last executing test programs:

5m38.922836038s ago: executing program 0 (id=5213):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000000)={0x1, &(0x7f0000000100)=[{0x6, 0x0, 0xff, 0x7fff0000}]})
setpgid(0xffffffffffffffff, 0x0)

5m38.408374945s ago: executing program 0 (id=5220):
r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0)
ioctl$TIOCSSOFTCAR(r0, 0x5453, 0x0)

5m38.192009351s ago: executing program 0 (id=5223):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000340)={0x6, 0x13, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000696c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000ffffff858500000073000000180100002020732500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001700000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94)
bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r0, 0x0, 0x10, 0x10, &(0x7f00000002c0)="0000ffffffffa000", &(0x7f0000000300)=""/8, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c)

5m37.037397734s ago: executing program 0 (id=5233):
syz_mount_image$ext4(&(0x7f00000000c0)='ext4\x00', &(0x7f0000000000)='./file1\x00', 0x40, &(0x7f0000000100), 0x1, 0x58b, &(0x7f00000006c0)="$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")
mount(&(0x7f0000000040)=@loop={'/dev/loop', 0x0}, &(0x7f0000003640)='./file0\x00', &(0x7f0000003680)='ext4\x00', 0x0, 0x0)

5m36.461698856s ago: executing program 0 (id=5239):
r0 = socket$inet6_icmp_raw(0xa, 0x3, 0x3a)
setsockopt(r0, 0xff, 0x9, &(0x7f0000000000)="fa794bfa", 0x4)

5m34.296237543s ago: executing program 0 (id=5253):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x7d, &(0x7f0000000000)={0x0, 0xffff0006}, 0x8)

5m33.599174891s ago: executing program 32 (id=5253):
r0 = socket$inet6_sctp(0xa, 0x5, 0x84)
setsockopt$inet_sctp6_SCTP_PR_SUPPORTED(r0, 0x84, 0x7d, &(0x7f0000000000)={0x0, 0xffff0006}, 0x8)

4.372010767s ago: executing program 6 (id=9261):
r0 = openat$ttynull(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
ioctl$TIOCVHANGUP(r0, 0x5437, 0x0)

4.000174412s ago: executing program 6 (id=9268):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f0000000980)=@raw={'raw\x00', 0x3c1, 0x3, 0x3f0, 0x0, 0xc8, 0x8, 0x1c0, 0x5803, 0x320, 0x2e8, 0x2e8, 0x320, 0x2e8, 0x3, 0x0, {[{{@ipv6={@ipv4={'\x00', '\xff\xff', @multicast1}, @mcast1, [], [], 'erspan0\x00', 'geneve1\x00', {}, {0xff}}, 0x0, 0x190, 0x1c0, 0x0, {0x0, 0x2000000000000}, [@common=@unspec=@string={{0xc0}, {0x0, 0x0, 'kmp\x00', "cfcaf80c672f61cd17ae5119b5135c2aee68d23a465cd431e1ecef50c3234e082555f67222476147864fa03182f5cf11d8c348cbd06dc8de1dcbde7d4e252c3394fed47bf78c70f607b0178fa5ea335019ac07a602061c96baebc989f1f34a214e67262c1fe4b124e0f7323a587d2a1fcfe36bbf12eca0a7b66c60c527bac2b5", 0x1, 0x0, {0x8}}}, @common=@inet=@socket3={{0x28}, 0x6}]}, @common=@unspec=@CONNMARK={0x30}}, {{@uncond, 0x0, 0xf8, 0x160, 0x0, {}, [@inet=@rpfilter={{0x28}, {0x13}}, @inet=@rpfilter={{0x28}, {0x8}}]}, @unspec=@CT1={0x68, 'CT\x00', 0x1, {0x0, 0x0, 0x0, 0x0, 'netbios-ns\x00', 'syz0\x00'}}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28}}}}, 0x450)

3.721472959s ago: executing program 6 (id=9273):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$ARPT_SO_SET_REPLACE(r0, 0x0, 0x60, &(0x7f0000000000)={'filter\x00', 0x7, 0x4, 0x3b8, 0x0, 0xe8, 0xe8, 0x2b8, 0x2b8, 0x2b8, 0x4, 0x0, {[{{@uncond, 0xc0, 0xfffffffffffffd71}, @unspec=@AUDIT}, {{@uncond, 0xc0, 0xe8}, @unspec=@MARK={0x28, 'MARK\x00', 0x2, {0x0, 0x1}}}, {{@uncond, 0xc0, 0xe8}, @unspec=@AUDIT={0x28}}], {{'\x00', 0xc0, 0xe8}, {0x28}}}}, 0x453)

3.423382512s ago: executing program 5 (id=9277):
prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680))
tee(0xffffffffffffffff, 0xffffffffffffffff, 0xfffffffffffffc01, 0x0)

3.401221156s ago: executing program 6 (id=9278):
syz_mount_image$minix(&(0x7f0000000900), &(0x7f0000000080)='./file0\x00', 0x1010c8a, &(0x7f0000000180)=ANY=[@ANYRES32=0x0], 0x81, 0x1eb, &(0x7f0000000700)="$eJzs281O1FAYxvGnnU9RAb82rkxc6MYZHSZRdnIB3oA7ApUQixpxAzFRNt6Hl+HOO/EGINGtm5rTaS3V9tgPpx2d/y9h5uXQp+c04S2nBARgaa2Hr44c9cIqCIJ3tyQ9fSKpa432G1kggLkJnFnT5+lnDw/tKQD/hs7X7PFBboN/igs3vgtofR4rAzBfZ1udcB/w2ZG+fHu7cxp99AruH862XKkTfXIu35eGhfInTvh+syudnssPlD6B8z5n//Jxlr8Tvib5C0XXH82/ovT8Kz9Hc5hHJuPEDd/u3paCtdmXTP6ipEuSLktalbQWPWtdkXQ1Y/7dX+a/kZrse8GrAcox332j1Eihtk3nR5YDBva86Z5n+753v9SsiV6Uf1Ax34/yk5r5jYr5QZQf7bz0d3OPelzx7ICd+1v/l2Pv/1VLMvn1YZ3+79bsf2CZHR4dP9/2fe91+cKtlMovNPzLJ6RotYg3kmbE3Kb/nPpQdgpz+gW40pJF/Gy6KOvJLtq7JwFoxvjNwavx4dHxvf2D7T1vz3sxmW4+mm5Mpg83x+G+fFxndw5gkSU/9Isdb/+TIAAAAAAAAAAAAAAA0IZrkq63vQgAAAAAjWji34navkYAAAAAAAAAAAAAAAAAAADgf/EjAAD//yjJL00=")
truncate(&(0x7f00000000c0)='./file1\x00', 0x8000008)

3.26832298s ago: executing program 3 (id=9281):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_GETKMSGREDIRECT(r0, 0x541c, &(0x7f0000000000))

3.101354855s ago: executing program 5 (id=9282):
r0 = syz_open_dev$I2C(&(0x7f0000000800), 0x0, 0x0)
ioctl$I2C_SMBUS(r0, 0x720, &(0x7f00000000c0)={0x1, 0x0, 0x6, &(0x7f0000000180)={0x1a, "96ab8cb18a5722d2da3a03f39b5eaee25558f362e700"}})

2.968091328s ago: executing program 6 (id=9284):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
getsockopt$inet_tcp_int(r0, 0x11e, 0x1, 0x0, &(0x7f0000000000))

2.774927153s ago: executing program 5 (id=9287):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000080)=@newlink={0x40, 0x10, 0x437, 0x0, 0xffffffff, {0x0, 0x0, 0x0, 0x0, 0x0, 0x800}, [@IFLA_LINKINFO={0x20, 0x12, 0x0, 0x1, @gtp={{0x8}, {0x14, 0x2, 0x0, 0x1, [@IFLA_GTP_CREATE_SOCKETS={0x5, 0x5, 0x1}, @IFLA_GTP_LOCAL={0x8, 0x7, @empty}]}}}]}, 0x40}}, 0x0)

2.696181522s ago: executing program 3 (id=9288):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f00000001c0)={&(0x7f0000000600)=@ipv6_newrule={0x24, 0x20, 0x2d2c6d60ea1da725, 0x70bd29, 0x25dfdbfd, {0xa, 0x0, 0x0, 0xcd, 0xff, 0x0, 0x0, 0x1, 0x10002}, [@FIB_RULE_POLICY=@FRA_SPORT_RANGE={0x8, 0x17, {0x4e23, 0x4e22}}]}, 0x24}, 0x1, 0x0, 0x0, 0x20008081}, 0x0)

2.637270165s ago: executing program 6 (id=9290):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$TIOCL_PASTESEL(r0, 0x541c, &(0x7f0000000000))

2.491399196s ago: executing program 3 (id=9292):
r0 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0)
ioctl$SNDRV_TIMER_IOCTL_NEXT_DEVICE(r0, 0xc0145401, &(0x7f00000000c0)={0x3, 0x0, 0x0, 0x2, 0xffff8000})

2.420092627s ago: executing program 5 (id=9294):
r0 = syz_open_dev$vim2m(&(0x7f0000000780), 0x83, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000480)={0x12, 0x1, 0x0, "8eb8a828e93b07f1dd06da7a41bfeac48048beb159fbba176fb1de26098c68d9"})

2.174186845s ago: executing program 3 (id=9297):
r0 = socket(0x10, 0x3, 0x0)
sendto$inet6(r0, &(0x7f0000000180)="9000000018001f2fb9269b52ffff65580200be04020c060560020b0243000f00ffffff9e00c8388827a685a168d0bf47d32345653602648dcaaf6c26c291214549935ade4a460c20b6ec0cff3959547f500f58ba86c902000f1d012e02000280160012000a000000000000b7000000000000000010000000000000004cf2e70100aba4183b003e5fa424ac4d31c4f7a1", 0x90, 0x0, 0x0, 0x0)

1.95211418s ago: executing program 2 (id=9299):
r0 = openat$dsp(0xffffff9c, &(0x7f0000000100), 0x80, 0x0)
ioctl$mixer_OSS_ALSAEMULVER(r0, 0x80044df9, &(0x7f0000000180))

1.901786416s ago: executing program 5 (id=9301):
r0 = socket$rds(0x15, 0x5, 0x0)
setsockopt$SO_RDS_TRANSPORT(r0, 0x114, 0x1d, &(0x7f0000000240)=0xffffffffffffffff, 0x4)

1.865211538s ago: executing program 3 (id=9302):
r0 = socket$nl_xfrm(0x10, 0x3, 0x6)
sendmsg$nl_xfrm(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000040)=@getspdinfo={0x14, 0x25, 0x1, 0x70bd26, 0x25dfdbfc}, 0x14}, 0x1, 0x0, 0x0, 0x4000000}, 0x4000000)

1.636584583s ago: executing program 1 (id=9303):
pipe2(&(0x7f0000001cc0)={<r0=>0xffffffffffffffff, <r1=>0xffffffffffffffff}, 0x80000)
mount$9p_fd(0x0, &(0x7f0000000000)='.\x00', &(0x7f0000000080), 0x0, &(0x7f0000000280)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}, 0x2c, {[{@access_uid}]}})

1.588288295s ago: executing program 4 (id=9304):
r0 = syz_open_dev$sndpcmc(&(0x7f0000000000), 0x0, 0x80000)
ioctl$SNDRV_PCM_IOCTL_HW_REFINE(r0, 0xc2604110, &(0x7f0000000040)={0x0, [[0x9ef8, 0x2], [0x0, 0x1], [0x2000000, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0xffffffff, 0xfffffffd]], '\x00', [{0xfffffffc, 0xf8}, {}, {0xffffffff}, {0xffffffe, 0x10000003, 0x0, 0x1}, {0x3, 0xffffffff}, {0x1, 0x5}, {}, {0x0, 0x4}, {}, {0x2}, {0x0, 0x1}, {0xfffffff8}], '\x00', 0x1, 0x0, 0x0, 0xf8})

1.582909518s ago: executing program 5 (id=9305):
syz_mount_image$jfs(&(0x7f0000000080), &(0x7f0000000440)='./file0\x00', 0x2000480, &(0x7f0000000480)=ANY=[], 0xfd, 0x62f4, &(0x7f00000006c0)="$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")
execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x1000)

