last executing test programs:

2.269940293s ago: executing program 3 (id=10341):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000700)=ANY=[@ANYBLOB="020a000207000000000000000000000005001a00ac1e00010000000000000000000000008829000100000020000000000000000000000d9f"], 0x38}}, 0x40004)

2.170977292s ago: executing program 1 (id=10342):
r0 = socket$kcm(0x21, 0x2, 0x2)
shutdown(r0, 0x0)

2.104236179s ago: executing program 0 (id=10344):
r0 = bpf$PROG_LOAD(0x5, &(0x7f00000003c0)={0x3, 0x4, &(0x7f0000000100)=@framed={{0x18, 0x0, 0x0, 0x0, 0x88f}, [@call={0x85, 0x0, 0x0, 0x61}]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0xb, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x6}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000040)={r0, 0x0, 0x36, 0x0, &(0x7f0000000200)="e300806700c52c3abb8717bd86dd882c344cea927820303e4debe8623c1706bfc43996017429b9b856ea5865384e8b1b0b5397333325", 0x0, 0x401, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50)

1.99982496s ago: executing program 3 (id=10345):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000000)='./file0\x00', 0x2010880, &(0x7f0000000400)=ANY=[@ANYBLOB='iocharset=cp737,umask=0\x00\x00\x00\x00\x00\x00\x00@0800d=', @ANYRESHEX=0x0, @ANYRES8, @ANYRESDEC=0x0, @ANYBLOB=',quota,gid=', @ANYRESHEX=0x0, @ANYRES64, @ANYRESHEX=0x0, @ANYRESDEC=0x0, @ANYRESHEX, @ANYBLOB=',measure,\x00'], 0x5, 0x615b, &(0x7f0000008b40)="$eJzs3UuPHFfZB/Cnr3PJm2SURZTXQmjihEsI8TUYQ4A4C1iwyQJ5i2xNJpGFA8g2yIksPGg2LFjxCUBILBFiiVjwAbJgyy4rVkSykUBZUahmzvFUt7vdY8bT1TPn95PG1U+d6u5T/e/qi6uqTwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8d3vfO9sJyKu/DTNWIv4v+hFdCNW6no9IlbW1/Ly/Yh4IXaa4/mIGCxF1Nff+efZiNcj4qNnIu7dv7NRzz63z358+w9/++33n3r7r78fnP73H2/13pi23O3bv/zXn+4ebJ0BAACgNFVVVZ30Nf9E+n7fbbtTAMBc5Pf/KsnzF6buHtLt/+rvb/95EdZPrVar1eo51k3VZHebRURsNa9Tf2awOx4Ajpit+LTtLtAi+RetHxFPtd0JYKF12u4Ah+Le/TsbnZRvp/l+sL7bno8FGcl/q/Pg/I5p01nGjzGZ1/NrO3rx3JT+rMypD4sk598dz//KbvswLXfY+c/LtPyHu6c+FSfn3xvPf8zxyb87Mf9S5fz7j5V/T/4AAAAAALDA8v//r7W8/3fp4KuyL4/a/7s+pz4AAAAAAAAAwJN20PH/HjD+HwAAACys+rt67dfP7M2b9lts9fzLnYinx5YHCpNOllltux8AAAAAAAAAAAAAUJL+7jG8lzsRg4h4enW1qqr6r2m8flwHvf5RV/r6Q8nafpEHAIBdHz0zdi5/J2I5Ii6n3/obrK6uVtXyymq1Wq0s5c+zw6XlaqXxvTZP63lLw318IO4Pq/rGlhvXa5r1fXlW+/jt1fc1rHr76NgTMkiP5pTmlsIGgGT33eied6RjpqqenfbhA0bY/o8f2z/70fbzFAAAADh8VVVVnfRz3ifSPv9u250CAOYiv/+P7xc4lDricG9frVYf97qzYP1Rq49c3VRNdrdZRMRW8zr1ZwbD8QPAEbMVn7bdBVok/6L1I+KFtjsBLLRO2x3gUNy7f2ejk/LtNN8P0vju+ViQkfy3OjvXy9efNJ1l/BiTeT2/tqMXz03pz/Nz6sMiyfl3x/O/sts+TMsddv7zMi3/ej3XWuhP23L+vfH8xxyf/LsT8y9Vzr//WPn35A8AAAAAAAss////mv2/eZUBAAAAAAAA4Mi5d//ORj7vNe///8yE5Zz/eTzl/DvyL1LOvzuW/xfHlus1Ln/y1l7+/7x/Z+N3t/7x/3m63/yX8oVOemZ10jOik+6p00/Tg6zdw7YHvWF9T4NOt9dPx/xUg3fjWlyPzTgzsmw3PR577WdH2uueDkbaz4209x9qPz/SPki/O1Ct5PZTsRE/iuvxzk573bY0Y/2XZ7RXM9pz/j3bf5Fy/v3GX53/amrvjE2jsWk2t/vmdNL9XLr22V+cOeR12Y/t6D1Yt6Z6/U620J+dx+SpYfzk5uaNU7ev3rp142ykycjcc5EmT1jOf7Dzt7T3+v/Sbnt+3W9ur5/8fPjQ6/6s/BfFdvSn5v9S43K9vq/MuW9tyPkP01/O/53UPmn7P9r5T9/+X22hPwAAAAAAAAAAAAAAAPAoVVXtnCJ6KSIupPN/2jo3EwCYr/z+XyV5vlqtVqvV7dYfD5tz2u/P8aibqsnebBYR8ZfmderPDD+bdGMAwCL7T0R83HYnaI38C5Z/76+evtx2Z4C5uvnBhz+4ev365o2bbfcEAAAAAAAAAPhf5fE/1xvjP78cEWtjy42M//pWrB90/M9+vvBggNEnPND3FNvdYa/bGG78xdgZn/vUtPG/T8ajx//uz7i/wYz24Yz2pRntyxPn7qU18USPhpz/i43xzuv8T4wNv17C+K/jY96XIOd/svF8rvP/wthyzfyr3yxc/lv7XXA7uiP5n771/o9P3/zgw9euvX/1vc33Nn94/uzZM+cvXLh48eLpd69d3zyz++/h9HoB5Pzz2NeOAy1Lzj9nLv+y5Pw/l2r5lyXn//lUy78sOf/8eU/+Zcn55+8+8i9Lzv+VVMu/LDn/L6Va/mXJ+b+aavmXJef/5VTLvyw5/9dSLf+y5PxPpVr+Zcn5n071PvL38/DHSM4/7+Gy/Zcl55+PbJB/WXL+51It/7Lk/M+nWv5lyfm/nmr5lyXn/5VUy78sOf8LqZZ/WXL+X021/MuS87+YavmXJef/tVTLvyw5/6+nWv5lyfm/kWr5lyXn/41Uy78sOf9vplr+Zcn5fyvV8i9Lzv/NVMu/LHu//1/uhUvpsViU/rjgQvsXWn5hAgAAAAAAAAAAAAAeMo/DidteRwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOC/7MCBAAAAAACQ/2sjVFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVWEHDgQAAAAAgPxfG6GqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqoKe/cWI9dd3wH8zF7stUOIgRCc1JBNYkJIluzaTnyhTTHh2gClQEKhF2zXuzYLvuG1S6BINg2USBgVVVRNH2gBoTZSVWEhHmhFaR6qXp5K+0BfKqpKSI1QQAYJqa1otpo5///fM+PZObve8Xr2/D8fyf7tzpyZc+bMmdn9rv3dAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAuzveMPeZRlEUzT+tv7YUxQuaH2+a3NK67LXXewsBAACA1fq/1t+XbkoX7F/GjdqW+YdX/PM3FhcXF4v3jf7h+BcWF9MVk0UxvrEoWtdFF//z/Y32ZYInionGSNvnIxWrH624fqzi+vGK6zdUXL+x4vqJiuuv2AFX2FT+PKZ1Z9tbH24pd2lxczHeum57j1s90dg4MhJ/ltPSaN1mcfxIMV8cK+aKmY7ly2UbreW/dUdzXW8t4rpG2ta1rXmE/PgTh+M2NMI+3t6xrsv3Gf3w9cXkT378icN/dua5W3vNyt3QcX/ldt5zZ3M7PxUuKbe1UWxM+yRu50jbdm7r8ZyMdmxno3W75sfd23lpmds5enkz11T3cz5RjLQ+/k5rP421/1gv7adt4bL/vqsoivOXN7t7mSvWVYwUmzsuGbn8/EyUR2TzPpqH0ouLsRUdp3cs4zhtztntncdp92siPv93hNuNLbEN7U/TDz+54YrnfaXHadR81Eu9VrqPwUG/VoblGIzHxXdaD/rJnsfg9vD4P3H30sdgz2OnxzGYHnfbMXhn1TE4smG0tc3pSWi0bnP5GNzRsfxoa02N1nz27v7H4PSZ46emFz728dfMHz90dO7o3IldO3bM7Nq9e+/evdNH5o/NzZR/X+XeHn6bi5H0Grgz7Lv4GnhV17Lth+rilwf3Opzo8zrc0rXsoF+HY90PrrE2L8grj+nytfFoc6dPXBgplniNtZ6fe1f/OkyPu+11ONb2Ouz5NaXH63BsGa/D5jKn7l3e9yxjbX96bcO1+lqwpe0Y7P5+pPsYHPT3I8NyDE6E4+Lf7136a8G2sL1PTq30+5HRK47B9HDDe0/zkvT9/sTe1uh1XN7WvOKGDcXZhbnT9z9+6MyZ0zuKMNbES9qOle7jdXPbYyquOF5HVny87p9/xZO39bh8S9hXE69p/jWx5HPVXOaB+/s/V62vbr33Z8elO4swBmyt92evr+bN/ZmyZJ/92VzmU9Or/1485dK299/xJd5/Y+5/vlxfuqsnRsfHytfvaNo74x3vx51P1VjrvavRWvel6eW9H4+HP2v9fnxzn/fjrV3LDvr9eLz7wcX340bVTztWp/v5nAjHybGZ/u/HzWW27lzpMTnW9/34rjAbYf+/OiSFlIvajp2ljtu0rrGx8fC4xuIaOo/TXR3Lj4ds1lzX0zuv7ji9567yvkbTo7tsrY7Tya5lB32cpverpY7TRtVP365O9/M5EY6Lm3f1P06byzzzwOrfOzfFD9veOzdUHYPjoxua2zyeDsLy/X5xUzwG7y8OFyeLY8Vs69oNreOp0VrX1IPLOwY3hD9r/V65tc8xeE/XsoM+BtPXsaWOvcbYlQ9+ALqfz4lwXDz1YP9jsLnMG/cM9nvXe8IlaZm27127f7621M+8buvaTdfyZ17N7fy7Pf1/Nttc5tjelebM/vvpvnDJDT32U/frd6nX1GyxNvtpa9jO5/YuvZ+a29Nc5gv7lnk87S+K4txHHm79vDf8+8rXz373Gx3/7tLr33TOfeThH9145O9Xsv0ArH/Pl2Nz+bWu7V+mlvPv/wAAAMC6EHP/SJiJ/A8AAAC1EXN//F/hifwPAAAAtRFz/1iYSSb5f+sbn5t//lyRmvmLQbw+7YZHyuVix3UmfD65eFnz8oe/OvfTvz63vHWPFEXxs0d+p+fyWx+J21WaDNt58U2dl195w3PLWv/Bxy4v195f/1K4//h4wuOv+lWKPSu4M0VRfOumz7XWM/n+C635zCMHW/Pd5598ornMpX3l5/H2z76kXP6Lofy7/8ihjts/G/bD98OceVvv/RFv97ULr962572X1xdv17jzha2H/dQHyvuND/DzT5TLx/281Pb/zWef/lpz+cdf2Xv7z4303v6nw/1+Ncz/eXm5fPtz0Pw83u7TYfvj+uLt7v/Kt3tu/8XPlMufenO53MEw4/rvCZ9vf/Nz8+376/HGoY7HVbylXC6uf+a7v9+6Pt5fvP/u7Z84cKFjf3QfH8/8a3k/013Lx8vjeqK/6lp/837aj8+4/qd/72DHfq5a/8V3P/vy5v12r/++ruVGu27f/Rub/uTTn+u5vrg9+//yVMfj2f+u8DoO63/qA+F4DNf/78XPdaw3OviuzvefuPyXtpzreDzRW39Srv/i64625n9N/vSPb3jBjS88f3tz3xXFd95T3l/V+o/+6cmO7f/yLfe2no94fezod69/KXH9pz86deLkwtn52ba92vrdOW8vt2fjxKbNze29Kby3dn9+4OSZD86dnpyZnCmKyfr+Cr2r9pUwf1SO8yu9/b2Phefztj/61ua7/+Wz8fJ/e7S8/MLbyq9brwrLfT5cvqV8/hYbq1z/U3fc0np9N54pP+/osQ/Atu0/2LusBcPj7/6+IB7vp176wdZ+aF7X+roRX9er3P7vzZb3882wXxfDb2a+85bL62tfPv5uhAvvKV/vq95/4W0uPq9/Hp7vd3y/vP+4XfHxfi98H/PtrZ3vd/H4+Oa5ke77b/0Wj/Ph/aQ4X14fl4r7+8KlW3puXvw9JMX5W1uf/0G6n1tX9DCXsvCxhelj8yfOPj59Zm7hzPTCxz5+4PjJsyfOHGj9Ls8DH6q6/eX3p82t96fZud0PFDObiqI4WcyswRvWtdn+5kfL2/5Tjx2e3TNz9+zckUNnj5x57NTc6aOHFxYOz80u3H3oyJG5j1bdfn72oR079+3as3Pq6PzsQ3v37du1b2r+xMnmZpQbVWH3zIenTpw+0LrJwkMP7Nvx4IMPzEwdPzk799CemZmps1W3b31tmmre+renTs8dO3Rm/vjc1ML8x+ce2rFv9+6dlb8N8PipIwuT06fPnpg+uzB3erp8LJNnWhc3v/ZV3Z56WviP8vvZbo3yF/EV77xvd/r9rE1f/eSSd1Uu0vULRJ8Lv4vmn150au9yPo+5fzzMJJP8DwAAADmIuX9DmIn8DwAAALURc//GMBP5HwAAAGoj5v6JMJNM8r/+/7L6/5Xq3/8vr9f/z6v/f+ojZa90vff/Y39e/z8P17n/v+r16//r/9ev/7/8/vzAt//r+v/6/1xvw9b/j7l/U1Fkmf8BAAAgBzH3bw4zkf8BAACgNmLuvyHMRP4HAACA2oi5/wVhJpnkf/3/ZfX/d1YVrurf/3f+f/3/Yn32/+OTo/+fjRX379/7aMen+v+B/r/+fx36/87/r//PdTa+5DXXq/8fc/+NYSaZ5H8AAADIQcz9Lwwzkf8BAACgNmLuvynMRP4HAACA2oi5f0uYSSb5X//f+f/1//X/a93/X+35/9s2Rv9/fXD+//569P9v77mg/v8K+/8T+v/rsf8/PtjtH+7+f+Xm6/9zTQzb+f9j7n9RmEkm+R8AAAByEHP/i8NM5H8AAACojZj7XxJmIv8DAABAbcTcf3OYSSb5X/9f/1//X/9f/7/3+qvP/19+pP8/XPT/+9u2/Qd7u19jPen/O/9/Dv3/AW//cPf/B33+//E3dd9e/59ehq3/H3P/S8NMMsn/AAAAkIOY+28JM5H/AQAAoDZi7n9ZmIn8DwAAALURc//WMJNM8r/+v/6//r/+v/5/7/VX9/9L+v/DRf+/vx7n/+9tmf3/0a7L9f9L+v/6/7Xv//f45lf/n16Grf8fc/+tYSaZ5H8AAADIQcz9t4WZyP8AAABQGzH3/1yYifwPAAAAtRFz/7Ywk0zyv/6//r/+f179//s26P/r/9eb/n9/g+7/O/+//n87/f+M+v89rKT/v7HqzqiNYev/x9z/8jCTTPI/AAAA5CDm/leEmcj/AAAAUBsx998eZiL/AwAAQG3E3D8ZZpJJ/tf/r1f//y/+9qnbC/1//f+K9de0/x8PA/3/zOn/96f/X0H/X/9f/39N+v/kY9j6/zH33xFmkkn+BwAAgBzE3H9nmIn8DwAAALURc/9dYSbyPwAAANRGzP3bw0wyyf/6//Xq/0f6//r//dZf0/5/Mmz9/y+Gqf+/NvT/e2h7ker/V9D/1//Pvv8fv/vV/2cwhq3/H3P/K8NMMsn/AAAAkIOY++8OM5H/AQAAoDZi7n9VmIn8DwAAALURc/89YSaZ5H/9f/1//X/9f/3/3ut3/v/1Sf+/P/3/Cvr/+v/Z9/+d/5/BGrb+f8z9rw4zyST/AwAAQA5i7r83zET+BwAAgNqI/3+z/H+v8j8AAADUUcz9U2EmmeR//X/9/5z6/w39f/1//f/a0//vT/+/gv6//r/+v/4/AzVs/f+Y+18TZpJJ/gcAAIAcxNx/f5iJ/A8AAAC1EXP/dJiJ/A8AAAC1EXP/TJhJJvlf/1//P6f+v/P/d/T/J4pC/1//v370//vT/6+w1v3/4lLrYv3/wbje2z+U/f+i0P/nuhq2/n/M/TvCTDLJ/wAAAJCDmPt3hpnI/wAAAFAbMffvCjOR/wEAAKA2Yu5/IMwkk/yv/6//r/+fbf/f+f/1/2tJ/78//f8Kzv+v/1+3/r/z/3OdDVv/P+b+B8NMMsn/AAAAkIOY+3eHmcj/AAAAUBsx9+8JM5H/AQAAoDZi7t8bZpJJ/tf/r0n//3f/sWPd+v/6//3WP5j+/yb9/zD1/4dLTfv/3S+Lq6b/X0H/X/9f/1//n4Eatv5/zP37wkwyyf8AAACQg5j7XxtmIv8DAABAbcTc//NhJvI/AAAA1EbM/b8QZpJJ/tf/r0n/v4v+v/5/v/U7/7/+f53VtP8/MPr/FfT/9f/1//X/Gahr3/+PHy2v/x9z/0NhJpnkfwAAAMhBzP2/GGYi/wMAAEBtxNz/ujAT+R8AAABqI+b+/WEmmeR//X/9f/1//f9r0/9/XdFtGPv/zYNH/79eVtu/b+j/l/T/9f/1//X/9f8ZgGE7/3/M/a8PM8kk/wMAAEAOYu5/OMxE/gcAAIDaiLn/DWEm8j8AAADURmfuzy//6//r/+v/6/87/3/v9ev/r0/O/9+f/n8F/X/9f/1//X8Gatj6/29s3WqieFOYSSb5HwAAAHIQc/+bw0zkfwAAAKiNmPvfEmYi/wMAAEBtxNz/1jCTTPK//r/+v/6//n92/f+JQv+/xvT/+9P/r6D/r/+v/6//z0ANW/8/5v5fCjPJJP8DAABADmLufyTMRP4HAACA2oi5/21hJvI/AAAA1EbM/W8PM8kk/+v/6//r/+v/Z9f/d/7/WtP/70//v8IQ9P+bX9P0/9fn9uv/6/9zpWHr/8fc/44wk0zyPwAAAOQg5v5fDjOR/wEAAKA2Yu5/Z5iJ/A8AAAC1EXP/r4SZZJL/9f/1//X/9f+z6P83b6T/nwX9//70/yv06P9vdP5//X/9f/1/rtqw9f9j7n9XmEkm+R8AAAByEHP/u8NM5H8AAACojZj73xNmIv8DAABAbcTc/2iYSSb5X/8/y/5/esj6/yX9/wz6/87/nw39//70/ysMwfn/9f/X7/br/+v/c6Vh6//H3P9YmEkm+R8AAAByEHP/e8NM5H8AAACojZj7fzXMRP4HAACA2oi5/31hJpnkf/3/LPv/zv+/Zv3/sY7jI6f+/0Tb85mOS/1//f81oP/fn/5/Bf1//f9h7v+Ho3nTErfX/2cYDVv/P+b+94eZZJL/AQAAIAcx9/9amIn8DwAAALURc/+vh5nI/wAAAFAbMff/RphJJvlf/1//X//f+f+d/7/3+vX/1yf9//70/yvo/+v/D3P/v4L+P8No2Pr/Mff/ZphJRfDr/v4UAAAAGF4x938gzCSTf/8HAACAHMTcfyDMRP4HAACA2oi5/2CYSSb5X/+/u/8fz6iq/6//r/+v/6//vx4Nrv//shuLQv9f/1//X/9f/1//n9UYtv5/zP2Hwkwyyf8AAACQg5j7fyvMRP4HAACA2oi5/3CYifwPAAAAtRFz/2yYSSb5X//f+f8H1f//mf6//n+g/9+b/v/acP7//vT/K+j/6//r/+v/M1DD1v+PuX8uzCST/A8AAAA1ln4cHHP/kTAT+R8AAABqI+b+o2Em8j8AAADURsz9HwwzyST/6//r/zv///Xo/491LK//X9L/1/8fBP3//vT/K+j/6//r/+v/M1DD1v+PuX8+zCST/A8AAAA5iLn/Q2Em8j8AAADURsz9Hw4zkf8BAACgNmLuPxZmkkn+1//X/8+9/98oivPO/6//32v9+v/rk/5/f/r/FfT/9f/1//X/Gahh6//H3H88zCST/A8AAAA5iLn/RJiJ/A8AAAC1EXP//7N3H01yndcdh9ssksCs7I/gtVde2it/BW+9c5XWKiUqB4rKWaJyDlTOOScq55wzlXOkIqUqqDg45xCDbtwGMI3pe9/zPJujQQHqHqIF6S/Ur+5d4hb7HwAAAIaRu/+ucUuT/a//1/937/9Xe3n+/9Gfr/8/S/+v/9+Ftf7+6kv79Rfs///zv677f/2//l//P0n/r//X/3O+ufX/ufvvFrc02f8AAADQQe7+u8ct9j8AAAAMI3f/PeIW+x8AAACGkbv/urilyf7X/+v/9f/6/yP9/836f/3/snn+/zT9/xb6f/2//l//z07Nrf/P3X/PuKXJ/gcAAIAOcvffK26x/wEAAGAYufvvHbfY/wAAADCM3P33iVua7H/9/+z7/9P6f/2/5//r//X/F0//P03/v4X+X/+v/9f/s1Nz6/9z9983bmmy/wEAAKCD3P33i1vsfwAAABhG7v77xy32PwAAAAwjd/8D4pYm+1//P/v+3/P/9f/6f/2//v8S3LS6488E/f86/f8WW/r/1Ur/P+Wi+/nN395y3v8F6P/1/6ybW/+fu/+BcUuT/Q8AAAAd5O5/UNxi/wMAAMAwcvdfH7fY/wAAADCM3P0Pjlua7H/9v/5f/6//1/9vfn39/zJ5/v+04/f///Fvd75T3/7f8/+nef6//l//z/nm1v/n7r8hbmmy/wEAAKCD3P0PiVvsfwAAABhG7v6Hxi32PwAAAAwjd//D4pYm+1//36b/P6xd9P/6f/2//n90+v9pnv+/xeEfcwf1pf5f/6//1/9zPHPr/3P3PzxuabL/AQAAoIPc/Y+IW+x/AAAAGEbu/kfGLfY/AAAADCN3/6Pilib7X//fpv/3/H/9v/5f/9+C/n+a/n+LUZ7/f5mfmn3388e17/ev/9f/s25u/X/u/kfHLU32PwAAAHSQu/8xcYv9DwAAAMPI3f/YuMX+BwAAgGHk7n9c3NJk/+v/9f/L6P/zFebX/x+s9P/6f/3/nOj/p+n/txil/79M++7nl/7+9f/6f9bNrf/P3f/4uKXJ/gcAAIAOcvc/IW6x/wEAAGAYufufGLfY/wAAADCM3P1Pilua7H/9v/5/Gf2/5//r//X/+v+Lo/+fpv/fYtn9/yV/3s63735+6e9f/6//Z93c+v/c/TfGLU32PwAAAHSQu//JcYv9DwAAAMPI3f+UuMX+BwAAgGHk7n9q3NJk/+v/9f/6f/2//n/z6+v/l0n/P03/v8Wy+/9j23c/v/T3r//X/7NuRv3/Ob/q9OppcUuT/Q8AAAAd5O5/etxi/wMAAMAwcvc/I26x/wEAAGAYufufGbc02f/6/9n0/4c531j9/8FqtdL/r5r2/wfn/H7W51L/r/8/Afr/afr/LfT/+n/9v/6fnZpR/3/4de7+Z8UtTfY/AAAAdJC7/9lxi/0PAAAAw8jd/5y4xf4HAACAYeTuf27c0mT/6/9n0/8fGqv/9/z/8z8fnfp/z/9fp/8/GTPt/6+92NfX/+v/9f/Lff/6f/0/6+bW/+fuf17cdO01l/0tAgAAADOTu//5cUuTv/8HAACADnL3vyBusf8BAABgoW5c+5Hc/S+MW5rsf/3/bvv/cwNP/b/+//zPh/5f/6//v/Jm2v9fNP2//l//v9z3r//X/7Nubv1/7v4XxS1N9j8AAAB0kLv/prjF/gcAAIBh5O5/cdxi/wMAAMAwcve/JG5psv/1/57/r//X/+v/N7++/n+Z9P/T5t3/n6k/TvT/+v8lvv8d9P+n7viX+n/GcAn9/5kzZ66/4v1/7v6Xxi1N9j8AAAB0kLv/ZXGL/Q8AAADDyN3/8rjF/gcAAIBh5O5/RdzSZP/r/5v2//lR1/8f0v/r/ze9vv5/mfT/0+bd/3v+v/5/2e/f8//1/6yb2/P/c/e/Mm5psv8BAACgg9z9r4pb7H8AAAAYRu7+V8ct9j8AAAAMI3f/a+KWJvtf/9+0//f8f/2//v+k+//bVvr/E7GI/v/gwq8/9/7/Bv2//n9Cu/7/f//7yJf6f/0/6+bW/+fuf23c0mT/AwAAQAe5+18Xt9j/AAAAMIzc/a+PW+x/AAAAGEbu/jfETVc32f/6f/2//l//r//f/Pon/Pz/a1erlf5/BxbR/0+Ye//v+f/6/ynt+v/z6P/1/6ybW/+fu/+NcUuT/Q8AAAAd5O5/U9xi/wMAAMAwcve/OW6x/wEAAGAYufvfErc02f/6f/3/le7/b//M6P/P0v/vqf+/YRH9v+f/74j+f5r+fwv9v/5f/6//50Tsq//P3f/WuKXJ/gcAAIAOcve/LW6x/wEAAGAYufvfHrfY/wAAADCM3P3viFua7H/9v/7f8//1/6dm1/+fPvLv1+T5//r/HdH/T9P/b6H/1//r/2/U/7NLc3v+f+7+d8YtTfY/AAAAdJC7/11x6/+6tf8BAABgGLn73x232P8AAAAwjNz974lbmux//b/+X/+v/x/++f/6/1b0/9P0/1vo//X/+n/P/2en5tb/5+5/b9zSZP8DAABAB7n73xe32P8AAAAwjNz9749b7H8AAAAYRu7+m+OWJvtf/6//1//r//X/Z38P9f9j0P9PO5n+/0D/r/+vfv5f4j8F+n/9/7Zfz5jm1v/n7v9A3NJk/wMAAEAHufs/GLfY/wAAADCM3P0filvsfwAAAFikqzf8WO7+D8ctTfa//l//r//X/+v/N7++/n+Z9P/TPP9/C/3/Jfbz/37kq6U9///8//7S/+v/2b399/9n/xdbfp27/yNxS5P9DwAAAB3k7v9o3GL/AwAAwDBy938sbrH/AQAAYBi5+z8etzTZ//p//b/+X/+v/9/8+vr/ZdL/T9P/b6H/3+vz85f+/vX/+n/W7b//P/p17v5PxC1N9j8AAAB0kLv/k3GL/Q8AAADDyN3/qbjF/gcAAIBhHO7+jMsa7n/9v/5f/6//1/9vfn39/zLp/6fp/7fQ/+v/9f/6f3Zqbv3/pw9/1enVZ+KWJvsfAAAAOsjd/9m4xf4HAACAYeTu/1zcYv8DAADAMHL3fz5uabL/G/T/pzb9NP3/0vr/M2fOXK//1/8f/X7u6P9v0f9T9P/T9P9b6P/1//p//T87Nbf+P3f/F+KWJvsfAAAAOsjd/8W4xf4HAACAYeTu/1LcYv8DAADAMHL3fzluabL/G/T/G82q/z+t//f8f/3/yvP/9f87ov+fpv/fYsT+//TFf/v77uePa9/vX/+v/2fd3Pr/3P1fiVua7H8AAADoIHf/V+MW+x8AAACGkbv/a3GL/Q8AAADDyN3/9bhlcft/U4G+nf7/5Pr/2//ZdXn+/8Fq8/vX/+v/9f/6/ytN/z9N/7/FiP3/Jdh3P7/096//1/+zbm79f+7+b8Qti9v/AAAAwIXk7v9m3GL/AwAAwDBy938rbrH/AQAAYBi5+78dtzTZ//r/GTz/f8D+3/P/N38+9P+z7v+v0v+PQf8/Tf+/hf5f/6//31H/n59m/X93c+v/c/d/J25psv8BAACgg9z9341b7H8AAAAYRu7+78Ut9j8AAAAMI3f/LXHLOfv/8p6svwz6f/2//l//r//f/Pr6/2XS/0+72P7/1Op4/X/S/+v/9f9d+3/P/+esufX/ufu/H7f4+38AAABYnGsu8OO5+38Qt9j/AAAAMIzc/T+MW+x/AAAAGEbu/h/FLbdeta+3dKL0//p//b/+X/+/+fX1/8um/9/M8/+30P/vop//H/3/GP3/aqX/5/jm1v/n7v9x3OLv/wEAAGAYuft/ErfY/wAAADCM3P0/jVvsfwAAABhG7v6fxS1N9r/+X/9/zP7/MM3U/5+l/z9L/7+Z/v9keP7/NP3/Fvp/z//X/3v+Pzs1t/4/d//P45Ym+x8AAAA6yN3/i7jF/gcAAIBh5O7/Zdxi/wMAAMAwcvf/Km5psv/31v/HP2r9/+L7f8//1//r//X/s6L/n6b/30L/r//X/+v/2am59f+5+38dtzTZ/wAAANBB7v7fxC32PwAAAAwjd/9v4xb7HwAAAIaRu/93cUuT/e/5//p//b/+X/+/+fX1/8uk/5+m/9+sfqP0//p//b/+n52aW/+fu//3cUuT/Q8AAAAd5O7/Q9xi/wMAAMAwcvffGrfY/wAAADCM3P1/jFua7H/9v/5f/6//1/9vfn39/zLp/6fts///v3/d/rKe/7/3/j/fgv5f/6//Zyfm1v/n7v9T3NJk/wMAAEAHufv/HLfY/wAAADCM3P1/iVvsfwAAABhG7v6/xi1N9v+W/v9U/UT9/yT9/9H3r//f/PnQ/x+7/z9Y6f/1/1vo/6d5/v8W+n/P/9f/6//Zqbn1/7n7/xa3NNn/AAAA0EHu/tviFvsfAAAAhpG7/+9xi/0PAAAAw8jd/4+4pcn+9/x//b/+X/+/oP7/yPej/9f/b6L/n6b/30L/r//X/+v/2am59f+5+/8ZAAD///ZFSMI=")
utime(&(0x7f0000000680)='./file1\x00', 0x0)

