ 1573.972144][ T5598] FAT-fs (loop6): Directory bread(block 72) failed
[ 1573.981118][ T5598] FAT-fs (loop6): Directory bread(block 73) failed
[ 1573.997230][ T5599] ext4 filesystem being mounted at /2353/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1574.128225][ T5607] loop0: detected capacity change from 0 to 256
[ 1574.258996][ T5708] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1574.272059][ T5607] FAT-fs (loop0): Directory bread(block 64) failed
[ 1574.286068][ T5607] FAT-fs (loop0): Directory bread(block 65) failed
[ 1574.306062][ T5607] FAT-fs (loop0): Directory bread(block 66) failed
[ 1574.364206][ T5607] FAT-fs (loop0): Directory bread(block 67) failed
[ 1574.392015][ T5607] FAT-fs (loop0): Directory bread(block 68) failed
[ 1574.428102][ T5607] FAT-fs (loop0): Directory bread(block 69) failed
[ 1574.463970][ T5607] FAT-fs (loop0): Directory bread(block 70) failed
[ 1574.500597][ T5607] FAT-fs (loop0): Directory bread(block 71) failed
[ 1574.538044][ T5607] FAT-fs (loop0): Directory bread(block 72) failed
[ 1574.548760][ T5607] FAT-fs (loop0): Directory bread(block 73) failed
[ 1574.737623][ T5621] loop6: detected capacity change from 0 to 16
[ 1574.813640][ T5621] erofs (device loop6): mounted with root inode @ nid 36.
[ 1575.936839][ T5659] netlink: 'syz.1.13965': attribute type 2 has an invalid length.
[ 1576.372524][ T5591] loop5: detected capacity change from 0 to 40427
[ 1576.450670][ T5678] net_ratelimit: 389 callbacks suppressed
[ 1576.450696][ T5678] openvswitch: netlink: VXLAN extension message has 16 unknown bytes.
[ 1576.459189][ T5591] F2FS-fs: heap/no_heap options were deprecated
[ 1576.551680][ T5591] F2FS-fs (loop5): build fault injection rate: 19
[ 1576.610762][ T5591] F2FS-fs (loop5): build fault injection type: 0x3bfe8c
[ 1576.645237][ T5591] F2FS-fs (loop5): invalid crc value
[ 1576.678493][ T4698] usb 8-1: new high-speed USB device number 23 using dummy_hcd
[ 1576.789257][ T5591] F2FS-fs (loop5): inject page alloc in f2fs_grab_cache_folio of __f2fs_build_free_nids+0x1fe/0x1060
[ 1576.873719][ T4698] usb 8-1: config 0 has an invalid interface number: 64 but max is 0
[ 1576.901828][ T4698] usb 8-1: config 0 has no interface number 0
[ 1576.946921][ T4698] usb 8-1: New USB device found, idVendor=046d, idProduct=0823, bcdDevice= 0.07
[ 1576.967403][ T4698] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1576.982878][ T4698] usb 8-1: Product: syz
[ 1576.991254][ T4698] usb 8-1: Manufacturer: syz
[ 1577.002769][ T4698] usb 8-1: SerialNumber: syz
[ 1577.018581][ T4698] usb 8-1: config 0 descriptor??
[ 1577.276597][ T4698] uvcvideo 8-1:0.64: Found Unit with invalid ID 0
[ 1577.304387][ T4698] uvcvideo 8-1:0.64: Found UVC 0.08 device syz (046d:0823)
[ 1577.346343][ T4698] uvcvideo 8-1:0.64: Entity type for entity Output 65535 was not initialized!
[ 1577.377564][ T4698] uvcvideo 8-1:0.64: Failed to create links for entity 65535
[ 1577.404469][ T4698] uvcvideo 8-1:0.64: Failed to register entities (-22).
[ 1577.448685][ T4698] usb 8-1: USB disconnect, device number 23
[ 1577.506480][ T5591] F2FS-fs (loop5): inject slab alloc in f2fs_kmem_cache_alloc of f2fs_get_node_info+0xe15/0x1690
[ 1577.679777][ T5591] F2FS-fs (loop5): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1578.147667][ T5740] loop3: detected capacity change from 0 to 512
[ 1578.184079][ T5740] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1578.212325][ T5740] EXT4-fs (loop3): mounting ext2 file system using the ext4 subsystem
[ 1578.245198][ T5740] EXT4-fs (loop3): warning: mounting unchecked fs, running e2fsck is recommended
[ 1578.254805][ T5747] netlink: 'syz.7.14002': attribute type 10 has an invalid length.
[ 1578.272698][ T5740] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e02c, mo2=0006]
[ 1578.287723][ T5747] syz_tun: entered promiscuous mode
[ 1578.298190][ T5740] System zones: 0-2, 18-18, 34-35
[ 1578.320835][ T5747] bond0: (slave syz_tun): Enslaving as an active interface with an up link
[ 1578.350068][ T5740] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1578.525563][ T4761] usb 1-1: new high-speed USB device number 67 using dummy_hcd
[ 1578.585701][ T5708] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1578.656961][ T5756] netlink: 'syz.7.14005': attribute type 29 has an invalid length.
[ 1578.689285][ T5756] netlink: 'syz.7.14005': attribute type 3 has an invalid length.
[ 1578.708495][ T4761] usb 1-1: Using ep0 maxpacket: 8
[ 1578.725617][ T5756] netlink: 76 bytes leftover after parsing attributes in process `syz.7.14005'.
[ 1578.733138][ T4761] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1578.770156][ T4761] usb 1-1: config 8 has an invalid interface number: 61 but max is 2
[ 1578.804483][ T4761] usb 1-1: config 8 has 1 interface, different from the descriptor's value: 3
[ 1578.840458][ T4761] usb 1-1: config 8 has no interface number 0
[ 1578.868909][ T4761] usb 1-1: config 8 interface 61 altsetting 8 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1578.901840][ T4761] usb 1-1: config 8 interface 61 altsetting 8 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1578.966857][ T4761] usb 1-1: config 8 interface 61 has no altsetting 0
[ 1579.012107][ T4761] usb 1-1: New USB device found, idVendor=057c, idProduct=2200, bcdDevice=e9.1f
[ 1579.041460][ T4761] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1579.059885][ T4761] usb 1-1: Product: syz
[ 1579.070460][ T4761] usb 1-1: Manufacturer: syz
[ 1579.081574][ T4761] usb 1-1: SerialNumber: syz
[ 1579.232733][ T4698] usb 2-1: new high-speed USB device number 86 using dummy_hcd
[ 1579.369621][ T4761] bfusb 1-1:8.61: probe with driver bfusb failed with error -5
[ 1579.399988][ T4761] usb 1-1: USB disconnect, device number 67
[ 1579.417205][ T4698] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1579.471555][ T4698] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1579.522959][ T4698] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1579.564992][ T4698] usb 2-1: config 0 descriptor??
[ 1580.017463][ T5790] loop7: detected capacity change from 0 to 4096
[ 1580.028934][ T5807] netlink: 292 bytes leftover after parsing attributes in process `syz.6.14020'.
[ 1580.045609][ T4698] ath6kl: Failed to read usb control message: -71
[ 1580.062060][ T4698] ath6kl: Unable to read the bmi data from the device: -71
[ 1580.097062][ T4698] ath6kl: Unable to recv target info: -71
[ 1580.119976][ T4698] ath6kl: Failed to init ath6kl core: -71
[ 1580.140385][ T4698] ath6kl_usb 2-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1580.212459][ T4698] usb 2-1: USB disconnect, device number 86
[ 1580.675218][ T5852] netlink: 'syz.6.14028': attribute type 21 has an invalid length.
[ 1580.706292][ T5852] netlink: 'syz.6.14028': attribute type 6 has an invalid length.
[ 1580.726223][ T5852] netlink: 132 bytes leftover after parsing attributes in process `syz.6.14028'.
[ 1580.975740][ T5859] openvswitch: netlink: Duplicate key (type 21).
[ 1581.070115][ T5865] netlink: 24 bytes leftover after parsing attributes in process `syz.5.14034'.
[ 1581.688727][ T5890] netlink: 'syz.0.14046': attribute type 1 has an invalid length.
[ 1581.736856][ T5890] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1581.810677][ T5896] loop3: detected capacity change from 0 to 128
[ 1581.937883][ T5884] loop6: detected capacity change from 0 to 8192
[ 1582.273300][ T5908] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1582.869334][ T5927] netlink: 'syz.1.14064': attribute type 49 has an invalid length.
[ 1582.927904][ T5932] netlink: 16 bytes leftover after parsing attributes in process `syz.6.14067'.
[ 1582.960573][ T5927] bond0: (slave bond_slave_0): Releasing backup interface
[ 1582.973351][ T5937] xt_time: invalid argument - start or stop time greater than 23:59:59
[ 1583.095318][ T5927] bond_slave_0: entered promiscuous mode
[ 1583.116867][ T5927] bond_slave_0: entered allmulticast mode
[ 1583.685758][ T5967] netlink: 7064 bytes leftover after parsing attributes in process `syz.0.14081'.
[ 1583.721777][ T5962] loop6: detected capacity change from 0 to 1764
[ 1583.730314][ T5967] openvswitch: netlink: Missing key (keys=40, expected=2000)
[ 1583.841067][ T5961] loop5: detected capacity change from 0 to 4096
[ 1584.538106][ T5989] loop1: detected capacity change from 0 to 256
[ 1584.609820][ T5991] netlink: 16 bytes leftover after parsing attributes in process `syz.6.14091'.
[ 1584.662132][ T5989] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x52c1951d, utbl_chksum : 0xe619d30d)
[ 1584.930200][ T5996] loop5: detected capacity change from 0 to 2048
[ 1585.050485][ T6000] bond0: (slave wlan0): Enslaving as an active interface with an up link
[ 1585.066679][ T5996] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1585.510116][ T6013] loop7: detected capacity change from 0 to 1024
[ 1585.891061][ T5985] loop3: detected capacity change from 0 to 32768
[ 1585.922505][ T5985] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.14087 (5985)
[ 1585.923268][ T6025] openvswitch: netlink: Multiple metadata blocks provided
[ 1586.012396][ T5985] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1586.057183][ T5985] BTRFS info (device loop3): using sha256 checksum algorithm
[ 1586.118976][ T6031] loop7: detected capacity change from 0 to 2048
[ 1586.313143][ T5985] BTRFS info (device loop3): enabling ssd optimizations
[ 1586.361247][ T6057] netlink: 16 bytes leftover after parsing attributes in process `syz.0.14110'.
[ 1586.373637][ T6057] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14110'.
[ 1586.377692][ T5985] BTRFS info (device loop3): turning on async discard
[ 1586.431051][ T5985] BTRFS info (device loop3): enabling free space tree
[ 1586.781549][ T6071] program syz.1.14116 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1586.808682][ T6072] loop6: detected capacity change from 0 to 1024
[ 1586.817750][ T5985] Process accounting paused
[ 1586.863392][ T5708] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1586.935750][ T6078] netlink: 12 bytes leftover after parsing attributes in process `syz.7.14119'.
[ 1587.356212][ T6088] netlink: 4 bytes leftover after parsing attributes in process `syz.7.14137'.
[ 1587.396901][ T6089] loop6: detected capacity change from 0 to 256
[ 1587.478383][ T6089] exfat: Deprecated parameter 'namecase'
[ 1587.552838][ T6089] exfat: Deprecated parameter 'namecase'
[ 1587.642028][ T6089] exFAT-fs (loop6): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1588.437963][ T6109] loop3: detected capacity change from 0 to 4096
[ 1588.526978][ T6109] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1588.599508][ T6117] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14135'.
[ 1588.662623][ T6109] ntfs3(loop3): Failed to load $Extend (-22).
[ 1588.690787][ T6109] ntfs3(loop3): Failed to initialize $Extend.
[ 1589.322936][ T6136] loop7: detected capacity change from 0 to 1024
[ 1589.460606][ T6140] loop6: detected capacity change from 0 to 2048
[ 1589.493452][ T6140] NILFS (loop6): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1589.589417][ T6142] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1589.672854][ T6147] netlink: 48 bytes leftover after parsing attributes in process `syz.0.14148'.
[ 1589.985211][ T6154] loop3: detected capacity change from 0 to 256
[ 1590.074311][ T6154] FAT-fs (loop3): Directory bread(block 64) failed
[ 1590.107926][ T6154] FAT-fs (loop3): Directory bread(block 65) failed
[ 1590.134205][ T6154] FAT-fs (loop3): Directory bread(block 66) failed
[ 1590.166053][ T6154] FAT-fs (loop3): Directory bread(block 67) failed
[ 1590.199304][ T6154] FAT-fs (loop3): Directory bread(block 68) failed
[ 1590.230295][ T6154] FAT-fs (loop3): Directory bread(block 69) failed
[ 1590.257114][ T6154] FAT-fs (loop3): Directory bread(block 70) failed
[ 1590.287489][ T6154] FAT-fs (loop3): Directory bread(block 71) failed
[ 1590.302092][ T6154] FAT-fs (loop3): Directory bread(block 72) failed
[ 1590.315921][ T6154] FAT-fs (loop3): Directory bread(block 73) failed
[ 1590.452885][ T6167] loop7: detected capacity change from 0 to 24
[ 1590.702810][ T6173] netlink: 'syz.7.14160': attribute type 1 has an invalid length.
[ 1590.710897][ T6173] netlink: 2108 bytes leftover after parsing attributes in process `syz.7.14160'.
[ 1590.839081][ T6169] loop0: detected capacity change from 0 to 4096
[ 1591.066583][ T6175] loop3: detected capacity change from 0 to 4096
[ 1591.682152][ T6188] loop0: detected capacity change from 0 to 4096
[ 1591.709221][ T6188] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1591.832109][ T6188] ntfs3(loop0): ino=19, mi_enum_attr
[ 1591.843933][ T6188] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1591.908913][ T6195] netlink: 65173 bytes leftover after parsing attributes in process `syz.7.14170'.
[ 1592.208675][ T6202] bond0: (slave wlan0): Error: Device can not be enslaved while up
[ 1592.696361][ T6212] loop7: detected capacity change from 0 to 4096
[ 1592.986982][ T4761] usb 1-1: new high-speed USB device number 68 using dummy_hcd
[ 1593.051113][ T4709] usb 4-1: new high-speed USB device number 67 using dummy_hcd
[ 1593.166047][ T4761] usb 1-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[ 1593.186302][ T4761] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1593.200539][ T4761] usb 1-1: Product: syz
[ 1593.207815][ T4761] usb 1-1: Manufacturer: syz
[ 1593.217682][ T4761] usb 1-1: SerialNumber: syz
[ 1593.232298][ T4709] usb 4-1: Using ep0 maxpacket: 8
[ 1593.243335][ T4761] usb 1-1: config 0 descriptor??