1.439074742s ago: executing program 3 (id=9306):
syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)=ANY=[@ANYBLOB='journal_async_commit,heartbeat=none,usrquota,barrier=000000000\x000000000007,heartbeat=none,nointr,\x00'], 0x1, 0x4703, &(0x7f0000004800)="$eJzs212IXFcBB/BzJ6vZpMl2P9ImafoxSQQXLcumT9X6ENeqjabNh7bVVFlnN9vN6uzMujujBYPUIIiCoARBxQ+qQulLLYiBvtQiFPxAWoVSUbS+iBSq4INBG+jKzNybnXtntneyk7S0/f2gnb3n3nPumf3vPXfOPZNCrHZqYaW4sFIsVYrV2ftXbil+rlquL86FwqvktT4/vbkSOcn+tXPkfR/4yD23hPCHY1/70Orq6mpoGA5dHWj7+fy/T8+2vyYKmTqNdru31vLH+iMv/fwtr3REnhMhhB0d/WrYFEL42C9C2BxCGInLRuPXLSGEbSGEKITw6G/+9ePBfrrQ5uy9Lzx37MzhfWemHn/smQvzR9c9MArhu+XdN88vvrh/023Pv+MynR4AAF7RB48fufvo5IHwZBSGzg10fl7fGb8mn4/vfNun7np4YG3/Kr3Z9CqGCgAAABlr8//h6OUu63XJylqyJPjEAyfufipa229i+/p26K4jt79/8kC8/ht17L81Lvrnezc111Cz677Z9d+RTP3u679r53n4q8/+svLWjfc/6V9y3uEQFSZS24XCxEQIx6Za27uirYVydaX2zvur9crJjZ/3jSKdf3b1fm1Bv9f8RzPV89b/d3/i8z/bMtDPOxgL2b/axnax80+ZLtL5rz+W/+RLUU/5j2Xq5eV/x9Pbz/9qcz/vIHtGLkU6/9aFuK/9gGJrAGjk/82B/Px3ZNrPy//7U+cePbGB7/80xpnhqNHXwdQI8HJcvs5XmMhI598KIjV0xr/I9a7//2XyvybTfl7+d1b/8bu/9XH/X2/8H5/qp803j3T+rSCKqSPWrv+RQv71f22m/bz8f3vqz89+sq97dWf+jf6Pu//3JJ1/fCNOD57N32Sv4//OTPt5+e8au++hhQ30+8Nb4n4ORWGs7Vun5xq3sKG19ermlKaxe2kDJ3kTSOff+q2lLp2h1kvz+h/OH/93ZdrPy/+hPV9/z+m+vv/bffyfNP73JJ3/lmbZpeT/Uib/3Zn28/L/4em//+W+yzz+N7YPyr8n6fy3duxfe/5T6Gn+d12mft7zn32jTz3y1z7m/0n/kvMmz3+S5xDjUev5D92l879q3eN6vf/vydTLu/6/9Z/nn97fz/gfDXoC0Id0/ttahV0mgL3mf32m/bz8v3DPlz/+pw3M/5qf+AaT/Nvm/5tb5UeN/z1J57+9VZj6x1APNv/fvP9Hnbn/N5P/DZn28/K/cGhi4CuX+f7f6P94l0fZdErnP7TucY38f9/D/f/GTL28/L+496cv3tzX5/8QJs31Nyyd/9XrHte8/gfz878pUy8v/+9849dPPNhH/9/eR12y+bfu9anLKf5s3uv8v5hpPy//H42fP7v/Csz/bnX/70k6/9aq+aXkn53/7820n5f/9478YHngCjz/uUP+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzIavw6HqDCR2i4UJiZCGIu3d4Wt0Uzp5PRMuTr7mZUQdsTlxTAazZerM6Xy9EKlenJuulQuV2dDuCbevyMMRivlam16sbR07cW2tkSn5krLtZm5Ui2EsDMuvz5sT9qaWagtlpaaxyZ1ropKn61Xa6WJ+srccth9sXxbUj6/XK0vXXexrasL1eWlU6XK9MmF5XdPTk5Ohj0X+zwSzT1Qm6vUWr1t7W3USeoOR21vprn7hrbzfbpaX66Uys3yG9vqlKuzpXJbnZvazldbrldmS7W56XJ1Pjlfsa1u23tr7t4b7xsPI6n3l9TNOhi/3n7o+EePHz7Qsb8YpfOu1BfnJrd3/5sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4I3rydve9e0QwkBrqxBCOJj8EMX/pZy994Xnjp05vO/M1OOPPXNh/mi3YwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4PztwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYuZ+XKro4DsBnxve+FkgpbYRcBoaI6E7Cgn4RSeU1smWb1kGtEjIoCgwjWhYEQVC7qCBoFVT+BVELl62qTS1aGERQMTqTlzvCDS90zHkeGM4Mc++ZLwzcO3M+hwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB+nN2x2JW1l3ZtXtq6+0PozM/9H0IYTZb3P+/tCD0hhK9fZk6HVdpCT1P/bybnxstXTX7v7R9/eH00WXv9xXeL63aHJB1qON6ZpOnQ0Nr736juDD6bHkxCSGMXQhQLY0/O1EIIHbELIYqfH+cvZr/v/8UuhCj6P9ztyu5/LXYhRLF196e+Wv6MR/Wcr18YbPzvb/UI3sYjOuvQ25NX3qVuauW9zN//k3zzPlgNsyeOvH8euwiimZ2bOhq7BgAA4O861yL/D1uW9+9fTkJPdzn3/9aU//c29b96/r/i3vYbYzNthRDbSmOT2fHwvnb63PhODVy9/bpmvKeq5P/VJv+vNvl/tcn/q03+X23yfzKv5P+V9PjmnsUXsYsgGvk/AABUz6HjE1P14ZHs5X/Tj85yXt+Xt/U8T39wa3rgUcO4kfzw33b42MSBg8Mj+X0vDwiurP+QLp39ns/3aG4Lk03zLlqt/9D7dGH+Wmf5E/U/nL9R1Fdc1/oPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAvdueehkEwCsPod1sRtdGqaMLCT4IPNDAiACnMaEAHEwZgIAQUMJBzlnuTZ3kBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA5/tXeV18f2mM9Foj0lR22bV/jqfZz9y3w/I+e9y4FQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADZ24EAGAAAAQJi/dR7tBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4KkAAAD//8Oayzs=")
quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f0000000100)=@loop={'/dev/loop', 0x0}, 0xee00, &(0x7f0000000280)={0x7, 0x6, 0x80007a, 0x5, 0x6, 0xb, 0x1000, 0x9, 0x10})

1.42428309s ago: executing program 2 (id=9307):
arch_prctl$ARCH_SHSTK_ENABLE(0x5003, 0x1)
arch_prctl$ARCH_SHSTK_UNLOCK(0x5004, 0x1)

1.300275566s ago: executing program 4 (id=9308):
r0 = socket$inet6_icmp(0xa, 0x2, 0x3a)
sendmsg$NL80211_CMD_JOIN_MESH(r0, &(0x7f0000001d80)={&(0x7f0000001c40)={0x10, 0x0, 0x0, 0x400}, 0xc, &(0x7f0000001d40)={&(0x7f0000000880)=ANY=[@ANYBLOB="80"], 0x84}, 0x1, 0x0, 0x0, 0x851}, 0x8000)

1.181075226s ago: executing program 1 (id=9309):
r0 = socket$inet_smc(0x2b, 0x1, 0x0)
setsockopt$IP_VS_SO_SET_STARTDAEMON(r0, 0x0, 0x48b, &(0x7f0000000040)={0x1, 'syzkaller1\x00'}, 0x18)

1.152971153s ago: executing program 2 (id=9310):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="19000000040000000800000006"], 0x48)
bpf$MAP_UPDATE_CONST_STR(0x2, &(0x7f00000002c0)={{r0}, &(0x7f0000000240), &(0x7f0000000280)='%-010d \x00', 0x2000000}, 0x20)

1.009694523s ago: executing program 4 (id=9311):
r0 = syz_open_dev$swradio(&(0x7f0000000140), 0x0, 0x2)
ioctl$VIDIOC_S_FREQUENCY(r0, 0x402c5639, &(0x7f0000000300)={0xb, 0x2, 0x9})

928.945653ms ago: executing program 2 (id=9312):
r0 = syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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")
ioctl$EXT4_IOC_GROUP_ADD(r0, 0x40286608, &(0x7f0000000540)={0x7, 0xc, 0x0, 0x253, 0x1, 0x18b})

908.207192ms ago: executing program 1 (id=9313):
r0 = socket$packet(0x11, 0x3, 0x300)
getsockopt$packet_buf(r0, 0x107, 0xb, 0x0, &(0x7f0000000180))

716.20426ms ago: executing program 4 (id=9314):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000280)=@newlink={0x48, 0x10, 0x401, 0x0, 0x0, {0x0, 0x0, 0xffff, 0x0, 0x1c42}, [@IFLA_LINKINFO={0x14, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0x4}}}, @IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}]}, 0x48}}, 0x0)

533.499803ms ago: executing program 1 (id=9315):
mkdirat(0xffffffffffffff9c, &(0x7f00000002c0)='./file0\x00', 0x0)
mount$overlay(0x0, &(0x7f00000003c0)='./file0\x00', &(0x7f0000000200), 0x0, &(0x7f00000001c0)={[{@userxattr}, {@metacopy_on}], [], 0x2c})

521.509505ms ago: executing program 2 (id=9316):
r0 = socket$inet6(0xa, 0x3, 0x2f)
getsockopt$inet6_int(r0, 0x29, 0x24, 0x0, &(0x7f00000000c0))

352.283198ms ago: executing program 4 (id=9317):
r0 = syz_init_net_socket$netrom(0x6, 0x5, 0x0)
bind$netrom(r0, &(0x7f00000004c0)={{0x6, @null, 0x1}, [@netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @null, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @default, @netrom={0xbb, 0xbb, 0xbb, 0xbb, 0xbb, 0x0, 0x0}, @remote={0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0xcc, 0x1}, @null]}, 0x48)

218.079539ms ago: executing program 1 (id=9318):
r0 = syz_open_dev$vim2m(&(0x7f0000000000), 0x800, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000180)={0x5, 0x2, 0x0, "7a00f78c87420285c903be187e1d01e1327528cd7e5f3dfee6955a6c39ddf280", 0xb5315241})

129.711361ms ago: executing program 4 (id=9319):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$IPT_SO_SET_REPLACE(r0, 0x0, 0x40, &(0x7f0000001640)=@mangle={'mangle\x00', 0x44, 0x6, 0x498, 0x1c8, 0x1c8, 0x1c8, 0x98, 0x360, 0x400, 0x400, 0x400, 0x400, 0x400, 0x6, 0x0, {[{{@ip={@dev={0xac, 0x14, 0x14, 0x2c}, @rand_addr=0x64010101, 0x11000000, 0x0, 'geneve1\x00', 'ip6gre0\x00'}, 0x0, 0x70, 0x98}, @ECN={0x28, 'ECN\x00', 0x0, {0x50, 0x80, 0x1}}}, {{@uncond, 0x0, 0x70, 0x98}, @inet=@TOS={0x28, 'TOS\x00', 0x0, {0x3, 0x3}}}, {{@ip={@broadcast, @multicast2, 0xff, 0x0, 'lo\x00', 'nr0\x00', {}, {}, 0x84}, 0x0, 0x70, 0x98}, @inet=@DSCP={0x28, 'DSCP\x00', 0x0, {0x14}}}, {{@ip={@loopback, @empty, 0x0, 0xffffff00, 'syzkaller0\x00', 'veth1_to_team\x00'}, 0x0, 0x70, 0x198}, @common=@unspec=@SECMARK={0x128, 'SECMARK\x00', 0x0, {0x1, 0xa, 'system_u:object_r:dbusd_etc_t:s0\x00'}}}, {{@uncond, 0x0, 0x70, 0xa0}, @TPROXY={0x30, 'TPROXY\x00', 0x0, {0x0, 0x0, @loopback}}}], {{'\x00', 0x0, 0x70, 0x98}, {0x28}}}}, 0x4f8)

352.446µs ago: executing program 2 (id=9320):
syz_mount_image$ext4(&(0x7f0000000440)='ext4\x00', &(0x7f0000000480)='./file1\x00', 0x0, &(0x7f00000004c0), 0x1, 0x434, &(0x7f0000000940)="$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")
listxattr(&(0x7f0000000040)='./file1\x00', 0x0, 0x0)

0s ago: executing program 1 (id=9321):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
write$UHID_INPUT(r0, &(0x7f0000001040)={0xc, {"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", 0x1000}}, 0x375)

kernel console output (not intermixed with test programs):