1.955176264s ago: executing program 1 (id=10346):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)={0x1c, 0x1, 0x2, 0x401, 0x0, 0x0, {0x3, 0x0, 0x6}, [@CTA_EXPECT_ZONE={0x6}]}, 0x1c}, 0x1, 0x0, 0x0, 0x4f27f69b0218186e}, 0x10)

1.806652449s ago: executing program 1 (id=10348):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000180), 0x100, 0x0)
ioctl$FBIOPUT_CON2FBMAP(r0, 0x4610, &(0x7f0000000000)={0x33, 0xfffffffe})

1.782946681s ago: executing program 0 (id=10349):
r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001240)=ANY=[@ANYBLOB="12000000040000000800000044"], 0x50)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000640)={0xe, 0xe, &(0x7f0000000880)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000003000000b70400000000000085000000030000001800000000000000000000000000000095"], &(0x7f0000000200)='syzkaller\x00', 0xa}, 0x94)

1.625027217s ago: executing program 1 (id=10351):
pipe(&(0x7f00000000c0))
pselect6(0x40, &(0x7f0000000140)={0x1, 0x5, 0x3, 0x0, 0xff, 0xea2b, 0x7, 0x2300000000000}, 0x0, &(0x7f00000001c0)={0x9, 0xbb18, 0x8002, 0xc, 0x0, 0x6, 0x0, 0x4}, &(0x7f0000000200)={0x0, 0x3938700}, 0x0)

1.525854547s ago: executing program 0 (id=10352):
mmap(&(0x7f0000001000/0xc00000)=nil, 0xc00000, 0x0, 0x3032, 0xffffffffffffffff, 0x0)
bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000040)={&(0x7f0000000300)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x24, 0x24, 0x2, [@func_proto={0x0, 0x3, 0x0, 0xd, 0x6000000, [{0x4000d, 0x40000002}, {0x3}, {0xb, 0x1}]}]}}, &(0x7f0000000f40)=""/4096, 0x3e, 0x1000, 0x1}, 0x28)

1.363001404s ago: executing program 1 (id=10354):
futex(&(0x7f000000cffc), 0x80000000000b, 0x0, 0x0, &(0x7f0000048000), 0x0)
futex(&(0x7f000000cffc), 0xc, 0x1, &(0x7f0000000040), &(0x7f0000048000), 0x0)

1.265918033s ago: executing program 0 (id=10356):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000000c0)=@newlink={0x54, 0x10, 0x403, 0xfffefffc, 0x3d, {0x0, 0x0, 0x0, 0x0, 0x88adfda5}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @geneve={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GENEVE_TTL_INHERIT={0x5, 0xc, 0x1}, @IFLA_GENEVE_DF={0x5, 0xd, 0x1}, @IFLA_GENEVE_ID={0x8, 0x1, 0x3}, @IFLA_GENEVE_TOS={0x5, 0x4, 0x5}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4004}, 0x4804)

1.107075819s ago: executing program 1 (id=10357):
r0 = syz_mount_image$btrfs(&(0x7f00000051c0), &(0x7f0000005200)='./file0\x00', 0x1204408, &(0x7f00000003c0)={[{@compress_force}, {@clear_cache}, {@nodatasum}, {@nossd}, {}, {@space_cache_v1}]}, 0x0, 0x51ab, &(0x7f000000a440)="$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")
ioctl$BTRFS_IOC_BALANCE_V2(r0, 0xc4009420, &(0x7f0000000440)={0x2, 0x4, {0x32, @struct={0xfffffffd}, 0x0, 0x5, 0x0, 0x2, 0x0, 0xfffffffffffffffb, 0x0, @struct={0x0, 0xce82}, 0x4000, 0x3, [0x0, 0x8, 0x1000000000, 0x0, 0x0, 0xfffffffffffffffd]}, {0x5, @struct={0x7b30, 0x1}, 0x0, 0xfffffffffffffffb, 0x1, 0x2, 0xf415, 0x8, 0x58a, @struct={0x2, 0xf136}, 0x3, 0x4, [0x4, 0x20000000000001, 0x2, 0xfffffffffffffffc, 0x0, 0x8]}, {0x6, @struct={0x2, 0x9aa}, 0x0, 0x7, 0x3, 0xfffffffffffffffe, 0xfffffffffffffffb, 0x8, 0xe4ae66913924f322, @struct={0x800, 0xc}, 0xffffffef, 0x4, [0x80000000, 0x800006, 0x6532, 0x3ff, 0x80]}})

1.081683762s ago: executing program 2 (id=10358):
r0 = syz_open_dev$sg(&(0x7f0000000000), 0x0, 0x401)
ioctl$BLKTRACESTOP(r0, 0x1275, 0x0)

1.048830635s ago: executing program 0 (id=10359):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet6_IPV6_FLOWLABEL_MGR(r0, 0x29, 0x20, &(0x7f0000000080)={@loopback, 0x300, 0x0, 0x1, 0x9, 0x0, 0x6}, 0x20)

890.005721ms ago: executing program 2 (id=10360):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000080)=ANY=[@ANYBLOB="380000004800010029bd7000ffdbdf250a008000", @ANYRES32=0x0, @ANYBLOB="f9ffffff1400010000000000000000000000000008000001080002"], 0x38}}, 0x0)

855.437274ms ago: executing program 0 (id=10361):
syz_usb_connect$hid(0x0, 0x36, &(0x7f00000003c0)=ANY=[@ANYBLOB="1201000000000020ac050f0222000182830109022400010100000009040000020301020009210005000122000009058103", @ANYRESHEX], 0x0)
syz_open_dev$evdev(&(0x7f0000000080), 0x4, 0x4000)

727.797827ms ago: executing program 3 (id=10362):
r0 = syz_open_dev$dri(&(0x7f0000000080), 0x1, 0xa0041)
ioctl$DRM_IOCTL_WAIT_VBLANK(r0, 0xc018643a, &(0x7f00000000c0)={0x8000000, 0x71, 0x200000009})

693.32481ms ago: executing program 2 (id=10363):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r0, &(0x7f0000001640)={0xfc, {"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", 0x1000}}, 0x1066)

495.88089ms ago: executing program 3 (id=10364):
r0 = socket$netlink(0x10, 0x3, 0x0)
writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000040)="3700000013000318680907070000000f0000ff3f13000000170a001700000000040037000d00030001362564aa58b9a6c011f6bbf44dc4", 0x37}], 0x1)

377.792432ms ago: executing program 2 (id=10365):
r0 = socket$inet_icmp(0x2, 0x2, 0x1)
getsockopt$IP_VS_SO_GET_SERVICE(r0, 0x0, 0x483, &(0x7f00000000c0), &(0x7f00000001c0)=0x68)

227.838597ms ago: executing program 3 (id=10366):
syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./file1\x00', 0x84, &(0x7f00000000c0)=ANY=[], 0x8b, 0x2cb, &(0x7f00000004c0)="$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")
openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.bfq.io_merged\x00', 0x275a, 0x0)

199.023179ms ago: executing program 2 (id=10367):
r0 = socket$kcm(0x10, 0x2, 0x0)
sendmsg$inet(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000680)=[{&(0x7f00000000c0)="5c00000014006b05c84e21000ab16d6e230675f811000300440002005817d30461bc24eeb556a7ef59510525ba56dcd79a36c23d3b9844e1571a86ea1698fa51f60a64c9f408000000e786a6d0bdd70000b6c0504bb9189d9193e9bd", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0)