[ 1593.244501][ T4709] usb 4-1: config 2 has an invalid interface number: 31 but max is 0
[ 1593.269430][ T4761] gspca_main: sunplus-2.14.0 probing 04fc:504a
[ 1593.272408][ T4709] usb 4-1: config 2 has no interface number 0
[ 1593.293677][ T4709] usb 4-1: config 2 interface 31 has no altsetting 0
[ 1593.311723][ T4709] usb 4-1: New USB device found, idVendor=1a86, idProduct=e092, bcdDevice=53.3f
[ 1593.321943][ T4709] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1593.339101][ T4709] usb 4-1: Product: syz
[ 1593.349767][ T4709] usb 4-1: Manufacturer: syz
[ 1593.360461][ T4709] usb 4-1: SerialNumber: syz
[ 1593.709563][ T4761] gspca_sunplus: reg_w_riv err -71
[ 1593.734316][ T4761] sunplus 1-1:0.0: probe with driver sunplus failed with error -71
[ 1593.758798][ T4761] usb 1-1: USB disconnect, device number 68
[ 1593.870345][ T4709] ch9200 4-1:2.31: probe with driver ch9200 failed with error -22
[ 1593.917017][ T4709] usb 4-1: USB disconnect, device number 67
[ 1594.159347][ T6240] IPVS: sync thread started: state = BACKUP, mcast_ifn = lo, syncid = 3, id = 0
[ 1594.640298][ T6258] Bluetooth: hci0: Opcode 0x0c1a failed: -22
[ 1595.709257][ T6294] loop3: detected capacity change from 0 to 2048
[ 1595.751285][ T6294] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1595.792977][ T6256] loop0: detected capacity change from 0 to 32768
[ 1595.823167][   T31] audit: type=1800 audit(1781795620.514:258): pid=6294 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.14217" name="file1" dev="loop3" ino=1367 res=0 errno=0
[ 1595.835921][ T6256] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.14200 (6256)
[ 1595.880808][ T6301] loop5: detected capacity change from 0 to 16
[ 1595.928729][ T6256] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1595.946289][ T6301] MTD: Attempt to mount non-MTD device "/dev/loop5"
[ 1595.979878][ T6256] BTRFS info (device loop0): using sha256 checksum algorithm
[ 1596.107875][ T6256] BTRFS info (device loop0): enabling ssd optimizations
[ 1596.141557][ T6256] BTRFS info (device loop0): turning on async discard
[ 1596.177604][ T6303] bond2: entered promiscuous mode
[ 1596.189798][ T6256] BTRFS info (device loop0): enabling free space tree
[ 1596.199433][ T6303] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1596.456068][ T6329] netlink: 20 bytes leftover after parsing attributes in process `syz.6.14226'.
[ 1596.505450][ T6329] netlink: 8 bytes leftover after parsing attributes in process `syz.6.14226'.
[ 1596.606700][ T5700] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1596.664728][ T6336] loop7: detected capacity change from 0 to 16
[ 1596.735062][ T6328] loop1: detected capacity change from 0 to 4096
[ 1596.879522][ T6342] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1597.964923][ T6371] netlink: 'syz.5.14246': attribute type 10 has an invalid length.
[ 1598.000887][ T6371] netlink: 152 bytes leftover after parsing attributes in process `syz.5.14246'.
[ 1598.366587][ T6379] openvswitch: netlink: Unknown nsh attribute 0
[ 1598.778752][ T6385] loop3: detected capacity change from 0 to 4096
[ 1598.797922][   T31] audit: type=1326 audit(1781795623.304:259): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6393 comm="syz.1.14257" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1598.869021][   T31] audit: type=1326 audit(1781795623.332:260): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6393 comm="syz.1.14257" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1598.912100][   T31] audit: type=1326 audit(1781795623.342:261): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6393 comm="syz.1.14257" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1598.938859][   T31] audit: type=1326 audit(1781795623.370:262): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6393 comm="syz.1.14257" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1599.013351][ T6355] loop7: detected capacity change from 0 to 32768
[ 1599.109315][ T6398] bond8: entered promiscuous mode
[ 1599.204545][ T6405] loop0: detected capacity change from 0 to 128
[ 1599.273649][ T6405] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1599.314690][ T6405] ext4 filesystem being mounted at /2402/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1599.466330][ T6403] loop6: detected capacity change from 0 to 4096
[ 1599.523934][ T6403] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1599.579155][ T5700] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1599.587665][ T6403] ntfs3(loop6): Failed to load $Extend (-22).
[ 1599.621062][ T6403] ntfs3(loop6): Failed to initialize $Extend.
[ 1600.387761][ T6433] loop1: detected capacity change from 0 to 256
[ 1600.437523][ T6433] exfat: Deprecated parameter 'namecase'
[ 1600.468431][ T6433] exFAT-fs (loop1): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d)
[ 1601.055576][ T3398] Bluetooth: hci2: ACL packet for unknown connection handle 201
[ 1601.108997][ T6446] IPVS: Error joining to the multicast group
[ 1601.373812][ T6437] loop7: detected capacity change from 0 to 32768
[ 1601.737843][ T6435] loop6: detected capacity change from 0 to 32768
[ 1601.849673][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1601.849673][ T6435] 
[ 1601.909255][ T6435] xtLookup: xtSearch returned -5
[ 1601.963772][ T6435] free_index: error reading directory table
[ 1602.007097][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.007097][ T6435] 
[ 1602.057066][ T6435] xtLookup: xtSearch returned -5
[ 1602.075415][ T6435] free_index: error reading directory table
[ 1602.094431][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.094431][ T6435] 
[ 1602.120104][ T6435] xtLookup: xtSearch returned -5
[ 1602.126756][ T6435] free_index: error reading directory table
[ 1602.184404][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.184404][ T6435] 
[ 1602.232763][ T6435] xtLookup: xtSearch returned -5
[ 1602.271287][ T6435] free_index: error reading directory table
[ 1602.316600][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.316600][ T6435] 
[ 1602.378858][ T6435] xtLookup: xtSearch returned -5
[ 1602.408283][ T6435] free_index: error reading directory table
[ 1602.426016][ T6480] xt_hl: Unknown Hop Limit match mode: 206
[ 1602.443493][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.443493][ T6435] 
[ 1602.485971][ T6435] xtLookup: xtSearch returned -5
[ 1602.513034][ T6435] add_index: get/read_metapage failed!
[ 1602.552169][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.552169][ T6435] 
[ 1602.597411][ T6435] xtLookup: xtSearch returned -5
[ 1602.622291][ T6435] free_index: error reading directory table
[ 1602.644137][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.644137][ T6435] 
[ 1602.677718][ T6435] xtLookup: xtSearch returned -5
[ 1602.701232][ T6435] free_index: error reading directory table
[ 1602.726483][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.726483][ T6435] 
[ 1602.786705][ T6435] xtLookup: xtSearch returned -5
[ 1602.805746][ T6435] free_index: error reading directory table
[ 1602.843659][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.843659][ T6435] 
[ 1602.861999][ T6490] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 1602.885062][ T6435] xtLookup: xtSearch returned -5
[ 1602.902361][ T6435] free_index: error reading directory table
[ 1602.918368][ T6435] find_entry called with index = 0
[ 1602.937672][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1602.937672][ T6435] 
[ 1602.951189][ T6495] netlink: 'syz.7.14301': attribute type 2 has an invalid length.
[ 1602.965409][ T6494] loop5: detected capacity change from 0 to 512
[ 1602.974766][ T6495] netlink: 'syz.7.14301': attribute type 2 has an invalid length.
[ 1602.982910][ T6435] xtLookup: xtSearch returned -5
[ 1602.999239][ T6435] free_index: error reading directory table
[ 1603.030038][ T6494] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1603.038664][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1603.038664][ T6435] 
[ 1603.056419][ T6435] xtLookup: xtSearch returned -5
[ 1603.061703][ T6435] free_index: error reading directory table
[ 1603.067746][ T6435] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1603.067746][ T6435] 
[ 1603.077845][ T6435] xtLookup: xtSearch returned -5
[ 1603.084445][ T6435] free_index: error reading directory table
[ 1603.137725][ T6494] ext4 filesystem being mounted at /2363/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1603.282345][ T6502] loop0: detected capacity change from 0 to 1024
[ 1603.305977][ T6494] EXT4-fs error (device loop5): ext4_xattr_block_get:597: inode #15: comm syz.5.14302: corrupted xattr block 33: invalid checksum
[ 1603.327461][ T6502] EXT4-fs: Ignoring removed orlov option
[ 1603.417400][ T6502] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1603.595002][ T6502] EXT4-fs error (device loop0): ext4_free_inode:354: comm syz.0.14303: bit already cleared for inode 13
[ 1603.683167][ T5717] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1603.887652][ T5700] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1605.081772][ T6564] loop7: detected capacity change from 0 to 4096
[ 1605.178317][ T6571] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14333'.
[ 1605.241774][ T6576] loop3: detected capacity change from 0 to 128
[ 1605.290199][ T6576] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 1605.339179][ T6576] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1605.450941][ T4709] usb 1-1: new high-speed USB device number 69 using dummy_hcd
[ 1605.493064][ T6582] loop6: detected capacity change from 0 to 16
[ 1605.526410][ T6582] erofs (device loop6): mounted with root inode @ nid 36.
[ 1605.576476][ T6582] erofs (device loop6): compressed inode (nid 83) is invalid in a plain filesystem
[ 1605.656533][ T4709] usb 1-1: Using ep0 maxpacket: 8
[ 1605.688150][ T4709] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1605.746649][ T4709] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1605.786500][ T4709] usb 1-1: config 0 interface 0 altsetting 2 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1605.835659][ T4709] usb 1-1: config 0 interface 0 has no altsetting 0
[ 1605.870420][ T4709] usb 1-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[ 1605.893410][ T6586] loop5: detected capacity change from 0 to 4096
[ 1605.906322][ T4709] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1605.945253][ T4709] usb 1-1: Product: syz
[ 1605.958490][ T4709] usb 1-1: Manufacturer: syz
[ 1605.981178][ T4709] usb 1-1: SerialNumber: syz
[ 1606.039630][ T4709] usb 1-1: config 0 descriptor??
[ 1606.101045][ T4709] snd_usb_toneport 1-1:0.0: Line 6 TonePort UX2 found
[ 1606.325296][ T4709] snd_usb_toneport 1-1:0.0: cannot get proper max packet size
[ 1606.360653][ T4709] snd_usb_toneport 1-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1606.410722][ T4709] snd_usb_toneport 1-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1606.522850][ T4688] IPVS: starting estimator thread 0...
[ 1606.536874][ T4709] usb 1-1: USB disconnect, device number 69
[ 1606.638969][ T6612] IPVS: using max 23 ests per chain, 55200 per kthread
[ 1607.227899][ T6638] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1607.395640][ T6636] loop7: detected capacity change from 0 to 4096
[ 1607.707782][ T6652] netlink: 4 bytes leftover after parsing attributes in process `syz.6.14371'.
[ 1608.131760][ T4699] usb 4-1: new high-speed USB device number 68 using dummy_hcd
[ 1608.149363][ T6668] netlink: 'syz.1.14379': attribute type 39 has an invalid length.
[ 1608.217709][ T6670] netlink: 'syz.5.14380': attribute type 1 has an invalid length.
[ 1608.238624][ T6670] netlink: 'syz.5.14380': attribute type 1 has an invalid length.
[ 1608.256597][ T6670] netlink: 9172 bytes leftover after parsing attributes in process `syz.5.14380'.
[ 1608.345069][ T4699] usb 4-1: Using ep0 maxpacket: 32
[ 1608.353046][ T4699] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11
[ 1608.364815][ T4699] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1608.375102][ T4699] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87
[ 1608.387584][ T4699] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1608.399629][ T4699] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1608.413906][ T4699] usb 4-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68
[ 1608.423499][ T4699] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1608.431825][ T4699] usb 4-1: Product: syz
[ 1608.436431][ T4699] usb 4-1: Manufacturer: syz
[ 1608.441431][ T4699] usb 4-1: SerialNumber: syz
[ 1608.450211][ T4699] usb 4-1: config 0 descriptor??
[ 1608.468445][ T4699] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input105
[ 1608.527523][ T6676] bond6: option arp_validate: invalid value (2048)
[ 1608.573532][ T6676] bond6 (unregistering): Released all slaves
[ 1608.719306][ T4699] usb 4-1: USB disconnect, device number 68
[ 1608.877252][ T6684] loop0: detected capacity change from 0 to 2048
[ 1608.940146][ T6684] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1610.036372][ T6717] program syz.6.14403 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1610.451662][ T6735] loop3: detected capacity change from 0 to 256
[ 1610.471154][ T6693] loop5: detected capacity change from 0 to 32768
[ 1610.507386][ T6693] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.14390 (6693)
[ 1610.565760][ T6739] Invalid source name
[ 1610.571637][ T6735] FAT-fs (loop3): Directory bread(block 64) failed
[ 1610.589594][ T6739] UBIFS error (pid: 6739): cannot open "./file0", error -22
[ 1610.601807][ T6735] FAT-fs (loop3): Directory bread(block 65) failed
[ 1610.626659][ T6693] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1610.660089][ T6693] BTRFS info (device loop5): using sha256 checksum algorithm
[ 1610.670602][ T6735] FAT-fs (loop3): Directory bread(block 66) failed
[ 1610.685515][ T6735] FAT-fs (loop3): Directory bread(block 67) failed
[ 1610.705845][ T6735] FAT-fs (loop3): Directory bread(block 68) failed
[ 1610.780081][ T6735] FAT-fs (loop3): Directory bread(block 69) failed
[ 1610.796403][ T6693] BTRFS info (device loop5): enabling ssd optimizations
[ 1610.823907][ T6735] FAT-fs (loop3): Directory bread(block 70) failed
[ 1610.846478][ T6693] BTRFS info (device loop5): turning on async discard
[ 1610.853331][ T6693] BTRFS info (device loop5): enabling free space tree
[ 1610.873566][ T6735] FAT-fs (loop3): Directory bread(block 71) failed
[ 1610.891854][ T6735] FAT-fs (loop3): Directory bread(block 72) failed
[ 1610.964323][ T6735] FAT-fs (loop3): Directory bread(block 73) failed
[ 1610.979230][ T6761] loop7: detected capacity change from 0 to 1024
[ 1611.189836][ T5717] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1611.209112][ T6767] loop1: detected capacity change from 0 to 1024
[ 1611.257256][ T6767] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1611.354091][ T6767] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c841e018, mo2=0000]
[ 1611.413470][ T6772] loop7: detected capacity change from 0 to 16
[ 1611.495288][ T6767] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 2: comm syz.1.14420: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1611.531520][ T6767] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1611.531911][ T6767] Quota error (device loop1): qtree_write_dquot: dquota write failed
[ 1611.541134][    C1] EXT4-fs (loop1): error count since last fsck: 1
[ 1611.541187][    C1] EXT4-fs (loop1): initial error at time 1781795635: ext4_map_blocks:791: inode 3: block 2
[ 1611.541257][    C1] EXT4-fs (loop1): last error at time 1781795635: ext4_map_blocks:791: inode 3: block 2
[ 1611.596885][ T6769] loop0: detected capacity change from 0 to 4096
[ 1611.621169][ T6767] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 48: comm syz.1.14420: lblock 0 mapped to illegal pblock 48 (length 1)
[ 1611.680079][ T6767] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1611.682315][ T6767] Quota error (device loop1): v2_write_file_info: Can't write info structure
[ 1611.805766][ T6767] EXT4-fs error (device loop1): ext4_acquire_dquot:7032: comm syz.1.14420: Failed to acquire dquot type 0
[ 1611.845108][ T6781] netlink: 'syz.3.14425': attribute type 21 has an invalid length.