Quota mode: writeback.
[  993.577783][T24341] loop4: detected capacity change from 0 to 4096
[  993.607824][ T6151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  993.729266][T24315] loop2: detected capacity change from 0 to 32768
[  993.904821][T24350] binder: BC_ATTEMPT_ACQUIRE not supported
[  993.952320][T24350] binder: 24348:24350 ioctl c0306201 200000000080 returned -22
[  994.180141][T24355] loop6: detected capacity change from 0 to 512
[  994.304013][T24355] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  994.407093][T24363] loop3: detected capacity change from 0 to 4096
[  994.415350][T24355] ext4 filesystem being mounted at /388/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[  994.649076][T24369] loop2: detected capacity change from 0 to 512
[  994.731579][T24369] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2
[  994.739699][T24369] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2
[  994.794108][T18491] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  994.859491][T24369] EXT4-fs (loop2): 1 truncate cleaned up
[  994.867208][T24369] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[  995.075552][T24369] EXT4-fs (loop2): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[  995.331545][ T6146] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[  995.572517][T24387] netlink: 'syz.2.7844': attribute type 2 has an invalid length.
[  995.596645][T24357] loop4: detected capacity change from 0 to 32768
[  995.618360][T24387] netlink: 'syz.2.7844': attribute type 3 has an invalid length.
[  995.974037][T24403] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7851'.
[  996.013388][   T30] kauditd_printk_skb: 22 callbacks suppressed
[  996.013415][   T30] audit: type=1326 audit(2000525229.485:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24404 comm="syz.3.7854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x7ffc0000
[  996.037874][T24403] netlink: 32 bytes leftover after parsing attributes in process `syz.1.7851'.
[  996.177781][   T30] audit: type=1326 audit(2000525229.485:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24404 comm="syz.3.7854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x7ffc0000
[  996.280804][   T30] audit: type=1326 audit(2000525229.494:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24404 comm="syz.3.7854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=449 compat=0 ip=0x7f044e58efc9 code=0x7ffc0000
[  996.383428][   T30] audit: type=1326 audit(2000525229.494:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24404 comm="syz.3.7854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x7ffc0000
[  996.432282][T24414] xt_hashlimit: overflow, rate too high: 0
[  996.504167][T24418] loop1: detected capacity change from 0 to 764
[  996.516368][   T30] audit: type=1326 audit(2000525229.494:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24404 comm="syz.3.7854" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x7ffc0000
[  996.640902][T24418] Symlink component flag not implemented
[  996.689708][T24418] Symlink component flag not implemented
[  996.711789][T24418] Symlink component flag not implemented (128)
[  996.741995][T24418] Symlink component flag not implemented (122)
[  997.473890][T24401] loop2: detected capacity change from 0 to 32768
[  997.520440][T24401] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7850 (24401)
[  997.560674][T24401] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  997.594583][T24401] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[  997.889078][T24401] BTRFS info (device loop2): enabling ssd optimizations
[  997.924988][T24401] BTRFS info (device loop2): turning on async discard
[  997.959645][T24401] BTRFS info (device loop2): enabling free space tree
[  998.109641][ T6215] usb 7-1: new high-speed USB device number 19 using dummy_hcd
[  998.209059][ T6146] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[  998.331515][ T6215] usb 7-1: New USB device found, idVendor=04fc, idProduct=504a, bcdDevice=43.02
[  998.362361][ T6215] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  998.394860][ T6215] usb 7-1: Product: syz
[  998.405838][ T6215] usb 7-1: Manufacturer: syz
[  998.430840][ T6215] usb 7-1: SerialNumber: syz
[  998.471243][ T6215] usb 7-1: config 0 descriptor??
[  998.494274][ T6215] gspca_main: sunplus-2.14.0 probing 04fc:504a
[  998.624262][T24488] xt_TCPMSS: path-MTU clamping only supported in FORWARD, OUTPUT and POSTROUTING hooks
[  998.928314][ T6215] gspca_sunplus: reg_w_riv err -71
[  998.959643][ T6215] sunplus 7-1:0.0: probe with driver sunplus failed with error -71
[  998.985828][T24495] netlink: 12 bytes leftover after parsing attributes in process `syz.2.7889'.
[  999.000479][ T6215] usb 7-1: USB disconnect, device number 19
[  999.321286][T24501] loop2: detected capacity change from 0 to 64
[  999.433420][T24503] loop5: detected capacity change from 0 to 4096
[  999.518072][T24482] loop4: detected capacity change from 0 to 32768
[  999.640115][ T6313] usb 2-1: new high-speed USB device number 11 using dummy_hcd
[  999.710171][T24482] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[  999.842535][ T6313] usb 2-1: Using ep0 maxpacket: 8
[  999.860190][ T6313] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[  999.881791][ T6313] usb 2-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0
[  999.895050][ T6313] usb 2-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52
[  999.904247][ T6313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[  999.912337][ T6313] usb 2-1: Product: syz
[  999.916511][ T6313] usb 2-1: Manufacturer: syz
[  999.921174][ T6313] usb 2-1: SerialNumber: syz
[ 1000.029274][ T6313] usb 2-1: config 0 descriptor??
[ 1000.049256][T24482] XFS (loop4): Ending clean mount
[ 1000.095948][T24525] netlink: 'syz.2.7901': attribute type 6 has an invalid length.
[ 1000.342661][ T6163] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1000.549681][T24539] x_tables: ip_tables: DNAT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[ 1000.569805][T24538] loop6: detected capacity change from 0 to 256
[ 1000.580725][ T6313] usb 2-1: USB disconnect, device number 11
[ 1000.593862][T24538] exfat: Deprecated parameter 'namecase'
[ 1000.599599][T24538] exfat: Deprecated parameter 'namecase'
[ 1000.665955][T24538] exfat: Deprecated parameter 'utf8'
[ 1000.698186][T24538] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x5417aa89, utbl_chksum : 0xe619d30d)
[ 1001.646630][T24559] bond0: entered promiscuous mode
[ 1001.646665][T24559] bond_slave_0: entered promiscuous mode
[ 1001.646912][T24559] bond_slave_1: entered promiscuous mode
[ 1001.799299][T24541] loop5: detected capacity change from 0 to 32768
[ 1001.860183][T24541] ERROR: (device loop5): dtSearch: DT_GETPAGE: dtree page corrupt
[ 1001.860183][T24541] 
[ 1001.866380][T24541] ERROR: (device loop5): remounting filesystem as read-only
[ 1001.866432][T24541] jfs_lookup: dtSearch returned -5
[ 1002.154405][T24569] loop1: detected capacity change from 0 to 1024
[ 1002.424552][T17500] hfsplus: b-tree write err: -5, ino 8
[ 1002.629695][T24550] loop4: detected capacity change from 0 to 32768
[ 1002.669153][T24583] bridge0: port 3(syz_tun) entered blocking state
[ 1002.675734][T24583] bridge0: port 3(syz_tun) entered disabled state
[ 1002.731503][T24583] syz_tun: entered allmulticast mode
[ 1002.801395][T24583] syz_tun: entered promiscuous mode
[ 1002.808386][T24585] openvswitch: netlink: Unexpected mask (mask=20040, allowed=10048)
[ 1002.880470][T24583] bridge0: port 3(syz_tun) entered blocking state
[ 1002.887142][T24583] bridge0: port 3(syz_tun) entered forwarding state
[ 1003.064861][T24587] netlink: 20 bytes leftover after parsing attributes in process `syz.1.7931'.
[ 1003.125815][T24587] netlink: 'syz.1.7931': attribute type 3 has an invalid length.
[ 1003.155432][T24587] netlink: 44 bytes leftover after parsing attributes in process `syz.1.7931'.
[ 1003.261341][T24592] loop6: detected capacity change from 0 to 764
[ 1003.277244][T24593] IPVS: length: 73 != 8
[ 1003.356201][T24592] Symlink component flag not implemented
[ 1003.367089][T24592] Symlink component flag not implemented
[ 1003.395307][T24592] Symlink component flag not implemented (128)
[ 1003.401513][T24592] Symlink component flag not implemented (122)
[ 1004.098483][T24575] loop5: detected capacity change from 0 to 32768
[ 1004.155128][T24575] 
[ 1004.155128][T24575]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1004.155128][T24575] 
[ 1004.203551][T24575] ERROR: (device loop5): diWrite: ixpxd invalid
[ 1004.203551][T24575] 
[ 1004.242796][T24575] ERROR: (device loop5): txAbort: 
[ 1004.242796][T24575] 
[ 1004.411439][ T6160] 
[ 1004.411439][ T6160]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1004.411439][ T6160] 
[ 1004.480809][ T6160] 
[ 1004.480809][ T6160]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1004.480809][ T6160] 
[ 1004.640342][T24589] loop3: detected capacity change from 0 to 32768
[ 1004.669740][T24620] loop4: detected capacity change from 0 to 1764
[ 1004.741354][T24620] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1004.771680][T24589] XFS (loop3): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1004.879823][T24629] netlink: 'syz.2.7950': attribute type 16 has an invalid length.
[ 1004.902114][T24629] netlink: 156 bytes leftover after parsing attributes in process `syz.2.7950'.
[ 1004.975181][T24589] XFS (loop3): Ending clean mount
[ 1005.354078][ T6151] XFS (loop3): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1005.355311][   T30] audit: type=1326 audit(2000525238.227:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24641 comm="syz.2.7954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa2558efc9 code=0x7ffc0000
[ 1005.525611][   T30] audit: type=1326 audit(2000525238.255:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24641 comm="syz.2.7954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa2558efc9 code=0x7ffc0000
[ 1005.548248][   T30] audit: type=1326 audit(2000525238.274:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24641 comm="syz.2.7954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=297 compat=0 ip=0x7faa2558efc9 code=0x7ffc0000
[ 1005.571346][   T30] audit: type=1326 audit(2000525238.274:122): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24641 comm="syz.2.7954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa2558efc9 code=0x7ffc0000
[ 1005.644127][   T30] audit: type=1326 audit(2000525238.274:123): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24641 comm="syz.2.7954" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7faa2558efc9 code=0x7ffc0000
[ 1006.450620][T24658] 9p: Unknown Cache mode or invalid value fs
[ 1006.584568][T24636] loop1: detected capacity change from 0 to 32768
[ 1006.639805][T24636] jfs_strtoUCS: char2uni returned -22.
[ 1006.651616][T24636] charset = ascii, char = 0xc5
[ 1006.799766][T24622] loop5: detected capacity change from 0 to 32768
[ 1006.870976][T24622] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1006.890454][T24622] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1006.931789][T24622] gfs2: fsid=syz:syz.s: journal 0 mapped with 5 extents in 0ms
[ 1006.987544][T24669] netlink: 12 bytes leftover after parsing attributes in process `syz.3.7966'.
[ 1006.996546][T24669] netlink: 31 bytes leftover after parsing attributes in process `syz.3.7966'.
[ 1007.081301][T24646] loop4: detected capacity change from 0 to 32768
[ 1007.110452][T24669] netlink: 'syz.3.7966': attribute type 3 has an invalid length.
[ 1007.181497][T24646] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1007.194819][T24669] netlink: 'syz.3.7966': attribute type 2 has an invalid length.
[ 1007.209463][T24622] gfs2: fsid=syz:syz.s: first mount done, others may mount
[ 1007.216990][T24669] netlink: 31 bytes leftover after parsing attributes in process `syz.3.7966'.
[ 1007.454886][T24646] XFS (loop4): Ending clean mount
[ 1007.468117][T24684] netlink: 1 bytes leftover after parsing attributes in process `syz.2.7970'.
[ 1007.511790][T24646] XFS (loop4): Quotacheck needed: Please wait.
[ 1007.623655][T24686] netlink: 10 bytes leftover after parsing attributes in process `syz.1.7971'.
[ 1007.658025][T24646] XFS (loop4): Quotacheck: Done.
[ 1007.940701][ T6163] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1008.607295][T24704] netlink: 16 bytes leftover after parsing attributes in process `syz.1.7981'.
[ 1008.998504][T24679] loop6: detected capacity change from 0 to 32768
[ 1009.073929][T24679] XFS (loop6): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1009.132202][T24725] netlink: 248 bytes leftover after parsing attributes in process `syz.1.7988'.
[ 1009.466727][T24679] XFS (loop6): Ending clean mount
[ 1009.496381][T24679] XFS (loop6): Quotacheck needed: Please wait.
[ 1009.648651][T24679] XFS (loop6): Quotacheck: Done.
[ 1009.723678][T24744] loop1: detected capacity change from 0 to 512
[ 1009.811359][T24744] EXT4-fs: Ignoring removed mblk_io_submit option
[ 1009.852974][T24744] EXT4-fs (loop1): mounting ext3 file system using the ext4 subsystem
[ 1009.923300][T24744] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a043c11c, mo2=0002]
[ 1009.987918][T18491] XFS (loop6): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1009.996897][T24744] System zones: 1-12
[ 1010.017929][T24744] EXT4-fs error (device loop1): ext4_iget_extra_inode:5074: inode #15: comm syz.1.7996: corrupted in-inode xattr: e_value size too large
[ 1010.085537][T24744] EXT4-fs error (device loop1): ext4_orphan_get:1395: comm syz.1.7996: couldn't read orphan inode 15 (err -117)
[ 1010.229288][T24744] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1010.372166][T24744] cgroup: name respecified
[ 1010.418073][T24708] loop2: detected capacity change from 0 to 32768
[ 1010.592805][ T6150] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1011.274690][   T30] audit: type=1326 audit(2000525243.734:124): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.360077][   T30] audit: type=1326 audit(2000525243.734:125): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.478696][   T30] audit: type=1326 audit(2000525243.734:126): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.615830][   T30] audit: type=1326 audit(2000525243.743:127): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.671729][T24788] loop1: detected capacity change from 0 to 4096