225.09µs ago: executing program 3 (id=10368):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0x0, 0x7fff0001}]})
clock_settime(0x0, &(0x7f0000003c80)={0x77359400})

0s ago: executing program 2 (id=10369):
r0 = syz_open_dev$video4linux(&(0x7f0000000000), 0x71, 0x0)
ioctl$VIDIOC_TRY_DECODER_CMD(r0, 0xc0585605, &(0x7f00000005c0)={0x1, 0x1, @raw_data=[0x97e, 0x0, 0x101b, 0xfffffffe, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40000000]})

kernel console output (not intermixed with test programs):

beyond end of device
[ 1160.655605][T25707] nbd2: rw=4096, sector=0, nr_sectors = 1 limit=0
[ 1160.655935][T25705] EXT4-fs: inline encryption not supported
[ 1160.698088][T25705] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1160.859732][T25705] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1160.990163][T25696] loop1: detected capacity change from 0 to 32768
[ 1161.005367][T25696] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop1 scanned by syz.1.8446 (25696)
[ 1161.018261][T25705] EXT4-fs error (device loop0): ext4_lookup:1858: inode #12: comm syz.0.8450: iget: bad extended attribute block 512
[ 1161.070558][T25696] BTRFS info (device loop1): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1161.090293][T25696] BTRFS info (device loop1): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1161.110969][T25696] BTRFS info (device loop1): force zlib compression, level 3
[ 1161.151701][T25696] BTRFS info (device loop1): force clearing of disk cache
[ 1161.183106][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1161.185676][T25696] BTRFS info (device loop1): setting nodatasum
[ 1161.200103][T25696] BTRFS info (device loop1): allowing degraded mounts
[ 1161.212002][T25696] BTRFS info (device loop1): enabling disk space caching
[ 1161.220809][T25696] BTRFS info (device loop1): disk space caching is enabled
[ 1161.427306][T25696] BTRFS info (device loop1): auto enabling async discard
[ 1161.447839][T25696] BTRFS info (device loop1): rebuilding free space tree
[ 1161.485763][T25743] netlink: 'syz.3.8458': attribute type 5 has an invalid length.
[ 1161.500603][T25696] BTRFS info (device loop1): disabling free space tree
[ 1161.518547][T25696] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1161.539369][T25696] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1161.762648][T25696] BTRFS info (device loop1): balance: start -sprofiles=system|raid0|raid1|dup|raid10|raid6|raid1c3|raid1c4|0x800,usage=0,usage=0..0,drange=36028797018963968..70368744177664,vrange=9223372036854775809..4294967295,limit=351830835986432
[ 1161.839924][T25696] BTRFS info (device loop1): balance: ended with status: 0
[ 1161.875774][   T28] audit: type=1326 audit(2000000116.457:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25750 comm="syz.3.8460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1161.928074][   T28] audit: type=1326 audit(2000000116.457:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25750 comm="syz.3.8460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1161.980072][   T28] audit: type=1326 audit(2000000116.466:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25750 comm="syz.3.8460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=139 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1162.030131][ T5793] BTRFS info (device loop1): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1162.062146][T25754] loop3: detected capacity change from 0 to 64
[ 1162.067428][   T28] audit: type=1326 audit(2000000116.466:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25750 comm="syz.3.8460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1162.141913][   T28] audit: type=1326 audit(2000000116.466:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25750 comm="syz.3.8460" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1162.146225][T25754] syz.3.8461: attempt to access beyond end of device
[ 1162.146225][T25754] loop3: rw=0, sector=2590, nr_sectors = 2 limit=64
[ 1162.191871][T25754] Buffer I/O error on dev loop3, logical block 1295, async page read
[ 1162.252266][T25754] syz.3.8461: attempt to access beyond end of device
[ 1162.252266][T25754] loop3: rw=0, sector=2590, nr_sectors = 2 limit=64
[ 1162.287870][T25754] Buffer I/O error on dev loop3, logical block 1295, async page read
[ 1162.299604][   T28] audit: type=1800 audit(2000000116.859:42): pid=25754 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8461" name="file2" dev="loop3" ino=6 res=0 errno=0
[ 1163.064147][T25773] loop1: detected capacity change from 0 to 2048
[ 1163.141745][T25780] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1163.267043][T25783] netlink: 3 bytes leftover after parsing attributes in process `syz.0.8475'.
[ 1163.279275][T25773] NILFS (loop1): vblocknr = 12 has abnormal lifetime: start cno (= 150994946) > current cno (= 3)
[ 1163.314308][T25773] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=16)
[ 1163.375479][T25773] Remounting filesystem read-only
[ 1163.387420][T25773] NILFS (loop1): error -5 truncating bmap (ino=16)
[ 1163.389716][T25778] loop2: detected capacity change from 0 to 4096
[ 1163.516357][ T5793] NILFS (loop1): discard dirty page: offset=4096, ino=6
[ 1163.546531][ T5793] NILFS (loop1): discard dirty block: blocknr=39, size=1024
[ 1163.576620][ T5793] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1163.617308][ T5793] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1163.626249][ T5793] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1163.686215][ T5793] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[ 1163.702429][ T5793] NILFS (loop1): discard dirty page: offset=0, ino=3
[ 1163.746912][ T5793] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1163.758285][ T5793] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1163.778372][ T5793] NILFS (loop1): discard dirty block: blocknr=44, size=1024
[ 1163.796667][ T5793] NILFS (loop1): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1164.075975][T25802] loop2: detected capacity change from 0 to 764
[ 1164.410829][T25815] loop1: detected capacity change from 0 to 1024
[ 1164.438519][T25815] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1164.462252][T25815] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled
[ 1164.502476][T25815] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1164.742559][ T5793] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1165.237311][T25846] loop0: detected capacity change from 0 to 64
[ 1165.341102][T25846] hfs: filesystem is marked locked, mounting read-only.
[ 1165.505722][T25855] loop3: detected capacity change from 0 to 256
[ 1165.530522][T25855] exfat: Deprecated parameter 'namecase'
[ 1165.571640][T25855] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d)
[ 1165.807702][T25858] loop0: detected capacity change from 0 to 4096
[ 1165.865645][T25858] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[ 1166.000810][T25868] loop1: detected capacity change from 0 to 16
[ 1166.026530][T25858] ntfs3: loop0: failed to convert "c46c" to cp864
[ 1166.066641][T25868] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1166.103458][T25872] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list
[ 1166.668230][T25890] loop3: detected capacity change from 0 to 164
[ 1166.745897][T25890] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1166.781675][ T5868] usb 1-1: new high-speed USB device number 30 using dummy_hcd
[ 1166.967009][T25900] loop1: detected capacity change from 0 to 128
[ 1166.988591][T25902] ..0
ˆ: renamed from veth0_to_hsr (while UP)
[ 1167.030224][ T5868] usb 1-1: Using ep0 maxpacket: 8
[ 1167.043611][ T5868] usb 1-1: New USB device found, idVendor=0402, idProduct=5602, bcdDevice=35.76
[ 1167.062588][ T5868] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1167.074624][ T5868] usb 1-1: Product: syz
[ 1167.078870][ T5868] usb 1-1: Manufacturer: syz
[ 1167.092160][ T5868] usb 1-1: SerialNumber: syz
[ 1167.108956][ T5868] usb 1-1: config 0 descriptor??
[ 1167.118936][ T5868] gspca_main: ALi m5602-2.14.0 probing 0402:5602
[ 1167.581043][ T5868] gspca_m5602: Failed to find a sensor
[ 1167.595195][ T5868] ALi m5602 1-1:0.0: ALi m5602 webcam failed
[ 1167.622000][ T5868] usb 1-1: USB disconnect, device number 30
[ 1167.993948][T25928] netlink: 72 bytes leftover after parsing attributes in process `syz.2.8552'.
[ 1169.099463][T25960] loop1: detected capacity change from 0 to 256
[ 1169.124127][T25960] exfat: Deprecated parameter 'namecase'
[ 1169.140922][T25960] exfat: Deprecated parameter 'namecase'
[ 1169.177117][T25960] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xbe675ead, utbl_chksum : 0xe619d30d)
[ 1169.848160][T25986] loop2: detected capacity change from 0 to 256
[ 1169.913204][T25988] ..0
ˆ: renamed from veth0_to_hsr (while UP)
[ 1169.923635][T25986] FAT-fs (loop2): Directory bread(block 64) failed
[ 1169.946257][T25986] FAT-fs (loop2): Directory bread(block 65) failed
[ 1169.967585][T25986] FAT-fs (loop2): Directory bread(block 66) failed
[ 1169.974203][T25986] FAT-fs (loop2): Directory bread(block 67) failed
[ 1170.006626][T25986] FAT-fs (loop2): Directory bread(block 68) failed
[ 1170.026851][T25986] FAT-fs (loop2): Directory bread(block 69) failed
[ 1170.042730][T25986] FAT-fs (loop2): Directory bread(block 70) failed
[ 1170.075491][T25986] FAT-fs (loop2): Directory bread(block 71) failed
[ 1170.082215][T25986] FAT-fs (loop2): Directory bread(block 72) failed
[ 1170.119262][T25986] FAT-fs (loop2): Directory bread(block 73) failed
[ 1170.184962][T25994] comedi comedi3: dt2817: I/O port conflict (0x3,5)
[ 1170.400642][T26002] loop0: detected capacity change from 0 to 128
[ 1171.191523][T26028] netlink: 224 bytes leftover after parsing attributes in process `syz.1.8593'.
[ 1171.414690][T26032] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8596'.
[ 1171.425301][T26030] loop2: detected capacity change from 0 to 4096
[ 1171.448123][T26030] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512).
[ 1171.627188][T26030] ntfs3: loop2: Mark volume as dirty due to NTFS errors
[ 1171.656893][T26030] ntfs3: loop2: Failed to initialize $Extend/$Reparse.
[ 1172.296784][T26050] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1172.447257][T26036] loop0: detected capacity change from 0 to 32768
[ 1172.478380][T26036] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop0 scanned by syz.0.8598 (26036)
[ 1172.540947][T26036] BTRFS info (device loop0): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1172.575643][T26036] BTRFS info (device loop0): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1172.595696][T26036] BTRFS info (device loop0): force zlib compression, level 3
[ 1172.608209][T26036] BTRFS info (device loop0): force clearing of disk cache
[ 1172.615433][T26036] BTRFS info (device loop0): setting nodatasum
[ 1172.681168][T26062] loop3: detected capacity change from 0 to 16
[ 1172.689040][T26036] BTRFS info (device loop0): use zlib compression, level 3
[ 1172.700173][T26062] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1172.716760][T26036] BTRFS info (device loop0): allowing degraded mounts
[ 1172.723675][T26036] BTRFS info (device loop0): enabling disk space caching
[ 1172.762187][T26062] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[ 1172.774191][T26036] BTRFS info (device loop0): disk space caching is enabled
[ 1172.806626][T26062] erofs: (device loop3): z_erofs_readahead: readahead error at folio 2 @ nid 89
[ 1172.833167][T26062] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[ 1172.859712][T26062] erofs: (device loop3): z_erofs_readahead: readahead error at folio 1 @ nid 89
[ 1172.883200][T26062] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[ 1172.894129][T26047] loop1: detected capacity change from 0 to 32768
[ 1172.896797][T26062] erofs: (device loop3): z_erofs_readahead: readahead error at folio 0 @ nid 89
[ 1172.920625][T26062] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[ 1172.930745][T26062] erofs: (device loop3): z_erofs_fill_inode_lazy: invalid tail-packing pclustersize 0
[ 1172.950688][T26047] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop1 scanned by syz.1.8604 (26047)
[ 1172.965359][T26062] erofs: (device loop3): z_erofs_read_folio: read error -117 @ 0 of nid 89
[ 1172.967627][T26036] BTRFS info (device loop0): enabling ssd optimizations
[ 1172.988068][T26047] BTRFS info (device loop1): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1172.990641][   T28] audit: type=1800 audit(2000000126.849:43): pid=26062 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.8610" name="file2" dev="loop3" ino=89 res=0 errno=0
[ 1173.018957][T26047] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1173.039974][T26036] BTRFS info (device loop0): auto enabling async discard
[ 1173.060650][T26036] BTRFS info (device loop0): rebuilding free space tree
[ 1173.067823][T26047] BTRFS info (device loop1): using free space tree
[ 1173.135779][T26036] BTRFS info (device loop0): disabling free space tree
[ 1173.171194][T26036] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1173.209213][T26036] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1173.264082][T26047] BTRFS info (device loop1): enabling ssd optimizations
[ 1173.298193][T26047] BTRFS info (device loop1): auto enabling async discard
[ 1173.341657][T26100] x_tables: ip6_tables: CLASSIFY target: used from hooks PREROUTING, but only usable from FORWARD/OUTPUT/POSTROUTING
[ 1173.419134][ T5789] BTRFS info (device loop0): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1173.814840][T26111] netlink: 196 bytes leftover after parsing attributes in process `syz.2.8615'.
[ 1173.860839][T26111] netlink: 196 bytes leftover after parsing attributes in process `syz.2.8615'.
[ 1173.889715][ T5992] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 11 /dev/loop0 scanned by udevd (5992)
[ 1173.900239][T26111] netlink: 19 bytes leftover after parsing attributes in process `syz.2.8615'.
[ 1173.998873][ T5793] BTRFS info (device loop1): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1174.115478][ T5778] usb 1-1: new high-speed USB device number 31 using dummy_hcd
[ 1174.218264][T17259] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 10 /dev/loop1 scanned by udevd (17259)
[ 1174.323581][ T5778] usb 1-1: Using ep0 maxpacket: 8
[ 1174.352696][ T5778] usb 1-1: config 179 has an invalid interface number: 65 but max is 0
[ 1174.372001][ T5778] usb 1-1: config 179 has no interface number 0
[ 1174.389564][ T5778] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1174.460261][ T5778] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1174.511082][ T5778] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[ 1174.535813][ T5778] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[ 1174.547446][ T5778] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1174.595903][ T5778] usb 1-1: config 179 interface 65 has no altsetting 0
[ 1174.627684][ T5778] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1174.649190][ T5778] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1174.770163][ T5778] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input85
[ 1174.780557][T26130] loop3: detected capacity change from 0 to 512
[ 1174.822978][T26130] EXT4-fs: Ignoring removed nobh option
[ 1174.960499][ T5143] input input85: unable to receive magic message: -110
[ 1175.001210][T26130] EXT4-fs error (device loop3): ext4_do_update_inode:5244: inode #3: comm syz.3.8623: corrupted inode contents
[ 1175.093197][T26130] EXT4-fs (loop3): Remounting filesystem read-only
[ 1175.136866][T26130] Quota error (device loop3): write_blk: dquota write failed
[ 1175.158212][T26130] Quota error (device loop3): qtree_write_dquot: Error -5 occurred while creating quota
[ 1175.212915][T26130] EXT4-fs (loop3): 1 truncate cleaned up
[ 1175.220981][T26130] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1175.278431][T26130] ext4 filesystem being mounted at /2145/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1175.310951][ T5143] input input85: unable to receive magic message: -32
[ 1175.402004][ T5143] input input85: unable to receive magic message: -32
[ 1175.431350][    C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1175.449643][    C1] xpad 1-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1175.503468][T15823] usb 1-1: USB disconnect, device number 31
[ 1175.522106][T15823] xpad 1-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1175.625301][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1175.983400][T26157] loop1: detected capacity change from 0 to 64
[ 1176.465096][T26170] comedi comedi3: mpc624: a I/O base address must be specified
[ 1176.490919][ T5778] IPVS: starting estimator thread 0...
[ 1176.601952][T26173] IPVS: using max 21 ests per chain, 50400 per kthread
[ 1177.270230][T26204] loop0: detected capacity change from 0 to 256
[ 1177.442580][T26204] FAT-fs (loop0): Directory bread(block 64) failed
[ 1177.474263][T26204] FAT-fs (loop0): Directory bread(block 65) failed
[ 1177.480986][T26204] FAT-fs (loop0): Directory bread(block 66) failed
[ 1177.512385][T26204] FAT-fs (loop0): Directory bread(block 67) failed
[ 1177.536959][T26204] FAT-fs (loop0): Directory bread(block 68) failed
[ 1177.558891][T26204] FAT-fs (loop0): Directory bread(block 69) failed
[ 1177.565635][T26204] FAT-fs (loop0): Directory bread(block 70) failed
[ 1177.589958][T26204] FAT-fs (loop0): Directory bread(block 71) failed
[ 1177.600814][T26204] FAT-fs (loop0): Directory bread(block 72) failed
[ 1177.614188][T26204] FAT-fs (loop0): Directory bread(block 73) failed
[ 1178.235969][T26206] loop2: detected capacity change from 0 to 32768
[ 1178.314037][T26206] ERROR: (device loop2): diNewExt: no free extents
[ 1178.314037][T26206] 
[ 1178.353929][T26206] ERROR: (device loop2): remounting filesystem as read-only
[ 1178.381535][T26206] ialloc: diAlloc returned -5!
[ 1178.543550][T26228] loop0: detected capacity change from 0 to 4096
[ 1178.596613][T26228] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[ 1178.626358][T26232] comedi comedi0: pcmda12: I/O port conflict (0x7,16)
[ 1178.769225][T26228] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[ 1178.785336][T26234] loop2: detected capacity change from 0 to 1764
[ 1178.813472][T26228] ntfs3: loop0: Failed to initialize $Extend/$Reparse.
[ 1178.874564][T26234] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1178.947998][T26218] loop3: detected capacity change from 0 to 32768
[ 1179.107717][T26218] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1179.228611][T26218] OCFS2: ERROR (device loop3): int ocfs2_validate_dx_root(struct super_block *, struct buffer_head *): Dir Index Root # 28549323745621536 has bad signature 
[ 1179.354410][T26218] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1179.389835][T26218] OCFS2: File system is now read-only.
[ 1179.417273][T26218] (syz.3.8665,26218,1):ocfs2_find_entry_dx:1029 ERROR: status = -30
[ 1179.464519][T26254] xt_addrtype: input interface limitation not valid in POSTROUTING and OUTPUT
[ 1179.478986][T26255] loop0: detected capacity change from 0 to 256
[ 1179.498487][ T5786] ocfs2: Unmounting device (7,3) on (node local)
[ 1179.953809][T26261] loop1: detected capacity change from 0 to 22
[ 1179.990919][T26261] MTD: Attempt to mount non-MTD device "/dev/loop1"
[ 1180.011567][T26261] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1180.197745][T26267] loop3: detected capacity change from 0 to 4096
[ 1180.214553][T26267] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[ 1180.237094][T26270] comedi comedi1: dmm32at: I/O port conflict (0x5,16)
[ 1180.300156][T26267] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1180.326394][T26267] ntfs3: loop3: Failed to initialize $Extend/$Reparse.
[ 1180.494234][T26275] netlink: 12 bytes leftover after parsing attributes in process `syz.0.8692'.
[ 1180.900437][T26289] netlink: 84 bytes leftover after parsing attributes in process `syz.1.8699'.
[ 1181.087767][T26296] comedi comedi1: dmm32at: I/O port conflict (0x5,16)
[ 1181.406643][ T5869] usb 1-1: new high-speed USB device number 32 using dummy_hcd
[ 1181.620276][ T5869] usb 1-1: Using ep0 maxpacket: 16
[ 1181.634156][ T5869] usb 1-1: unable to get BOS descriptor or descriptor too short
[ 1181.645090][ T5869] usb 1-1: config 8 has an invalid interface number: 97 but max is 0