[ 1611.886495][ T6769] ntfs3(loop0): ino=1f, mi_enum_attr
[ 1611.895225][ T6781] netlink: 128 bytes leftover after parsing attributes in process `syz.3.14425'.
[ 1611.905772][ T6767] loop1: lost filesystem error report for type 5 error -117
[ 1611.917752][ T6769] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1611.923719][ T4699] usb 7-1: new high-speed USB device number 41 using dummy_hcd
[ 1611.942793][ T6781] netlink: 'syz.3.14425': attribute type 4 has an invalid length.
[ 1611.951316][ T6767] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6383: Corrupt filesystem
[ 1611.951356][ T6767] loop1: lost filesystem error report for type 5 error -117
[ 1611.951702][ T6767] EXT4-fs error (device loop1): ext4_evict_inode:267: inode #11: comm syz.1.14420: mark_inode_dirty error
[ 1611.951751][ T6767] loop1: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117
[ 1611.952013][ T6767] EXT4-fs warning (device loop1): ext4_evict_inode:269: couldn't mark inode dirty (err -117)
[ 1612.040494][ T6767] EXT4-fs (loop1): 1 orphan inode deleted
[ 1612.051845][ T6781] netlink: 'syz.3.14425': attribute type 5 has an invalid length.
[ 1612.079946][T28693] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 1: comm kworker/u8:13: lblock 1 mapped to illegal pblock 1 (length 1)
[ 1612.104466][ T6781] netlink: 3 bytes leftover after parsing attributes in process `syz.3.14425'.
[ 1612.116116][ T6767] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1612.137104][T28693] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1612.137932][T28693] Quota error (device loop1): remove_tree: Can't read quota data block 1
[ 1612.157924][ T4699] usb 7-1: Using ep0 maxpacket: 8
[ 1612.179401][ T4699] usb 7-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[ 1612.190299][T28693] EXT4-fs error (device loop1): ext4_release_dquot:7068: comm kworker/u8:13: Failed to release dquot type 0
[ 1612.202595][ T4699] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1612.259089][ T4699] usb 7-1: Product: syz
[ 1612.265207][ T4699] usb 7-1: Manufacturer: syz
[ 1612.274313][ T4699] usb 7-1: SerialNumber: syz
[ 1612.326605][   T87] EXT4-fs error (device loop1): ext4_map_blocks:791: inode #3: block 2: comm kworker/u8:5: lblock 2 mapped to illegal pblock 2 (length 1)
[ 1612.419150][ T4699] usb 7-1: config 0 descriptor??
[ 1612.456181][ T4699] gspca_main: sq930x-2.14.0 probing 2770:930c
[ 1612.465126][ T6788] SET target dimension over the limit!
[ 1612.550801][   T87] Quota error (device loop1): qtree_write_dquot: dquota write failed
[ 1612.579086][   T87] EXT4-fs error (device loop1): ext4_write_dquot:7012: comm kworker/u8:5: Failed to commit dquot type 0
[ 1612.781878][   T87] Quota error (device loop1): dquot_write_dquot: Can't write quota structure (error -117). Quota may get out of sync!
[ 1612.846122][ T5701] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1612.884999][ T4699] gspca_sq930x: ucbus_write failed -71
[ 1612.888411][ T5701] EXT4-fs error (device loop1): __ext4_get_inode_loc:4884: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 1612.927167][ T4699] sq930x 7-1:0.0: probe with driver sq930x failed with error -71
[ 1612.957656][ T5701] loop1: lost filesystem error report for type 5 error -117
[ 1612.958043][ T5701] EXT4-fs error (device loop1) in ext4_reserve_inode_write:6383: Corrupt filesystem
[ 1612.965232][ T4699] usb 7-1: USB disconnect, device number 41
[ 1612.995847][ T5701] loop1: lost filesystem error report for type 5 error -117
[ 1612.996212][ T5701] EXT4-fs error (device loop1): ext4_quota_off:7318: inode #3: comm syz-executor: mark_inode_dirty error
[ 1613.082843][ T5701] loop1: lost file I/O error report for ino 3 type 5 pos 0x0 len 0x0 error -117
[ 1613.097975][ T6801] loop3: detected capacity change from 0 to 512
[ 1613.256420][ T6801] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1613.900866][ T5708] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000.
[ 1613.924418][ T6827] netlink: 24 bytes leftover after parsing attributes in process `syz.7.14447'.
[ 1614.885490][ T6814] loop1: detected capacity change from 0 to 32768
[ 1615.203808][ T6860] xt_hashlimit: overflow, try lower: 17592186044416/2047
[ 1615.774117][ T6843] loop3: detected capacity change from 0 to 32768
[ 1615.819207][ T6843] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.14455 (6843)
[ 1615.936157][ T6843] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1615.985410][ T6843] BTRFS info (device loop3): using sha256 checksum algorithm
[ 1616.205985][ T6843] BTRFS info (device loop3): enabling ssd optimizations
[ 1616.218631][ T6843] BTRFS info (device loop3): turning on async discard
[ 1616.232646][ T6843] BTRFS info (device loop3): enabling free space tree
[ 1616.466216][ T5708] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1616.560428][ T6900] x_tables: ip_tables: rpfilter match: used from hooks FORWARD, but only valid from PREROUTING
[ 1616.646603][ T6865] loop1: detected capacity change from 0 to 32768
[ 1616.690125][ T6862] loop5: detected capacity change from 0 to 32768
[ 1616.731175][ T6865] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[ 1616.744960][ T6862] (syz.5.14464,6862,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1616.782267][ T6865] JBD2: Ignoring recovery information on journal
[ 1616.807931][ T6862] (syz.5.14464,6862,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1616.976929][ T6862] JBD2: Ignoring recovery information on journal
[ 1617.101799][ T6865] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1617.251036][ T6862] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1617.931600][ T5701] ocfs2: Unmounting device (7,1) on (node local)
[ 1618.257215][ T5717] ocfs2: Unmounting device (7,5) on (node local)
[ 1618.598339][ T6935] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14491'.
[ 1618.933787][ T6942] openvswitch: netlink: Message has 4 unknown bytes.
[ 1618.960697][ T6942] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1619.477787][ T6928] loop6: detected capacity change from 0 to 32768
[ 1619.511981][ T6928] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.14489 (6928)
[ 1619.568867][ T6928] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1619.603621][ T6928] BTRFS info (device loop6): using sha256 checksum algorithm
[ 1619.777433][ T6928] BTRFS info (device loop6): enabling ssd optimizations
[ 1619.794422][ T6928] BTRFS info (device loop6): turning on async discard
[ 1619.805009][ T4688] usb 2-1: new high-speed USB device number 87 using dummy_hcd
[ 1619.809230][ T6936] loop3: detected capacity change from 0 to 32768
[ 1619.812647][ T6928] BTRFS info (device loop6): enabling free space tree
[ 1619.897970][   T31] audit: type=1800 audit(1781795643.060:263): pid=6936 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.14492" name="file1" dev="loop3" ino=4 res=0 errno=0
[ 1620.000832][ T4688] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1620.018585][ T4699] usb 6-1: new high-speed USB device number 63 using dummy_hcd
[ 1620.030026][ T6934] Process accounting resumed
[ 1620.049825][ T4688] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1620.096413][ T4688] usb 2-1: New USB device found, idVendor=0dba, idProduct=1000, bcdDevice= 0.40
[ 1620.127663][ T4688] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1620.143736][ T4688] usb 2-1: Product: syz
[ 1620.150041][ T6983] loop7: detected capacity change from 0 to 64
[ 1620.153230][ T4688] usb 2-1: Manufacturer: syz
[ 1620.181727][ T4688] usb 2-1: SerialNumber: syz
[ 1620.190668][T23334] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1620.210252][ T4699] usb 6-1: Using ep0 maxpacket: 32
[ 1620.252298][ T4699] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1620.288475][ T4699] usb 6-1: config 128 has an invalid interface number: 127 but max is 3
[ 1620.326295][ T4699] usb 6-1: config 128 has an invalid descriptor of length 0, skipping remainder of the config
[ 1620.338304][ T4699] usb 6-1: config 128 has 1 interface, different from the descriptor's value: 4
[ 1620.348607][ T4699] usb 6-1: config 128 has no interface number 0
[ 1620.417093][ T4699] usb 6-1: config 128 interface 127 altsetting 14 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1620.454849][ T4699] usb 6-1: config 128 interface 127 altsetting 14 bulk endpoint 0x5 has invalid maxpacket 0
[ 1620.493372][ T4699] usb 6-1: config 128 interface 127 has no altsetting 0
[ 1620.521741][ T6987] loop7: detected capacity change from 0 to 128
[ 1620.535300][ T4699] usb 6-1: string descriptor 0 read error: -22
[ 1620.543216][ T4699] usb 6-1: New USB device found, idVendor=0582, idProduct=295c, bcdDevice=d4.55
[ 1620.549686][ T4688] usb 2-1: unit 4 not found!
[ 1620.581701][ T4699] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1620.801246][ T4688] usb 2-1: USB disconnect, device number 87
[ 1621.255460][ T4699] usb 6-1: USB disconnect, device number 63
[ 1621.475600][ T6999] netlink: 'syz.6.14516': attribute type 1 has an invalid length.
[ 1621.540545][ T7002] ubi31: attaching mtd0
[ 1621.549274][ T6999] netlink: 'syz.6.14516': attribute type 2 has an invalid length.
[ 1621.707556][ T7002] ubi31: scanning is finished
[ 1621.712399][ T7002] ubi31: empty MTD device detected
[ 1621.807829][ T7005] loop1: detected capacity change from 0 to 512
[ 1621.928165][ T7005] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e842c11c, mo2=0002]
[ 1621.942623][ T7005] System zones: 0-2, 18-18, 34-34
[ 1622.089078][ T7005] EXT4-fs error (device loop1): ext4_validate_block_bitmap:440: comm syz.1.14518: bg 0: block 248: padding at end of block bitmap is not set
[ 1622.154869][ T7005] loop1: lost filesystem error report for type 5 error -117
[ 1622.160765][ T7005] Quota error (device loop1): write_blk: dquota write failed
[ 1622.168192][    C0] EXT4-fs (loop1): error count since last fsck: 1
[ 1622.168230][    C0] EXT4-fs (loop1): last error at time 1781795645: ext4_validate_block_bitmap:440
[ 1622.201839][ T7017] netlink: 'syz.7.14523': attribute type 11 has an invalid length.
[ 1622.246478][ T7005] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota
[ 1622.280978][ T7005] EXT4-fs error (device loop1): ext4_acquire_dquot:7032: comm syz.1.14518: Failed to acquire dquot type 1
[ 1622.335601][ T7005] loop1: lost filesystem error report for type 5 error -117
[ 1622.365336][ T7005] EXT4-fs (loop1): 1 truncate cleaned up
[ 1622.402744][ T7005] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1622.479388][ T7002] ubi31 error: ubi_attach_mtd_dev: cannot spawn "ubi_bgt31d", error -4
[ 1622.490544][ T7005] ext4 filesystem being mounted at /2376/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1622.494689][ T7025] loop7: detected capacity change from 0 to 64
[ 1622.615196][ T7030] netlink: 5 bytes leftover after parsing attributes in process `syz.6.14527'.
[ 1622.830676][ T5701] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1623.611787][ T7058] openvswitch: netlink: ERSPAN option length err (len 256, max 255).
[ 1623.633514][ T7060] comedi comedi3: dt2815: I/O port conflict (0x3c4,2)
[ 1624.002182][ T7071] ubi31: attaching mtd0
[ 1624.035985][ T7071] ubi31: scanning is finished
[ 1624.083972][ T7074] loop5: detected capacity change from 0 to 256
[ 1624.159960][ T7076] loop1: detected capacity change from 0 to 64
[ 1624.227778][ T7074] FAT-fs (loop5): Directory bread(block 64) failed
[ 1624.266258][ T7074] FAT-fs (loop5): Directory bread(block 65) failed
[ 1624.310828][ T7074] FAT-fs (loop5): Directory bread(block 66) failed
[ 1624.340402][ T7074] FAT-fs (loop5): Directory bread(block 67) failed
[ 1624.378799][ T7074] FAT-fs (loop5): Directory bread(block 68) failed
[ 1624.411917][ T7074] FAT-fs (loop5): Directory bread(block 69) failed
[ 1624.412963][ T7080] netlink: 'syz.7.14553': attribute type 7 has an invalid length.