[ 1011.699834][   T30] audit: type=1326 audit(2000525243.743:128): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.774588][   T30] audit: type=1326 audit(2000525243.743:129): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=322 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.834984][T24788] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1011.842286][   T30] audit: type=1326 audit(2000525243.743:130): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.903517][   T30] audit: type=1326 audit(2000525243.743:131): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1011.926288][   T30] audit: type=1326 audit(2000525243.743:132): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24781 comm="syz.6.8014" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1012.028326][T24788] Quota error (device loop1): do_check_range: Getting block 117440516 out of range 1-5
[ 1012.079051][T24788] EXT4-fs error (device loop1): ext4_acquire_dquot:6943: comm syz.1.8016: Failed to acquire dquot type 1
[ 1012.372620][ T6150] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1012.456750][T24767] loop5: detected capacity change from 0 to 32768
[ 1012.510077][T24767] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1012.793750][T24767] XFS (loop5): Ending clean mount
[ 1013.038387][ T6160] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1013.623993][T24803] loop2: detected capacity change from 0 to 32768
[ 1013.665995][T24803] BTRFS: device fsid ed167579-eb65-4e76-9a50-61ac97e9b59d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.8024 (24803)
[ 1013.697548][T24844] loop3: detected capacity change from 0 to 512
[ 1013.717342][T24844] EXT4-fs: Ignoring removed oldalloc option
[ 1013.745798][T24844] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode
[ 1013.768835][T24803] BTRFS info (device loop2): first mount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1013.800453][T24803] BTRFS info (device loop2): using sha256 (sha256-lib) checksum algorithm
[ 1013.820884][T24844] EXT4-fs error (device loop3): ext4_free_branches:1020: inode #16: comm syz.3.8041: invalid indirect mapped block 4294967295 (level 0)
[ 1013.862994][T24849] program syz.5.8035 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1013.885647][T24844] EXT4-fs (loop3): Remounting filesystem read-only
[ 1013.904996][T24849] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1013.960154][T24844] EXT4-fs (loop3): 1 orphan inode deleted
[ 1013.965918][T24844] EXT4-fs (loop3): 1 truncate cleaned up
[ 1014.026047][T24844] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1014.073704][T24803] BTRFS info (device loop2): enabling ssd optimizations
[ 1014.115074][T24828] loop4: detected capacity change from 0 to 32768
[ 1014.122366][T24803] BTRFS info (device loop2): turning on async discard
[ 1014.143424][T24803] BTRFS info (device loop2): enabling free space tree
[ 1014.168066][T24828] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8031 (24828)
[ 1014.222414][T24828] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1014.248890][T24872] ptrace attach of "./syz-executor exec"[18491] was attempted by ""[24872]
[ 1014.260225][ T6151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1014.265505][T24828] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[ 1014.637642][ T6146] BTRFS info (device loop2): last unmount of filesystem ed167579-eb65-4e76-9a50-61ac97e9b59d
[ 1014.656990][T24828] BTRFS info (device loop4): enabling ssd optimizations
[ 1014.663960][T24828] BTRFS info (device loop4): turning on async discard
[ 1014.750130][T24828] BTRFS info (device loop4): enabling free space tree
[ 1014.802971][T24901] mac80211_hwsim hwsim8 wlan0: entered promiscuous mode
[ 1014.829285][T24901] mac80211_hwsim hwsim8 wlan0: entered allmulticast mode
[ 1015.214944][ T6163] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1015.761875][T24923] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1016.647455][T24949] loop6: detected capacity change from 0 to 256
[ 1016.944883][T24957] kernel profiling enabled (shift: 8)
[ 1017.423525][T24919] loop4: detected capacity change from 0 to 32768
[ 1017.529015][T24919] XFS (loop4): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1017.752591][T24919] XFS (loop4): Ending clean mount
[ 1017.794353][T24919] XFS (loop4): Quotacheck needed: Please wait.
[ 1017.944167][T24919] XFS (loop4): Quotacheck: Done.
[ 1018.173939][T24999] comedi comedi0: pcl724: I/O port conflict (0x9,4)
[ 1018.249271][ T6163] XFS (loop4): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1018.322576][T25005] loop2: detected capacity change from 0 to 256
[ 1018.339769][T25005] exfat: Deprecated parameter 'namecase'
[ 1018.375546][T25005] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 1018.639484][T24960] loop6: detected capacity change from 0 to 32768
[ 1018.716549][T24960] XFS (loop6): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1018.896862][T24960] XFS (loop6): Ending clean mount
[ 1019.082941][ T6313] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[ 1019.135201][T18491] XFS (loop6): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1019.275534][ T6313] usb 2-1: Using ep0 maxpacket: 8
[ 1019.293642][ T6313] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1019.342903][ T6313] usb 2-1: config 8 has an invalid interface number: 255 but max is 0
[ 1019.385970][ T6313] usb 2-1: config 8 has no interface number 0
[ 1019.418424][ T6313] usb 2-1: config 8 interface 255 has no altsetting 0
[ 1019.449529][ T6313] usb 2-1: string descriptor 0 read error: -22
[ 1019.469455][ T6313] usb 2-1: New USB device found, idVendor=0423, idProduct=000c, bcdDevice= e.bf
[ 1019.490900][ T6313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1019.987629][ T6313] eth%d: CATC EL1210A NetMate USB Ethernet at usb-dummy_hcd.1-1, 00:00:00:00:00:00.
[ 1020.123443][ T6313] usb 2-1: USB disconnect, device number 12
[ 1020.245845][T25029] loop3: detected capacity change from 0 to 32768
[ 1020.278692][T25029] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.8108 (25029)
[ 1020.322678][T25029] BTRFS info (device loop3): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1020.354771][T25029] BTRFS info (device loop3): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1020.711351][T25029] BTRFS info (device loop3): enabling ssd optimizations
[ 1020.718348][T25029] BTRFS info (device loop3): turning on async discard
[ 1020.792120][T25029] BTRFS info (device loop3): enabling free space tree
[ 1020.997410][T25029] BTRFS warning (device loop3): get dev_stats failed, device not found
[ 1021.266492][ T6151] BTRFS info (device loop3): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1021.370024][T25104] loop5: detected capacity change from 0 to 256
[ 1021.416224][T25104] exfat: Deprecated parameter 'utf8'
[ 1021.467696][T25104] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x572a75a8, utbl_chksum : 0xe619d30d)
[ 1021.681836][T25110] loop4: detected capacity change from 0 to 1024
[ 1021.689342][T25110] EXT4-fs: Ignoring removed bh option
[ 1021.829753][T25110] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1021.944563][T25110] EXT4-fs error (device loop4): ext4_get_first_dir_block:3540: inode #11: comm syz.4.8135: directory missing '.'
[ 1022.039995][T25115] loop3: detected capacity change from 0 to 4096
[ 1022.059160][T25110] EXT4-fs (loop4): Remounting filesystem read-only
[ 1022.090106][T25115] ntfs3(loop3): Different NTFS sector size (1024) and media sector size (512).
[ 1022.214031][T25115] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1022.234497][T25127] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1022.299964][ T6163] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1022.784080][T25141] ipt_ECN: cannot use operation on non-tcp rule
[ 1022.794103][   T30] kauditd_printk_skb: 1 callbacks suppressed
[ 1022.794127][   T30] audit: type=1326 audit(2000525254.524:133): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25140 comm="syz.6.8147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1022.910799][T25144] netlink: 68 bytes leftover after parsing attributes in process `syz.1.8149'.
[ 1022.965366][   T30] audit: type=1326 audit(2000525254.524:134): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25140 comm="syz.6.8147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1023.104312][   T30] audit: type=1326 audit(2000525254.533:135): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25140 comm="syz.6.8147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=102 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1023.230150][   T30] audit: type=1326 audit(2000525254.533:136): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25140 comm="syz.6.8147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1023.347227][   T30] audit: type=1326 audit(2000525254.533:137): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25140 comm="syz.6.8147" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff28858efc9 code=0x7ffc0000
[ 1023.712507][T25172] x_tables: ip_tables: rpfilter match: used from hooks OUTPUT, but only valid from PREROUTING
[ 1023.755630][T25174] loop3: detected capacity change from 0 to 8
[ 1023.864180][T25174] SQUASHFS error: Failed to read block 0x2d7: -5
[ 1023.870558][T25174] SQUASHFS error: Unable to read metadata cache entry [2d5]
[ 1024.532057][T25202] loop2: detected capacity change from 0 to 256
[ 1024.533879][T25201] netlink: 'syz.1.8169': attribute type 1 has an invalid length.
[ 1024.933217][ T6237] usb 5-1: new high-speed USB device number 13 using dummy_hcd
[ 1024.944305][T25213] xt_TCPMSS: Only works on TCP SYN packets
[ 1025.036884][T25219] netlink: 'syz.5.8177': attribute type 10 has an invalid length.
[ 1025.126163][ T6237] usb 5-1: Using ep0 maxpacket: 16
[ 1025.131027][T25219] bridge0: port 4(netdevsim0) entered blocking state
[ 1025.139951][ T6237] usb 5-1: config 0 has an invalid interface number: 8 but max is 0
[ 1025.170921][T25219] bridge0: port 4(netdevsim0) entered disabled state
[ 1025.177948][T25219] netdevsim netdevsim5 netdevsim0: entered allmulticast mode
[ 1025.189913][ T6237] usb 5-1: config 0 has no interface number 0
[ 1025.228541][ T6237] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1025.269124][ T6237] usb 5-1: config 0 interface 8 altsetting 0 endpoint 0x8F has invalid wMaxPacketSize 0
[ 1025.270154][T25219] netdevsim netdevsim5 netdevsim0: entered promiscuous mode
[ 1025.324083][ T6237] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1025.347504][ T6237] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1025.400564][ T6237] usb 5-1: Product: syz
[ 1025.424921][ T6237] usb 5-1: SerialNumber: syz
[ 1025.467554][T25230] netlink: 132 bytes leftover after parsing attributes in process `syz.5.8183'.
[ 1025.485604][ T6237] usb 5-1: config 0 descriptor??
[ 1025.531771][ T6237] cm109 5-1:0.8: invalid payload size 0, expected 4
[ 1025.581460][ T6237] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input51
[ 1025.722201][T25235] loop6: detected capacity change from 0 to 1024
[ 1025.759145][T25237] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1025.805165][T25235] EXT4-fs: Ignoring removed bh option
[ 1025.833352][    C1] cm109 5-1:0.8: cm109_urb_ctl_callback: usb_submit_urb (urb_irq) failed -90
[ 1025.896714][T25235] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1026.006753][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.013652][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.022833][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.063107][  T932] usb 5-1: USB disconnect, device number 13
[ 1026.108857][  T932] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1026.112405][T25243] iwpm_register_pid: Unable to send a nlmsg (client = 2)
[ 1026.191066][T25243] infiniband syz0: RDMA CMA: cma_listen_on_dev, error -98
[ 1026.235070][T25220] loop3: detected capacity change from 0 to 32768
[ 1026.261890][T25220] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.8178 (25220)
[ 1026.310950][T25220] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1026.337505][T25220] BTRFS info (device loop3): using sha256 (sha256-lib) checksum algorithm
[ 1026.347611][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.362466][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.385356][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.392865][T25247] loop2: detected capacity change from 0 to 4096
[ 1026.424914][T18491] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1026.426046][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.448356][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.457247][T25243] virt_wifi0 speed is unknown, defaulting to 1000
[ 1026.594261][T25220] BTRFS info (device loop3): enabling ssd optimizations
[ 1026.626925][T25247] ntfs3(loop2): Mark volume as dirty due to NTFS errors
[ 1026.649211][T25220] BTRFS info (device loop3): turning on async discard
[ 1026.679919][T25220] BTRFS info (device loop3): enabling free space tree
[ 1026.709089][T25247] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22.
[ 1026.797345][   T30] audit: type=1326 audit(2000525258.273:138): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25267 comm="syz.1.8192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c36b8efc9 code=0x7ffc0000
[ 1026.891333][   T30] audit: type=1326 audit(2000525258.301:139): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25267 comm="syz.1.8192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c36b8efc9 code=0x7ffc0000
[ 1026.986607][ T6146] ntfs3(loop2): ino=9, ntfs_sync_fs failed, -22.
[ 1027.004681][   T30] audit: type=1326 audit(2000525258.311:140): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25267 comm="syz.1.8192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f6c36b8efc9 code=0x7ffc0000