[ 1181.657058][ T5869] usb 1-1: config 8 has no interface number 0
[ 1181.669037][ T5869] usb 1-1: too many endpoints for config 8 interface 97 altsetting 97: 97, using maximum allowed: 30
[ 1181.690143][ T5869] usb 1-1: config 8 interface 97 altsetting 97 has 0 endpoint descriptors, different from the interface descriptor's value: 97
[ 1181.725808][ T5869] usb 1-1: config 8 interface 97 has no altsetting 0
[ 1181.741401][ T5869] usb 1-1: New USB device found, idVendor=a257, idProduct=2013, bcdDevice=ab.34
[ 1181.753339][ T5869] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1181.777993][ T5869] usb 1-1: Product: syz
[ 1181.790771][ T5869] usb 1-1: Manufacturer: syz
[ 1181.804590][ T5869] usb 1-1: SerialNumber: syz
[ 1182.052126][ T5869] usb 1-1: USB disconnect, device number 32
[ 1182.177843][T26337] netlink: 'syz.2.8717': attribute type 5 has an invalid length.
[ 1182.214204][T26337] ip6erspan0: entered promiscuous mode
[ 1183.026093][T26344] loop3: detected capacity change from 0 to 32768
[ 1183.048051][T26344] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.8720 (26344)
[ 1183.101569][T26344] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1183.140409][T26344] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[ 1183.172022][T26344] BTRFS info (device loop3): using free space tree
[ 1183.373690][T26344] BTRFS info (device loop3): enabling ssd optimizations
[ 1183.401351][T26344] BTRFS info (device loop3): auto enabling async discard
[ 1183.491710][T26353] loop2: detected capacity change from 0 to 40427
[ 1183.523279][T26353] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12
[ 1183.531089][T26353] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1183.600005][T26353] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1183.681070][ T5786] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1183.819570][T26353] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 1183.865622][T26353] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1184.073767][T26353] fscrypt (loop2, inode 3): Error -61 getting encryption context
[ 1185.513958][T26419] binder: 26418:26419 unknown command 1074553619
[ 1185.520430][T26419] binder: 26418:26419 ioctl c0306201 200000000540 returned -22
[ 1186.454439][T26442] netlink: 8 bytes leftover after parsing attributes in process `syz.1.8755'.
[ 1186.544262][T26444] binder: 26443:26444 unknown command 1074553619
[ 1186.551377][T26444] binder: 26443:26444 ioctl c0306201 200000000540 returned -22
[ 1186.608780][T26426] loop2: detected capacity change from 0 to 32768
[ 1187.021866][T26458] loop0: detected capacity change from 0 to 64
[ 1187.228703][T26463] usb usb8: usbfs: interface 0 claimed by hub while 'syz.3.8766' sets config #0
[ 1187.482560][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1187.488962][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1187.919466][T26486] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8778'.
[ 1188.337954][T26498] ip6t_srh: unknown srh invflags 7D00
[ 1188.405299][T26466] loop1: detected capacity change from 0 to 32768
[ 1188.457558][T26466] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.8767 (26466)
[ 1188.547983][T26466] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1188.558246][T26466] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1188.570825][T26466] BTRFS info (device loop1): using free space tree
[ 1188.704422][T26523] netlink: 10 bytes leftover after parsing attributes in process `syz.3.8788'.
[ 1188.729603][T26466] BTRFS info (device loop1): enabling ssd optimizations
[ 1188.751394][T26466] BTRFS info (device loop1): auto enabling async discard
[ 1189.008272][ T5793] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1189.021677][T26528] netlink: 22 bytes leftover after parsing attributes in process `syz.3.8790'.
[ 1189.376456][ T5992] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop1 scanned by udevd (5992)
[ 1189.591038][T26522] loop2: detected capacity change from 0 to 32768
[ 1189.675322][T26522] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1189.950673][T26522] XFS (loop2): Ending clean mount
[ 1189.995368][T26522] XFS (loop2): Quotacheck needed: Please wait.
[ 1190.011923][T26553] netlink: 4 bytes leftover after parsing attributes in process `syz.1.8798'.
[ 1190.148200][T26522] XFS (loop2): Quotacheck: Done.
[ 1190.214624][T26558] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1190.222771][T26558] IPv6: NLM_F_CREATE should be set when creating new route
[ 1190.255016][ T5797] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1190.459425][T26565] loop3: detected capacity change from 0 to 64
[ 1190.808722][T26570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8802'.
[ 1190.836907][T26570] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8802'.
[ 1191.321031][T26592] Non-string source
[ 1191.658938][ T5869] usb 1-1: new high-speed USB device number 33 using dummy_hcd
[ 1191.713524][T26610] netlink: 'syz.2.8825': attribute type 21 has an invalid length.
[ 1191.883309][ T5869] usb 1-1: Using ep0 maxpacket: 8
[ 1191.901414][ T5869] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1191.919245][ T5869] usb 1-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1191.940680][ T5869] usb 1-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1191.962960][ T5869] usb 1-1: Product: syz
[ 1191.967206][ T5869] usb 1-1: Manufacturer: syz
[ 1192.006207][ T5869] usb 1-1: SerialNumber: syz
[ 1192.049801][T26622] ip6gretap2: entered promiscuous mode
[ 1192.268426][ T5869] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1192.284600][ T5869] usb 1-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1192.306323][ T5869] usb 1-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1192.483190][ T5869] usb 1-1: palm_os_3_probe - error -71 getting bytes available request
[ 1192.507618][ T5869] visor 1-1:1.0: Handspring Visor / Palm OS converter detected
[ 1192.549864][ T5869] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1192.588399][ T5869] usb 1-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1192.618705][ T5869] usb 1-1: USB disconnect, device number 33
[ 1192.628658][ T5869] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1192.655395][ T5869] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1192.674961][T26640] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1192.703180][ T5869] visor 1-1:1.0: device disconnected
[ 1192.717826][T26640] overlayfs: missing 'lowerdir'
[ 1192.746305][T26642] netlink: 766 bytes leftover after parsing attributes in process `syz.1.8842'.
[ 1193.152686][T26655] loop2: detected capacity change from 0 to 736
[ 1193.160616][T26656] xt_bpf: check failed: parse error
[ 1193.248887][T26655] rock: directory entry would overflow storage
[ 1193.268596][T26655] rock: sig=0x3b10, size=4, remaining=3
[ 1193.359073][T26660] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8851'.
[ 1193.371136][T26660] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8851'.
[ 1193.399689][T26660] netlink: 36 bytes leftover after parsing attributes in process `syz.0.8851'.
[ 1193.994289][T26686] loop2: detected capacity change from 0 to 256
[ 1194.022614][T26686] exfat: Deprecated parameter 'utf8'
[ 1194.038254][T26686] exfat: Deprecated parameter 'utf8'
[ 1194.083414][T26686] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xabf88b1f, utbl_chksum : 0xe619d30d)
[ 1194.190207][T26686] overlay: filesystem on ./file0 not supported
[ 1194.623123][T26698] (unnamed net_device) (uninitialized): option lp_interval: invalid value (18446744073709551611)
[ 1194.655721][T26698] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[ 1194.808468][T26684] loop0: detected capacity change from 0 to 32768
[ 1194.833157][T26684] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9
[ 1194.888798][T26708] loop3: detected capacity change from 0 to 8
[ 1194.982420][T26710] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate.
[ 1195.695941][T26732] loop2: detected capacity change from 0 to 1024
[ 1195.739989][T26732] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1195.775559][T26732] EXT4-fs (loop2): stripe (3) is not aligned with cluster size (16), stripe is disabled
[ 1195.906507][T26732] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1196.083658][T26732] EXT4-fs error (device loop2): ext4_xattr_inode_iget:444: inode #11: comm syz.2.8887: missing EA_INODE flag
[ 1196.151378][T26732] EXT4-fs (loop2): Remounting filesystem read-only
[ 1196.274499][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1197.024213][T26767] loop3: detected capacity change from 0 to 128
[ 1197.042628][T26767] EXT4-fs: Ignoring removed nobh option
[ 1197.102386][T26767] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1197.122712][T26748] loop1: detected capacity change from 0 to 32768
[ 1197.156862][T26748] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1197.167857][T26767] ext4 filesystem being mounted at /2228/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1197.180639][T26748] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 1197.196722][T26748] BTRFS info (device loop1): using free space tree
[ 1197.334086][T26767] EXT4-fs error (device loop3): ext4_validate_inode_bitmap:106: comm syz.3.8903: Corrupt inode bitmap - block_group = 0, inode_bitmap = 19
[ 1197.397344][T26748] BTRFS info (device loop1): enabling ssd optimizations
[ 1197.409544][ T5786] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1197.431698][T26748] BTRFS info (device loop1): auto enabling async discard
[ 1197.739707][ T5793] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1197.779141][T26790] loop0: detected capacity change from 0 to 4096
[ 1197.883048][T26755] loop2: detected capacity change from 0 to 40427
[ 1197.935247][T26755] F2FS-fs (loop2): Invalid log blocks per segment (4278190089)
[ 1197.942902][T26755] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 1197.992427][T26790] ntfs: volume version 3.1.
[ 1198.013984][T26755] F2FS-fs (loop2): invalid crc value
[ 1198.104729][T26755] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 1198.148842][T26790] ntfs: (device loop0): ntfs_truncate(): Inode 0x43 has unknown attribute type 0x80.  Aborting truncate.
[ 1198.317273][T26755] F2FS-fs (loop2): Try to recover 1th superblock, ret: -30
[ 1198.362470][T26755] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5
[ 1198.684841][T26755] F2FS-fs (loop2): Corrupted max_depth of 3: 255
[ 1198.739605][T26755] F2FS-fs (loop2): f2fs_check_nid_range: out-of-range nid=1, run fsck to fix.
[ 1199.230883][T26813] bond1: entered promiscuous mode
[ 1200.150742][T26837] loop1: detected capacity change from 0 to 128
[ 1200.170154][T26837] FAT-fs (loop1): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive!
[ 1200.187502][T26837] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1)
[ 1200.220097][T26810] loop3: detected capacity change from 0 to 32768
[ 1200.311509][T26839] IPv6: sit2: Disabled Multicast RS
[ 1200.327546][   T28] audit: type=1800 audit(2000000152.432:44): pid=26810 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8915" name="file1" dev="loop3" ino=4 res=0 errno=0
[ 1200.575846][T26844] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8933'.
[ 1200.584848][T26844] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8933'.
[ 1201.202741][T26863] netlink: 16 bytes leftover after parsing attributes in process `syz.0.8942'.
[ 1201.226985][T26863] netlink: 92 bytes leftover after parsing attributes in process `syz.0.8942'.
[ 1202.617019][ T5778] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 1202.830489][ T5778] usb 4-1: Using ep0 maxpacket: 16
[ 1202.854153][ T5778] usb 4-1: config 0 has an invalid interface number: 105 but max is 0
[ 1202.873491][ T5778] usb 4-1: config 0 has an invalid descriptor of length 214, skipping remainder of the config
[ 1202.909061][ T5778] usb 4-1: config 0 has no interface number 0
[ 1202.940805][ T5778] usb 4-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[ 1202.962157][ T5778] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1202.994496][ T5778] usb 4-1: Product: syz
[ 1203.012246][ T5778] usb 4-1: Manufacturer: syz
[ 1203.022941][ T5778] usb 4-1: SerialNumber: syz
[ 1203.052154][ T5778] usb 4-1: config 0 descriptor??
[ 1203.052519][T26917] netlink: 20 bytes leftover after parsing attributes in process `syz.0.8968'.
[ 1203.120866][T26891] loop1: detected capacity change from 0 to 32768
[ 1203.154747][T26891] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[ 1203.221417][T26891] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1203.325830][T15823] usb 4-1: USB disconnect, device number 9
[ 1203.350222][T26891] OCFS2: ERROR (device loop1): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has an invalid bg_blkno of 4278207136
[ 1203.422415][T26891] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1203.515014][T26891] OCFS2: File system is now read-only.
[ 1203.520727][T26891] (syz.1.8955,26891,0):ocfs2_search_chain:1761 ERROR: status = -30
[ 1203.558028][T26891] (syz.1.8955,26891,0):ocfs2_search_chain:1871 ERROR: status = -30
[ 1203.566721][T26891] (syz.1.8955,26891,0):ocfs2_claim_suballoc_bits:1940 ERROR: status = -30
[ 1203.589606][T26891] (syz.1.8955,26891,0):ocfs2_claim_suballoc_bits:1983 ERROR: status = -30
[ 1203.631971][T26891] (syz.1.8955,26891,0):ocfs2_claim_new_inode:2216 ERROR: status = -30
[ 1203.652139][T26891] (syz.1.8955,26891,0):ocfs2_claim_new_inode:2231 ERROR: status = -30
[ 1203.685727][T26891] (syz.1.8955,26891,0):ocfs2_mknod_locked:639 ERROR: status = -30
[ 1203.697690][T26891] (syz.1.8955,26891,0):ocfs2_symlink:1944 ERROR: status = -30
[ 1203.705948][T26891] (syz.1.8955,26891,0):ocfs2_symlink:2068 ERROR: status = -30
[ 1203.741079][T26891] syz.1.8955 (26891) used greatest stack depth: 19504 bytes left
[ 1203.773773][ T5793] ocfs2: Unmounting device (7,1) on (node local)
[ 1203.933055][T15823] usb 1-1: new low-speed USB device number 34 using dummy_hcd
[ 1204.100121][T26938] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1204.210100][T15823] usb 1-1: config index 0 descriptor too short (expected 6427, got 27)
[ 1204.219356][T15823] usb 1-1: config 0 has an invalid interface number: 21 but max is 0
[ 1204.270580][T15823] usb 1-1: config 0 has no interface number 0
[ 1204.285336][T15823] usb 1-1: config 0 interface 21 altsetting 0 endpoint 0x82 is Bulk; changing to Interrupt
[ 1204.298291][T15823] usb 1-1: config 0 interface 21 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1204.323943][T15823] usb 1-1: New USB device found, idVendor=06cd, idProduct=0202, bcdDevice=92.d4
[ 1204.327344][T26946] loop2: detected capacity change from 0 to 64
[ 1204.369881][T15823] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1204.378674][T26946] Trying to free block not in datazone
[ 1204.425816][T15823] usb 1-1: config 0 descriptor??
[ 1204.434916][T26948] loop1: detected capacity change from 0 to 256
[ 1204.574607][T26948] FAT-fs (loop1): Directory bread(block 64) failed
[ 1204.598277][T26948] FAT-fs (loop1): Directory bread(block 65) failed
[ 1204.625293][T26948] FAT-fs (loop1): Directory bread(block 66) failed
[ 1204.647403][T26948] FAT-fs (loop1): Directory bread(block 67) failed
[ 1204.655648][T26948] FAT-fs (loop1): Directory bread(block 68) failed
[ 1204.663685][T26948] FAT-fs (loop1): Directory bread(block 69) failed
[ 1204.672834][T26948] FAT-fs (loop1): Directory bread(block 70) failed
[ 1204.690429][T26948] FAT-fs (loop1): Directory bread(block 71) failed
[ 1204.709302][T26948] FAT-fs (loop1): Directory bread(block 72) failed
[ 1204.726773][T26948] FAT-fs (loop1): Directory bread(block 73) failed
[ 1204.902798][T15823] usb 1-1: USB disconnect, device number 34
[ 1205.122112][T26960] sctp: [Deprecated]: syz.1.8988 (pid 26960) Use of int in maxseg socket option.
[ 1205.122112][T26960] Use struct sctp_assoc_value instead
[ 1205.645212][T26979] netlink: 188 bytes leftover after parsing attributes in process `syz.0.8997'.
[ 1206.328607][T26972] loop2: detected capacity change from 0 to 32768
[ 1206.483104][T27003] loop3: detected capacity change from 0 to 8
[ 1206.484856][T26972] ea_get: invalid extended attribute
[ 1206.499031][T26972] ffff88807726dfb0: 04 00 00 00                                      ....
[ 1206.628858][T27003] SQUASHFS error: xz decompression failed, data probably corrupt
[ 1206.658122][T27003] SQUASHFS error: Failed to read block 0x108: -5
[ 1206.721532][T27003] SQUASHFS error: Unable to read metadata cache entry [106]
[ 1206.763034][T27003] SQUASHFS error: Unable to read inode 0x11f
[ 1207.283162][T27013] loop0: detected capacity change from 0 to 2048
[ 1207.351920][T27013] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1207.454583][T27018] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1207.629969][T26999] loop1: detected capacity change from 0 to 32768
[ 1207.731476][   T28] audit: type=1800 audit(2000000159.363:45): pid=26999 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.9005" name="file1" dev="loop1" ino=4 res=0 errno=0
[ 1208.025082][T27030] netlink: 'syz.0.9022': attribute type 6 has an invalid length.
[ 1208.045958][T27030] netlink: 199836 bytes leftover after parsing attributes in process `syz.0.9022'.
[ 1208.384894][T27038] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 1208.404904][T27038] overlayfs: missing 'lowerdir'
[ 1208.531988][T27040] 
: renamed from bond_slave_0 (while UP)
[ 1208.871340][T27050] netlink: 'syz.2.9031': attribute type 2 has an invalid length.
[ 1209.092287][T27055] netlink: 'syz.1.9034': attribute type 1 has an invalid length.
[ 1209.118482][T27055] netlink: 80 bytes leftover after parsing attributes in process `syz.1.9034'.
[ 1209.278111][   T28] audit: type=1326 audit(2000000160.804:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27064 comm="syz.1.9037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1209.373493][   T28] audit: type=1326 audit(2000000160.804:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27064 comm="syz.1.9037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1209.418778][T27067] loop0: detected capacity change from 0 to 1024
[ 1209.426774][T21752] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 1209.466986][   T28] audit: type=1326 audit(2000000160.832:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27064 comm="syz.1.9037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=103 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1209.508473][   T28] audit: type=1326 audit(2000000160.832:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27064 comm="syz.1.9037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1209.564839][   T28] audit: type=1326 audit(2000000160.832:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27064 comm="syz.1.9037" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1209.592771][   T34] hfsplus: b-tree write err: -5, ino 4
[ 1209.670964][T21752] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08
[ 1209.694934][T21752] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1209.733675][T21752] usb 4-1: Product: syz
[ 1209.745320][T21752] usb 4-1: Manufacturer: syz
[ 1209.764638][T21752] usb 4-1: SerialNumber: syz
[ 1209.813603][T21752] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested
[ 1209.848460][ T5868] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008
[ 1209.973202][ T5869] usb 3-1: new high-speed USB device number 32 using dummy_hcd
[ 1210.151189][T27084] netlink: 16 bytes leftover after parsing attributes in process `syz.1.9047'.
[ 1210.165961][T27084] netlink: 30 bytes leftover after parsing attributes in process `syz.1.9047'.
[ 1210.166175][    C0] usb 4-1: ath9k_htc: invalid pkt_len (c6fd)
[ 1210.196726][ T5869] usb 3-1: Using ep0 maxpacket: 16
[ 1210.206771][ T5869] usb 3-1: config 0 has an invalid interface number: 105 but max is 0
[ 1210.238614][ T5869] usb 3-1: config 0 has an invalid descriptor of length 214, skipping remainder of the config
[ 1210.259444][ T5869] usb 3-1: config 0 has no interface number 0
[ 1210.270263][ T5869] usb 3-1: New USB device found, idVendor=046d, idProduct=08d3, bcdDevice= b.28
[ 1210.287062][ T5869] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1210.295950][ T5869] usb 3-1: Product: syz
[ 1210.300185][ T5869] usb 3-1: Manufacturer: syz
[ 1210.311900][ T5869] usb 3-1: SerialNumber: syz
[ 1210.321614][ T5869] usb 3-1: config 0 descriptor??