[ 1624.426851][ T7074] FAT-fs (loop5): Directory bread(block 70) failed
[ 1624.463824][ T7074] FAT-fs (loop5): Directory bread(block 71) failed
[ 1624.504514][ T7074] FAT-fs (loop5): Directory bread(block 72) failed
[ 1624.542877][ T7074] FAT-fs (loop5): Directory bread(block 73) failed
[ 1624.603102][ T7071] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 1624.617451][ T7071] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 1624.623406][ T7080] : entered promiscuous mode
[ 1624.645566][ T7071] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 1624.707293][ T7071] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 1624.736130][ T7071] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 1624.771887][ T7071] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 1624.820739][ T7071] ubi31: max/mean erase counter: 1/1, WL threshold: 4096, image sequence number: 1883428145
[ 1624.877160][ T7071] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 1624.910227][ T4699] usb 1-1: new high-speed USB device number 70 using dummy_hcd
[ 1624.956222][ T7083] ubi31: background thread "ubi_bgt31d" started, PID 7083
[ 1625.095100][ T4699] usb 1-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1625.134240][ T4699] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1625.187569][ T4699] usb 1-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1625.234278][ T4699] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1625.277969][ T4699] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1625.375248][ T4699] usb 1-1: Quirk or no altset; falling back to MIDI 1.0
[ 1625.416479][ T4699] usb 1-1: invalid MIDI out EP 0
[ 1625.917777][ T4699] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1625.935729][ T6061] udevd[6061]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1625.958832][ T4709] usb 8-1: new full-speed USB device number 24 using dummy_hcd
[ 1626.000353][ T4699] usb 1-1: USB disconnect, device number 70
[ 1626.043971][ T7113] loop1: detected capacity change from 0 to 1764
[ 1626.153487][ T4709] usb 8-1: unable to get BOS descriptor or descriptor too short
[ 1626.172695][ T4709] usb 8-1: not running at top speed; connect to a high speed hub
[ 1626.216960][ T4709] usb 8-1: config 1 has an invalid interface number: 116 but max is 0
[ 1626.265231][ T4709] usb 8-1: config 1 has no interface number 0
[ 1626.301875][ T4709] usb 8-1: config 1 interface 116 altsetting 15 has an invalid descriptor for endpoint zero, skipping
[ 1626.355846][ T4709] usb 8-1: config 1 interface 116 altsetting 15 endpoint 0xA has invalid maxpacket 512, setting to 64
[ 1626.398950][ T7123] ubi: mtd0 is already attached to ubi31
[ 1626.405089][ T4709] usb 8-1: config 1 interface 116 altsetting 15 has an endpoint descriptor with address 0xA1, changing to 0x81
[ 1626.451242][ T4709] usb 8-1: config 1 interface 116 altsetting 15 endpoint 0x81 has invalid maxpacket 48940, setting to 64
[ 1626.508071][ T4709] usb 8-1: config 1 interface 116 altsetting 15 has 4 endpoint descriptors, different from the interface descriptor's value: 3
[ 1626.572449][ T4709] usb 8-1: config 1 interface 116 has no altsetting 0
[ 1626.614371][ T4709] usb 8-1: New USB device found, idVendor=03f0, idProduct=0307, bcdDevice= 0.01
[ 1626.650868][ T4709] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1626.682777][ T4709] usb 8-1: Product: syz
[ 1626.699588][ T4709] usb 8-1: Manufacturer: syz
[ 1626.709239][ T7131] vivid-007: =================  START STATUS  =================
[ 1626.726390][ T4709] usb 8-1: SerialNumber: syz
[ 1626.735101][ T7131] vivid-007: Generate PTS: true
[ 1626.765602][ T7104] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[ 1626.769944][ T7131] vivid-007: Generate SCR: 
[ 1626.780419][ T7104] raw-gadget.1 gadget.7: fail, usb_ep_enable returned -22
[ 1626.822583][ T7131] true
[ 1626.833880][ T7131] tpg source WxH: 320x240 (Y'CbCr)
[ 1626.888534][ T7130] bond6: option primary: mode dependency failed, not supported in mode broadcast(3)
[ 1626.900466][ T7131] tpg field: 1
[ 1626.910780][ T7130] bond6 (unregistering): Released all slaves
[ 1626.916540][ T7131] tpg crop: (0,0)/320x240
[ 1626.939875][ T7131] tpg compose: (0,0)/320x240
[ 1626.965836][ T7131] tpg colorspace: 8
[ 1626.992164][ T7131] tpg transfer function: 0/0
[ 1627.013374][ T7131] tpg Y'CbCr encoding: 0/0
[ 1627.034888][ T7131] tpg quantization: 0/0
[ 1627.057465][ T7131] tpg RGB range: 0/2
[ 1627.075732][ T7131] vivid-007: ==================  END STATUS  ==================
[ 1627.105267][ T4709] ums-usbat 8-1:1.116: USB Mass Storage device detected
[ 1627.326760][ T4709] ums-usbat 8-1:1.116: probe with driver ums-usbat failed with error -5
[ 1627.425915][ T4709] usb 8-1: USB disconnect, device number 24
[ 1628.064616][ T7166] ubi: mtd0 is already attached to ubi31
[ 1628.567768][ T7177] loop7: detected capacity change from 0 to 4096
[ 1628.642591][ T7185] loop0: detected capacity change from 0 to 2048
[ 1628.675608][ T7185] UDF-fs: error (device loop0): udf_read_tagged: read failed, block=27485, location=27485
[ 1628.728373][ T7190] loop3: detected capacity change from 0 to 1024
[ 1628.747246][ T7185] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1628.864568][ T7190] hfsplus: invalid length 1280 has been corrected to 255
[ 1630.625065][ T7245] loop7: detected capacity change from 0 to 512
[ 1630.667059][ T7209] loop3: detected capacity change from 0 to 32768
[ 1630.714548][ T7209] (syz.3.14615,7209,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1630.773760][ T7209] (syz.3.14615,7209,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1630.853087][ T7209] JBD2: Ignoring recovery information on journal
[ 1630.961954][ T7252] netdevsim netdevsim1 : renamed from netdevsim0
[ 1631.010703][ T7254] loop0: detected capacity change from 0 to 128
[ 1631.023245][ T7209] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1631.082997][ T7254] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1631.178188][ T7254] ext4 filesystem being mounted at /2458/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1631.357339][ T5700] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1631.690200][ T5708] ocfs2: Unmounting device (7,3) on (node local)
[ 1632.045742][ T7281] overlayfs: conflicting options: userxattr,redirect_dir=on
[ 1632.173680][ T7283] loop6: detected capacity change from 0 to 2048
[ 1632.216111][ T4703] usb 6-1: new high-speed USB device number 64 using dummy_hcd
[ 1632.228427][ T7283] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1632.388752][ T7289] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1632.440549][ T4703] usb 6-1: Using ep0 maxpacket: 16
[ 1632.459359][ T4703] usb 6-1: config 0 has an invalid interface number: 0 but max is -1
[ 1632.480452][ T4703] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1632.518343][ T4703] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 1632.538734][ T4703] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= e.89
[ 1632.559360][ T4703] usb 6-1: New USB device strings: Mfr=221, Product=0, SerialNumber=3
[ 1632.578654][ T4703] usb 6-1: Manufacturer: syz
[ 1632.596049][ T4703] usb 6-1: SerialNumber: syz
[ 1632.653933][ T4703] usb 6-1: config 0 descriptor??
[ 1632.688347][ T4703] usb 6-1: 0:2 : does not exist
[ 1633.175164][ T4703] usb 6-1: 5:0: cannot get min/max values for control 8 (id 5)
[ 1633.338326][ T4703] usb 6-1: USB disconnect, device number 64
[ 1633.427562][ T6061] udevd[6061]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1633.553064][ T7315] loop0: detected capacity change from 0 to 4096
[ 1633.558934][ T7319] loop3: detected capacity change from 0 to 512
[ 1633.588482][ T7315] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1633.642362][ T7319] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1633.708997][ T7315] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1633.754029][ T7319] ext4 filesystem being mounted at /2471/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1633.794227][ T7315] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[ 1633.905734][ T7319] fs-verity (loop3, inode 15): Unrecognized descriptor size: 0 bytes
[ 1634.140918][ T5708] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1634.274110][ T7333] netlink: 260 bytes leftover after parsing attributes in process `syz.5.14674'.
[ 1634.430531][ T7297] loop7: detected capacity change from 0 to 40427
[ 1634.467135][ T7297] F2FS-fs: heap/no_heap options were deprecated
[ 1634.917353][ T7357] loop1: detected capacity change from 0 to 128
[ 1634.937559][ T7357] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1634.992037][ T7357] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1635.277764][ T7365] xt_TCPMSS: Only works on TCP SYN packets
[ 1635.298323][ T7363] netlink: 32 bytes leftover after parsing attributes in process `syz.5.14689'.
[ 1635.308067][   T12] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1635.387960][ T4703] usb 4-1: new high-speed USB device number 69 using dummy_hcd
[ 1635.541398][ T7369] loop0: detected capacity change from 0 to 256
[ 1635.580971][ T4703] usb 4-1: Using ep0 maxpacket: 16
[ 1635.614906][ T4703] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[ 1635.648251][ T4703] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1635.670597][ T7375] netlink: 16 bytes leftover after parsing attributes in process `syz.7.14694'.
[ 1635.695394][ T4703] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 1635.732903][ T4703] usb 4-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= e.89
[ 1635.762583][ T4703] usb 4-1: New USB device strings: Mfr=221, Product=0, SerialNumber=3
[ 1635.793106][ T4703] usb 4-1: Manufacturer: syz
[ 1635.813564][ T4703] usb 4-1: SerialNumber: syz
[ 1635.851209][ T4703] usb 4-1: config 0 descriptor??
[ 1635.851376][   T31] audit: type=1326 audit(1781795657.994:264): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a339ce59 code=0x7ffc0000
[ 1635.902980][ T4703] usb 4-1: 0:2 : does not exist
[ 1635.988999][   T31] audit: type=1326 audit(1781795658.041:265): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a339ce59 code=0x7ffc0000
[ 1636.083934][   T31] audit: type=1326 audit(1781795658.050:266): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a339ce59 code=0x7ffc0000
[ 1636.134228][   T31] audit: type=1326 audit(1781795658.050:267): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a339ce59 code=0x7ffc0000
[ 1636.199160][   T31] audit: type=1326 audit(1781795658.060:268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7fd9a339ce59 code=0x7ffc0000
[ 1636.298888][   T31] audit: type=1326 audit(1781795658.097:269): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd9a339ce59 code=0x7ffc0000
[ 1636.342050][   T31] audit: type=1326 audit(1781795658.097:270): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd9a335d68e code=0x7ffc0000
[ 1636.387350][ T4703] usb 4-1: 5:0: cannot get min/max values for control 8 (id 5)
[ 1636.419712][ T7389] loop0: detected capacity change from 0 to 1764
[ 1636.430625][ T7391] loop7: detected capacity change from 0 to 136
[ 1636.446773][ T7391] Attempt to read inode for relocated directory
[ 1636.464854][   T31] audit: type=1326 audit(1781795658.106:271): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd9a335d68e code=0x7ffc0000
[ 1636.557254][   T31] audit: type=1326 audit(1781795658.106:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd9a335d68e code=0x7ffc0000
[ 1636.575344][ T4703] usb 4-1: USB disconnect, device number 69
[ 1636.640444][ T7393] 9pnet: Found fid 0 not clunked
[ 1636.696113][ T7395] dlm: Unknown command passed to DLM device : 128
[ 1636.696113][ T7395] 
[ 1636.702351][   T31] audit: type=1326 audit(1781795658.106:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7376 comm="syz.6.14696" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fd9a335d68e code=0x7ffc0000
[ 1637.211112][ T7404] loop1: detected capacity change from 0 to 2048
[ 1637.278910][ T7414] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1637.353282][ T5955] usb 6-1: new high-speed USB device number 65 using dummy_hcd
[ 1637.528761][ T5955] usb 6-1: config 0 has an invalid interface number: 50 but max is 0
[ 1637.562944][ T5955] usb 6-1: config 0 has no interface number 0
[ 1637.583782][ T5955] usb 6-1: config 0 interface 50 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1637.616104][ T7424] CIFS: iocharset name too long
[ 1637.626237][ T5955] usb 6-1: New USB device found, idVendor=0c45, idProduct=1010, bcdDevice=e6.fc
[ 1637.647359][ T5955] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1637.667450][ T5955] usb 6-1: Product: syz
[ 1637.681912][ T5955] usb 6-1: Manufacturer: syz
[ 1637.702105][ T5955] usb 6-1: SerialNumber: syz
[ 1637.728841][ T5955] usb 6-1: config 0 descriptor??
[ 1637.790204][ T5955] yurex 6-1:0.50: USB YUREX device now attached to Yurex #0
[ 1637.825723][ T7428] loop7: detected capacity change from 0 to 256
[ 1637.865464][ T4688] usb 4-1: new high-speed USB device number 70 using dummy_hcd
[ 1637.891708][ T7430] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1638.051014][ T4688] usb 4-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 1638.093748][ T4688] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1638.140262][ T4688] usb 4-1: config 0 descriptor??
[ 1638.171162][ T4688] cp210x 4-1:0.0: cp210x converter detected
[ 1638.184128][ T7434] loop0: detected capacity change from 0 to 256
[ 1638.228344][ T7434] FAT-fs (loop0): Directory bread(block 64) failed
[ 1638.248057][ T7434] FAT-fs (loop0): Directory bread(block 65) failed
[ 1638.277219][ T7434] FAT-fs (loop0): Directory bread(block 66) failed
[ 1638.288138][ T5955] usb 7-1: new high-speed USB device number 42 using dummy_hcd
[ 1638.288166][ T4709] usb 6-1: USB disconnect, device number 65
[ 1638.311959][ T7434] FAT-fs (loop0): Directory bread(block 67) failed
[ 1638.333044][ T4709] yurex 6-1:0.50: USB YUREX #0 now disconnected
[ 1638.335099][ T7434] FAT-fs (loop0): Directory bread(block 68) failed
[ 1638.368048][ T7434] FAT-fs (loop0): Directory bread(block 69) failed
[ 1638.397534][ T7434] FAT-fs (loop0): Directory bread(block 70) failed
[ 1638.412742][ T7434] FAT-fs (loop0): Directory bread(block 71) failed
[ 1638.446712][ T7434] FAT-fs (loop0): Directory bread(block 72) failed
[ 1638.473878][ T7434] FAT-fs (loop0): Directory bread(block 73) failed
[ 1638.521909][ T5955] usb 7-1: config 0 has an invalid interface number: 117 but max is 0
[ 1638.538429][ T5955] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1638.559465][ T5955] usb 7-1: config 0 has no interface number 0
[ 1638.568182][ T5955] usb 7-1: config 0 interface 117 altsetting 0 endpoint 0x88 has an invalid bInterval 0, changing to 7
[ 1638.599829][ T5955] usb 7-1: config 0 interface 117 altsetting 0 endpoint 0x88 has invalid wMaxPacketSize 0
[ 1638.621564][ T5955] usb 7-1: config 0 interface 117 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1638.640265][ T5955] usb 7-1: New USB device found, idVendor=0afa, idProduct=03e8, bcdDevice=99.d0
[ 1638.650848][ T4688] cp210x 4-1:0.0: failed to get vendor val 0x000e size 3: -71
[ 1638.667781][ T5955] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1638.679634][ T4688] cp210x 4-1:0.0: failed to get vendor val 0x370c size 73: -71
[ 1638.690883][ T5955] usb 7-1: Product: syz
[ 1638.695173][ T4688] cp210x 4-1:0.0: GPIO initialisation failed: -71
[ 1638.702449][ T7444] openvswitch: netlink: Either Ethernet header or EtherType is required.