[ 1027.096391][ T6151] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1027.125750][   T30] audit: type=1326 audit(2000525258.311:141): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25267 comm="syz.1.8192" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6c36b8efc9 code=0x7ffc0000
[ 1027.288163][T25277] loop6: detected capacity change from 0 to 1024
[ 1027.641337][T17502] hfsplus: b-tree write err: -5, ino 4
[ 1028.100677][T25295] loop5: detected capacity change from 0 to 2048
[ 1028.175874][T25295] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=26504, location=26504
[ 1028.248109][T25295] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1028.638782][T25305] netlink: 48 bytes leftover after parsing attributes in process `syz.3.8210'.
[ 1028.823305][T25279] loop2: detected capacity change from 0 to 32768
[ 1028.886510][T25285] loop1: detected capacity change from 0 to 32768
[ 1028.932664][T25279] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1028.990411][T25285] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.8201 (25285)
[ 1029.071460][T25279] XFS (loop2): Ending clean mount
[ 1029.139767][T25329] loop4: detected capacity change from 0 to 256
[ 1029.140551][T25279] XFS (loop2): Quotacheck needed: Please wait.
[ 1029.152486][T25285] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1029.200882][T25285] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[ 1029.378472][T25279] XFS (loop2): Quotacheck: Done.
[ 1029.511879][T25285] BTRFS info (device loop1): enabling ssd optimizations
[ 1029.572090][T25285] BTRFS info (device loop1): turning on async discard
[ 1029.612650][T25285] BTRFS info (device loop1): enabling free space tree
[ 1029.794327][ T6146] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1030.024417][ T6150] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1030.505432][  T932] usb 5-1: new high-speed USB device number 14 using dummy_hcd
[ 1030.680548][T25377] 8021q: adding VLAN 0 to HW filter on device bond0
[ 1030.721369][T25377] bond0: (slave rose0): Enslaving as an active interface with an up link
[ 1030.746967][  T932] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1030.779568][  T932] usb 5-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d
[ 1030.799914][  T932] usb 5-1: New USB device strings: Mfr=32, Product=0, SerialNumber=9
[ 1030.836965][  T932] usb 5-1: Manufacturer: syz
[ 1030.859573][  T932] usb 5-1: SerialNumber: syz
[ 1030.892154][  T932] usb 5-1: config 0 descriptor??
[ 1030.937615][  T932] uvcvideo 5-1:0.0: probe with driver uvcvideo failed with error -22
[ 1030.952643][T25385] loop1: detected capacity change from 0 to 4096
[ 1030.965409][ T6215] usb 3-1: new high-speed USB device number 13 using dummy_hcd
[ 1030.983412][ T6313] usb 7-1: new high-speed USB device number 20 using dummy_hcd
[ 1031.010492][T25385] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1031.102629][T25385] ntfs3(loop1): ino=19, mi_enum_attr
[ 1031.168879][ T6215] usb 3-1: Using ep0 maxpacket: 16
[ 1031.180253][ T6313] usb 7-1: Using ep0 maxpacket: 32
[ 1031.196322][ T6215] usb 3-1: config 0 has an invalid interface number: 8 but max is 0
[ 1031.200760][T18938] usb 5-1: USB disconnect, device number 14
[ 1031.212988][ T6215] usb 3-1: config 0 has no interface number 0
[ 1031.238297][ T6313] usb 7-1: config 0 has an invalid interface number: 1 but max is 0
[ 1031.240807][ T6215] usb 3-1: config 0 interface 8 altsetting 0 endpoint 0x8F has an invalid bInterval 0, changing to 7
[ 1031.261295][T25385] ntfs3(loop1): failed to convert "c46c" to iso8859-9
[ 1031.271272][ T6313] usb 7-1: config 0 has no interface number 0
[ 1031.300680][T25385] ntfs3(loop1): ino=20, mi_enum_attr
[ 1031.306259][ T6313] usb 7-1: config 0 interface 1 altsetting 9 has an invalid descriptor for endpoint zero, skipping
[ 1031.347109][ T6215] usb 3-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f
[ 1031.352990][ T6313] usb 7-1: config 0 interface 1 has no altsetting 0
[ 1031.380994][ T6215] usb 3-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3
[ 1031.389086][ T6313] usb 7-1: New USB device found, idVendor=0572, idProduct=58a5, bcdDevice=27.0a
[ 1031.389133][ T6313] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1031.389170][ T6313] usb 7-1: Product: syz
[ 1031.389199][ T6313] usb 7-1: Manufacturer: syz
[ 1031.389227][ T6313] usb 7-1: SerialNumber: syz
[ 1031.417069][ T6313] usb 7-1: config 0 descriptor??
[ 1031.503025][ T6215] usb 3-1: Product: syz
[ 1031.507240][ T6215] usb 3-1: SerialNumber: syz
[ 1031.543963][ T6215] usb 3-1: config 0 descriptor??
[ 1031.570756][ T6215] cm109 3-1:0.8: invalid payload size 208, expected 4
[ 1031.615054][ T6215] input: CM109 USB driver as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.8/input/input52
[ 1031.710029][ T6313] cx231xx 7-1:0.1: New device syz syz @ 480 Mbps (0572:58a5) with 1 interfaces
[ 1031.784229][ T6313] cx231xx 7-1:0.1: Failed to read PCB config
[ 1031.833883][ T6313] cx231xx 7-1:0.1: probe with driver cx231xx failed with error -71
[ 1031.974640][ T6313] usb 7-1: USB disconnect, device number 20
[ 1032.106341][    C1] cm109 3-1:0.8: cm109_urb_irq_callback: urb status -71
[ 1032.106590][T18938] usb 3-1: USB disconnect, device number 13
[ 1032.113334][    C1] cm109 3-1:0.8: cm109_submit_ctl: usb_submit_urb (urb_ctl) failed -19
[ 1032.233676][T18938] cm109 3-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19
[ 1032.577162][T25427] loop3: detected capacity change from 0 to 256
[ 1032.663045][T25427] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d)
[ 1033.606982][ T6215] usb 5-1: new high-speed USB device number 15 using dummy_hcd
[ 1033.651940][T25463] veth0_vlan: entered allmulticast mode
[ 1033.755223][T25467] netlink: 'syz.5.8268': attribute type 3 has an invalid length.
[ 1033.795428][ T6215] usb 5-1: New USB device found, idVendor=0733, idProduct=0430, bcdDevice=35.fb
[ 1033.812995][ T6215] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1033.881059][ T6215] usb 5-1: config 0 descriptor??
[ 1033.927549][ T6215] gspca_main: spca505-2.14.0 probing 0733:0430
[ 1034.362727][ T6215] gspca_spca505: reg write: error -71
[ 1034.378730][ T6215] spca505 5-1:0.0: probe with driver spca505 failed with error -5
[ 1034.417016][T25487] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1034.484970][ T6215] usb 5-1: USB disconnect, device number 15
[ 1034.513013][T25487] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0)
[ 1034.542193][T25495] netlink: 'syz.3.8279': attribute type 3 has an invalid length.
[ 1034.582697][T25495] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8279'.
[ 1034.808973][T25499] netlink: 'syz.1.8282': attribute type 21 has an invalid length.
[ 1034.847295][T25499] netlink: 132 bytes leftover after parsing attributes in process `syz.1.8282'.
[ 1034.967351][T25506] netdevsim netdevsim3: loading /lib/firmware/. failed with error -22
[ 1034.997730][T25506] netdevsim netdevsim3: Direct firmware load for . failed with error -22
[ 1035.047350][T25506] netdevsim netdevsim3: Falling back to sysfs fallback for: .
[ 1035.162846][T25508] loop2: detected capacity change from 0 to 512
[ 1035.205960][T25508] EXT4-fs warning (device loop2): ext4_multi_mount_protect:292: Invalid MMP block in superblock
[ 1035.865065][T25494] loop5: detected capacity change from 0 to 32768
[ 1035.960182][T25494] XFS (loop5): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1035.961502][T25501] loop6: detected capacity change from 0 to 32768
[ 1036.054156][T25494] XFS (loop5): Ending clean mount
[ 1036.070576][T25501] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.8281 (25501)
[ 1036.096778][T25494] XFS (loop5): Quotacheck needed: Please wait.
[ 1036.169713][T25501] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1036.178816][T25494] XFS (loop5): Quotacheck: Done.
[ 1036.240298][T25501] BTRFS info (device loop6): using sha256 (sha256-lib) checksum algorithm
[ 1036.291771][T25539] netlink: 'syz.2.8292': attribute type 11 has an invalid length.
[ 1036.334201][T25539] netlink: 224 bytes leftover after parsing attributes in process `syz.2.8292'.
[ 1036.377894][T25551] netlink: 228 bytes leftover after parsing attributes in process `syz.1.8294'.
[ 1036.497192][T25501] BTRFS info (device loop6): enabling ssd optimizations
[ 1036.504186][T25501] BTRFS info (device loop6): turning on async discard
[ 1036.575372][ T6160] XFS (loop5): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1036.633694][T25501] BTRFS info (device loop6): enabling free space tree
[ 1036.753210][T25513] loop4: detected capacity change from 0 to 32768
[ 1036.799781][T25565] loop3: detected capacity change from 0 to 256
[ 1036.826995][T25513] (syz.4.8287,25513,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1036.875508][T25513] (syz.4.8287,25513,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1036.949912][T25569] xt_addrtype: both incoming and outgoing interface limitation cannot be selected
[ 1036.972223][T25565] FAT-fs (loop3): Directory bread(block 64) failed
[ 1037.020185][T25565] FAT-fs (loop3): Directory bread(block 65) failed
[ 1037.026856][T25565] FAT-fs (loop3): Directory bread(block 66) failed
[ 1037.092165][T25513] JBD2: Ignoring recovery information on journal
[ 1037.139967][T25567] loop2: detected capacity change from 0 to 4096
[ 1037.175883][T25565] FAT-fs (loop3): Directory bread(block 67) failed
[ 1037.200224][T25565] FAT-fs (loop3): Directory bread(block 68) failed
[ 1037.226968][T18491] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1037.265326][T25567] NILFS (loop2): mounting unchecked fs
[ 1037.290200][T25565] FAT-fs (loop3): Directory bread(block 69) failed
[ 1037.307855][T25567] NILFS (loop2): recovery required for readonly filesystem
[ 1037.343307][T25565] FAT-fs (loop3): Directory bread(block 70) failed
[ 1037.354576][T25567] NILFS (loop2): write access will be enabled during recovery
[ 1037.355674][T25513] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1037.373154][T25565] FAT-fs (loop3): Directory bread(block 71) failed
[ 1037.412173][T25565] FAT-fs (loop3): Directory bread(block 72) failed
[ 1037.436325][T25567] NILFS (loop2): invalid segment: Checksum error in super root
[ 1037.444466][T25565] FAT-fs (loop3): Directory bread(block 73) failed
[ 1037.453595][T25567] NILFS (loop2): error -22 while loading super root
[ 1037.582471][T25567] NILFS (loop2): mounting unchecked fs
[ 1037.629948][T25567] NILFS (loop2): invalid segment: Checksum error in super root
[ 1037.674657][T25567] NILFS (loop2): error -22 while loading super root
[ 1037.810148][   T30] audit: type=1800 audit(2000525268.568:142): pid=25565 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8296" name="file1" dev="loop3" ino=1048692 res=0 errno=0
[ 1037.990785][ T6163] ocfs2: Unmounting device (7,4) on (node local)
[ 1038.173873][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.195254][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.270868][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.322289][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.355046][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.415068][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.430552][T25596] loop3: detected capacity change from 0 to 512
[ 1038.468053][T25589] netlink: 'syz.2.8306': attribute type 6 has an invalid length.
[ 1038.562316][T25596] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1038.578272][T25596] ext4 filesystem being mounted at /1326/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1038.705336][T25595] loop5: detected capacity change from 0 to 4096
[ 1038.737437][T25595] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512).
[ 1038.970821][ T6151] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1039.130624][ T6237] usb 3-1: new high-speed USB device number 14 using dummy_hcd
[ 1039.340094][ T6237] usb 3-1: Using ep0 maxpacket: 32
[ 1039.360102][ T6237] usb 3-1: config 0 has an invalid interface number: 225 but max is 0
[ 1039.379324][ T6237] usb 3-1: config 0 has no interface number 0
[ 1039.415059][ T6237] usb 3-1: New USB device found, idVendor=0856, idProduct=ac30, bcdDevice=7e.79
[ 1039.440759][T25620] loop4: detected capacity change from 0 to 512
[ 1039.440999][ T6237] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1039.489247][ T6237] usb 3-1: Product: syz
[ 1039.514503][ T6237] usb 3-1: Manufacturer: syz
[ 1039.522258][T25620] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 1039.532006][ T6237] usb 3-1: SerialNumber: syz
[ 1039.596717][ T6237] usb 3-1: config 0 descriptor??
[ 1039.605745][T25620] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1039.663121][T25620] ext4 filesystem being mounted at /1315/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1039.830403][ T6237] mos7840 3-1:0.225: required endpoints missing
[ 1039.853018][T18938] usb 4-1: new high-speed USB device number 104 using dummy_hcd
[ 1039.905191][ T6163] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1040.037735][T18938] usb 4-1: Using ep0 maxpacket: 32
[ 1040.059476][T18938] usb 4-1: config 0 has an invalid interface number: 2 but max is 0
[ 1040.076410][ T6237] usb 3-1: USB disconnect, device number 14
[ 1040.082425][T18938] usb 4-1: config 0 has no interface number 0
[ 1040.082489][T18938] usb 4-1: config 0 interface 2 altsetting 2 has an endpoint descriptor with address 0xF3, changing to 0x83
[ 1040.142079][T18938] usb 4-1: config 0 interface 2 altsetting 2 endpoint 0x83 has invalid maxpacket 15813, setting to 1024
[ 1040.169007][T18938] usb 4-1: config 0 interface 2 altsetting 2 bulk endpoint 0x83 has invalid maxpacket 1024
[ 1040.199129][T18938] usb 4-1: config 0 interface 2 has no altsetting 0
[ 1040.219353][T18938] usb 4-1: New USB device found, idVendor=086a, idProduct=0003, bcdDevice=f0.3f
[ 1040.243714][T18938] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1040.253712][T18938] usb 4-1: Product: syz
[ 1040.257908][T18938] usb 4-1: Manufacturer: syz
[ 1040.272892][T18938] usb 4-1: SerialNumber: syz
[ 1040.292807][T18938] usb 4-1: config 0 descriptor??
[ 1040.300234][T25624] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1040.378340][T25618] loop6: detected capacity change from 0 to 32768