[ 1210.465628][T21752] usb 4-1: USB disconnect, device number 10
[ 1210.622574][ T5869] usb 3-1: USB disconnect, device number 32
[ 1211.009039][ T5868] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive
[ 1211.018191][ T5868] ath9k_htc: Failed to initialize the device
[ 1211.042264][T21752] usb 4-1: ath9k_htc: USB layer deinitialized
[ 1211.054887][T27087] loop0: detected capacity change from 0 to 32768
[ 1211.087357][T27102] netlink: 'syz.1.9056': attribute type 11 has an invalid length.
[ 1211.110624][T27102] netlink: 3657 bytes leftover after parsing attributes in process `syz.1.9056'.
[ 1211.123152][T27087] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[ 1211.182952][T27087] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1211.243496][T27108] netlink: 10 bytes leftover after parsing attributes in process `syz.1.9058'.
[ 1211.254791][  T134] (kworker/u4:5,134,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #72: rec_len % 4 != 0 - offset=312, inode=13845347915746889, rec_len=25793, name_len=214
[ 1211.344471][T27087] (syz.0.9049,27087,1):ocfs2_read_blocks:239 ERROR: status = -12
[ 1211.383001][T27087] (syz.0.9049,27087,1):ocfs2_xattr_block_find:2831 ERROR: status = -12
[ 1211.494516][ T5789] ocfs2: Unmounting device (7,0) on (node local)
[ 1211.589407][T27114] loop3: detected capacity change from 0 to 65
[ 1211.676249][T27114] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing
[ 1211.683600][T27114] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway
[ 1211.922876][T27122] netlink: 'syz.0.9065': attribute type 10 has an invalid length.
[ 1211.976271][T27122] netlink: 156 bytes leftover after parsing attributes in process `syz.0.9065'.
[ 1212.005874][T27124] loop2: detected capacity change from 0 to 512
[ 1212.097243][T27124] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.9066: bad orphan inode 13
[ 1212.119613][T27128] qrtr: Invalid version 195
[ 1212.183735][T27124] ext4_test_bit(bit=12, block=4) = 1
[ 1212.197421][T27124] is_bad_inode(inode)=0
[ 1212.201774][T27124] NEXT_ORPHAN(inode)=0
[ 1212.213517][T27124] max_ino=32
[ 1212.224347][T27124] i_nlink=1
[ 1212.229330][T27124] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1212.289835][T27131] xt_physdev: --physdev-out and --physdev-is-out only supported in the FORWARD and POSTROUTING chains with bridged traffic
[ 1212.365959][T27124] EXT4-fs warning (device loop2): dx_probe:845: inode #2: comm syz.2.9066: Hash code is SIPHASH, but hash not in dirent
[ 1212.410640][T27124] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.9066: Corrupt directory, running e2fsck is recommended
[ 1212.490038][T27124] EXT4-fs warning (device loop2): dx_probe:845: inode #2: comm syz.2.9066: Hash code is SIPHASH, but hash not in dirent
[ 1212.542170][T27124] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.9066: Corrupt directory, running e2fsck is recommended
[ 1212.761798][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1212.952920][T27153] netlink: 'syz.1.9079': attribute type 3 has an invalid length.
[ 1213.512688][T15823] usb 3-1: new high-speed USB device number 33 using dummy_hcd
[ 1213.761133][T15823] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1213.788515][T15823] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1213.816064][T15823] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7
[ 1213.836058][T15823] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0
[ 1213.860935][T15823] usb 3-1: New USB device found, idVendor=0a07, idProduct=00d0, bcdDevice=10.13
[ 1213.863803][T27180] loop3: detected capacity change from 0 to 256
[ 1213.881656][T15823] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1213.892524][T15823] usb 3-1: Product: syz
[ 1213.912814][T15823] usb 3-1: Manufacturer: syz
[ 1213.927787][T15823] usb 3-1: SerialNumber: syz
[ 1213.943417][T15823] usb 3-1: config 0 descriptor??
[ 1214.212841][T15823] adutux 3-1:0.0: Could not retrieve serial number
[ 1214.234361][T15823] adutux: probe of 3-1:0.0 failed with error -5
[ 1214.383391][T27169] loop0: detected capacity change from 0 to 32768
[ 1214.429226][T27169] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1214.499677][T15823] usb 3-1: USB disconnect, device number 33
[ 1214.611774][T27169] XFS (loop0): Ending clean mount
[ 1214.623093][T27169] XFS (loop0): Quotacheck needed: Please wait.
[ 1214.779879][T27169] XFS (loop0): Quotacheck: Done.
[ 1214.905094][ T5789] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1215.708737][T27234] loop2: detected capacity change from 0 to 512
[ 1215.736134][T27234] EXT4-fs (loop2): Test dummy encryption mode enabled
[ 1215.747386][T27234] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1215.792787][T27234] EXT4-fs error (device loop2): ext4_orphan_get:1425: comm syz.2.9116: bad orphan inode 131083
[ 1215.837468][T27234] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1215.840796][T27236] loop3: detected capacity change from 0 to 4096
[ 1215.884711][T27241] netlink: 'syz.1.9119': attribute type 13 has an invalid length.
[ 1215.927793][T27242] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1215.985505][T27236] NILFS error (device loop3): nilfs_check_page: bad entry in directory #2: rec_len is too small for name_len - offset=0, inode=2, rec_len=16, name_len=11
[ 1216.002225][T27244] loop1: detected capacity change from 0 to 1024
[ 1216.160176][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1216.804367][    T9] usb 3-1: new high-speed USB device number 34 using dummy_hcd
[ 1217.060663][    T9] usb 3-1: Using ep0 maxpacket: 32
[ 1217.085500][    T9] usb 3-1: config 0 has an invalid interface number: 35 but max is 0
[ 1217.103025][T27269] xt_CHECKSUM: CHECKSUM should be avoided.  If really needed, restrict with "-p udp" and only use in OUTPUT
[ 1217.108071][T27270] syz.1.9130: attempt to access beyond end of device
[ 1217.108071][T27270] nbd1: rw=0, sector=2, nr_sectors = 2 limit=0
[ 1217.116829][    T9] usb 3-1: config 0 has no interface number 0
[ 1217.154956][T27270] syz.1.9130: attempt to access beyond end of device
[ 1217.154956][T27270] nbd1: rw=0, sector=0, nr_sectors = 2 limit=0
[ 1217.178998][    T9] usb 3-1: config 0 interface 35 altsetting 0 endpoint 0x85 has an invalid bInterval 0, changing to 7
[ 1217.183181][T27270] syz.1.9130: attempt to access beyond end of device
[ 1217.183181][T27270] nbd1: rw=0, sector=0, nr_sectors = 2 limit=0
[ 1217.214126][T27270] syz.1.9130: attempt to access beyond end of device
[ 1217.214126][T27270] nbd1: rw=0, sector=18, nr_sectors = 2 limit=0
[ 1217.228212][T27270] syz.1.9130: attempt to access beyond end of device
[ 1217.228212][T27270] nbd1: rw=0, sector=30, nr_sectors = 2 limit=0
[ 1217.234956][    T9] usb 3-1: config 0 interface 35 altsetting 0 endpoint 0x85 has invalid wMaxPacketSize 0
[ 1217.245332][T27270] syz.1.9130: attempt to access beyond end of device
[ 1217.245332][T27270] nbd1: rw=0, sector=36, nr_sectors = 2 limit=0
[ 1217.275527][T27270] VFS: unable to find oldfs superblock on device nbd1
[ 1217.325714][    T9] usb 3-1: New USB device found, idVendor=10c4, idProduct=818a, bcdDevice=7d.ad
[ 1217.348386][    T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1217.367957][    T9] usb 3-1: Product: syz
[ 1217.373275][    T9] usb 3-1: Manufacturer: syz
[ 1217.378198][    T9] usb 3-1: SerialNumber: syz
[ 1217.392349][    T9] usb 3-1: config 0 descriptor??
[ 1217.632276][T27279] loop0: detected capacity change from 0 to 256
[ 1217.690539][T27279] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x987a2e96, utbl_chksum : 0xe619d30d)
[ 1217.877624][    T9] radio-si470x 3-1:0.35: si470x_get_report: usb_control_msg returned -71
[ 1217.901633][    T9] radio-si470x: probe of 3-1:0.35 failed with error -5
[ 1217.959472][    T9] radio-raremono 3-1:0.35: this is not Thanko's Raremono.
[ 1218.016982][    T9] usb 3-1: USB disconnect, device number 34
[ 1218.029461][T27286] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9138'.
[ 1218.066652][T27286] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9138'.
[ 1218.128766][T27286] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9138'.
[ 1218.178782][T27290] loop0: detected capacity change from 0 to 8
[ 1218.263476][T27290] SQUASHFS error: Corrupted symlink
[ 1218.588764][ T5868] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 1218.673123][T27303] netlink: 'syz.2.9145': attribute type 10 has an invalid length.
[ 1218.690897][T27302] netlink: 209852 bytes leftover after parsing attributes in process `syz.0.9146'.
[ 1218.713143][T27302] openvswitch: netlink: Key type 2832 is out of range max 32
[ 1218.722695][T27303] veth1_macvtap: left promiscuous mode
[ 1218.825198][ T5868] usb 4-1: Using ep0 maxpacket: 16
[ 1218.844673][ T5868] usb 4-1: config 0 has no interfaces?
[ 1218.864964][ T5868] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1218.884810][ T5868] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1218.903167][T27306] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9148'.
[ 1218.903219][ T5868] usb 4-1: Product: syz
[ 1218.927374][T27306] netlink: 28 bytes leftover after parsing attributes in process `syz.1.9148'.
[ 1218.937728][ T5868] usb 4-1: Manufacturer: syz
[ 1218.937755][ T5868] usb 4-1: SerialNumber: syz
[ 1218.960605][ T5868] r8152-cfgselector 4-1: config 0 descriptor??
[ 1219.006779][T27308] loop0: detected capacity change from 0 to 4096
[ 1219.022588][T27308] ntfs3: loop0: Different NTFS sector size (4096) and media sector size (512).
[ 1219.121353][T27308] ntfs3: loop0: Mark volume as dirty due to NTFS errors
[ 1219.172972][T27310] xt_nfacct: accounting object `syz1' does not exist
[ 1219.212840][ T5868] usbip-host 4-1: 4-1 is not in match_busid table... skip!
[ 1219.258888][T27308] ntfs3: loop0: failed to convert "c46c" to cp874
[ 1219.323561][T27312] ieee802154 phy0 wpan0: encryption failed: -90
[ 1219.501363][    T9] usb 4-1: USB disconnect, device number 11
[ 1219.725954][T16535] Bluetooth: hci3: Invalid handle: 0xfd00 > 0x0eff
[ 1219.842994][T27327] netlink: 'syz.1.9159': attribute type 4 has an invalid length.
[ 1219.855749][T27327] netlink: 152 bytes leftover after parsing attributes in process `syz.1.9159'.
[ 1219.881659][T27327] .`: renamed from bond0 (while UP)
[ 1220.323329][T27340] netlink: 'syz.0.9163': attribute type 15 has an invalid length.
[ 1220.436499][T27342] loop2: detected capacity change from 0 to 1764
[ 1220.720047][T27348] delete_channel: no stack
[ 1221.397253][T27371] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9178'.
[ 1221.445344][T27369] netlink: 20 bytes leftover after parsing attributes in process `syz.2.9177'.
[ 1221.796441][T27379] overlayfs: failed to resolve './file1': -2
[ 1221.863411][   T28] audit: type=1326 audit(2000000172.571:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1221.975718][   T28] audit: type=1326 audit(2000000172.571:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1222.058688][   T28] audit: type=1326 audit(2000000172.581:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1222.139265][   T28] audit: type=1326 audit(2000000172.581:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1222.216249][   T28] audit: type=1326 audit(2000000172.609:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=149 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1222.308769][   T28] audit: type=1326 audit(2000000172.683:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa6db7c1f85 code=0x7ffc0000
[ 1222.369382][   T28] audit: type=1326 audit(2000000172.683:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa6db7c1f85 code=0x7ffc0000
[ 1222.441567][   T28] audit: type=1326 audit(2000000172.683:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa6db7c1f85 code=0x7ffc0000
[ 1222.529579][   T28] audit: type=1326 audit(2000000172.683:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa6db7c1f85 code=0x7ffc0000
[ 1222.618880][   T28] audit: type=1326 audit(2000000172.683:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27380 comm="syz.1.9183" exe="/root/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fa6db7c1f85 code=0x7ffc0000
[ 1223.119763][T27325] Bluetooth: hci0: unexpected event for opcode 0x2040
[ 1223.985809][T27438] netlink: 256 bytes leftover after parsing attributes in process `syz.3.9210'.
[ 1224.162860][T27440] loop0: detected capacity change from 0 to 4096
[ 1224.446953][ T5869] usb 2-1: new full-speed USB device number 31 using dummy_hcd
[ 1224.674559][ T5869] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1224.685215][ T5869] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1224.714424][ T5869] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1224.735556][ T5869] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1224.776591][T27460] netlink: 'syz.2.9221': attribute type 1 has an invalid length.
[ 1224.778405][ T5869] usb 2-1: config 1 has no interface number 0
[ 1224.809066][ T5869] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1224.824649][ T5869] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1224.851215][ T5869] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[ 1225.007530][T27463] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1225.063007][ T5869] snd_usb_pod 2-1:1.1: endpoint not available, using fallback values
[ 1225.084223][ T5869] snd_usb_pod 2-1:1.1: invalid control EP
[ 1225.105843][ T5869] snd_usb_pod 2-1:1.1: cannot start listening: -22
[ 1225.141555][ T5869] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[ 1225.163662][ T5869] snd_usb_pod: probe of 2-1:1.1 failed with error -22
[ 1225.292550][ T5869] usb 2-1: USB disconnect, device number 31
[ 1225.386910][T27476] libceph: resolve '400' (ret=-3): failed
[ 1225.698088][T27487] netlink: 'syz.3.9234': attribute type 6 has an invalid length.
[ 1226.671597][T27520] loop0: detected capacity change from 0 to 764
[ 1226.780006][T27520] Symlink component flag not implemented
[ 1226.786617][T27520] Symlink component flag not implemented (101)
[ 1226.877131][T27524] tmpfs: User quota block hardlimit too large.
[ 1227.751766][T27549] netlink: 32 bytes leftover after parsing attributes in process `syz.2.9262'.
[ 1228.418940][   T28] kauditd_printk_skb: 65 callbacks suppressed
[ 1228.418960][   T28] audit: type=1326 audit(2000000178.707:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27570 comm="syz.1.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1228.457468][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1228.481128][T27576] netlink: 'syz.3.9271': attribute type 5 has an invalid length.
[ 1228.573703][   T28] audit: type=1326 audit(2000000178.707:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27570 comm="syz.1.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1228.583466][T27576] ip6erspan0: entered allmulticast mode
[ 1228.680421][T27581] netlink: 'syz.0.9273': attribute type 10 has an invalid length.
[ 1228.696496][   T28] audit: type=1326 audit(2000000178.801:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27570 comm="syz.1.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=221 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1228.874846][   T28] audit: type=1326 audit(2000000178.801:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27570 comm="syz.1.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1228.888296][T27581] veth0_vlan: left promiscuous mode
[ 1228.947120][   T28] audit: type=1326 audit(2000000178.801:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27570 comm="syz.1.9270" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa6db78f6c9 code=0x7ffc0000
[ 1229.032230][T27581] veth0_vlan: entered promiscuous mode
[ 1229.039254][T27587] kernel profiling enabled (shift: 17)
[ 1229.062334][T27581] team0: Device veth0_vlan failed to register rx_handler
[ 1229.281678][T27593] Cannot find del_set index 2 as target
[ 1229.791912][T27609] loop0: detected capacity change from 0 to 128
[ 1229.907108][T27609] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000006f)
[ 1229.948308][T27609] FAT-fs (loop0): Filesystem has been set read-only
[ 1230.115709][T27617] netlink: 'syz.1.9291': attribute type 10 has an invalid length.
[ 1230.337848][T27617] veth0_vlan: left promiscuous mode
[ 1230.397658][T27617] veth0_vlan: entered promiscuous mode
[ 1230.452557][T27617] team0: Device veth0_vlan failed to register rx_handler
[ 1230.787255][T27636] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1230.818585][T27636] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1230.856308][T27636] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1230.875148][T27636] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1232.029318][T27671] loop2: detected capacity change from 0 to 1024
[ 1232.064049][T27674] bond0: entered promiscuous mode
[ 1232.069986][T27674] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1232.284283][T21473] hfsplus: b-tree write err: -5, ino 4
[ 1232.450082][T27678] loop3: detected capacity change from 0 to 4096
[ 1232.512052][T27678] ntfs3: loop3: Different NTFS sector size (1024) and media sector size (512).
[ 1232.629246][T27659] loop0: detected capacity change from 0 to 32768
[ 1232.764713][T27659] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1233.157642][ T5789] ocfs2: Unmounting device (7,0) on (node local)
[ 1233.459952][T27694] loop3: detected capacity change from 0 to 8192
[ 1233.542666][ T5992] I/O error, dev loop3, sector 8064 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1233.794038][T27710] netlink: 'syz.2.9332': attribute type 10 has an invalid length.
[ 1234.046059][T27710] team0: Port device syz_tun added
[ 1234.193225][T27720] netlink: 'syz.3.9336': attribute type 10 has an invalid length.
[ 1234.435002][T27720] veth0_vlan: left promiscuous mode
[ 1234.482856][T27720] veth0_vlan: entered promiscuous mode
[ 1234.519309][T27720] team0: Device veth0_vlan failed to register rx_handler
[ 1234.963306][T27737] netlink: 209844 bytes leftover after parsing attributes in process `syz.0.9346'.
[ 1234.998832][T27740] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1235.026738][T27740] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1235.050604][T27740] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1235.069018][T27740] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1235.609162][  T970] usb 3-1: new high-speed USB device number 35 using dummy_hcd
[ 1235.809351][T27759] loop3: detected capacity change from 0 to 2048
[ 1235.832427][  T970] usb 3-1: Using ep0 maxpacket: 8
[ 1235.854443][T27759] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1235.855250][  T970] usb 3-1: config 0 has an invalid interface number: 56 but max is 0
[ 1235.904975][T27765] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1235.923064][  T970] usb 3-1: config 0 has no interface number 0
[ 1235.936869][  T970] usb 3-1: New USB device found, idVendor=0c72, idProduct=0014, bcdDevice=c7.76
[ 1235.947743][  T970] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1235.966780][  T970] usb 3-1: Product: syz
[ 1235.972820][  T970] usb 3-1: Manufacturer: syz
[ 1235.978139][  T970] usb 3-1: SerialNumber: syz
[ 1236.036682][  T970] usb 3-1: config 0 descriptor??
[ 1236.273027][  T970] peak_usb 3-1:0.56: PEAK-System PCAN-USB X6 v134 fw v24.0.0 (2 channels)
[ 1236.373077][T27775] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1236.386566][T27775] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1236.425213][T27775] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1236.444575][T27775] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1236.488100][  T970] peak_usb 3-1:0.56 can0: unable to request usb[type=2 value=5] err=-71
[ 1236.517011][  T970] peak_usb 3-1:0.56: unable to tell PCAN-USB X6 driver is loaded (err -71)
[ 1236.576941][T27779] netlink: 3 bytes leftover after parsing attributes in process `syz.3.9366'.
[ 1236.654194][  T970] peak_usb: probe of 3-1:0.56 failed with error -71
[ 1236.705097][  T970] usb 3-1: USB disconnect, device number 35
[ 1236.813494][T27785] loop3: detected capacity change from 0 to 1024
[ 1236.957340][ T3424] hfsplus: b-tree write err: -5, ino 4
[ 1237.561557][T27806] 9pnet_virtio: no channels available for device syz
[ 1237.635164][T27812] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 1237.647306][T27812] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 1237.716191][T27812] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 1237.742901][T27812] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 1238.229097][T27830] netlink: 'syz.0.9391': attribute type 3 has an invalid length.