[ 1638.709866][ T5955] usb 7-1: Manufacturer: syz
[ 1638.723847][ T5955] usb 7-1: SerialNumber: syz
[ 1638.732268][ T4688] usb 4-1: cp210x converter now attached to ttyUSB0
[ 1638.747510][ T5955] usb 7-1: config 0 descriptor??
[ 1638.767202][ T4688] usb 4-1: USB disconnect, device number 70
[ 1638.822771][ T4688] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 1638.853712][ T4688] cp210x 4-1:0.0: device disconnected
[ 1638.899938][ T7446] netlink: 260 bytes leftover after parsing attributes in process `syz.1.14729'.
[ 1638.989081][ T7450] xt_socket: unknown flags 0x48
[ 1639.234110][ T5955] usbtouchscreen 7-1:0.117: probe with driver usbtouchscreen failed with error -71
[ 1639.302669][ T5955] usb 7-1: USB disconnect, device number 42
[ 1640.080665][ T4709] usb 8-1: new high-speed USB device number 25 using dummy_hcd
[ 1640.273533][ T4709] usb 8-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1640.308994][ T4709] usb 8-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1640.344696][ T4709] usb 8-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1640.375557][ T5955] usb 7-1: new high-speed USB device number 43 using dummy_hcd
[ 1640.380442][ T4709] usb 8-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1640.408799][ T4709] usb 8-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.459665][ T4709] usb 8-1: Quirk or no altset; falling back to MIDI 1.0
[ 1640.492398][ T4709] usb 8-1: invalid MIDI out EP 0
[ 1640.550740][ T7502] loop5: detected capacity change from 0 to 16
[ 1640.568957][ T7502] MTD: Attempt to mount non-MTD device "/dev/loop5"
[ 1640.575715][ T5955] usb 7-1: Using ep0 maxpacket: 32
[ 1640.589174][ T5955] usb 7-1: New USB device found, idVendor=0b89, idProduct=0007, bcdDevice=ef.64
[ 1640.625322][ T7507] netlink: 'syz.1.14760': attribute type 2 has an invalid length.
[ 1640.632035][ T5955] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1640.703432][ T5955] usb 7-1: config 0 descriptor??
[ 1640.817775][ T5955] as10x_usb: device has been detected
[ 1640.840426][ T5955] dvbdev: DVB: registering new adapter (nBox DVB-T Dongle)
[ 1640.903341][ T5955] usb 7-1: DVB: registering adapter 1 frontend 0 (nBox DVB-T Dongle)...
[ 1640.939001][ T4709] snd-usb-audio 8-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1640.996750][ T4709] usb 8-1: USB disconnect, device number 25
[ 1641.102122][ T6061] udevd[6061]: error opening ATTR{/sys/devices/platform/dummy_hcd.7/usb8/8-1/8-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1641.235141][ T5955] as10x_usb: error during firmware upload part1
[ 1641.271554][ T7520] netlink: 'syz.1.14766': attribute type 2 has an invalid length.
[ 1641.312973][ T5955] Registered device nBox DVB-T Dongle
[ 1641.372071][ T5955] usb 7-1: USB disconnect, device number 43
[ 1641.983996][ T7540] netlink: 'syz.7.14775': attribute type 8 has an invalid length.
[ 1642.079185][ T5955] Unregistered device nBox DVB-T Dongle
[ 1642.094113][ T5955] as10x_usb: device has been disconnected
[ 1642.142483][   T31] kauditd_printk_skb: 64 callbacks suppressed
[ 1642.142518][   T31] audit: type=1326 audit(1781795663.883:338): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1642.263258][   T31] audit: type=1326 audit(1781795663.883:339): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1642.400428][   T31] audit: type=1326 audit(1781795663.902:340): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1642.496355][   T31] audit: type=1326 audit(1781795663.902:341): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1642.605476][   T31] audit: type=1326 audit(1781795663.902:342): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=162 compat=0 ip=0x7f208c59ce59 code=0x7ffc0000
[ 1642.678090][   T31] audit: type=1326 audit(1781795663.958:343): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f208c55d68e code=0x7ffc0000
[ 1642.808419][   T31] audit: type=1326 audit(1781795663.968:344): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f208c55d68e code=0x7ffc0000
[ 1642.895743][   T31] audit: type=1326 audit(1781795663.968:345): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f208c55d68e code=0x7ffc0000
[ 1642.970359][ T7564] netlink: 12 bytes leftover after parsing attributes in process `syz.7.14787'.
[ 1643.025807][   T31] audit: type=1326 audit(1781795663.968:346): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f208c55d68e code=0x7ffc0000
[ 1643.101114][   T31] audit: type=1326 audit(1781795663.968:347): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7541 comm="syz.1.14777" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7f208c55d68e code=0x7ffc0000
[ 1643.457076][ T7576] loop1: detected capacity change from 0 to 512
[ 1643.540112][ T7576] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1643.622378][ T7576] ext4 filesystem being mounted at /2429/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1643.963352][ T7585] loop3: detected capacity change from 0 to 4096
[ 1643.996462][ T5701] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1644.116754][ T7585] ntfs3(loop3): ino=b, mi_enum_attr
[ 1644.124596][ T7585] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1644.159450][ T7585] ntfs3(loop3): Failed to load $Extend (-22).
[ 1644.176031][ T7599] loop5: detected capacity change from 0 to 1024
[ 1644.200502][ T7585] ntfs3(loop3): Failed to initialize $Extend.
[ 1644.323907][ T7601] program syz.1.14804 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1644.370183][ T7599] hfsplus: request for non-existent node 33423360 in B*Tree
[ 1644.436233][ T7599] hfsplus: request for non-existent node 33423360 in B*Tree
[ 1644.987694][ T7615] loop6: detected capacity change from 0 to 64
[ 1645.069110][ T7622] netlink: 'syz.3.14813': attribute type 11 has an invalid length.
[ 1645.311449][ T4699] usb 1-1: new high-speed USB device number 71 using dummy_hcd
[ 1645.512549][ T4699] usb 1-1: Using ep0 maxpacket: 16
[ 1645.537648][ T4699] usb 1-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5
[ 1645.577145][ T4699] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1645.600978][ T4699] usb 1-1: Product: syz
[ 1645.614338][ T4699] usb 1-1: Manufacturer: syz
[ 1645.633783][ T4699] usb 1-1: SerialNumber: syz
[ 1645.657618][ T4699] usb 1-1: config 0 descriptor??
[ 1645.680535][ T4699] visor 1-1:0.0: Sony Clie 3.5 converter detected
[ 1646.069280][ T7640] loop3: detected capacity change from 0 to 4096
[ 1646.151064][ T4699] usb 1-1: clie_3_5_startup: get interface number failed: -71
[ 1646.170571][ T7613] loop5: detected capacity change from 0 to 32768
[ 1646.183269][ T7644] loop7: detected capacity change from 0 to 1024
[ 1646.191026][ T4699] visor 1-1:0.0: probe with driver visor failed with error -71
[ 1646.199544][ T7640] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1646.242058][ T4699] usb 1-1: USB disconnect, device number 71
[ 1646.362803][ T7640] ntfs3(loop3): Failed to load $Extend (-22).
[ 1646.405959][ T7640] ntfs3(loop3): Failed to initialize $Extend.
[ 1646.901521][ T7656] xt_ecn: cannot match TCP bits for non-tcp packets
[ 1646.969006][ T7659] loop7: detected capacity change from 0 to 64
[ 1647.082793][ T4699] usb 7-1: new full-speed USB device number 44 using dummy_hcd
[ 1647.314067][ T4699] usb 7-1: config 0 has an invalid interface number: 176 but max is 2
[ 1647.347065][ T4699] usb 7-1: config 0 has no interface number 1
[ 1647.370442][ T4699] usb 7-1: too many endpoints for config 0 interface 0 altsetting 255: 255, using maximum allowed: 30
[ 1647.428005][ T4699] usb 7-1: config 0 interface 0 altsetting 255 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1647.503101][ T4699] usb 7-1: config 0 interface 0 has no altsetting 0
[ 1647.540276][ T4699] usb 7-1: New USB device found, idVendor=05c6, idProduct=9205, bcdDevice=29.ac
[ 1647.584367][ T4699] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1647.646050][ T4699] usb 7-1: config 0 descriptor??
[ 1647.881762][ T4699] usb 7-1: Could not set interface, error -71
[ 1647.948829][ T4699] qmi_wwan 7-1:0.0: probe with driver qmi_wwan failed with error -22
[ 1648.047804][ T4699] usb 7-1: USB disconnect, device number 44
[ 1648.341041][ T7698] loop3: detected capacity change from 0 to 2048
[ 1648.365246][ T7698] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[ 1648.427453][ T7700] loop0: detected capacity change from 0 to 2048
[ 1648.442734][ T7698] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1648.451832][ T5955] usb 2-1: new high-speed USB device number 88 using dummy_hcd
[ 1648.497331][ T7700] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1648.610060][ T5955] usb 2-1: Using ep0 maxpacket: 8
[ 1648.665792][ T5955] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1648.723387][ T5955] usb 2-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1648.742839][ T7700] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1314: group 0, block bitmap and bg descriptor inconsistent: 0 vs 150994969 free clusters
[ 1648.765338][ T5955] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1648.784827][ T5955] usb 2-1: Product: syz
[ 1648.791598][ T5955] usb 2-1: Manufacturer: syz
[ 1648.804125][ T5955] usb 2-1: SerialNumber: syz
[ 1648.950639][ T5700] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1649.113753][ T5955] usb 2-1: Handspring Visor / Palm OS: No valid connect info available
[ 1649.118424][ T7718] netlink: 92 bytes leftover after parsing attributes in process `syz.3.14858'.
[ 1649.145422][ T7718] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1649.146740][ T5955] usb 2-1: Handspring Visor / Palm OS: port 225, is for Debugger use
[ 1649.226442][ T5955] usb 2-1: Handspring Visor / Palm OS: port 212, is for unknown use
[ 1649.265388][ T5955] usb 2-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1649.310240][ T5955] usb 2-1: palm_os_3_probe - error -71 getting bytes available request
[ 1649.346481][ T5955] visor 2-1:1.0: Handspring Visor / Palm OS converter detected
[ 1649.357643][ T4709] usb 6-1: new high-speed USB device number 66 using dummy_hcd
[ 1649.387921][ T5955] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1649.444015][ T5955] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1649.484617][ T5955] usb 2-1: USB disconnect, device number 88
[ 1649.534384][ T5955] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1649.552278][ T4709] usb 6-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1649.595680][ T5955] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1649.600851][ T4709] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1649.630841][ T5955] visor 2-1:1.0: device disconnected
[ 1649.667794][ T4709] usb 6-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1649.715844][ T4709] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1649.758254][ T4709] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1649.768032][ T7735] netlink: 8 bytes leftover after parsing attributes in process `syz.6.14867'.
[ 1649.826791][ T4709] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1649.868065][ T4709] usb 6-1: invalid MIDI out EP 0
[ 1650.250280][ T6844] udevd[6844]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1650.298005][ T4709] snd-usb-audio 6-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1650.344964][ T4709] usb 6-1: USB disconnect, device number 66
[ 1650.406044][ T7749] netlink: 'syz.3.14875': attribute type 2 has an invalid length.
[ 1650.460807][ T7749] netlink: 'syz.3.14875': attribute type 1 has an invalid length.
[ 1650.510066][ T7749] netlink: 'syz.3.14875': attribute type 1 has an invalid length.
[ 1650.708807][ T7760] xfrm0: entered promiscuous mode
[ 1650.726875][ T7760] xfrm0: entered allmulticast mode
[ 1651.137847][ T7774] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1651.239859][ T7780] netlink: 24 bytes leftover after parsing attributes in process `syz.3.14891'.
[ 1652.151820][ T7814] loop1: detected capacity change from 0 to 1024
[ 1652.350994][ T7816] Process accounting paused
[ 1652.368513][ T7815] loop5: detected capacity change from 0 to 4096
[ 1652.417998][ T7815] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512).
[ 1652.628522][ T7831] loop1: detected capacity change from 0 to 512
[ 1652.659565][ T7831] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1652.802096][ T7831] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1652.841496][ T7838] netlink: 'syz.7.14919': attribute type 32 has an invalid length.
[ 1652.915709][ T7831] ext4 filesystem being mounted at /2445/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1653.056974][ T7845] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1653.231017][ T7842] loop0: detected capacity change from 0 to 4096
[ 1653.254503][ T7831] EXT4-fs error (device loop1): ext4_xattr_block_get:597: inode #15: comm syz.1.14914: corrupted xattr block 33: invalid ea_ino
[ 1653.290776][ T7842] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512).
[ 1653.391904][ T7842] ntfs3(loop0): ino=19, mi_enum_attr
[ 1653.428655][ T7842] ntfs3(loop0): Mark volume as dirty due to NTFS errors
[ 1653.452819][ T7842] ntfs3(loop0): Failed to initialize $Extend/$Reparse.
[ 1653.593532][ T7831] EXT4-fs error (device loop1): ext4_get_inode_usage:888: inode #15: comm syz.1.14914: corrupted xattr block 33: invalid ea_ino
[ 1653.636742][ T7842] ntfs3(loop0): mft corrupted
[ 1653.665882][ T7857] loop5: detected capacity change from 0 to 1764
[ 1653.667697][ T7859] sctp: [Deprecated]: syz.7.14928 (pid 7859) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 1653.667697][ T7859] Use struct sctp_sack_info instead
[ 1653.769849][ T5701] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1654.412632][ T7879] loop7: detected capacity change from 0 to 8
[ 1654.511103][   T31] kauditd_printk_skb: 128 callbacks suppressed
[ 1654.511131][   T31] audit: type=1400 audit(1781795675.475:476): apparmor="DENIED" operation="setprocattr" info="invalid" error=-22 profile="unconfined" pid=7880 comm="syz.5.14940"
[ 1655.092524][ T7903] netlink: 8 bytes leftover after parsing attributes in process `syz.7.14949'.
[ 1655.103624][ T4699] usb 7-1: new high-speed USB device number 45 using dummy_hcd
[ 1655.140740][ T7907] openvswitch: netlink: IPv4 tunnel dst address is zero
[ 1655.194384][ T7903] erspan1: entered allmulticast mode
[ 1655.306639][ T4699] usb 7-1: Using ep0 maxpacket: 16
[ 1655.336828][ T4699] usb 7-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1655.376679][ T4699] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[ 1655.410992][ T4699] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[ 1655.446588][ T4699] usb 7-1: config 0 has an invalid interface number: 125 but max is 1
[ 1655.474671][ T4699] usb 7-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1655.500013][ T4699] usb 7-1: config 0 has no interface number 0
[ 1655.517202][ T4699] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1655.553417][ T4699] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1655.592110][ T4699] usb 7-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1655.629651][ T4699] usb 7-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1655.646172][ T4699] usb 7-1: config 0 interface 125 has no altsetting 0
[ 1655.700651][ T4699] usb 7-1: config 0 interface 125 has no altsetting 2
[ 1655.738312][ T4699] usb 7-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1655.778649][ T4699] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1655.809527][ T4699] usb 7-1: Product: syz
[ 1655.828699][ T4699] usb 7-1: Manufacturer: syz
[ 1655.860492][ T4699] usb 7-1: SerialNumber: syz
[ 1655.879006][ T4699] usb 7-1: config 0 descriptor??