[ 1040.387858][  T932] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1040.412002][T25618] (syz.6.8317,25618,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1040.436663][T25618] (syz.6.8317,25618,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1040.468463][T25618] JBD2: Ignoring recovery information on journal
[ 1040.539774][T18938] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1040.571691][  T932] usb 5-1: Using ep0 maxpacket: 8
[ 1040.588583][  T932] usb 5-1: config 0 interface 0 altsetting 2 endpoint 0x2 has invalid maxpacket 198, setting to 64
[ 1040.607904][  T932] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1040.622780][  T932] usb 5-1: New USB device found, idVendor=0e41, idProduct=4142, bcdDevice=d4.6e
[ 1040.641160][T25618] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode.
[ 1040.655200][  T932] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1040.665574][  T932] usb 5-1: Product: syz
[ 1040.686084][  T932] usb 5-1: Manufacturer: syz
[ 1040.702873][T18938] usb 4-1: USB disconnect, device number 104
[ 1040.707638][  T932] usb 5-1: SerialNumber: syz
[ 1040.723340][  T932] usb 5-1: config 0 descriptor??
[ 1040.791782][  T932] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 found
[ 1040.958334][T25630] loop5: detected capacity change from 0 to 32768
[ 1041.002888][T25630] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.8323 (25630)
[ 1041.029766][  T932] snd_usb_toneport 5-1:0.0: Line 6 TonePort UX2 now disconnected
[ 1041.060852][T18491] ocfs2: Unmounting device (7,6) on (node local)
[ 1041.078406][  T932] snd_usb_toneport 5-1:0.0: probe with driver snd_usb_toneport failed with error -22
[ 1041.118155][T25630] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1041.177114][T25630] BTRFS info (device loop5): using sha256 (sha256-lib) checksum algorithm
[ 1041.257731][  T932] usb 5-1: USB disconnect, device number 16
[ 1041.502186][T25630] BTRFS info (device loop5): enabling ssd optimizations
[ 1041.533111][T25630] BTRFS info (device loop5): turning on async discard
[ 1041.539936][T25630] BTRFS info (device loop5): enabling free space tree
[ 1041.835547][T25670] loop1: detected capacity change from 0 to 4096
[ 1041.893761][T25670] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1041.981600][ T6160] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1041.986238][T25670] ntfs3(loop1): ino=19, mi_enum_attr
[ 1042.044014][T25670] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1042.207974][T25670] ntfs3(loop1): failed to convert "c46c" to macgaelic
[ 1042.290544][T25670] ntfs3(loop1): ino=20, mi_enum_attr
[ 1042.912176][ T6215] usb 4-1: new high-speed USB device number 105 using dummy_hcd
[ 1043.097476][ T6215] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b
[ 1043.126704][ T6215] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1043.173254][ T6215] usb 4-1: config 0 descriptor??
[ 1043.340852][T25714] validate_nla: 47 callbacks suppressed
[ 1043.340880][T25714] netlink: 'syz.4.8353': attribute type 9 has an invalid length.
[ 1043.628052][ T6215] ath6kl: Failed to submit usb control message: -71
[ 1043.645592][ T6215] ath6kl: unable to send the bmi data to the device: -71
[ 1043.677871][ T6215] ath6kl: Unable to send get target info: -71
[ 1043.717642][ T6215] ath6kl: Failed to init ath6kl core: -71
[ 1043.772805][ T6215] ath6kl_usb 4-1:0.0: probe with driver ath6kl_usb failed with error -71
[ 1043.833349][ T6215] usb 4-1: USB disconnect, device number 105
[ 1043.999672][T25736] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1044.257021][T25742] loop6: detected capacity change from 0 to 4096
[ 1044.441235][ T6215] usb 6-1: new high-speed USB device number 9 using dummy_hcd
[ 1044.693847][ T6215] usb 6-1: Using ep0 maxpacket: 8
[ 1044.714068][ T6215] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1044.754997][ T6215] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xBE, changing to 0x8E
[ 1044.805942][ T6215] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has an invalid bInterval 0, changing to 7
[ 1044.848542][ T6215] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x8E has invalid wMaxPacketSize 0
[ 1044.879648][ T6215] usb 6-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3
[ 1044.908656][ T6215] usb 6-1: New USB device found, idVendor=10c5, idProduct=819a, bcdDevice=e4.46
[ 1044.922435][ T6237] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1044.943837][ T6215] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=35
[ 1044.973622][ T6215] usb 6-1: Product: syz
[ 1044.984392][ T6215] usb 6-1: Manufacturer: syz
[ 1044.997258][ T6215] usb 6-1: SerialNumber: syz
[ 1045.017894][ T6215] usb 6-1: config 0 descriptor??
[ 1045.146405][ T6237] usb 5-1: Using ep0 maxpacket: 16
[ 1045.148675][T25741] loop2: detected capacity change from 0 to 32768
[ 1045.180818][ T6237] usb 5-1: config 0 has an invalid interface number: 161 but max is 0
[ 1045.186941][T25741] ea_get: invalid extended attribute
[ 1045.189042][ T6237] usb 5-1: config 0 has no interface number 0
[ 1045.189085][ T6237] usb 5-1: config 0 interface 161 has no altsetting 0
[ 1045.249537][ T6237] usb 5-1: New USB device found, idVendor=05dc, idProduct=0001, bcdDevice= 0.01
[ 1045.270057][ T6215] radio-si470x 6-1:0.0: DeviceID=0xd722 ChipID=0x76b4
[ 1045.286184][ T6237] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1045.314933][ T6237] usb 5-1: Product: syz
[ 1045.329538][ T6237] usb 5-1: Manufacturer: syz
[ 1045.341816][ T6237] usb 5-1: SerialNumber: syz
[ 1045.369502][ T6237] usb 5-1: config 0 descriptor??
[ 1045.390468][ T6237] ums-jumpshot 5-1:0.161: USB Mass Storage device detected
[ 1045.444162][ T6237] ums-jumpshot 5-1:0.161: Quirks match for vid 05dc pid 0001: 2
[ 1045.484735][ T6215] radio-si470x 6-1:0.0: si470x_get_report: usb_control_msg returned -71
[ 1045.512065][ T6215] radio-si470x 6-1:0.0: si470x_get_scratch: si470x_get_report returned -71
[ 1045.571886][ T6215] radio-si470x 6-1:0.0: probe with driver radio-si470x failed with error -5
[ 1045.598268][ T6215] usb 6-1: USB disconnect, device number 9
[ 1045.702133][ T6237] usb 5-1: USB disconnect, device number 17
[ 1045.839372][T25774] overlayfs: option "index=on" is useless in a non-upper mount, ignore
[ 1045.871580][T25774] overlayfs: missing 'lowerdir'
[ 1045.948706][T25776] loop1: detected capacity change from 0 to 256
[ 1045.970405][T25756] loop3: detected capacity change from 0 to 32768
[ 1046.038334][T25776] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 1046.562662][T25794] loop2: detected capacity change from 0 to 256
[ 1046.678200][T25794] FAT-fs (loop2): Directory bread(block 64) failed
[ 1046.719263][T25794] FAT-fs (loop2): Directory bread(block 65) failed
[ 1046.725904][T25794] FAT-fs (loop2): Directory bread(block 66) failed
[ 1046.785734][T25794] FAT-fs (loop2): Directory bread(block 67) failed
[ 1046.814428][T25794] FAT-fs (loop2): Directory bread(block 68) failed
[ 1046.849987][T25794] FAT-fs (loop2): Directory bread(block 69) failed
[ 1046.856609][T25794] FAT-fs (loop2): Directory bread(block 70) failed
[ 1046.903773][T25794] FAT-fs (loop2): Directory bread(block 71) failed
[ 1046.938913][T25794] FAT-fs (loop2): Directory bread(block 72) failed
[ 1046.990214][T25794] FAT-fs (loop2): Directory bread(block 73) failed
[ 1047.226107][   T30] audit: type=1800 audit(2000525277.375:143): pid=25794 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.8390" name="file1" dev="loop2" ino=1048694 res=0 errno=0
[ 1047.589713][T25818] loop1: detected capacity change from 0 to 1024
[ 1047.630191][T25818] EXT4-fs (loop1): ext4_check_descriptors: Checksum for group 0 failed (32298!=35945)
[ 1047.686214][T25818] EXT4-fs (loop1): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 1047.727338][T25818] EXT4-fs (loop1): revision level too high, forcing read-only mode
[ 1047.745164][T25780] loop6: detected capacity change from 0 to 32768
[ 1047.765473][T25818] EXT4-fs (loop1): orphan cleanup on readonly fs
[ 1047.775490][T25821] virt_wifi0 speed is unknown, defaulting to 1000
[ 1047.834468][T25818] EXT4-fs error (device loop1): ext4_read_inode_bitmap:166: comm syz.1.8403: Inode bitmap for bg 0 marked uninitialized
[ 1047.876865][T25818] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback.
[ 1047.937487][T25780] ERROR: (device loop6): dbAllocNext: Corrupt dmap page
[ 1047.937487][T25780] 
[ 1048.007757][T25780] ERROR: (device loop6): remounting filesystem as read-only
[ 1048.015476][T25818] EXT4-fs (loop1): ext4_remount: Checksum for group 0 failed (32298!=35945)
[ 1048.043368][T25780] ialloc: diAlloc returned -5!
[ 1048.206421][T25831] binder: 25829:25831 ioctl 400c620e 200000000140 returned -22
[ 1048.313294][ T6150] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1048.473657][T25835] loop5: detected capacity change from 0 to 256
[ 1048.508058][T25835] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x364b98da, utbl_chksum : 0xe619d30d)
[ 1048.612575][T25835] exFAT-fs (loop5): error, in sector 160, dentry 11 should be unused, but 0xc1
[ 1048.640405][T25835] exFAT-fs (loop5): Filesystem has been set read-only
[ 1050.283887][T25890] loop2: detected capacity change from 0 to 512
[ 1050.437108][T25890] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1050.452047][T25898] loop1: detected capacity change from 0 to 64
[ 1050.627644][T25890] EXT4-fs (loop2): Couldn't remount RDWR because of unprocessed orphan inode list.  Please umount/remount instead
[ 1050.973314][ T6146] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1051.040144][ T6313] usb 4-1: new high-speed USB device number 106 using dummy_hcd
[ 1051.246033][ T6313] usb 4-1: Using ep0 maxpacket: 8
[ 1051.275768][ T6313] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1051.327159][ T6313] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1051.353460][ T6313] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1051.371715][ T6245] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[ 1051.393170][ T6313] usb 4-1: Product: syz
[ 1051.397457][ T6313] usb 4-1: Manufacturer: syz
[ 1051.427015][ T6313] usb 4-1: SerialNumber: syz
[ 1051.463196][T25929] netlink: 'syz.6.8455': attribute type 10 has an invalid length.
[ 1051.489527][T25929] netlink: 168 bytes leftover after parsing attributes in process `syz.6.8455'.
[ 1051.555977][ T6245] usb 2-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1051.592633][ T6245] usb 2-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1051.618155][ T6245] usb 2-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1051.627301][ T6245] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1051.682288][T25916] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22
[ 1051.743652][ T6245] usb 2-1: Quirk or no altset; falling back to MIDI 1.0
[ 1051.750901][ T6313] usb 4-1: Invalid connection information received from device
[ 1052.050587][ T6245] usb 4-1: USB disconnect, device number 106
[ 1052.250780][ T6313] usb 2-1: USB disconnect, device number 13
[ 1052.264972][T25950] netlink: 8 bytes leftover after parsing attributes in process `syz.5.8462'.
[ 1052.318494][T25950] netlink: 12 bytes leftover after parsing attributes in process `syz.5.8462'.
[ 1052.517417][T25957] loop4: detected capacity change from 0 to 512
[ 1052.564351][T25957] ext4: Bad value for 'commit'
[ 1052.736220][ T1297] ieee802154 phy1 wpan1: encryption failed: -22
[ 1052.891410][ T6313] usb 5-1: new full-speed USB device number 18 using dummy_hcd
[ 1052.895062][T25972] PKCS7: Unknown OID: [4] 0.0
[ 1052.923382][T25972] PKCS7: Only support pkcs7_signedData type
[ 1053.107687][ T6313] usb 5-1: config 8 has an invalid interface number: 223 but max is 0
[ 1053.116032][ T6237] usb 3-1: new high-speed USB device number 15 using dummy_hcd
[ 1053.129664][T25976] loop1: detected capacity change from 0 to 1764
[ 1053.145728][ T6313] usb 5-1: config 8 contains an unexpected descriptor of type 0x2, skipping
[ 1053.176385][ T6313] usb 5-1: config 8 has an invalid descriptor of length 255, skipping remainder of the config
[ 1053.200891][ T6313] usb 5-1: config 8 has no interface number 0
[ 1053.210758][ T6313] usb 5-1: config 8 interface 223 altsetting 0 endpoint 0x7 has invalid maxpacket 9472, setting to 64
[ 1053.222040][T25978] openvswitch: netlink: Unknown key attributes 2
[ 1053.240715][ T6313] usb 5-1: config 8 interface 223 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 1053.256144][T25980] netlink: 'syz.3.8487': attribute type 39 has an invalid length.
[ 1053.277910][ T6313] usb 5-1: New USB device found, idVendor=a6da, idProduct=7458, bcdDevice=2d.4d
[ 1053.294730][T25982] loop5: detected capacity change from 0 to 256
[ 1053.298646][ T6313] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1053.308329][ T6237] usb 3-1: config 220 has an invalid interface number: 76 but max is 2
[ 1053.328090][ T6237] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1053.338730][ T6313] usb 5-1: Product: syz
[ 1053.343594][ T6313] usb 5-1: Manufacturer: syz
[ 1053.368566][ T6313] usb 5-1: SerialNumber: syz
[ 1053.380908][T25982] FAT-fs (loop5): Directory bread(block 64) failed
[ 1053.397716][ T6237] usb 3-1: config 220 has no interface number 2
[ 1053.404900][T25982] FAT-fs (loop5): Directory bread(block 65) failed
[ 1053.411787][ T6237] usb 3-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1053.429792][T25982] FAT-fs (loop5): Directory bread(block 66) failed
[ 1053.438480][T25982] FAT-fs (loop5): Directory bread(block 67) failed
[ 1053.445085][ T6237] usb 3-1: config 220 interface 0 has no altsetting 0
[ 1053.452772][T25982] FAT-fs (loop5): Directory bread(block 68) failed
[ 1053.467892][ T6237] usb 3-1: config 220 interface 76 has no altsetting 0
[ 1053.474963][T25982] FAT-fs (loop5): Directory bread(block 69) failed
[ 1053.486057][ T6237] usb 3-1: config 220 interface 1 has no altsetting 0
[ 1053.501788][T25982] FAT-fs (loop5): Directory bread(block 70) failed
[ 1053.515871][T25982] FAT-fs (loop5): Directory bread(block 71) failed
[ 1053.540289][ T6237] usb 3-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1053.560389][ T6237] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1053.569296][T25982] FAT-fs (loop5): Directory bread(block 72) failed
[ 1053.591309][T25982] FAT-fs (loop5): Directory bread(block 73) failed