[ 1238.896698][T27844] loop2: detected capacity change from 0 to 1024
[ 1238.922515][T27847] vivid-000: =================  START STATUS  =================
[ 1238.942723][T27844] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1238.957148][T27847] vivid-000: Generate PTS: true
[ 1238.968370][T27847] vivid-000: Generate SCR: true
[ 1238.974995][T27847] tpg source WxH: 1920x1080 (R'G'B)
[ 1238.982526][T27847] tpg field: 1
[ 1238.986329][T27847] tpg crop: 1920x1080@0x0
[ 1238.998769][T27844] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1239.001324][T27826] loop3: detected capacity change from 0 to 32768
[ 1239.018299][T27847] tpg compose: 1920x1080@0x0
[ 1239.030691][T27847] tpg colorspace: 8
[ 1239.035792][T27847] tpg transfer function: 0/0
[ 1239.042919][T27847] tpg quantization: 0/0
[ 1239.047759][T27847] tpg RGB range: 0/2
[ 1239.054820][T27847] vivid-000: ==================  END STATUS  ==================
[ 1239.232952][T27844] EXT4-fs error (device loop2): ext4_xattr_inode_iget:444: inode #11: comm syz.2.9399: missing EA_INODE flag
[ 1239.349626][T27844] EXT4-fs (loop2): Remounting filesystem read-only
[ 1239.479618][  T970] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1239.600269][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1239.864499][  T134] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1239.957489][T27871] netlink: 'syz.3.9410': attribute type 1 has an invalid length.
[ 1240.055479][  T970] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1240.153429][T27877] tmpfs: Bad value for 'mpol'
[ 1240.873180][T27901] loop0: detected capacity change from 0 to 512
[ 1240.892549][T27901] EXT4-fs (loop0): ext4_check_descriptors: Checksum for group 0 failed (17031!=33349)
[ 1240.953436][T27901] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=c802e02c, mo2=0002]
[ 1241.000447][T27901] EXT4-fs (loop0): orphan cleanup on readonly fs
[ 1241.009764][T27901] EXT4-fs error (device loop0): ext4_orphan_get:1425: comm syz.0.9425: bad orphan inode 267
[ 1241.028699][   T34] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1241.050821][T27901] EXT4-fs (loop0): Remounting filesystem read-only
[ 1241.053385][T27906] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1241.067142][T27901] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000007 ro without journal. Quota mode: none.
[ 1241.071127][  T970] usb 3-1: new high-speed USB device number 36 using dummy_hcd
[ 1241.089752][   T34] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1241.148097][T27901] EXT4-fs warning (device loop0): dx_probe:893: inode #2: comm syz.0.9425: dx entry: limit 0 != root limit 125
[ 1241.199299][T27901] EXT4-fs warning (device loop0): dx_probe:966: inode #2: comm syz.0.9425: Corrupt directory, running e2fsck is recommended
[ 1241.334012][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000007.
[ 1241.349144][  T970] usb 3-1: Using ep0 maxpacket: 32
[ 1241.362875][  T970] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1241.396057][  T970] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1241.439528][  T970] usb 3-1: config 1 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1241.472864][T27916] loop0: detected capacity change from 0 to 256
[ 1241.480573][T27917] loop3: detected capacity change from 0 to 136
[ 1241.494574][  T970] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1241.507559][  T970] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1241.531207][ T5869] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1241.533601][  T970] usb 3-1: Product: syz
[ 1241.574596][  T970] usb 3-1: Manufacturer: syz
[ 1241.601464][T27917] Symlink component flag not implemented
[ 1241.611463][  T970] usb 3-1: SerialNumber: syz
[ 1241.671151][  T970] cdc_ncm 3-1:1.0: skipping garbage
[ 1241.705316][  T970] cdc_ncm 3-1:1.0: skipping garbage
[ 1241.712010][  T970] cdc_ncm 3-1:1.0: CDC Union missing and no IAD found
[ 1241.746991][  T970] cdc_ncm 3-1:1.0: bind() failure
[ 1241.896890][T27923] loop0: detected capacity change from 0 to 2048
[ 1241.903515][T27925] netlink: 'syz.3.9436': attribute type 1 has an invalid length.
[ 1241.933243][T27923] NILFS (loop0): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1241.985053][T27926] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1242.005012][  T970] usb 3-1: USB disconnect, device number 36
[ 1242.515224][T27942] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1242.797594][T27948] netlink: 'syz.3.9447': attribute type 10 has an invalid length.
[ 1242.841429][T27948] team0: Port device syz_tun added
[ 1243.639043][T27978] loop2: detected capacity change from 0 to 1024
[ 1243.673896][T27978] EXT4-fs: inline encryption not supported
[ 1243.701122][T27978] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1243.826360][T27978] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1244.082480][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1244.186645][T27998] cgroup: Bad value for 'name'
[ 1245.208260][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1245.548598][T28045] netlink: 'syz.2.9493': attribute type 1 has an invalid length.
[ 1245.626524][T28050] libceph: resolve '0' (ret=-3): failed
[ 1246.237981][T28072] loop2: detected capacity change from 0 to 164
[ 1246.280928][T28072] Unable to read rock-ridge attributes
[ 1246.411771][T28074] loop3: detected capacity change from 0 to 1764
[ 1247.600384][   T28] audit: type=1326 audit(2000000196.648:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28106 comm="syz.3.9524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1247.731295][   T28] audit: type=1326 audit(2000000196.648:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28106 comm="syz.3.9524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1247.760073][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1247.830833][   T28] audit: type=1326 audit(2000000196.686:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28106 comm="syz.3.9524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=79 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1247.868088][   T28] audit: type=1326 audit(2000000196.686:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28106 comm="syz.3.9524" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9f1f58f6c9 code=0x7ffc0000
[ 1248.077929][T28119] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9529'.
[ 1248.377388][   T11] hfsplus: b-tree write err: -5, ino 4
[ 1248.540083][T28137] netlink: 20 bytes leftover after parsing attributes in process `syz.3.9538'.
[ 1248.628850][T28142] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9540'.
[ 1249.185214][ T5869] usb 2-1: new high-speed USB device number 32 using dummy_hcd
[ 1249.430880][ T5869] usb 2-1: Using ep0 maxpacket: 16
[ 1249.457212][ T5869] usb 2-1: config 0 has an invalid interface number: 105 but max is 0
[ 1249.484516][ T5869] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1249.516456][ T5869] usb 2-1: config 0 has no interface number 0
[ 1249.540114][ T5869] usb 2-1: New USB device found, idVendor=046d, idProduct=08f3, bcdDevice= b.28
[ 1249.559153][ T5869] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1249.586858][ T5869] usb 2-1: Product: syz
[ 1249.601914][ T5869] usb 2-1: Manufacturer: syz
[ 1249.612711][ T5869] usb 2-1: SerialNumber: syz
[ 1249.630850][ T5869] usb 2-1: config 0 descriptor??
[ 1249.707621][T28149] loop0: detected capacity change from 0 to 32768
[ 1249.889198][ T5869] usb 2-1: Found UVC 0.00 device syz (046d:08f3)
[ 1249.912131][ T5869] usb 2-1: No valid video chain found.
[ 1250.153548][T15823] usb 2-1: USB disconnect, device number 32
[ 1250.218967][T28176] comedi comedi0: Minor 3 could not be opened
[ 1250.645104][T28162] loop3: detected capacity change from 0 to 32768
[ 1250.675063][T28162] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1250.725033][T28162] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1250.777576][   T28] audit: type=1326 audit(2000000199.623:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28190 comm="syz.2.9566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1250.810247][   T28] audit: type=1326 audit(2000000199.623:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28190 comm="syz.2.9566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1250.861013][T28162] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 1250.884855][   T28] audit: type=1326 audit(2000000199.688:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28190 comm="syz.2.9566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=252 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1250.920394][T15823] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 1250.967168][   T28] audit: type=1326 audit(2000000199.688:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28190 comm="syz.2.9566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1250.970494][T15823] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 1251.082801][   T28] audit: type=1326 audit(2000000199.688:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28190 comm="syz.2.9566" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1251.136389][T15823] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 155ms
[ 1251.174839][T15823] gfs2: fsid=syz:syz.0: jid=0: Done
[ 1251.196078][T28162] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 1251.425823][T28205] loop2: detected capacity change from 0 to 256
[ 1251.624565][T28205] FAT-fs (loop2): Directory bread(block 64) failed
[ 1251.646818][T28205] FAT-fs (loop2): Directory bread(block 65) failed
[ 1251.665375][T28205] FAT-fs (loop2): Directory bread(block 66) failed
[ 1251.675909][T28205] FAT-fs (loop2): Directory bread(block 67) failed
[ 1251.683925][T28205] FAT-fs (loop2): Directory bread(block 68) failed
[ 1251.713050][T28205] FAT-fs (loop2): Directory bread(block 69) failed
[ 1251.739882][T28205] FAT-fs (loop2): Directory bread(block 70) failed
[ 1251.774876][T28205] FAT-fs (loop2): Directory bread(block 71) failed
[ 1251.804346][T28205] FAT-fs (loop2): Directory bread(block 72) failed
[ 1251.834304][T28205] FAT-fs (loop2): Directory bread(block 73) failed
[ 1251.889863][T28212] netlink: 12 bytes leftover after parsing attributes in process `syz.0.9575'.
[ 1251.908727][T28212] netlink: 'syz.0.9575': attribute type 1 has an invalid length.
[ 1251.939276][T28212] netlink: 'syz.0.9575': attribute type 2 has an invalid length.
[ 1251.967533][T28212] netlink: 4 bytes leftover after parsing attributes in process `syz.0.9575'.
[ 1252.227382][T28218] xt_hashlimit: invalid rate
[ 1252.346107][T28220] netlink: 12 bytes leftover after parsing attributes in process `syz.2.9579'.
[ 1252.712378][T28224] loop0: detected capacity change from 0 to 256
[ 1252.750594][T28224] exfat: Deprecated parameter 'utf8'
[ 1252.780406][T28224] exfat: Deprecated parameter 'utf8'
[ 1252.823551][T28224] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x7b823c56, utbl_chksum : 0xe619d30d)
[ 1253.169104][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1253.178682][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1253.187512][T28229] loop2: detected capacity change from 0 to 4096
[ 1253.250388][T28229] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1253.266939][T28214] loop3: detected capacity change from 0 to 32768
[ 1253.342089][T28214] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1253.445388][T28214] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1253.447663][T28243] netlink: 44 bytes leftover after parsing attributes in process `syz.0.9589'.
[ 1253.466156][T28243] netlink: 43 bytes leftover after parsing attributes in process `syz.0.9589'.
[ 1253.493346][T28243] netlink: 'syz.0.9589': attribute type 5 has an invalid length.
[ 1253.553234][T28243] netlink: 43 bytes leftover after parsing attributes in process `syz.0.9589'.
[ 1253.559512][T28214] gfs2: fsid=syz:syz.0: journal 0 mapped with 5 extents in 0ms
[ 1253.589412][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1253.625163][T15823] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 1253.652134][T15823] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 1253.821013][T15823] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 157ms
[ 1253.846232][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1253.890992][T15823] gfs2: fsid=syz:syz.0: jid=0: Done
[ 1253.897296][T28214] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 1254.777860][T28267] loop2: detected capacity change from 0 to 256
[ 1254.944421][T28270] ip6gre2: entered promiscuous mode
[ 1255.331898][T28280] netlink: 'syz.3.9606': attribute type 5 has an invalid length.
[ 1255.467497][T28282] netlink: 'syz.1.9607': attribute type 21 has an invalid length.
[ 1255.505679][T28282] netlink: 100 bytes leftover after parsing attributes in process `syz.1.9607'.
[ 1255.627898][T28288] loop2: detected capacity change from 0 to 256
[ 1255.636448][T28288] exfat: Deprecated parameter 'namecase'
[ 1255.663762][T28288] exfat: Deprecated parameter 'namecase'
[ 1255.670900][T28288] exfat: Deprecated parameter 'namecase'
[ 1255.720311][T28288] exFAT-fs (loop2): Medium has reported failures. Some data may be lost.
[ 1255.773396][T28288] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d)
[ 1255.782363][T28294] netlink: 2 bytes leftover after parsing attributes in process `syz.1.9613'.
[ 1255.847003][T28294] batadv_slave_1: entered promiscuous mode
[ 1256.381119][T28309] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[ 1256.449839][T28314] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9622'.
[ 1257.498988][T28319] loop3: detected capacity change from 0 to 40427
[ 1257.531052][T28319] F2FS-fs (loop3): heap/no_heap options were deprecated
[ 1257.552578][T28341] loop2: detected capacity change from 0 to 256
[ 1257.552867][T28319] F2FS-fs (loop3): invalid crc value
[ 1257.591092][T28341] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1257.607048][T28319] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1257.693108][T28319] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1258.081607][T28349] loop3: detected capacity change from 0 to 256
[ 1258.149246][T28349] FAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1258.572947][T28360] bond2: entered promiscuous mode
[ 1258.579579][T28360] bond2: entered allmulticast mode
[ 1258.588454][T28360] 8021q: adding VLAN 0 to HW filter on device bond2
[ 1258.673987][T28365] loop3: detected capacity change from 0 to 256
[ 1258.912060][T28369] loop2: detected capacity change from 0 to 1024
[ 1259.230856][T28379] loop2: detected capacity change from 0 to 1024
[ 1259.380967][   T11] hfsplus: b-tree write err: -5, ino 4
[ 1259.638812][T28389] sctp: [Deprecated]: syz.2.9660 (pid 28389) Use of int in maxseg socket option.
[ 1259.638812][T28389] Use struct sctp_assoc_value instead
[ 1259.879723][T28398] ptrace attach of "./syz-executor exec"[5786] was attempted by ""[28398]
[ 1261.025672][T28439] loop3: detected capacity change from 0 to 256
[ 1261.089874][T28439] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1261.673485][T28457] loop2: detected capacity change from 0 to 1024
[ 1261.775625][T28457] syz.2.9691: attempt to access beyond end of device
[ 1261.775625][T28457] loop2: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[ 1261.821401][T28457] Buffer I/O error on dev loop2, logical block 100663296, async page read
[ 1261.851642][T28457] syz.2.9691: attempt to access beyond end of device
[ 1261.851642][T28457] loop2: rw=0, sector=201326592, nr_sectors = 2 limit=1024
[ 1261.928540][T28457] Buffer I/O error on dev loop2, logical block 100663296, async page read
[ 1262.045982][    T9] usb 4-1: new high-speed USB device number 12 using dummy_hcd
[ 1262.285236][    T9] usb 4-1: config 0 has an invalid interface number: 69 but max is 0
[ 1262.313173][    T9] usb 4-1: config 0 has no interface number 0
[ 1262.327355][    T9] usb 4-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023
[ 1262.342280][    T9] usb 4-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1262.387365][    T9] usb 4-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca
[ 1262.419642][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1262.434546][    T9] usb 4-1: Product: syz
[ 1262.440648][    T9] usb 4-1: Manufacturer: syz
[ 1262.466934][    T9] usb 4-1: SerialNumber: syz
[ 1262.492001][    T9] usb 4-1: config 0 descriptor??
[ 1262.518763][T28459] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1262.550541][    T9] cyberjack 4-1:0.69: Reiner SCT Cyberjack USB card reader converter detected
[ 1262.562286][T28481] loop0: detected capacity change from 0 to 512
[ 1262.576872][    T9] usb 4-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0
[ 1262.622222][T28481] EXT4-fs error (device loop0): ext4_orphan_get:1399: inode #15: comm syz.0.9703: inode has both inline data and extents flags
[ 1262.641450][T28481] EXT4-fs error (device loop0): ext4_orphan_get:1404: comm syz.0.9703: couldn't read orphan inode 15 (err -117)
[ 1262.670254][T28481] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1262.770651][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1262.862804][    C0] cyberjack ttyUSB0: cyberjack_read_int_callback - failed resubmitting read urb, error -22
[ 1263.010538][T28489] loop2: detected capacity change from 0 to 64
[ 1263.095847][  T970] usb 4-1: USB disconnect, device number 12
[ 1263.120277][  T970] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0
[ 1263.146769][  T970] cyberjack 4-1:0.69: device disconnected
[ 1264.518827][T28523] loop0: detected capacity change from 0 to 8192
[ 1264.644718][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.657964][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.680259][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.707587][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.751740][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.763939][T28533] xt_CHECKSUM: unsupported CHECKSUM operation 68
[ 1264.784452][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.805296][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.845071][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.897357][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.912109][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.934219][T28523] FAT-fs (loop0): error, fat_bmap_cluster: request beyond EOF (i_pos 1043)
[ 1264.950491][T28535] loop3: detected capacity change from 0 to 1024
[ 1264.966176][   T28] audit: type=1800 audit(2000000212.887:140): pid=28523 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.9722" name="file2" dev="loop0" ino=1048653 res=0 errno=0
[ 1265.232037][T28511] loop2: detected capacity change from 0 to 32768
[ 1265.427178][T28511] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[ 1265.596539][T28511] OCFS2: ERROR (device loop2): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 263 in extent list
[ 1265.693373][T28511] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1265.735177][T28549] netlink: 'syz.1.9735': attribute type 2 has an invalid length.
[ 1265.744368][T28549] netlink: 'syz.1.9735': attribute type 8 has an invalid length.
[ 1265.751365][T28511] OCFS2: Returning error to the calling process.
[ 1265.781394][T28549] netlink: 132 bytes leftover after parsing attributes in process `syz.1.9735'.
[ 1265.800044][T28550] netlink: 20 bytes leftover after parsing attributes in process `syz.0.9734'.
[ 1265.817130][T28511] (syz.2.9716,28511,1):ocfs2_find_leaf:1941 ERROR: status = -30
[ 1265.883909][T28552] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9736'.
[ 1265.902492][T28511] (syz.2.9716,28511,1):ocfs2_get_clusters_nocache:421 ERROR: status = -30
[ 1265.946739][T28552] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9736'.
[ 1265.969315][T28511] (syz.2.9716,28511,1):ocfs2_get_clusters:624 ERROR: status = -30
[ 1266.012021][T28511] (syz.2.9716,28511,1):ocfs2_extent_map_get_blocks:671 ERROR: status = -30
[ 1266.051729][T28511] (syz.2.9716,28511,1):ocfs2_read_virt_blocks:995 ERROR: status = -30
[ 1266.085341][T28511] (syz.2.9716,28511,1):ocfs2_read_dir_block:511 ERROR: status = -30
[ 1266.118364][T28511] (syz.2.9716,28511,1):ocfs2_find_dir_space_el:3505 ERROR: status = -5