[ 1655.912494][ T4699] usb 7-1: selecting invalid altsetting 2
[ 1656.137818][    C1] usb 7-1: async_complete: urb error -71
[ 1656.143665][    C1] usb 7-1: async_complete: urb error -71
[ 1656.149424][    C1] usb 7-1: async_complete: urb error -71
[ 1656.155178][    C1] usb 7-1: async_complete: urb error -71
[ 1656.204881][ T4699] get_1284_register: usb error -71
[ 1656.220017][ T4699] usb 7-1: USB disconnect, device number 45
[ 1656.289446][ T5955] usb 6-1: new high-speed USB device number 67 using dummy_hcd
[ 1656.485198][ T5955] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1656.506193][ T7946] netlink: 8 bytes leftover after parsing attributes in process `syz.0.14968'.
[ 1656.521001][ T5955] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1656.564930][ T5955] usb 6-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1656.566592][ T7946] erspan2: entered allmulticast mode
[ 1656.615273][ T5955] usb 6-1: string descriptor 0 read error: -22
[ 1656.634462][ T5955] usb 6-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[ 1656.662871][ T5955] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1656.735940][ T5955] usb 6-1: selecting invalid altsetting 1
[ 1656.749805][ T5955] usb 6-1: unit 3 not found!
[ 1656.944663][ T5955] usb 6-1: unit 0 not found!
[ 1657.205186][ T5955] usb 6-1: USB disconnect, device number 67
[ 1657.656735][ T7980] xt_hashlimit: max too large, truncated to 1048576
[ 1657.935549][ T7990] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14993'.
[ 1657.962236][ T7990] netlink: 12 bytes leftover after parsing attributes in process `syz.3.14993'.
[ 1658.019312][ T4688] usb 8-1: new high-speed USB device number 26 using dummy_hcd
[ 1658.194550][ T4688] usb 8-1: Using ep0 maxpacket: 16
[ 1658.215721][ T4688] usb 8-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1658.250116][ T4688] usb 8-1: config 0 has an invalid interface number: 125 but max is 1
[ 1658.280582][ T4688] usb 8-1: config 0 has an invalid interface number: 125 but max is 1
[ 1658.304891][ T4688] usb 8-1: config 0 has an invalid interface number: 125 but max is 1
[ 1658.323232][ T4688] usb 8-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1658.343449][ T4688] usb 8-1: config 0 has no interface number 0
[ 1658.367526][ T4688] usb 8-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1658.389298][   T31] audit: type=1326 audit(1781795679.098:477): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8007 comm="syz.5.14999" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1658.394378][ T4688] usb 8-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1658.475996][ T4688] usb 8-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1658.518217][   T31] audit: type=1326 audit(1781795679.098:478): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8007 comm="syz.5.14999" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1658.525511][ T4688] usb 8-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1658.611422][   T31] audit: type=1326 audit(1781795679.098:479): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8007 comm="syz.5.14999" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=453 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1658.640768][ T4688] usb 8-1: config 0 interface 125 has no altsetting 0
[ 1658.658616][ T4688] usb 8-1: config 0 interface 125 has no altsetting 2
[ 1658.679885][ T4688] usb 8-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1658.690388][ T4688] usb 8-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1658.699603][ T4688] usb 8-1: Product: syz
[ 1658.724020][   T31] audit: type=1326 audit(1781795679.098:480): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8007 comm="syz.5.14999" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1658.732908][ T4688] usb 8-1: Manufacturer: syz
[ 1658.816517][ T4688] usb 8-1: SerialNumber: syz
[ 1658.844069][   T31] audit: type=1326 audit(1781795679.098:481): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8007 comm="syz.5.14999" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1658.875097][ T4688] usb 8-1: config 0 descriptor??
[ 1658.901185][ T4688] usb 8-1: selecting invalid altsetting 2
[ 1658.931908][ T8022] netlink: 8 bytes leftover after parsing attributes in process `syz.0.15006'.
[ 1658.973242][ T8022] lo: entered allmulticast mode
[ 1659.128537][    C0] usb 8-1: async_complete: urb error -71
[ 1659.134369][    C0] usb 8-1: async_complete: urb error -71
[ 1659.140189][    C0] usb 8-1: async_complete: urb error -71
[ 1659.146016][    C0] usb 8-1: async_complete: urb error -71
[ 1659.165069][ T4688] get_1284_register: usb error -71
[ 1659.231905][ T8030] netlink: 'syz.5.15010': attribute type 1 has an invalid length.
[ 1659.234378][ T4688] usb 8-1: USB disconnect, device number 26
[ 1659.353776][ T8032] loop0: detected capacity change from 0 to 8
[ 1659.489923][ T8032] SQUASHFS error: xz decompression failed, data probably corrupt
[ 1659.517204][ T8032] SQUASHFS error: Failed to read block 0x60: -5
[ 1659.541374][ T8032] SQUASHFS error: xz decompression failed, data probably corrupt
[ 1659.568008][ T8032] SQUASHFS error: Failed to read block 0x60: -5
[ 1659.585174][   T31] audit: type=1800 audit(1781795680.222:482): pid=8032 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.15011" name="file1" dev="loop0" ino=1 res=0 errno=0
[ 1659.627740][ T8042] netlink: 'syz.5.15015': attribute type 9 has an invalid length.
[ 1659.842177][ T8046] kAFS: unable to lookup cell ''
[ 1660.256094][ T8060] loop0: detected capacity change from 0 to 128
[ 1660.492324][ T8065] QAT: failed to copy from user cfg_data.
[ 1660.754933][ T8038] loop3: detected capacity change from 0 to 32768
[ 1660.782280][ T8038] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.15014 (8038)
[ 1660.854499][ T8038] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1660.905689][ T8038] BTRFS info (device loop3): using sha256 checksum algorithm
[ 1661.139134][ T8038] BTRFS info (device loop3): enabling ssd optimizations
[ 1661.174258][ T8038] BTRFS info (device loop3): turning on async discard
[ 1661.200525][ T8038] BTRFS info (device loop3): enabling free space tree
[ 1661.351541][ T4703] usb 6-1: new high-speed USB device number 68 using dummy_hcd
[ 1661.463870][ T5708] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1661.570194][ T4703] usb 6-1: Using ep0 maxpacket: 16
[ 1661.613764][ T4703] usb 6-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1661.647006][ T4703] usb 6-1: config 0 has an invalid interface number: 125 but max is 1
[ 1661.677895][ T4703] usb 6-1: config 0 has an invalid interface number: 125 but max is 1
[ 1661.732320][ T4703] usb 6-1: config 0 has an invalid interface number: 125 but max is 1
[ 1661.788496][ T4703] usb 6-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1661.819559][ T4703] usb 6-1: config 0 has no interface number 0
[ 1661.851819][ T4703] usb 6-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1661.889327][ T4703] usb 6-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1661.953320][ T4703] usb 6-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1662.002984][ T4703] usb 6-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1662.082468][ T4703] usb 6-1: config 0 interface 125 has no altsetting 0
[ 1662.111225][ T4703] usb 6-1: config 0 interface 125 has no altsetting 2
[ 1662.145337][ T4703] usb 6-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1662.174553][ T4703] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1662.215339][ T4703] usb 6-1: Product: syz
[ 1662.224302][ T8129] netlink: 'syz.7.15051': attribute type 10 has an invalid length.
[ 1662.241858][ T4703] usb 6-1: Manufacturer: syz
[ 1662.260837][ T4703] usb 6-1: SerialNumber: syz
[ 1662.267248][ T8129] team0: Device lo is loopback device. Loopback devices can't be added as a team port
[ 1662.309070][ T8129] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1662.341501][ T4703] usb 6-1: config 0 descriptor??
[ 1662.372470][ T4703] usb 6-1: selecting invalid altsetting 2
[ 1662.592340][    C1] usb 6-1: async_complete: urb error -71
[ 1662.598184][    C1] usb 6-1: async_complete: urb error -71
[ 1662.603960][    C1] usb 6-1: async_complete: urb error -71
[ 1662.609732][    C1] usb 6-1: async_complete: urb error -71
[ 1662.674672][ T4703] get_1284_register: usb error -71
[ 1662.717702][ T8140] Bluetooth: hci0: Opcode 0x080f failed: -22
[ 1662.769423][ T4703] usb 6-1: USB disconnect, device number 68
[ 1663.379224][ T8160] loop7: detected capacity change from 0 to 1764
[ 1663.631923][ T8166] A link change request failed with some changes committed already. Interface team0 may have been left with an inconsistent configuration, please check.
[ 1664.441910][ T8188] loop1: detected capacity change from 0 to 2048
[ 1664.518817][ T8188] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1664.609922][ T4688] usb 4-1: new high-speed USB device number 71 using dummy_hcd
[ 1664.799789][ T8202] bond9: option arp_interval: invalid value (18446744073709551615)
[ 1664.806155][ T4688] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1664.825298][ T4688] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1664.833793][ T4688] usb 4-1: Product: syz
[ 1664.838082][ T4688] usb 4-1: Manufacturer: syz
[ 1664.850205][ T4688] usb 4-1: SerialNumber: syz
[ 1664.861091][ T8202] bond9: option arp_interval: allowed values 0 - 2147483647
[ 1664.874316][ T4688] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1664.908821][ T4761] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1664.912473][ T8202] bond9 (unregistering): Released all slaves
[ 1665.057892][ T4703] usb 2-1: new high-speed USB device number 89 using dummy_hcd
[ 1665.125891][ T8182] loop0: detected capacity change from 0 to 32768
[ 1665.167223][    C0] usb 4-1: ath9k_htc: over RX MAX_PKT_NUM
[ 1665.228661][ T4703] usb 2-1: Using ep0 maxpacket: 16
[ 1665.254718][ T4703] usb 2-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1665.286265][ T8182] jfs_mkdir: dtInsert returned -EIO
[ 1665.293440][ T4703] usb 2-1: config 0 has an invalid interface number: 125 but max is 1
[ 1665.315690][ T8182] ERROR: (device loop0): txAbort: 
[ 1665.315690][ T8182] 
[ 1665.323224][ T4703] usb 2-1: config 0 has an invalid interface number: 125 but max is 1
[ 1665.336203][ T8182] ERROR: (device loop0): remounting filesystem as read-only
[ 1665.347722][ T4703] usb 2-1: config 0 has an invalid interface number: 125 but max is 1
[ 1665.371215][ T4703] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1665.384579][ T4709] usb 4-1: USB disconnect, device number 71
[ 1665.401921][ T8212] netlink: 28 bytes leftover after parsing attributes in process `syz.6.15091'.
[ 1665.432190][ T4703] usb 2-1: config 0 has no interface number 0
[ 1665.456576][ T4703] usb 2-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1665.490677][ T4703] usb 2-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1665.512142][ T4703] usb 2-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1665.533622][ T4703] usb 2-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1665.563296][ T4703] usb 2-1: config 0 interface 125 has no altsetting 0
[ 1665.578186][ T4703] usb 2-1: config 0 interface 125 has no altsetting 2
[ 1665.595780][ T4703] usb 2-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1665.622126][ T4703] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1665.646364][ T4703] usb 2-1: Product: syz
[ 1665.655194][ T4703] usb 2-1: Manufacturer: syz
[ 1665.666330][ T4703] usb 2-1: SerialNumber: syz
[ 1665.681415][ T4703] usb 2-1: config 0 descriptor??
[ 1665.694230][ T4703] usb 2-1: selecting invalid altsetting 2
[ 1665.916763][    C1] usb 2-1: async_complete: urb error -71
[ 1665.922562][    C1] usb 2-1: async_complete: urb error -71
[ 1665.928308][    C1] usb 2-1: async_complete: urb error -71
[ 1665.934105][    C1] usb 2-1: async_complete: urb error -71
[ 1665.956296][ T4703] get_1284_register: usb error -71
[ 1666.019926][ T4703] usb 2-1: USB disconnect, device number 89
[ 1666.089356][ T4761] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 1666.131287][ T4761] ath9k_htc: Failed to initialize the device
[ 1666.160553][ T4709] usb 4-1: ath9k_htc: USB layer deinitialized
[ 1666.201406][ T8218] netlink: 8 bytes leftover after parsing attributes in process `syz.7.15094'.
[ 1666.223505][ T8220] loop5: detected capacity change from 0 to 128
[ 1666.240373][ T8214] loop6: detected capacity change from 0 to 4096
[ 1666.259114][ T8220] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1666.297751][ T8214] ntfs3(loop6): Different NTFS sector size (2048) and media sector size (512).
[ 1666.309504][ T8220] hpfs: filesystem error: improperly stopped
[ 1666.354369][ T8220] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1666.392384][ T8214] ntfs3(loop6): ino=b, mi_enum_attr
[ 1666.393365][ T8220] hpfs: You really don't want any checks? You are crazy...
[ 1666.422452][ T8214] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1666.444908][ T8220] hpfs: Code page index out of array
[ 1666.468035][ T8214] ntfs3(loop6): Failed to load $Extend (-22).
[ 1666.473114][ T8220] hpfs: code page support is disabled
[ 1666.498689][ T8214] ntfs3(loop6): Failed to initialize $Extend.
[ 1666.504097][ T8220] hpfs: hpfs_map_4sectors(): unaligned read
[ 1666.532771][ T8220] hpfs: hpfs_map_4sectors(): unaligned read
[ 1666.560579][ T8220] hpfs: filesystem error: unable to find root dir
[ 1667.001426][ T4709] usb 4-1: new low-speed USB device number 72 using dummy_hcd
[ 1667.208875][ T4709] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 1667.260790][ T4709] usb 4-1: config 1 has an invalid descriptor of length 74, skipping remainder of the config
[ 1667.305622][ T4709] usb 4-1: config 1 interface 0 altsetting 0 has an endpoint descriptor with address 0xEA, changing to 0x8A
[ 1667.363757][ T4709] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x8A is Bulk; changing to Interrupt
[ 1667.423542][ T4709] usb 4-1: string descriptor 0 read error: -22
[ 1667.438247][ T4709] usb 4-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice= 0.40
[ 1667.473368][ T4709] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1667.520267][ T8228] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1667.569180][ T4709] usb 4-1: selecting invalid altsetting 1
[ 1667.576127][ T8256] overlayfs: option "uuid=on" requires an upper fs, falling back to uuid=null.