[ 1053.597912][ T6237] usb 3-1: Product: syz
[ 1053.606972][ T6237] usb 3-1: Manufacturer: syz
[ 1053.642585][ T6237] usb 3-1: SerialNumber: syz
[ 1053.659674][ T6313] usb 5-1: USB disconnect, device number 18
[ 1053.824733][   T30] audit: type=1800 audit(2000525283.546:144): pid=25982 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.8475" name="file1" dev="loop5" ino=1048698 res=0 errno=0
[ 1053.917845][ T6237] usb 3-1: selecting invalid altsetting 0
[ 1053.951664][ T6237] uvcvideo 3-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1053.981951][ T6237] uvcvideo 3-1:220.0: No valid video chain found.
[ 1054.032210][ T6237] usb 3-1: selecting invalid altsetting 0
[ 1054.058125][ T6237] usbtest 3-1:220.1: probe with driver usbtest failed with error -22
[ 1054.086243][ T6237] usb 3-1: USB disconnect, device number 15
[ 1054.285811][T26002] loop6: detected capacity change from 0 to 512
[ 1054.309179][T26003] xt_hashlimit: size too large, truncated to 1048576
[ 1054.364434][T26002] FAT-fs (loop6): Volume was not properly unmounted. Some data may be corrupt. Please run fsck.
[ 1055.197837][T26019] loop5: detected capacity change from 0 to 4096
[ 1055.471899][T25996] loop1: detected capacity change from 0 to 32768
[ 1055.542969][T25996] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.8482 (25996)
[ 1055.619585][T25996] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1055.681828][T25996] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[ 1055.751170][T26044] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8504'.
[ 1055.772768][T26044] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8504'.
[ 1055.792872][T26044] netlink: 3 bytes leftover after parsing attributes in process `syz.4.8504'.
[ 1055.907596][T25996] BTRFS info (device loop1): enabling ssd optimizations
[ 1055.914589][T25996] BTRFS info (device loop1): turning on async discard
[ 1056.009822][T25996] BTRFS info (device loop1): enabling free space tree
[ 1056.113800][T26066] loop5: detected capacity change from 0 to 2048
[ 1056.154838][T26066] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1056.250879][T26075] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1056.251233][T26066] syz.5.8510: attempt to access beyond end of device
[ 1056.251233][T26066] loop5: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 1056.379396][ T6150] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1056.480613][T26066] NILFS error (device loop5): nilfs_check_folio: bad entry in directory #2: directory entry across blocks - offset=104, inode=16, rec_len=1816, name_len=0
[ 1056.555115][T26066] Remounting filesystem read-only
[ 1056.596058][T26080] loop2: detected capacity change from 0 to 24
[ 1056.636078][T26080] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 1056.655050][T26080] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1057.564487][T26107] netlink: 'syz.2.8530': attribute type 21 has an invalid length.
[ 1057.606962][T26107] netlink: 128 bytes leftover after parsing attributes in process `syz.2.8530'.
[ 1057.681902][T26107] netlink: 'syz.2.8530': attribute type 4 has an invalid length.
[ 1057.711586][T26107] netlink: 'syz.2.8530': attribute type 5 has an invalid length.
[ 1057.712431][T26115] netlink: 'syz.6.8533': attribute type 21 has an invalid length.
[ 1057.743862][T26107] netlink: 3 bytes leftover after parsing attributes in process `syz.2.8530'.
[ 1057.803615][T26115] netlink: 132 bytes leftover after parsing attributes in process `syz.6.8533'.
[ 1058.100239][T26125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8538'.
[ 1058.129837][T26125] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8538'.
[ 1058.926326][T26109] loop4: detected capacity change from 0 to 32768
[ 1058.951046][T26109] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.8529 (26109)
[ 1059.033911][T26109] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1059.075694][T26109] BTRFS info (device loop4): using sha256 (sha256-lib) checksum algorithm
[ 1059.425737][T26109] BTRFS info (device loop4): enabling ssd optimizations
[ 1059.443674][T26109] BTRFS info (device loop4): turning on async discard
[ 1059.451373][T26109] BTRFS info (device loop4): enabling free space tree
[ 1059.708110][ T6163] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1060.111847][T26204] x_tables: ip_tables: REDIRECT target: used from hooks POSTROUTING, but only usable from PREROUTING/OUTPUT
[ 1060.289412][T26208] loop2: detected capacity change from 0 to 1764
[ 1060.465277][T26208] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1060.756145][T26218] loop5: detected capacity change from 0 to 2048
[ 1060.796966][T26218] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1061.008040][ T6237] usb 5-1: new full-speed USB device number 19 using dummy_hcd
[ 1061.211210][ T6237] usb 5-1: config 1 has an invalid descriptor of length 106, skipping remainder of the config
[ 1061.221551][ T6237] usb 5-1: config 1 interface 0 altsetting 10 has 0 endpoint descriptors, different from the interface descriptor's value: 2
[ 1061.228429][T26236] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1061.250339][T26234] rdma_rxe: rxe_newlink: rxe creation allowed on top of a real device only
[ 1061.280752][ T6237] usb 5-1: config 1 interface 0 has no altsetting 0
[ 1061.314650][ T6237] usb 5-1: string descriptor 0 read error: -22
[ 1061.321234][ T6237] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1061.359377][ T6237] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1061.388596][T26240] loop2: detected capacity change from 0 to 512
[ 1061.396296][T26238] loop6: detected capacity change from 0 to 1024
[ 1061.418309][T26240] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode
[ 1061.489453][T26240] EXT4-fs (loop2): 1 truncate cleaned up
[ 1061.494535][ T6237] cdc_ether 5-1:1.0: skipping garbage
[ 1061.518748][ T6237] cdc_ether 5-1:1.0: invalid descriptor buffer length
[ 1061.533053][ T6237] cdc_ether 5-1:1.0: probe with driver cdc_ether failed with error -22
[ 1061.574085][T26240] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1061.645847][T17502] hfsplus: b-tree write err: -5, ino 4
[ 1061.729225][T26248] netlink: 'syz.5.8590': attribute type 11 has an invalid length.
[ 1061.784956][ T6237] usb 5-1: USB disconnect, device number 19
[ 1061.905774][ T6146] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1062.135025][T26263] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8594'.
[ 1062.174014][T26263] netlink: 24 bytes leftover after parsing attributes in process `syz.2.8594'.
[ 1062.323675][T26267] netlink: 'syz.5.8599': attribute type 3 has an invalid length.
[ 1062.344939][T26267] netlink: 132 bytes leftover after parsing attributes in process `syz.5.8599'.
[ 1062.388527][T26268] x_tables: ip_tables: osf match: only valid for protocol 6
[ 1062.729722][T26281] netlink: 'syz.4.8604': attribute type 39 has an invalid length.
[ 1062.922623][T26288] loop1: detected capacity change from 0 to 256
[ 1063.020414][T26288] FAT-fs (loop1): Directory bread(block 64) failed
[ 1063.034312][T26288] FAT-fs (loop1): Directory bread(block 65) failed
[ 1063.073582][T26288] FAT-fs (loop1): Directory bread(block 66) failed
[ 1063.093736][T26288] FAT-fs (loop1): Directory bread(block 67) failed
[ 1063.100387][T26288] FAT-fs (loop1): Directory bread(block 68) failed
[ 1063.155261][T26288] FAT-fs (loop1): Directory bread(block 69) failed
[ 1063.179220][T26288] FAT-fs (loop1): Directory bread(block 70) failed
[ 1063.185790][T26288] FAT-fs (loop1): Directory bread(block 71) failed
[ 1063.236309][T26288] FAT-fs (loop1): Directory bread(block 72) failed
[ 1063.242890][T26288] FAT-fs (loop1): Directory bread(block 73) failed
[ 1063.471591][   T30] audit: type=1800 audit(2000525292.560:145): pid=26288 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.8607" name="file1" dev="loop1" ino=1048699 res=0 errno=0
[ 1063.508283][T26304] usb usb8: usbfs: interface 0 claimed by hub while 'syz.3.8617' sets config #0
[ 1063.899901][T26316] xt_policy: too many policy elements
[ 1063.979604][T26317] loop1: detected capacity change from 0 to 2048
[ 1064.031407][T26317] NILFS (loop1): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1064.091836][T26320] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1064.127942][T26317] NILFS (loop1): failed to count free inodes: err=-34
[ 1064.302615][ T6237] usb 6-1: new high-speed USB device number 10 using dummy_hcd
[ 1064.310438][T26294] loop2: detected capacity change from 0 to 32768
[ 1064.331977][ T6150] NILFS (loop1): DAT doesn't have a block to manage vblocknr = 147
[ 1064.365730][ T6150] NILFS error (device loop1): nilfs_bmap_truncate: broken bmap (inode number=15)
[ 1064.416243][T26294] JBD2: Ignoring recovery information on journal
[ 1064.426681][ T6150] Remounting filesystem read-only
[ 1064.441781][ T6150] NILFS (loop1): error -5 truncating bmap (ino=15)
[ 1064.499320][ T6237] usb 6-1: Using ep0 maxpacket: 32
[ 1064.532301][ T6237] usb 6-1: config 0 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16
[ 1064.535972][ T6150] NILFS (loop1): disposed unprocessed dirty file(s) when detaching log writer
[ 1064.567528][T26294] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode.
[ 1064.607695][ T6237] usb 6-1: New USB device found, idVendor=06d0, idProduct=0622, bcdDevice=3f.5a
[ 1064.630762][ T6237] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1064.653135][ T6237] usb 6-1: Product: syz
[ 1064.688958][ T6237] usb 6-1: Manufacturer: syz
[ 1064.693609][ T6237] usb 6-1: SerialNumber: syz
[ 1064.714237][T26336] loop3: detected capacity change from 0 to 256
[ 1064.763723][ T6237] usb 6-1: config 0 descriptor??
[ 1064.765398][T26294] OCFS2: ERROR (device loop2): ocfs2_claim_suballoc_bits: Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[ 1064.773292][T26319] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1064.855200][T26294] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1064.855226][T26294] OCFS2: File system is now read-only.
[ 1064.855244][T26294] (syz.2.8612,26294,0):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[ 1064.855291][T26294] (syz.2.8612,26294,0):ocfs2_claim_metadata:2088 ERROR: status = -30
[ 1064.855334][T26294] (syz.2.8612,26294,0):ocfs2_claim_metadata:2101 ERROR: status = -30
[ 1064.855377][T26294] (syz.2.8612,26294,0):ocfs2_dx_dir_attach_index:2336 ERROR: status = -30
[ 1064.855421][T26294] (syz.2.8612,26294,0):ocfs2_expand_inline_dir:3029 ERROR: status = -30
[ 1064.855880][T26294] (syz.2.8612,26294,0):ocfs2_extend_dir:3211 ERROR: status = -30
[ 1064.855959][T26294] (syz.2.8612,26294,0):ocfs2_prepare_dir_for_insert:4316 ERROR: status = -30
[ 1064.856003][T26294] (syz.2.8612,26294,0):ocfs2_mknod:301 ERROR: status = -30
[ 1064.856046][T26294] (syz.2.8612,26294,0):ocfs2_mknod:505 ERROR: status = -30
[ 1064.856086][T26294] (syz.2.8612,26294,0):ocfs2_mkdir:661 ERROR: status = -30
[ 1064.899196][T26336] FAT-fs (loop3): Directory bread(block 64) failed
[ 1064.899247][T26336] FAT-fs (loop3): Directory bread(block 65) failed
[ 1064.899351][T26336] FAT-fs (loop3): Directory bread(block 66) failed
[ 1064.899393][T26336] FAT-fs (loop3): Directory bread(block 67) failed
[ 1064.899499][T26336] FAT-fs (loop3): Directory bread(block 68) failed
[ 1064.899541][T26336] FAT-fs (loop3): Directory bread(block 69) failed
[ 1064.899645][T26336] FAT-fs (loop3): Directory bread(block 70) failed
[ 1064.899686][T26336] FAT-fs (loop3): Directory bread(block 71) failed
[ 1064.899790][T26336] FAT-fs (loop3): Directory bread(block 72) failed
[ 1064.899831][T26336] FAT-fs (loop3): Directory bread(block 73) failed
[ 1064.910369][T26340] loop6: detected capacity change from 0 to 128
[ 1065.106203][   T30] audit: type=1326 audit(2000525294.093:146): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26341 comm="syz.4.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1065.107101][ T6146] ocfs2: Unmounting device (7,2) on (node local)
[ 1065.121022][T26319] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1065.125670][   T30] audit: type=1326 audit(2000525294.093:147): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26341 comm="syz.4.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1065.125748][   T30] audit: type=1326 audit(2000525294.093:148): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26341 comm="syz.4.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1065.125824][   T30] audit: type=1326 audit(2000525294.093:149): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26341 comm="syz.4.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1065.125897][   T30] audit: type=1326 audit(2000525294.093:150): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=26341 comm="syz.4.8635" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1065.187857][ T6237] net1080 6-1:0.0 usb0: register 'net1080' at usb-dummy_hcd.5-1, NetChip TurboCONNECT, e2:95:74:50:d7:71
[ 1065.379085][ T6237] usb 6-1: USB disconnect, device number 10
[ 1065.381402][ T6237] net1080 6-1:0.0 usb0: unregister 'net1080' usb-dummy_hcd.5-1, NetChip TurboCONNECT
[ 1065.457253][T26348] xt_bpf: check failed: parse error
[ 1065.543244][T26347] macvtap0: refused to change device tx_queue_len
[ 1066.312836][ T6237] usb 3-1: new low-speed USB device number 16 using dummy_hcd
[ 1066.507619][ T6237] usb 3-1: config 0 has an invalid interface number: 55 but max is 0
[ 1066.515781][ T6237] usb 3-1: config 0 has no interface number 0
[ 1066.548829][ T6237] usb 3-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping
[ 1066.590971][ T6237] usb 3-1: config 0 interface 55 altsetting 0 endpoint 0xE has invalid maxpacket 32, setting to 8
[ 1066.620375][ T6237] usb 3-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B
[ 1066.662939][ T6237] usb 3-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 10
[ 1066.719264][ T6237] usb 3-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0
[ 1066.751820][ T6237] usb 3-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2
[ 1066.813766][ T6237] usb 3-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a
[ 1066.816145][T26376] loop6: detected capacity change from 0 to 4096