[ 1266.152298][T28511] (syz.2.9716,28511,1):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -5
[ 1266.172583][T28511] (syz.2.9716,28511,0):ocfs2_mknod:298 ERROR: status = -5
[ 1266.226492][T28511] (syz.2.9716,28511,0):ocfs2_mknod:502 ERROR: status = -5
[ 1266.247406][T28511] (syz.2.9716,28511,0):ocfs2_mkdir:659 ERROR: status = -5
[ 1266.394270][ T5797] ocfs2: Unmounting device (7,2) on (node local)
[ 1267.415563][T28590] loop2: detected capacity change from 0 to 22
[ 1267.444424][T28568] loop3: detected capacity change from 0 to 32768
[ 1267.457875][T28590] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 1267.484674][T28590] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1267.547331][T28568] ocfs2: Mounting device (7,3) on (node local, slot 0) with writeback data mode.
[ 1267.821510][ T5786] ocfs2: Unmounting device (7,3) on (node local)
[ 1268.962923][ T5869] usb 2-1: new high-speed USB device number 33 using dummy_hcd
[ 1269.042858][T28636] gtp0: entered promiscuous mode
[ 1269.055155][T28636] gtp0: entered allmulticast mode
[ 1269.067142][T28618] loop0: detected capacity change from 0 to 32768
[ 1269.113308][T28618] ocfs2: Slot 0 on device (7,0) was already allocated to this node!
[ 1269.172777][ T5869] usb 2-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1269.200709][T28618] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode.
[ 1269.243010][ T5869] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1269.312671][T28646] netlink: 'syz.2.9778': attribute type 1 has an invalid length.
[ 1269.314745][ T5869] usb 2-1: config 0 descriptor??
[ 1269.499117][ T5789] ocfs2: Unmounting device (7,0) on (node local)
[ 1269.543250][T28645] loop3: detected capacity change from 0 to 8192
[ 1269.582891][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1269.627292][ T5869] [drm] vendor descriptor length:6 data:06 5f 01 ff 00 00 00 00 00 00 00
[ 1269.641809][ T5869] [drm:udl_init] *ERROR* Unrecognized vendor firmware descriptor
[ 1269.852250][ T5869] [drm:udl_init] *ERROR* Selecting channel failed
[ 1269.911203][ T5869] [drm] Initialized udl 0.0.1 20120220 for 2-1:0.0 on minor 2
[ 1269.953036][ T5869] [drm] Initialized udl on minor 2
[ 1269.993862][ T5869] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1270.024759][ T5869] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[ 1270.036980][T15823] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1270.096168][T15823] udl 2-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1270.110154][T28656] ip6t_REJECT: TCP_RESET illegal for non-tcp
[ 1270.117545][ T5869] usb 2-1: USB disconnect, device number 33
[ 1270.158920][T15823] udl 2-1:0.0: [drm] Cannot find any crtc or sizes
[ 1270.431624][T28661] loop3: detected capacity change from 0 to 4096
[ 1270.449132][T28661] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[ 1270.510125][T28661] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1270.735066][T28670] loop2: detected capacity change from 0 to 1024
[ 1270.801538][T28675] netlink: 240 bytes leftover after parsing attributes in process `syz.0.9792'.
[ 1270.813237][T28670] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1270.840416][T28670] EXT4-fs warning (device loop2): ext4_empty_dir:3156: inode #11: comm syz.2.9790: directory missing '..'
[ 1270.969325][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1271.207940][T28686] netlink: 20 bytes leftover after parsing attributes in process `syz.2.9795'.
[ 1271.486584][T28696] xt_TCPMSS: Only works on TCP SYN packets
[ 1271.552960][T28698] loop2: detected capacity change from 0 to 64
[ 1272.539835][T28725] netlink: 2384 bytes leftover after parsing attributes in process `syz.2.9814'.
[ 1272.750566][T28731] loop2: detected capacity change from 0 to 2048
[ 1272.765778][T28731] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1273.837400][   T28] audit: type=1326 audit(2000000221.193:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28754 comm="syz.2.9829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1273.901802][   T28] audit: type=1326 audit(2000000221.231:142): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28754 comm="syz.2.9829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1273.987273][   T28] audit: type=1326 audit(2000000221.231:143): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28754 comm="syz.2.9829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1274.069748][   T28] audit: type=1326 audit(2000000221.231:144): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28754 comm="syz.2.9829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1274.184907][   T28] audit: type=1326 audit(2000000221.231:145): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=28754 comm="syz.2.9829" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa83d8f6c9 code=0x7ffc0000
[ 1274.226966][T28765] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9834'.
[ 1274.418605][T28773] loop3: detected capacity change from 0 to 64
[ 1274.729176][T28783] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.9842'.
[ 1274.768636][T28783] openvswitch: netlink: Tunnel attr 0 has unexpected len 3060 expected 8
[ 1274.931580][T28789] netlink: 'syz.1.9846': attribute type 1 has an invalid length.
[ 1274.963306][T28791] syz.3.9847: attempt to access beyond end of device
[ 1274.963306][T28791] nbd3: rw=0, sector=0, nr_sectors = 1 limit=0
[ 1275.078437][T28795] Driver unsupported XDP return value 0 on prog  (id 562) dev N/A, expect packet loss!
[ 1275.202887][T28797] loop3: detected capacity change from 0 to 512
[ 1275.276191][T28797] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=2802e028, mo2=0002]
[ 1275.298441][T28797] System zones: 1-12
[ 1275.307016][T28797] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.9850: invalid indirect mapped block 8 (level 2)
[ 1275.329734][T28797] EXT4-fs (loop3): Remounting filesystem read-only
[ 1275.366697][T28797] EXT4-fs (loop3): 1 truncate cleaned up
[ 1275.375349][T28797] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1275.610516][ T5786] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1276.286046][    T9] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 1276.426984][T28800] loop2: detected capacity change from 0 to 32768
[ 1276.486161][T28800] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode.
[ 1276.499599][    T9] usb 4-1: Using ep0 maxpacket: 32
[ 1276.508886][    T9] usb 4-1: config 0 has an invalid interface number: 228 but max is 0
[ 1276.531146][    T9] usb 4-1: config 0 has no interface number 0
[ 1276.539967][    T9] usb 4-1: config 0 interface 228 has no altsetting 0
[ 1276.562233][    T9] usb 4-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice= 0.02
[ 1276.581221][    T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1276.592246][    T9] usb 4-1: Product: syz
[ 1276.597467][    T9] usb 4-1: Manufacturer: syz
[ 1276.603934][    T9] usb 4-1: SerialNumber: syz
[ 1276.624951][    T9] usb 4-1: config 0 descriptor??
[ 1276.812769][ T5797] ocfs2: Unmounting device (7,2) on (node local)
[ 1276.973471][    T9] net1080 4-1:0.228 usb0: register 'net1080' at usb-dummy_hcd.3-1, NetChip TurboCONNECT, ae:5a:d1:b4:7f:f9
[ 1277.027342][T28842] vcan0: entered promiscuous mode
[ 1277.054550][T28842] A link change request failed with some changes committed already. Interface vcan0 may have been left with an inconsistent configuration, please check.
[ 1277.217433][ T5869] usb 4-1: USB disconnect, device number 13
[ 1277.243287][ T5869] net1080 4-1:0.228 usb0: unregister 'net1080' usb-dummy_hcd.3-1, NetChip TurboCONNECT
[ 1278.459077][T28890] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off.
[ 1278.530760][T28890] overlayfs: missing 'lowerdir'
[ 1278.915264][T28906] netlink: 232 bytes leftover after parsing attributes in process `syz.1.9895'.
[ 1279.253083][T28918] netlink: 36 bytes leftover after parsing attributes in process `syz.0.9898'.
[ 1279.451590][T28927] netlink: 8 bytes leftover after parsing attributes in process `syz.2.9902'.
[ 1279.529433][T28930] loop0: detected capacity change from 0 to 256
[ 1279.646881][T28930] FAT-fs (loop0): Directory bread(block 64) failed
[ 1279.669272][T28930] FAT-fs (loop0): Directory bread(block 65) failed
[ 1279.716337][T28930] FAT-fs (loop0): Directory bread(block 66) failed
[ 1279.740239][T28930] FAT-fs (loop0): Directory bread(block 67) failed
[ 1279.747926][T28930] FAT-fs (loop0): Directory bread(block 68) failed
[ 1279.801184][T28930] FAT-fs (loop0): Directory bread(block 69) failed
[ 1279.835289][T28930] FAT-fs (loop0): Directory bread(block 70) failed
[ 1279.844930][T28930] FAT-fs (loop0): Directory bread(block 71) failed
[ 1279.899299][T28930] FAT-fs (loop0): Directory bread(block 72) failed
[ 1279.908997][T28930] FAT-fs (loop0): Directory bread(block 73) failed
[ 1280.449334][T28951] netlink: 24 bytes leftover after parsing attributes in process `syz.1.9911'.
[ 1280.820762][T28961] A link change request failed with some changes committed already. Interface veth1_to_bond may have been left with an inconsistent configuration, please check.
[ 1280.837757][T28931] loop3: detected capacity change from 0 to 32768
[ 1280.853041][T28963] netlink: 132 bytes leftover after parsing attributes in process `syz.2.9915'.
[ 1280.874971][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1280.934334][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1280.997646][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[ 1281.119616][T28968] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9919'.
[ 1281.140965][T28931] (syz.3.9905,28931,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[ 1281.205478][T28931] JBD2: Ignoring recovery information on journal
[ 1281.348407][T28931] (syz.3.9905,28931,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xbec99099, computed 0x3881d996. Applying ECC.
[ 1281.384666][T28931] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1281.421715][T28931] (syz.3.9905,28931,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x93f628a2, computed 0x2aee8be5. Applying ECC.
[ 1281.527749][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[ 1281.782431][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[ 1281.827251][T28985] netlink: 12 bytes leftover after parsing attributes in process `syz.1.9925'.
[ 1281.869511][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x2c7b5077, computed 0x4d558a87. Applying ECC.
[ 1281.877176][T28985] (unnamed net_device) (uninitialized): option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0)
[ 1281.913826][T28931] (syz.3.9905,28931,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x2c7b5077, computed 0x5d2751af
[ 1281.954910][T28931] (syz.3.9905,28931,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[ 1282.041489][T28931] (syz.3.9905,28931,0):ocfs2_quota_read:201 ERROR: status = -5
[ 1282.074746][T28931] Quota error (device loop3): find_tree_dqentry: Can't read quota tree block 5
[ 1282.123261][T28931] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[ 1282.145302][T28931] (syz.3.9905,28931,0):ocfs2_acquire_dquot:878 ERROR: status = -5
[ 1282.184975][T28931] (syz.3.9905,28931,0):ocfs2_mknod:314 ERROR: status = -5
[ 1282.208339][T28931] (syz.3.9905,28931,0):ocfs2_mknod:502 ERROR: status = -5
[ 1282.288997][ T5786] ocfs2: Unmounting device (7,3) on (node local)
[ 1283.488943][T29029] binder: binder_mmap: 29026 200000001000-20000000b000 bad vm_flags failed -1
[ 1284.017140][T29016] loop0: detected capacity change from 0 to 32768
[ 1284.064487][T29016] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz.0.9940 (29016)
[ 1284.101655][T29016] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1284.117985][T29047] ip6gretap3: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 1284.147312][T29016] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm
[ 1284.201933][T29016] BTRFS info (device loop0): force clearing of disk cache
[ 1284.274126][T29016] BTRFS info (device loop0): enabling ssd optimizations
[ 1284.311968][T29016] BTRFS info (device loop0): using spread ssd allocation scheme
[ 1284.350716][T29016] BTRFS info (device loop0): turning on sync discard
[ 1284.371262][T29016] BTRFS info (device loop0): enabling disk space caching
[ 1284.397502][T29016] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1284.453493][T29016] BTRFS info (device loop0): use zstd compression, level 3
[ 1284.497290][T29016] BTRFS info (device loop0): setting nodatacow, compression disabled
[ 1284.505783][T29016] BTRFS info (device loop0): disk space caching is enabled
[ 1284.768372][T29016] BTRFS info (device loop0): rebuilding free space tree
[ 1284.819082][T29016] BTRFS info (device loop0): disabling free space tree
[ 1284.844062][T29016] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1284.879261][T29016] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1284.989794][T29083] netlink: 80 bytes leftover after parsing attributes in process `syz.1.9965'.
[ 1285.207415][ T5789] BTRFS info (device loop0): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1285.940290][T29101] loop0: detected capacity change from 0 to 2048
[ 1286.038487][T29101] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1286.075256][T29078] loop3: detected capacity change from 0 to 32768
[ 1286.087143][T29101] ext4 filesystem being mounted at /2384/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1286.260542][T29078] ea_get: invalid extended attribute
[ 1286.417258][ T5789] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1288.007528][T29122] loop0: detected capacity change from 0 to 32768
[ 1288.086903][T29122] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1288.380039][T29122] XFS (loop0): Ending clean mount
[ 1288.451261][T29176] cifs: Unknown parameter 'ÿÿITäŒ&¬æ:ÅèÙ"‚Õë�ï1:ºÃÃÓ­'Ä4,�Zz-#FÇ<æõ]%gCžÊ
[ 1288.451261][T29176] SÃȘØÈžZ§6ŸÂ'
[ 1288.569594][ T5789] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1288.652925][T29181] xt_cluster: you have exceeded the maximum number of cluster nodes (514 > 32)
[ 1288.964854][   T23] usb 2-1: new high-speed USB device number 34 using dummy_hcd
[ 1289.167977][   T23] usb 2-1: Using ep0 maxpacket: 8
[ 1289.201524][   T23] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[ 1289.234719][   T23] usb 2-1: config 179 has no interface number 0
[ 1289.242501][   T23] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1289.281575][   T23] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1289.315902][   T23] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[ 1289.371447][   T23] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[ 1289.414952][   T23] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1289.446663][   T23] usb 2-1: config 179 interface 65 has no altsetting 0
[ 1289.464916][T29203] netlink: 36 bytes leftover after parsing attributes in process `syz.2.10018'.
[ 1289.475666][   T23] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1289.499148][   T23] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1289.521395][T29203] netlink: 16 bytes leftover after parsing attributes in process `syz.2.10018'.
[ 1289.577668][   T23] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input91
[ 1289.649788][ T5143] input input91: unable to receive magic message: -110
[ 1289.683843][ T5143] input input91: unable to receive magic message: -32
[ 1289.720058][ T5143] input input91: unable to receive magic message: -32
[ 1289.858766][ T5143] input input91: unable to receive magic message: -32
[ 1289.860928][ T5143] input input91: unable to receive magic message: -32
[ 1290.046891][   T23] usb 2-1: USB disconnect, device number 34
[ 1290.056431][    C1] xpad 2-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1290.094086][   T23] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1290.279304][T29220] loop2: detected capacity change from 0 to 1024
[ 1290.904443][T29240] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10037'.
[ 1291.430565][T29260] netlink: 24 bytes leftover after parsing attributes in process `syz.2.10047'.
[ 1291.926889][T29278] netlink: zone id is out of range
[ 1291.926907][T29278] netlink: zone id is out of range
[ 1291.926916][T29278] netlink: zone id is out of range
[ 1291.926925][T29278] netlink: zone id is out of range
[ 1291.926934][T29278] netlink: zone id is out of range
[ 1291.926943][T29278] netlink: zone id is out of range
[ 1291.926951][T29278] netlink: zone id is out of range
[ 1291.926960][T29278] netlink: zone id is out of range
[ 1291.926969][T29278] netlink: zone id is out of range
[ 1291.926978][T29278] netlink: zone id is out of range
[ 1292.621201][  T970] usb 4-1: new high-speed USB device number 14 using dummy_hcd
[ 1292.856599][  T970] usb 4-1: Using ep0 maxpacket: 16
[ 1292.864700][  T970] usb 4-1: config 0 has an invalid interface number: 214 but max is 0
[ 1292.874892][  T970] usb 4-1: config 0 has no interface number 0
[ 1292.888590][  T970] usb 4-1: config 0 interface 214 altsetting 0 endpoint 0x83 has invalid maxpacket 1023, setting to 64
[ 1292.923228][  T970] usb 4-1: New USB device found, idVendor=0596, idProduct=0001, bcdDevice= 5.f5
[ 1292.945633][  T970] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1292.956526][  T970] usb 4-1: Product: syz
[ 1292.961094][  T970] usb 4-1: Manufacturer: syz
[ 1292.984841][  T970] usb 4-1: SerialNumber: syz
[ 1293.005553][  T970] usb 4-1: config 0 descriptor??
[ 1293.086756][T29308] nvme_fabrics: missing parameter 'transport=%s'
[ 1293.096277][T29308] nvme_fabrics: missing parameter 'nqn=%s'
[ 1293.487321][  T970] usbtouchscreen: probe of 4-1:0.214 failed with error -71
[ 1293.512339][  T970] usb 4-1: USB disconnect, device number 14
[ 1294.385905][T29347] x_tables: ip_tables: TCPOPTSTRIP target: only valid in mangle table, not raw
[ 1294.495344][T29351] loop0: detected capacity change from 0 to 128
[ 1294.581681][T29351] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1294.681241][T29333] loop2: detected capacity change from 0 to 32768
[ 1294.689396][T29351] ext4 filesystem being mounted at /2415/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1294.727399][T29333] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop2 scanned by syz.2.10081 (29333)
[ 1294.769875][T29333] BTRFS info (device loop2): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1294.808393][T29333] BTRFS info (device loop2): using crc32c (crc32c-intel) checksum algorithm
[ 1294.809107][T29351] EXT4-fs warning (device loop0): verify_group_input:151: Cannot add at group 3 (only 1 groups)
[ 1294.847206][T29333] BTRFS info (device loop2): force clearing of disk cache
[ 1294.854805][T29333] BTRFS info (device loop2): enabling ssd optimizations
[ 1294.881454][T29333] BTRFS info (device loop2): using spread ssd allocation scheme
[ 1294.914490][T29333] BTRFS info (device loop2): turning on sync discard
[ 1294.949444][T29333] BTRFS info (device loop2): enabling disk space caching
[ 1294.971213][T29333] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1295.003964][T29333] BTRFS info (device loop2): use zstd compression, level 3
[ 1295.013644][ T5789] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1295.037473][T29333] BTRFS info (device loop2): setting nodatacow, compression disabled
[ 1295.046802][T29333] BTRFS info (device loop2): disk space caching is enabled
[ 1295.383937][T29333] BTRFS info (device loop2): rebuilding free space tree
[ 1295.482861][T29333] BTRFS info (device loop2): disabling free space tree
[ 1295.499677][T29333] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1295.552784][T29333] BTRFS info (device loop2): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1295.822560][ T5797] BTRFS info (device loop2): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1295.910930][T29398] loop0: detected capacity change from 0 to 256
[ 1295.957842][T29398] exfat: Deprecated parameter 'utf8'
[ 1296.026127][T29398] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xf6efbb19, utbl_chksum : 0xe619d30d)
[ 1296.986911][T29421] xt_CT: No such helper "syz1"
[ 1297.119425][   T28] audit: type=1400 audit(2000000242.951:146): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=29427 comm="syz.2.10120"
[ 1297.154710][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1297.560476][T15823] usb 2-1: new high-speed USB device number 35 using dummy_hcd
[ 1297.784957][T15823] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1297.813975][T15823] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8E has invalid maxpacket 0