[ 1667.615347][ T8256] overlayfs: missing 'lowerdir'
[ 1667.902280][ T8263] SET target dimension over the limit!
[ 1668.009071][ T4709] snd-usb-audio 4-1:1.0: probe with driver snd-usb-audio failed with error -22
[ 1668.060932][ T4709] usb 4-1: USB disconnect, device number 72
[ 1668.779830][ T8272] loop0: detected capacity change from 0 to 32768
[ 1668.810814][ T8272] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1668.819463][ T8284] netlink: 'syz.3.15126': attribute type 2 has an invalid length.
[ 1668.819500][ T8284] netlink: 'syz.3.15126': attribute type 2 has an invalid length.
[ 1668.876875][ T8272] XFS (loop0): Ending clean mount
[ 1668.901927][ T8272] XFS (loop0): Quotacheck needed: Please wait.
[ 1669.131517][ T8272] XFS (loop0): Quotacheck: Done.
[ 1669.224823][ T5700] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1670.420707][ T4709] usb 4-1: new high-speed USB device number 73 using dummy_hcd
[ 1670.603488][ T4709] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1670.615872][ T4709] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1670.627621][ T4709] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1670.638369][ T4709] usb 4-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1670.651997][ T4709] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1670.663909][ T4709] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1670.688961][ T4709] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1670.703392][ T4709] usb 4-1: invalid MIDI out EP 0
[ 1670.868356][ T4709] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1670.947152][ T4761] usb 4-1: USB disconnect, device number 73
[ 1672.901525][ T8320] team0: entered allmulticast mode
[ 1672.918139][ T8320] team_slave_0: entered allmulticast mode
[ 1672.951055][ T8320] team_slave_1: entered allmulticast mode
[ 1672.959347][ T8320] dummy0: entered allmulticast mode
[ 1673.312090][ T8330] geneve3: entered promiscuous mode
[ 1673.354579][ T8330] geneve3: entered allmulticast mode
[ 1673.798281][ T8351] loop5: detected capacity change from 0 to 256
[ 1674.427980][ T8369] openvswitch: netlink: Missing key (keys=40, expected=10000000)
[ 1674.973169][ T8381] loop6: detected capacity change from 0 to 512
[ 1675.075835][ T8387] netlink: 520 bytes leftover after parsing attributes in process `syz.1.15174'.
[ 1675.144519][ T8354] loop3: detected capacity change from 0 to 32768
[ 1675.254385][ T8354] ERROR: (device loop3): diNewExt: no free extents
[ 1675.254385][ T8354] 
[ 1675.268170][ T4688] usb 6-1: new full-speed USB device number 69 using dummy_hcd
[ 1675.358217][ T8354] ialloc: diAlloc returned -5!
[ 1675.443842][ T8391] loop6: detected capacity change from 0 to 256
[ 1675.465837][ T4688] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1675.517824][ T4688] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0x77, changing to 0x7
[ 1675.560801][ T4688] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x7 has an invalid bInterval 0, changing to 10
[ 1675.601893][ T4688] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1675.640326][ T4688] usb 6-1: config 0 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1675.703667][ T4688] usb 6-1: New USB device found, idVendor=2040, idProduct=b138, bcdDevice= 1.42
[ 1675.740012][ T4688] usb 6-1: New USB device strings: Mfr=4, Product=0, SerialNumber=0
[ 1675.776975][ T4688] usb 6-1: Manufacturer: syz
[ 1675.809831][ T4688] usb 6-1: config 0 descriptor??
[ 1675.824130][ T8397] loop6: detected capacity change from 0 to 256
[ 1675.847893][ T8397] exfat: Deprecated parameter 'namecase'
[ 1675.870943][ T8397] exfat: Deprecated parameter 'namecase'
[ 1675.891841][ T8397] exfat: Deprecated parameter 'utf8'
[ 1675.967970][ T8397] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xbe66f6fd, utbl_chksum : 0xe619d30d)
[ 1676.090976][ T4709] usb 1-1: new high-speed USB device number 72 using dummy_hcd
[ 1676.121880][ T8403] netlink: 12 bytes leftover after parsing attributes in process `syz.1.15183'.
[ 1676.170839][ T8405] netlink: 20 bytes leftover after parsing attributes in process `syz.3.15179'.
[ 1676.198621][ T4688] usb 6-1: USB disconnect, device number 69
[ 1676.263313][ T4709] usb 1-1: Using ep0 maxpacket: 16
[ 1676.280854][ T4709] usb 1-1: config 0 has an invalid interface number: 1 but max is 0
[ 1676.315775][ T4709] usb 1-1: config 0 has no interface number 0
[ 1676.353418][ T4709] usb 1-1: New USB device found, idVendor=04fc, idProduct=1528, bcdDevice=6d.5d
[ 1676.395324][ T4709] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1676.407201][ T4709] usb 1-1: Product: syz
[ 1676.419496][ T8385] loop7: detected capacity change from 0 to 32768
[ 1676.428361][ T4709] usb 1-1: Manufacturer: syz
[ 1676.451670][ T4709] usb 1-1: SerialNumber: syz
[ 1676.491763][ T4709] usb 1-1: config 0 descriptor??
[ 1676.522503][ T4709] gspca_main: spca1528-2.14.0 probing 04fc:1528
[ 1676.783519][ T8415] loop6: detected capacity change from 0 to 256
[ 1676.864568][ T8415] FAT-fs (loop6): Directory bread(block 64) failed
[ 1676.871344][ T8419] netlink: 8 bytes leftover after parsing attributes in process `syz.3.15190'.
[ 1676.916925][ T8415] FAT-fs (loop6): Directory bread(block 65) failed
[ 1676.949059][ T8415] FAT-fs (loop6): Directory bread(block 66) failed
[ 1676.958488][ T8415] FAT-fs (loop6): Directory bread(block 67) failed
[ 1676.968084][ T8415] FAT-fs (loop6): Directory bread(block 68) failed
[ 1676.982298][ T4709] gspca_spca1528: reg_w err -71
[ 1676.997706][ T8415] FAT-fs (loop6): Directory bread(block 69) failed
[ 1677.028309][ T8415] FAT-fs (loop6): Directory bread(block 70) failed
[ 1677.038111][ T4709] spca1528 1-1:0.1: probe with driver spca1528 failed with error -71
[ 1677.055219][ T8415] FAT-fs (loop6): Directory bread(block 71) failed
[ 1677.073916][ T8415] FAT-fs (loop6): Directory bread(block 72) failed
[ 1677.091125][ T4709] usb 1-1: USB disconnect, device number 72
[ 1677.111062][ T8415] FAT-fs (loop6): Directory bread(block 73) failed
[ 1677.242455][ T8425] loop3: detected capacity change from 0 to 128
[ 1677.292317][ T8425] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1677.309031][ T8425] ext4 filesystem being mounted at /2557/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1677.413244][ T8425] EXT4-fs warning (device loop3): __ext4_ioctl:1557: Setting inode version is not supported with metadata_csum enabled.
[ 1677.510870][ T4703] usb 7-1: new high-speed USB device number 46 using dummy_hcd
[ 1677.582264][ T5708] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1677.716799][ T4703] usb 7-1: config 127 has an invalid interface number: 63 but max is 0
[ 1677.725225][ T4703] usb 7-1: config 127 has no interface number 0
[ 1677.731507][ T4703] usb 7-1: too many endpoints for config 127 interface 63 altsetting 243: 127, using maximum allowed: 30
[ 1677.743244][ T4703] usb 7-1: config 127 interface 63 altsetting 243 has 0 endpoint descriptors, different from the interface descriptor's value: 127
[ 1677.760496][ T4703] usb 7-1: config 127 interface 63 has no altsetting 0
[ 1677.768399][ T4703] usb 7-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e
[ 1677.778253][ T4703] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1678.032504][ T4703] usb 7-1: string descriptor 0 read error: -71
[ 1678.089395][ T4703] usb 7-1: USB disconnect, device number 46
[ 1678.399346][ T8455] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1678.705380][ T8464] netlink: 'syz.1.15210': attribute type 10 has an invalid length.
[ 1678.784731][ T8464] netlink: 4 bytes leftover after parsing attributes in process `syz.1.15210'.
[ 1678.800153][ T8433] loop7: detected capacity change from 0 to 32768
[ 1679.561471][ T4703] usb 4-1: new high-speed USB device number 74 using dummy_hcd
[ 1679.668775][ T5955] usb 2-1: new high-speed USB device number 90 using dummy_hcd
[ 1679.747286][ T4703] usb 4-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1679.785617][ T4703] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1679.821522][ T4703] usb 4-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1679.852182][ T4703] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1679.865432][ T5955] usb 2-1: config 220 has too many interfaces: 184, using maximum allowed: 32
[ 1679.880819][ T4703] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1679.891879][ T5955] usb 2-1: config 220 has 1 interface, different from the descriptor's value: 184
[ 1679.911213][ T8497] loop5: detected capacity change from 0 to 256
[ 1679.924220][ T5955] usb 2-1: New USB device found, idVendor=0c45, idProduct=8008, bcdDevice=e1.85
[ 1679.928533][ T4703] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1679.973319][ T5955] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1679.976046][ T4703] usb 4-1: invalid MIDI out EP 0
[ 1680.047192][ T5955] gspca_main: sn9c2028-2.14.0 probing 0c45:8008
[ 1680.092420][ T8497] FAT-fs (loop5): Directory bread(block 64) failed
[ 1680.122787][ T8497] FAT-fs (loop5): Directory bread(block 65) failed
[ 1680.159181][ T8497] FAT-fs (loop5): Directory bread(block 66) failed
[ 1680.198981][ T8497] FAT-fs (loop5): Directory bread(block 67) failed
[ 1680.208957][ T8497] FAT-fs (loop5): Directory bread(block 68) failed
[ 1680.243372][ T8497] FAT-fs (loop5): Directory bread(block 69) failed
[ 1680.287521][ T5955] gspca_sn9c2028: read1 error -71
[ 1680.297015][ T8497] FAT-fs (loop5): Directory bread(block 70) failed
[ 1680.315193][ T5955] gspca_sn9c2028: read1 error -71
[ 1680.336285][ T8497] FAT-fs (loop5): Directory bread(block 71) failed
[ 1680.343408][ T5955] gspca_sn9c2028: read1 error -71
[ 1680.364156][ T8497] FAT-fs (loop5): Directory bread(block 72) failed
[ 1680.371945][ T5955] sn9c2028 2-1:220.0: probe with driver sn9c2028 failed with error -71
[ 1680.380620][ T8497] FAT-fs (loop5): Directory bread(block 73) failed
[ 1680.440390][ T5955] usb 2-1: USB disconnect, device number 90
[ 1680.514699][ T4703] snd-usb-audio 4-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1680.616586][ T4703] usb 4-1: USB disconnect, device number 74
[ 1680.758610][ T8488] loop6: detected capacity change from 0 to 32768
[ 1680.843253][ T4688] usb 6-1: new high-speed USB device number 70 using dummy_hcd
[ 1681.041022][ T4688] usb 6-1: config 127 has an invalid interface number: 63 but max is 0
[ 1681.080802][ T4688] usb 6-1: config 127 has no interface number 0
[ 1681.110830][ T4688] usb 6-1: too many endpoints for config 127 interface 63 altsetting 243: 127, using maximum allowed: 30
[ 1681.142758][ T4688] usb 6-1: config 127 interface 63 altsetting 243 has 0 endpoint descriptors, different from the interface descriptor's value: 127
[ 1681.201096][ T4688] usb 6-1: config 127 interface 63 has no altsetting 0
[ 1681.227283][ T4688] usb 6-1: New USB device found, idVendor=046d, idProduct=08b6, bcdDevice=ca.8e
[ 1681.261446][ T4688] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1681.513390][   T31] audit: type=1400 audit(1781795700.746:483): apparmor="DENIED" operation="change_hat" class="file" info="unconfined can not change_hat" error=-1 profile="unconfined" pid=8524 comm="syz.7.15241"
[ 1681.584397][ T4688] usb 6-1: string descriptor 0 read error: -71
[ 1681.682595][ T4688] usb 6-1: USB disconnect, device number 70
[ 1681.822083][ T8532] loop3: detected capacity change from 0 to 64
[ 1682.477808][ T4703] usb 7-1: new high-speed USB device number 47 using dummy_hcd
[ 1682.671674][ T4703] usb 7-1: config 27 has an invalid descriptor of length 0, skipping remainder of the config
[ 1682.718316][ T4703] usb 7-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1682.746523][ T8562] netlink: 8 bytes leftover after parsing attributes in process `syz.5.15258'.
[ 1682.772816][ T4703] usb 7-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1682.813226][ T4703] usb 7-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1682.842368][ T4703] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1682.900381][ T4703] usb 7-1: Quirk or no altset; falling back to MIDI 1.0
[ 1682.939246][ T4703] usb 7-1: invalid MIDI out EP 0
[ 1683.026765][   T31] audit: type=1326 audit(1781795702.169:484): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.154413][   T31] audit: type=1326 audit(1781795702.169:485): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.273970][   T31] audit: type=1326 audit(1781795702.178:486): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.346648][   T31] audit: type=1326 audit(1781795702.178:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=317 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.411930][ T5928] udevd[5928]: error opening ATTR{/sys/devices/platform/dummy_hcd.6/usb7/7-1/7-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1683.448670][ T4703] snd-usb-audio 7-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1683.453133][ T8585] tmpfs: Bad value for 'mpol'
[ 1683.482053][   T31] audit: type=1326 audit(1781795702.178:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.524842][ T4703] usb 7-1: USB disconnect, device number 47
[ 1683.592541][   T31] audit: type=1326 audit(1781795702.178:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.645747][   T31] audit: type=1326 audit(1781795702.178:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.671713][   T31] audit: type=1326 audit(1781795702.178:492): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.745232][   T31] audit: type=1326 audit(1781795702.178:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8573 comm="syz.5.15264" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe62499ce59 code=0x7ffc0000
[ 1683.903375][ T8593] xt_l2tp: v2 doesn't support IP mode
[ 1684.446545][ T8610] loop0: detected capacity change from 0 to 8
[ 1684.479310][ T8602] Process accounting resumed
[ 1684.576216][ T8610] SQUASHFS error: Failed to read block 0x1ec: -5
[ 1684.606438][ T8610] SQUASHFS error: Unable to read metadata cache entry [1ea]
[ 1684.659705][ T8614] [U] 
[ 1684.662492][ T8614] [U] 
[ 1684.665236][ T8614] [U] 
[ 1684.667985][ T8614] [U] 
[ 1684.687620][ T8614] [U] 
[ 1684.690386][ T8614] [U] 
[ 1684.693147][ T8614] [U] 
[ 1684.695890][ T8614] [U] 
[ 1684.728856][ T8614] [U] 
[ 1684.731633][ T8614] [U] 
[ 1684.734372][ T8614] [U] 
[ 1684.808497][ T8613] [U] 
[ 1684.963973][ T8625] openvswitch: netlink: Unexpected mask (mask=200240, allowed=10048)
[ 1685.135420][ T8632] xt_SECMARK: mode already set to 1 cannot mix with rules for mode 2
[ 1685.910310][ T8654] loop3: detected capacity change from 0 to 2048
[ 1685.997509][ T8654] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1686.008905][ T4703] usb 7-1: new high-speed USB device number 48 using dummy_hcd
[ 1686.205150][ T4703] usb 7-1: Using ep0 maxpacket: 16
[ 1686.226331][ T4703] usb 7-1: config 0 has an invalid interface number: 105 but max is 0
[ 1686.255773][ T4703] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1686.282513][ T4703] usb 7-1: config 0 has no interface number 0
[ 1686.309356][ T4703] usb 7-1: New USB device found, idVendor=046c, idProduct=14e8, bcdDevice= b.28
[ 1686.330870][ T4703] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1686.358412][ T4703] usb 7-1: Product: syz
[ 1686.373076][ T4703] usb 7-1: Manufacturer: syz
[ 1686.388106][ T4703] usb 7-1: SerialNumber: syz
[ 1686.426763][ T4703] usb 7-1: config 0 descriptor??