[ 1297.838328][T15823] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0xA has invalid wMaxPacketSize 0
[ 1297.880897][T15823] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0xA has invalid maxpacket 0
[ 1297.915639][T29454] loop0: detected capacity change from 0 to 1764
[ 1297.926725][T15823] usb 2-1: New USB device found, idVendor=05ab, idProduct=0301, bcdDevice= 1.00
[ 1297.939161][T15823] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1297.981719][T15823] usb 2-1: Product: syz
[ 1298.001115][T29454] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1298.012133][T15823] usb 2-1: Manufacturer: syz
[ 1298.017345][T15823] usb 2-1: SerialNumber: syz
[ 1298.072925][T15823] usb 2-1: config 0 descriptor??
[ 1298.107422][T15823] ums-isd200 2-1:0.0: USB Mass Storage device detected
[ 1298.401389][T15823] ums-isd200: probe of 2-1:0.0 failed with error -22
[ 1298.625871][  T970] usb 2-1: USB disconnect, device number 35
[ 1298.835407][T29462] loop3: detected capacity change from 0 to 32768
[ 1298.861457][T29478] loop2: detected capacity change from 0 to 2048
[ 1298.880943][T29462] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.10136 (29462)
[ 1298.911139][T29478] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1298.944837][T29462] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1298.968534][T29462] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[ 1298.978989][T29462] BTRFS info (device loop3): force clearing of disk cache
[ 1298.990798][T29462] BTRFS info (device loop3): enabling ssd optimizations
[ 1299.004147][T29481] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1299.019453][T29478] syz.2.10143: attempt to access beyond end of device
[ 1299.019453][T29478] loop2: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 1299.037776][T29462] BTRFS info (device loop3): using spread ssd allocation scheme
[ 1299.053431][T29462] BTRFS info (device loop3): turning on sync discard
[ 1299.061839][T29462] BTRFS info (device loop3): enabling disk space caching
[ 1299.072360][T29462] BTRFS info (device loop3): setting incompat feature flag for COMPRESS_ZSTD (0x10)
[ 1299.082640][T29462] BTRFS info (device loop3): use zstd compression, level 3
[ 1299.142875][T29462] BTRFS info (device loop3): setting nodatacow, compression disabled
[ 1299.152228][T29462] BTRFS info (device loop3): disk space caching is enabled
[ 1299.348263][T29478] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1299.437002][T29462] BTRFS info (device loop3): rebuilding free space tree
[ 1299.459424][T29478] Remounting filesystem read-only
[ 1299.481772][T29478] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1299.534594][T29462] BTRFS info (device loop3): disabling free space tree
[ 1299.546867][T29462] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1299.567929][T29478] NILFS error (device loop2): nilfs_bmap_lookup_contig: broken bmap (inode number=16)
[ 1299.598918][T29505] netlink: 4 bytes leftover after parsing attributes in process `syz.1.10149'.
[ 1299.613441][T29505] bridge_slave_1: left allmulticast mode
[ 1299.620547][T29505] bridge_slave_1: left promiscuous mode
[ 1299.623462][T29462] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1299.630181][T29505] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1299.659415][   T28] audit: type=1800 audit(2000000245.336:147): pid=29478 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.10143" name="file2" dev="loop2" ino=16 res=0 errno=0
[ 1299.686390][T29478] NILFS (loop2): DAT doesn't have a block to manage vblocknr = 16777227
[ 1299.700612][T29505] bridge_slave_0: left allmulticast mode
[ 1299.716004][T29505] bridge_slave_0: left promiscuous mode
[ 1299.733774][T29505] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1299.745997][T29478] NILFS error (device loop2): nilfs_bmap_truncate: broken bmap (inode number=16)
[ 1299.788898][T29478] NILFS (loop2): error -5 truncating bmap (ino=16)
[ 1299.830121][T29478] syz.2.10143 (29478) used greatest stack depth: 18216 bytes left
[ 1299.862085][ T5797] NILFS (loop2): discard dirty page: offset=4096, ino=6
[ 1299.908777][ T5797] NILFS (loop2): discard dirty block: blocknr=39, size=1024
[ 1299.934524][ T5797] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1299.963357][ T5797] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1300.010423][ T5797] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1300.062034][ T5797] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer
[ 1300.090006][ T5786] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1300.097272][ T5797] NILFS (loop2): discard dirty page: offset=0, ino=3
[ 1300.123538][ T5797] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1300.167771][ T5797] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1300.200912][ T5797] NILFS (loop2): discard dirty block: blocknr=44, size=1024
[ 1300.211125][ T5797] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024
[ 1300.642425][   T28] audit: type=1326 audit(2000000246.252:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=29521 comm="syz.0.10157" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f6cccb8f6c9 code=0x0
[ 1300.843657][T29530] netlink: 48 bytes leftover after parsing attributes in process `syz.2.10161'.
[ 1301.064711][    C1] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 1301.886234][T29528] loop3: detected capacity change from 0 to 32768
[ 1301.923766][T29528] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop3 scanned by syz.3.10160 (29528)
[ 1302.027625][T29528] BTRFS info (device loop3): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1302.085697][T29528] BTRFS info (device loop3): using crc32c (crc32c-intel) checksum algorithm
[ 1302.125362][T29528] BTRFS info (device loop3): turning on flush-on-commit
[ 1302.134173][T29528] BTRFS info (device loop3): use zlib compression, level 3
[ 1302.166066][T29555] loop0: detected capacity change from 0 to 1024
[ 1302.186932][T29528] BTRFS info (device loop3): disabling free space tree
[ 1302.208582][T29528] BTRFS info (device loop3): enabling disk space caching
[ 1302.248732][T29528] BTRFS info (device loop3): setting nodatasum
[ 1302.298445][T29528] BTRFS info (device loop3): turning off barriers
[ 1302.341031][T29528] BTRFS info (device loop3): enabling ssd optimizations
[ 1302.374908][T29528] BTRFS info (device loop3): force clearing of disk cache
[ 1302.425449][T29528] BTRFS info (device loop3): disk space caching is enabled
[ 1302.714123][T29528] BTRFS info (device loop3): rebuilding free space tree
[ 1302.811472][T29528] BTRFS info (device loop3): disabling free space tree
[ 1302.834767][T29528] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1302.885437][T29528] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1302.925641][T29549] loop2: detected capacity change from 0 to 32768
[ 1303.025001][T29549] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1303.278186][ T5786] BTRFS info (device loop3): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 1303.357852][T29549] XFS (loop2): Ending clean mount
[ 1303.374739][T29549] XFS (loop2): Quotacheck needed: Please wait.
[ 1303.607957][T29549] XFS (loop2): Quotacheck: Done.
[ 1304.187038][ T5797] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1305.930001][T29631] loop0: detected capacity change from 0 to 40427
[ 1305.977670][T29631] F2FS-fs (loop0): invalid crc value
[ 1305.999654][T29631] F2FS-fs (loop0): Found nat_bits in checkpoint
[ 1306.094668][T29631] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5
[ 1306.295841][T29669] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10215'.
[ 1306.339958][T29669] net_ratelimit: 334 callbacks suppressed
[ 1306.339979][T29669] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1306.459743][T29653] 9pnet_fd: p9_fd_create_tcp (29653): problem connecting socket to 127.0.0.1
[ 1306.652152][T29661] loop3: detected capacity change from 0 to 32768
[ 1306.691514][T29661] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 scanned by syz.3.10213 (29661)
[ 1306.788475][T29661] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1306.826128][T29661] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1306.842260][T29661] BTRFS info (device loop3): force zlib compression, level 3
[ 1306.871933][T29661] BTRFS info (device loop3): force clearing of disk cache
[ 1306.927567][T29661] BTRFS info (device loop3): turning off barriers
[ 1306.956595][T29661] BTRFS info (device loop3): doing ref verification
[ 1306.989390][T29661] BTRFS info (device loop3): enabling disk space caching
[ 1307.010954][T29661] BTRFS info (device loop3): disk space caching is enabled
[ 1307.083031][T29684] loop0: detected capacity change from 0 to 2048
[ 1307.102177][T29684] UDF-fs: warning (device loop0): udf_fill_super: No fileset found
[ 1307.188548][T29661] BTRFS info (device loop3): enabling ssd optimizations
[ 1307.203406][T29661] BTRFS info (device loop3): auto enabling async discard
[ 1307.255604][T29661] BTRFS info (device loop3): rebuilding free space tree
[ 1307.320879][T15823] usb 2-1: new high-speed USB device number 36 using dummy_hcd
[ 1307.340447][T29661] BTRFS info (device loop3): disabling free space tree
[ 1307.358603][T29701] netlink: 4 bytes leftover after parsing attributes in process `syz.2.10222'.
[ 1307.360492][T29661] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 1307.385068][T29701] bridge_slave_1: left allmulticast mode
[ 1307.395807][T29701] bridge_slave_1: left promiscuous mode
[ 1307.401994][T29701] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1307.411287][T29661] BTRFS info (device loop3): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 1307.463109][T29701] bridge_slave_0: left allmulticast mode
[ 1307.481065][T29701] bridge_slave_0: left promiscuous mode
[ 1307.500350][T29701] bridge0: port 1(bridge_slave_0) entered disabled state
[ 1307.534485][T15823] usb 2-1: Using ep0 maxpacket: 32
[ 1307.544547][T15823] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1307.574790][T15823] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1307.615485][T15823] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1307.638578][T15823] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1307.661644][T15823] usb 2-1: config 0 descriptor??
[ 1307.677492][T15823] hub 2-1:0.0: USB hub found
[ 1307.694397][ T5786] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1307.912683][T15823] hub 2-1:0.0: 1 port detected
[ 1307.969399][ T5992] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 11 /dev/loop3 scanned by udevd (5992)
[ 1308.120035][T15823] hub 2-1:0.0: hub_hub_status failed (err = -71)
[ 1308.143883][T15823] hub 2-1:0.0: config failed, can't get hub status (err -71)
[ 1308.194059][T15823] usbhid 2-1:0.0: can't add hid device: -71
[ 1308.203486][T15823] usbhid: probe of 2-1:0.0 failed with error -71
[ 1308.215583][T29717] loop0: detected capacity change from 0 to 2048
[ 1308.268837][T29715] xt_CT: No such helper "snmp"
[ 1308.280758][T15823] usb 2-1: USB disconnect, device number 36
[ 1308.288271][T29717] UDF-fs: error (device loop0): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d
[ 1308.332260][T29717] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1309.355784][T29711] loop3: detected capacity change from 0 to 40427
[ 1309.375843][T29711] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1309.407772][T29711] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1309.454494][T29711] F2FS-fs (loop3): invalid crc_offset: 33558524
[ 1309.539490][T29711] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1309.639647][T29742] loop0: detected capacity change from 0 to 1764
[ 1309.683900][T29711] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1309.692302][T29711] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1309.735894][T29742] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1310.369107][T29764] A link change request failed with some changes committed already. Interface batadv_slave_0 may have been left with an inconsistent configuration, please check.
[ 1311.002816][T29784] netlink: 52 bytes leftover after parsing attributes in process `syz.1.10262'.
[ 1311.608453][T29797] netlink: 'syz.1.10268': attribute type 1 has an invalid length.
[ 1311.639753][T29797] netlink: 'syz.1.10268': attribute type 2 has an invalid length.
[ 1311.695700][T29781] loop2: detected capacity change from 0 to 32768
[ 1311.715264][T29781] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 11
[ 1311.873137][T29804] bridge0: entered promiscuous mode
[ 1311.935892][T29801] 9pnet: Could not find request transport: x
[ 1311.963805][ T5992] BTRFS error: device /dev/loop2 already registered with a higher generation, found 8 expect 11
[ 1312.607767][T29821] netlink: 56 bytes leftover after parsing attributes in process `syz.1.10278'.
[ 1312.627598][T29821] netlink: 12 bytes leftover after parsing attributes in process `syz.1.10278'.
[ 1312.663362][T29821] netlink: 31 bytes leftover after parsing attributes in process `syz.1.10278'.
[ 1312.708227][T29821] netlink: 'syz.1.10278': attribute type 2 has an invalid length.
[ 1312.733933][T29821] netlink: 31 bytes leftover after parsing attributes in process `syz.1.10278'.
[ 1313.244415][T29844] loop2: detected capacity change from 0 to 512
[ 1313.288962][T29844] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1313.328566][T29844] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1313.418221][T29844] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 1313.471583][T29844] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e000e128, mo2=0002]
[ 1313.544401][T29844] System zones: 0-1, 15-15, 18-18, 34-34
[ 1313.552232][T29844] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 1313.585493][T29844] Quota error (device loop2): v2_read_header: Failed header read: expected=8 got=0
[ 1313.634872][T29844] EXT4-fs warning (device loop2): ext4_enable_quotas:7168: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix.
[ 1313.666120][T29844] EXT4-fs (loop2): Cannot turn on quotas: error -22
[ 1313.677177][T29844] EXT4-fs error (device loop2): ext4_validate_block_bitmap:439: comm syz.2.10289: bg 0: block 40: padding at end of block bitmap is not set
[ 1313.704501][T29844] EXT4-fs (loop2): Remounting filesystem read-only
[ 1313.712477][T29844] EXT4-fs (loop2): 1 truncate cleaned up
[ 1313.747590][T29844] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1313.901565][ T5797] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1314.177229][T29869] cgroup: Unexpected value for 'nofavordynmods'
[ 1315.630216][T29925] netlink: 132 bytes leftover after parsing attributes in process `syz.2.10328'.
[ 1315.831882][T29930] binder: 29929:29930 ioctl c0306201 200000000080 returned -14
[ 1315.848243][T29931] binder: 29928:29931 ioctl c00c6211 ffffffffffffffff returned -14
[ 1316.385559][T29916] loop0: detected capacity change from 0 to 32768
[ 1316.421767][T29945] netlink: 'syz.2.10339': attribute type 1 has an invalid length.
[ 1317.558872][T29979] geneve2: entered promiscuous mode
[ 1317.859742][T29957] loop3: detected capacity change from 0 to 32768
[ 1318.304292][T29996] netlink: 3 bytes leftover after parsing attributes in process `syz.3.10364'.
[ 1318.331678][T29996] 0ªX¹¦À: renamed from caif0
[ 1318.356311][T29996] 0ªX¹¦À: entered allmulticast mode
[ 1318.373427][T29996] A link change request failed with some changes committed already. Interface 
60ªX¹¦À may have been left with an inconsistent configuration, please check.
[ 1318.568226][T30000] loop3: detected capacity change from 0 to 64
[ 1318.611647][T30002] netlink: 'syz.2.10367': attribute type 2 has an invalid length.
[ 1318.685098][  T134] ------------[ cut here ]------------
[ 1318.690780][  T134] kernel BUG at fs/hfs/inode.c:449!
[ 1318.719259][  T134] invalid opcode: 0000 [#1] PREEMPT SMP KASAN
[ 1318.725587][  T134] CPU: 0 PID: 134 Comm: kworker/u4:5 Not tainted syzkaller #0
[ 1318.733454][  T134] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1318.743643][  T134] Workqueue: writeback wb_workfn (flush-7:3)
[ 1318.749774][  T134] RIP: 0010:hfs_write_inode+0x7c4/0x7d0
[ 1318.755563][  T134] Code: c7 c1 00 23 ef 96 80 e1 07 80 c1 03 38 c1 0f 8c 7d fe ff ff 48 c7 c7 00 23 ef 96 e8 86 c2 85 ff e9 6c fe ff ff e8 4c 67 2e ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 55 41 57 41 56 41
[ 1318.776717][  T134] RSP: 0018:ffffc90002e27360 EFLAGS: 00010293
[ 1318.782830][  T134] RAX: ffffffff82572844 RBX: ffff88805a482f28 RCX: ffff88801ab6bc00
[ 1318.790851][  T134] RDX: 0000000000000000 RSI: ffffffff8cf36e80 RDI: 0000000000000000
[ 1318.798955][  T134] RBP: ffffc90002e274f0 R08: ffff88801ab6bc00 R09: 0000000000000003
[ 1318.806970][  T134] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000
[ 1318.815418][  T134] R13: 1ffff920005c4e70 R14: ffff88805a482ed8 R15: 0000000000000000
[ 1318.823438][  T134] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1318.832588][  T134] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1318.840003][  T134] CR2: 000000110c2dcb05 CR3: 0000000063fb8000 CR4: 00000000003506f0
[ 1318.848656][  T134] Call Trace:
[ 1318.852093][  T134]  <TASK>
[ 1318.855158][  T134]  ? hfs_inode_write_fork+0x1a0/0x1a0
[ 1318.860824][  T134]  ? __rwlock_init+0x150/0x150
[ 1318.865832][  T134]  __writeback_single_inode+0x705/0xee0
[ 1318.872664][  T134]  writeback_sb_inodes+0x77c/0xef0
[ 1318.879463][  T134]  ? queue_io+0x560/0x560
[ 1318.884850][  T134]  ? rcu_is_watching+0x15/0xb0
[ 1318.890377][  T134]  wb_writeback+0x450/0xba0
[ 1318.896250][  T134]  ? queue_io+0x381/0x560
[ 1318.901524][  T134]  ? percpu_ref_tryget+0x250/0x250
[ 1318.907649][  T134]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1318.914052][  T134]  ? rcu_read_lock_sched_held+0x8a/0x100
[ 1318.920438][  T134]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1318.925688][  T134]  wb_workfn+0x3ff/0xe20
[ 1318.930790][  T134]  ? inode_wait_for_writeback+0x200/0x200
[ 1318.936856][  T134]  ? lockdep_hardirqs_on_prepare+0x400/0x760
[ 1318.943148][  T134]  ? read_lock_is_recursive+0x20/0x20
[ 1318.948576][  T134]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1318.953928][  T134]  ? process_scheduled_works+0x957/0x15b0
[ 1318.959683][  T134]  ? process_scheduled_works+0x957/0x15b0
[ 1318.963210][ T1290] ieee802154 phy0 wpan0: encryption failed: -22
[ 1318.965426][  T134]  process_scheduled_works+0xa45/0x15b0
[ 1318.972965][ T1290] ieee802154 phy1 wpan1: encryption failed: -22
[ 1318.977918][  T134]  ? assign_work+0x400/0x400
[ 1318.977951][  T134]  ? assign_work+0x39e/0x400
[ 1318.993720][  T134]  worker_thread+0xa55/0xfc0
[ 1318.998468][  T134]  kthread+0x2fa/0x390
[ 1319.003364][  T134]  ? pr_cont_work+0x560/0x560
[ 1319.008306][  T134]  ? kthread_blkcg+0xd0/0xd0
[ 1319.013009][  T134]  ret_from_fork+0x48/0x80
[ 1319.017506][  T134]  ? kthread_blkcg+0xd0/0xd0
[ 1319.022392][  T134]  ret_from_fork_asm+0x11/0x20
[ 1319.027354][  T134]  </TASK>
[ 1319.030607][  T134] Modules linked in:
[ 1319.034586][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1319.044352][  T134] ---[ end trace 0000000000000000 ]---
[ 1319.050959][  T134] RIP: 0010:hfs_write_inode+0x7c4/0x7d0
[ 1319.056834][  T134] Code: c7 c1 00 23 ef 96 80 e1 07 80 c1 03 38 c1 0f 8c 7d fe ff ff 48 c7 c7 00 23 ef 96 e8 86 c2 85 ff e9 6c fe ff ff e8 4c 67 2e ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 f3 0f 1e fa 55 41 57 41 56 41
[ 1319.077081][  T134] RSP: 0018:ffffc90002e27360 EFLAGS: 00010293
[ 1319.083734][  T134] RAX: ffffffff82572844 RBX: ffff88805a482f28 RCX: ffff88801ab6bc00
[ 1319.093267][  T134] RDX: 0000000000000000 RSI: ffffffff8cf36e80 RDI: 0000000000000000
[ 1319.104912][  T134] RBP: ffffc90002e274f0 R08: ffff88801ab6bc00 R09: 0000000000000003
[ 1319.116402][  T134] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000
[ 1319.129940][  T134] R13: 1ffff920005c4e70 R14: ffff88805a482ed8 R15: 0000000000000000
[ 1319.138306][  T134] FS:  0000000000000000(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000
[ 1319.148061][  T134] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1319.154885][  T134] CR2: 000000110c2dcb05 CR3: 000000002a499000 CR4: 00000000003506f0
[ 1319.163288][  T134] Kernel panic - not syncing: Fatal exception
[ 1319.170316][  T134] Kernel Offset: disabled
[ 1319.174926][  T134] Rebooting in 86400 seconds..