[ 1686.443412][ T4703] uvcvideo 7-1:0.105: probe with driver uvcvideo failed with error -22
[ 1686.676728][ T4698] usb 2-1: new high-speed USB device number 91 using dummy_hcd
[ 1686.751388][ T4761] usb 7-1: USB disconnect, device number 48
[ 1686.914187][ T4698] usb 2-1: config 8 has an invalid interface number: 7 but max is 0
[ 1686.923726][ T4698] usb 2-1: config 8 has no interface number 0
[ 1686.953045][ T4698] usb 2-1: string descriptor 0 read error: -22
[ 1686.959671][ T4698] usb 2-1: New USB device found, idVendor=0f3d, idProduct=68aa, bcdDevice=d9.bb
[ 1686.968906][ T4698] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1686.997390][ T4698] usb 2-1: Expected 3 endpoints, found: 0
[ 1687.259583][ T4688] usb 2-1: USB disconnect, device number 91
[ 1687.640255][ T8675] loop3: detected capacity change from 0 to 32768
[ 1687.813031][ T8706] netlink: 'syz.5.15328': attribute type 1 has an invalid length.
[ 1687.859073][ T8706] netlink: 224 bytes leftover after parsing attributes in process `syz.5.15328'.
[ 1688.260775][ T8715] netlink: 'syz.0.15333': attribute type 21 has an invalid length.
[ 1688.304777][ T8715] netlink: 164 bytes leftover after parsing attributes in process `syz.0.15333'.
[ 1689.011341][ T8743] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1689.046758][ T8743] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1689.218694][ T8750] netlink: 'syz.1.15349': attribute type 10 has an invalid length.
[ 1689.528679][ T8760] netlink: 8 bytes leftover after parsing attributes in process `syz.1.15354'.
[ 1690.051437][ T8782] loop7: detected capacity change from 0 to 256
[ 1690.627045][ T8803] netlink: 'syz.0.15376': attribute type 1 has an invalid length.
[ 1691.014315][ T8798] smbdirect: ib_dev[syz1] removed
[ 1691.262290][ T4703] usb 1-1: new high-speed USB device number 73 using dummy_hcd
[ 1691.451422][ T4703] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0
[ 1691.474737][ T4703] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xCA, changing to 0x8A
[ 1691.515380][ T4703] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1691.526789][ T8826] netlink: 16 bytes leftover after parsing attributes in process `syz.3.15387'.
[ 1691.570388][ T4703] usb 1-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b
[ 1691.602984][ T4703] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1691.640599][ T4703] usb 1-1: Product: syz
[ 1691.661437][ T4703] usb 1-1: Manufacturer: syz
[ 1691.679303][ T4703] usb 1-1: SerialNumber: syz
[ 1691.744966][ T4703] usb 1-1: config 0 descriptor??
[ 1691.757882][ T8800] loop6: detected capacity change from 0 to 32768
[ 1691.821915][ T8800] 
[ 1691.821915][ T8800]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1691.821915][ T8800] 
[ 1691.889273][ T8800] ERROR: (device loop6): xtSearch: xt_getpage: xtree page corrupt
[ 1691.889273][ T8800] 
[ 1692.008304][ T8800] xtLookup: xtSearch returned -5
[ 1692.201915][T27546] 
[ 1692.201915][T27546]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1692.201915][T27546] 
[ 1692.280995][T27546] 
[ 1692.280995][T27546]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1692.280995][T27546] 
[ 1692.285894][ T4703] usb 1-1: USB disconnect, device number 73
[ 1692.334559][ T8845] loop7: detected capacity change from 0 to 1024
[ 1692.369367][T23334] 
[ 1692.369367][T23334]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1692.369367][T23334] 
[ 1692.447782][T23334] 
[ 1692.447782][T23334]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1692.447782][T23334] 
[ 1692.601930][ T5974] udevd[5974]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1692.642026][  T118] 
[ 1692.642026][  T118]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1692.642026][  T118] 
[ 1692.690600][ T8850] cgroup: Unknown subsys name 'cpuset'
[ 1692.833836][  T118] ==================================================================
[ 1692.841965][  T118] BUG: KASAN: slab-use-after-free in jfs_lazycommit+0x9a8/0xab0
[ 1692.849666][  T118] Read of size 4 at addr ffff88802e8caa94 by task jfsCommit/118
[ 1692.857323][  T118] 
[ 1692.859674][  T118] CPU: 1 UID: 0 PID: 118 Comm: jfsCommit Tainted: G             L      syzkaller #0 PREEMPT(full) 
[ 1692.859735][  T118] Tainted: [L]=SOFTLOCKUP
[ 1692.859751][  T118] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/09/2026
[ 1692.859777][  T118] Call Trace:
[ 1692.859791][  T118]  <TASK>
[ 1692.859805][  T118]  dump_stack_lvl+0x100/0x190
[ 1692.859850][  T118]  print_report+0x13d/0x4b0
[ 1692.859908][  T118]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.859955][  T118]  ? __virt_addr_valid+0x239/0x430
[ 1692.860028][  T118]  ? jfs_lazycommit+0x9a8/0xab0
[ 1692.860083][  T118]  kasan_report+0xdf/0x1d0
[ 1692.860146][  T118]  ? jfs_lazycommit+0x9a8/0xab0
[ 1692.860333][  T118]  jfs_lazycommit+0x9a8/0xab0
[ 1692.860414][  T118]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 1692.860477][  T118]  ? rcu_is_watching+0x12/0xc0
[ 1692.860538][  T118]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.860599][  T118]  ? __pfx_default_wake_function+0x10/0x10
[ 1692.860661][  T118]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.860717][  T118]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.860773][  T118]  ? __kthread_parkme+0x18c/0x230
[ 1692.860859][  T118]  ? kthread+0x13a/0x450
[ 1692.860905][  T118]  ? __pfx_jfs_lazycommit+0x10/0x10
[ 1692.860964][  T118]  kthread+0x370/0x450
[ 1692.861015][  T118]  ? __pfx_kthread+0x10/0x10
[ 1692.861067][  T118]  ret_from_fork+0x72b/0xd50
[ 1692.861123][  T118]  ? __pfx_ret_from_fork+0x10/0x10
[ 1692.861178][  T118]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1692.861239][  T118]  ? __switch_to+0x800/0x1100
[ 1692.861311][  T118]  ? __switch_to_asm+0x39/0x70
[ 1692.861382][  T118]  ? __pfx_kthread+0x10/0x10
[ 1692.861441][  T118]  ret_from_fork_asm+0x1a/0x30
[ 1692.861518][  T118]  </TASK>
[ 1692.861534][  T118] 
[ 1693.026706][  T118] Allocated by task 8800:
[ 1693.031056][  T118]  kasan_save_stack+0x30/0x50
[ 1693.035796][  T118]  kasan_save_track+0x14/0x30
[ 1693.040546][  T118]  __kasan_kmalloc+0xaa/0xb0
[ 1693.045222][  T118]  jfs_fill_super+0xca/0xf50
[ 1693.049880][  T118]  get_tree_bdev_flags+0x38c/0x620
[ 1693.055067][  T118]  vfs_get_tree+0x92/0x320
[ 1693.059641][  T118]  path_mount+0x7d0/0x23d0
[ 1693.064112][  T118]  __x64_sys_mount+0x293/0x310
[ 1693.068928][  T118]  do_syscall_64+0x115/0x870
[ 1693.073568][  T118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1693.079486][  T118] 
[ 1693.081807][  T118] Freed by task 23334:
[ 1693.085884][  T118]  kasan_save_stack+0x30/0x50
[ 1693.090592][  T118]  kasan_save_track+0x14/0x30
[ 1693.095292][  T118]  kasan_save_free_info+0x3b/0x70
[ 1693.100326][  T118]  __kasan_slab_free+0x5f/0x80
[ 1693.105410][  T118]  kfree+0x223/0x6c0
[ 1693.109311][  T118]  generic_shutdown_super+0x167/0x360
[ 1693.114699][  T118]  kill_block_super+0x3b/0xa0
[ 1693.119394][  T118]  deactivate_locked_super+0xc1/0x1b0
[ 1693.124785][  T118]  deactivate_super+0xe7/0x110
[ 1693.129569][  T118]  cleanup_mnt+0x21f/0x450
[ 1693.134023][  T118]  task_work_run+0x150/0x240
[ 1693.138642][  T118]  exit_to_user_mode_loop+0x157/0x670
[ 1693.144043][  T118]  do_syscall_64+0x666/0x870
[ 1693.148760][  T118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1693.154663][  T118] 
[ 1693.157021][  T118] The buggy address belongs to the object at ffff88802e8caa00
[ 1693.157021][  T118]  which belongs to the cache kmalloc-256 of size 256
[ 1693.171182][  T118] The buggy address is located 148 bytes inside of
[ 1693.171182][  T118]  freed 256-byte region [ffff88802e8caa00, ffff88802e8cab00)
[ 1693.185039][  T118] 
[ 1693.187366][  T118] The buggy address belongs to the physical page:
[ 1693.193774][  T118] page: refcount:0 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x2e8ca
[ 1693.202541][  T118] head: order:1 mapcount:0 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 1693.211043][  T118] flags: 0xfff00000000040(head|node=0|zone=1|lastcpupid=0x7ff)
[ 1693.218594][  T118] page_type: f5(slab)
[ 1693.222579][  T118] raw: 00fff00000000040 ffff88813fe30b40 dead000000000100 dead000000000122
[ 1693.231198][  T118] raw: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 1693.239798][  T118] head: 00fff00000000040 ffff88813fe30b40 dead000000000100 dead000000000122
[ 1693.248488][  T118] head: 0000000000000000 0000000800100010 00000000f5000000 0000000000000000
[ 1693.257352][  T118] head: 00fff00000000001 ffffffffffffff81 00000000ffffffff 00000000ffffffff
[ 1693.266041][  T118] head: ffffffffffffffff 0000000000000000 00000000ffffffff 0000000000000002
[ 1693.274718][  T118] page dumped because: kasan: bad access detected
[ 1693.281149][  T118] page_owner tracks the page as allocated
[ 1693.286878][  T118] page last allocated via order 1, migratetype Unmovable, gfp_mask 0xd20c0(__GFP_IO|__GFP_FS|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_NOMEMALLOC), pid 5717, tgid 5717 (syz-executor), ts 107873793744, free_ts 107670275295
[ 1693.308450][  T118]  post_alloc_hook+0xfd/0x120
[ 1693.313146][  T118]  get_page_from_freelist+0x11a6/0x3410
[ 1693.318704][  T118]  __alloc_frozen_pages_noprof+0x27c/0x2bc0
[ 1693.324619][  T118]  new_slab+0xa6/0x6c0
[ 1693.328692][  T118]  refill_objects+0x277/0x420
[ 1693.333381][  T118]  __pcs_replace_empty_main+0x375/0x650
[ 1693.338940][  T118]  __kmalloc_noprof+0x688/0x850
[ 1693.343810][  T118]  fib_create_info+0x5bf/0x4640
[ 1693.348666][  T118]  fib_table_insert+0x169/0x1c70
[ 1693.353618][  T118]  fib_magic+0x4d4/0x5c0
[ 1693.357881][  T118]  fib_add_ifaddr+0x16d/0x560
[ 1693.362582][  T118]  fib_netdev_event+0x3d6/0x710
[ 1693.367453][  T118]  notifier_call_chain+0x99/0x400
[ 1693.372487][  T118]  call_netdevice_notifiers_info+0xbe/0x110
[ 1693.378402][  T118]  __dev_notify_flags+0x12c/0x2e0
[ 1693.383472][  T118]  netif_change_flags+0x108/0x160
[ 1693.388529][  T118] page last free pid 5708 tgid 5708 stack trace:
[ 1693.394850][  T118]  __free_frozen_pages+0x794/0x10a0
[ 1693.400061][  T118]  qlist_free_all+0x47/0xf0
[ 1693.404585][  T118]  kasan_quarantine_reduce+0x1a0/0x1f0
[ 1693.410083][  T118]  __kasan_slab_alloc+0x69/0x90
[ 1693.415024][  T118]  kmem_cache_alloc_node_noprof+0x25a/0x6f0
[ 1693.420951][  T118]  __alloc_skb+0x140/0x710
[ 1693.425404][  T118]  netlink_alloc_large_skb+0x69/0x150
[ 1693.430801][  T118]  netlink_sendmsg+0x680/0xda0
[ 1693.435680][  T118]  __sys_sendto+0x468/0x4b0
[ 1693.440223][  T118]  __x64_sys_sendto+0xe0/0x1c0
[ 1693.445026][  T118]  do_syscall_64+0x115/0x870
[ 1693.449649][  T118]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1693.455561][  T118] 
[ 1693.457877][  T118] Memory state around the buggy address:
[ 1693.463508][  T118]  ffff88802e8ca980: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1693.471572][  T118]  ffff88802e8caa00: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1693.479642][  T118] >ffff88802e8caa80: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 1693.487705][  T118]                          ^
[ 1693.492297][  T118]  ffff88802e8cab00: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1693.500365][  T118]  ffff88802e8cab80: fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc fc
[ 1693.508423][  T118] ==================================================================
[ 1693.516481][  T118] Disabling lock debugging due to kernel taint
[ 1693.687414][ T8858] comedi comedi3: multiq3: I/O port conflict (0x300,16)