[ 1066.836915][ T6237] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1066.880911][T26376] EXT4-fs: Ignoring removed nomblk_io_submit option
[ 1066.909181][ T6237] usb 3-1: config 0 descriptor??
[ 1066.919277][T26376] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1066.933973][T26358] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1066.982761][T26376] [EXT4 FS bs=4096, gc=1, bpg=524288, ipg=32, mo=a842c018, mo2=0003]
[ 1066.985710][ T6237] ldusb 3-1:0.55: LD USB Device #0 now attached to major 180 minor 0
[ 1067.002947][T26376] System zones: 0-5
[ 1067.076029][T26376] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1067.199638][T26396] loop1: detected capacity change from 0 to 1024
[ 1067.210994][ T6230] usb 3-1: USB disconnect, device number 16
[ 1067.234398][ T6230] ldusb 3-1:0.55: LD USB Device #0 now disconnected
[ 1067.327877][T26396] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1067.405331][T18491] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1067.525881][T26405] macvlan0: entered allmulticast mode
[ 1067.531337][T26405] veth1_vlan: entered allmulticast mode
[ 1067.649785][ T6313] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[ 1067.839463][ T6313] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1067.862384][ T6313] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1067.936857][ T6313] usb 2-1: too many endpoints for config 1 interface 1 altsetting 125: 83, using maximum allowed: 30
[ 1067.959974][ T6313] usb 2-1: config 1 interface 1 altsetting 125 has 0 endpoint descriptors, different from the interface descriptor's value: 83
[ 1067.992000][ T6313] usb 2-1: config 1 interface 1 has no altsetting 0
[ 1068.013688][ T6313] usb 2-1: New USB device found, idVendor=05a5, idProduct=a4a1, bcdDevice= 0.40
[ 1068.022762][ T6313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1068.060433][ T6313] usb 2-1: Product: syz
[ 1068.088062][ T6313] usb 2-1: Manufacturer: syz
[ 1068.093425][ T6313] usb 2-1: SerialNumber: syz
[ 1068.138527][ T6313] cdc_acm 2-1:1.0: probe with driver cdc_acm failed with error -22
[ 1068.456048][ T6313] usb 2-1: USB disconnect, device number 14
[ 1068.899076][T26436] loop3: detected capacity change from 0 to 4096
[ 1068.952230][T26436] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1069.164690][T26436] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1069.173145][ T6150] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1069.246948][T26436] ntfs3(loop3): mft corrupted
[ 1069.264757][T26436] ntfs3(loop3): Failed to load $Extend (-22).
[ 1069.270872][T26436] ntfs3(loop3): Failed to initialize $Extend.
[ 1069.408435][T26436] ntfs3(loop3): ino=1e, mi_enum_attr
[ 1069.413801][T26436] ntfs3(loop3): ino=1e, mi_enum_attr
[ 1070.266751][T26482] netlink: 12 bytes leftover after parsing attributes in process `syz.3.8703'.
[ 1070.957354][T26507] openvswitch: netlink: Flow key attribute not present in set flow.
[ 1071.245690][T26518] loop2: detected capacity change from 0 to 22
[ 1071.252965][T26518] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 1071.298598][T26518] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1071.328552][T26521] exFAT-fs (nullb0): mounting with "discard" option, but the device does not support discard
[ 1071.367662][T26521] exFAT-fs (nullb0): invalid boot record signature
[ 1071.392438][T26521] exFAT-fs (nullb0): failed to read boot sector
[ 1071.414064][T26521] exFAT-fs (nullb0): failed to recognize exfat type
[ 1071.765109][T26538] netlink: 'syz.2.8728': attribute type 1 has an invalid length.
[ 1071.820941][T26540] loop6: detected capacity change from 0 to 512
[ 1071.875556][T26540] EXT4-fs (loop6): Test dummy encryption mode enabled
[ 1071.928240][T26540] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended
[ 1072.022105][T26548] netlink: 'syz.5.8738': attribute type 1 has an invalid length.
[ 1072.024550][T26540] EXT4-fs (loop6): Errors on filesystem, clearing orphan list.
[ 1072.031154][T26548] netlink: 228 bytes leftover after parsing attributes in process `syz.5.8738'.
[ 1072.073382][T26540] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1072.302927][T26558] netlink: 140 bytes leftover after parsing attributes in process `syz.5.8740'.
[ 1072.313583][T18491] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1072.345195][ T6215] usb 4-1: new high-speed USB device number 107 using dummy_hcd
[ 1072.549122][ T6215] usb 4-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1072.570349][ T6215] usb 4-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1072.596335][ T6215] usb 4-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1072.628637][ T6215] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1072.673465][T26571] tmpfs: Bad value for 'nr_blocks'
[ 1072.684670][T26553] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1072.725892][ T6215] usb 4-1: Quirk or no altset; falling back to MIDI 1.0
[ 1073.087378][T26582] loop2: detected capacity change from 0 to 128
[ 1073.089924][ T6245] usb 4-1: USB disconnect, device number 107
[ 1073.110436][T26582] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=256, location=256
[ 1073.168928][T26582] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1074.464790][T26568] loop6: detected capacity change from 0 to 32768
[ 1074.503597][T26568] gfs2: fsid=syz:syz: Trying to join cluster "lock_nolock", "syz:syz"
[ 1074.542037][T26568] gfs2: fsid=syz:syz: Now mounting FS (format 1801)...
[ 1074.582364][T26568] gfs2: fsid=syz:syz.0: journal 0 mapped with 3 extents in 0ms
[ 1074.607640][ T6230] gfs2: fsid=syz:syz.0: jid=0, already locked for use
[ 1074.615375][ T6230] gfs2: fsid=syz:syz.0: jid=0: Looking at journal...
[ 1074.730405][ T6215] usb 3-1: new full-speed USB device number 17 using dummy_hcd
[ 1074.893500][T26638] netlink: 'syz.3.8779': attribute type 19 has an invalid length.
[ 1074.923874][ T6215] usb 3-1: config 27 has an invalid descriptor of length 140, skipping remainder of the config
[ 1074.927870][ T6230] gfs2: fsid=syz:syz.0: jid=0: Journal head lookup took 292ms
[ 1074.957140][ T6215] usb 3-1: config 27 interface 0 altsetting 0 has an endpoint descriptor with address 0x78, changing to 0x8
[ 1074.976223][ T6230] gfs2: fsid=syz:syz.0: jid=0: Done
[ 1074.987299][T26568] gfs2: fsid=syz:syz.0: first mount done, others may mount
[ 1075.012135][ T6215] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8 has invalid maxpacket 59329, setting to 64
[ 1075.088363][ T6215] usb 3-1: config 27 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1075.126462][ T6215] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1075.142907][ T6215] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1075.182509][T26618] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1075.257662][ T6215] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1075.304249][ T6215] usb 3-1: invalid MIDI in EP 0
[ 1075.337320][T26568] gfs2: fsid=syz:syz.0: found 1 quota changes
[ 1075.413376][ T6313] usb 2-1: new high-speed USB device number 15 using dummy_hcd
[ 1075.584927][ T6215] snd-usb-audio 3-1:27.0: probe with driver snd-usb-audio failed with error -22
[ 1075.589836][ T6313] usb 2-1: Using ep0 maxpacket: 8
[ 1075.635732][ T6215] usb 3-1: USB disconnect, device number 17
[ 1075.659022][ T6313] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1075.727805][ T6313] usb 2-1: New USB device found, idVendor=05e1, idProduct=0893, bcdDevice=fd.5b
[ 1075.768484][ T6313] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1075.802617][ T6313] usb 2-1: Product: syz
[ 1075.806833][ T6313] usb 2-1: Manufacturer: syz
[ 1075.835213][ T6313] usb 2-1: SerialNumber: syz
[ 1075.856821][ T6313] usb 2-1: config 0 descriptor??
[ 1075.909690][ T6313] gspca_main: stk014-2.14.0 probing 05e1:0893
[ 1075.915894][ T6313] usb 2-1: selecting invalid altsetting 1
[ 1076.075170][T26656] random: crng reseeded on system resumption
[ 1076.097743][ T6313] gspca_stk014: init reg: 0x00
[ 1076.111312][ T6313] stk014 2-1:0.0: probe with driver stk014 failed with error -5
[ 1076.284028][T26637] loop5: detected capacity change from 0 to 32768
[ 1076.331657][ T6215] usb 2-1: USB disconnect, device number 15
[ 1076.406351][T26637] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1076.480962][T26637] (syz.5.8778,26637,1):ocfs2_symlink:2080 ERROR: status = -2
[ 1076.534557][T26666] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8791'.
[ 1076.616280][ T6160] (syz-executor,6160,1):ocfs2_inode_is_valid_to_delete:928 ERROR: Skipping delete of root inode.
[ 1076.662447][ T6160] ocfs2: Unmounting device (7,5) on (node local)
[ 1077.648619][T26663] loop4: detected capacity change from 0 to 32768
[ 1077.714989][T26695] netlink: 52 bytes leftover after parsing attributes in process `syz.2.8804'.
[ 1077.758873][T26663] ocfs2: Mounting device (7,4) on (node local, slot 0) with writeback data mode.
[ 1077.810166][T26699] netlink: 408 bytes leftover after parsing attributes in process `syz.1.8805'.
[ 1077.906499][ T6215] usb 7-1: new high-speed USB device number 21 using dummy_hcd
[ 1078.005571][ T6163] ocfs2: Unmounting device (7,4) on (node local)
[ 1078.092872][ T6215] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 16
[ 1078.122739][ T6215] usb 7-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 64
[ 1078.160578][ T6215] usb 7-1: New USB device found, idVendor=0a46, idProduct=9621, bcdDevice=4f.32
[ 1078.195147][ T6215] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1078.203226][ T6215] usb 7-1: Product: syz
[ 1078.248590][ T6215] usb 7-1: Manufacturer: syz
[ 1078.260145][ T6215] usb 7-1: SerialNumber: syz
[ 1078.287593][ T6215] usb 7-1: config 0 descriptor??
[ 1078.315292][T26693] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1078.322609][T26693] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1078.464335][T26715] netlink: 72 bytes leftover after parsing attributes in process `syz.1.8815'.
[ 1078.605487][T26693] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1078.624029][T26693] raw-gadget.0 gadget.6: fail, usb_ep_enable returned -22
[ 1078.881073][ T6215] Error reading MAC address
[ 1078.905930][ T6215] usb 7-1: USB disconnect, device number 21
[ 1078.969892][T26732] netlink: 'syz.2.8823': attribute type 1 has an invalid length.
[ 1079.010645][T26732] netlink: 228 bytes leftover after parsing attributes in process `syz.2.8823'.
[ 1079.048476][T26728] loop5: detected capacity change from 0 to 4096
[ 1079.101854][T26728] ntfs3(loop5): Different NTFS sector size (2048) and media sector size (512).
[ 1079.260919][T26728] ntfs3(loop5): Failed to initialize $Extend/$ObjId.
[ 1079.270393][T26740] netlink: 16 bytes leftover after parsing attributes in process `syz.4.8826'.
[ 1079.421885][T26744] loop3: detected capacity change from 0 to 22
[ 1079.443253][T26744] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1079.475610][T26744] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1079.792080][T26751] loop6: detected capacity change from 0 to 128
[ 1079.803577][T26754] ipt_REJECT: ECHOREPLY no longer supported.
[ 1079.863973][T26751] ufs: ufs_fill_super(): fragment size 3263967611 is not a power of 2
[ 1080.163605][T26764] random: crng reseeded on system resumption
[ 1080.302381][T26768] binder: 26767:26768 ioctl c018620c 200000000100 returned -22
[ 1081.519137][T26821] loop2: detected capacity change from 0 to 512
[ 1081.532101][ T6313] usb 6-1: new full-speed USB device number 11 using dummy_hcd
[ 1081.563219][T26821] EXT4-fs: Ignoring removed bh option
[ 1081.613265][T26821] EXT4-fs: Mount option(s) incompatible with ext2
[ 1081.707368][ T6313] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1081.729966][ T6313] usb 6-1: New USB device found, idVendor=0572, idProduct=0041, bcdDevice=70.54
[ 1081.758954][ T6313] usb 6-1: New USB device strings: Mfr=1, Product=34, SerialNumber=7
[ 1081.791442][ T6313] usb 6-1: Product: syz
[ 1081.803841][ T6313] usb 6-1: Manufacturer: syz
[ 1081.831605][ T6313] usb 6-1: SerialNumber: syz
[ 1081.877272][ T6313] usb 6-1: config 0 descriptor??
[ 1081.898185][ T6313] gspca_main: conex-2.14.0 probing 0572:0041
[ 1081.938833][ T6245] usb 3-1: new high-speed USB device number 18 using dummy_hcd
[ 1082.115765][ T6245] usb 3-1: Using ep0 maxpacket: 32
[ 1082.137524][ T6245] usb 3-1: config 4 has an invalid interface number: 228 but max is 0
[ 1082.153594][ T6245] usb 3-1: config 4 has no interface number 0
[ 1082.171494][ T6245] usb 3-1: config 4 interface 228 altsetting 68 has an endpoint descriptor with address 0xAC, changing to 0x8C
[ 1082.197841][ T6245] usb 3-1: config 4 interface 228 altsetting 68 endpoint 0x8C has an invalid bInterval 94, changing to 10
[ 1082.221393][ T6245] usb 3-1: config 4 interface 228 altsetting 68 endpoint 0x8C has invalid maxpacket 42958, setting to 1024
[ 1082.234193][ T6245] usb 3-1: config 4 interface 228 has no altsetting 0
[ 1082.248408][ T6245] usb 3-1: New USB device found, idVendor=0499, idProduct=a9a2, bcdDevice=c4.e8
[ 1082.258997][ T6245] usb 3-1: New USB device strings: Mfr=1, Product=25, SerialNumber=3
[ 1082.273603][ T6245] usb 3-1: Product: syz
[ 1082.278659][ T6245] usb 3-1: Manufacturer: syz
[ 1082.289614][ T6245] usb 3-1: SerialNumber: syz
[ 1082.322874][T26821] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1082.342329][ T6230] usb 2-1: new high-speed USB device number 16 using dummy_hcd
[ 1082.411743][ T6313] usb 6-1: USB disconnect, device number 11
[ 1082.542633][ T6230] usb 2-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1082.575085][ T6230] usb 2-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1082.611408][ T6230] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1082.649059][ T6245] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1082.700492][ T6230] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1082.768809][ T6245] usb 3-1: USB disconnect, device number 18
[ 1082.990417][T26856] loop3: detected capacity change from 0 to 4096
[ 1083.012592][ T6556] udevd[6556]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:4.228/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1083.069413][T26862] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1083.852147][T26884] netlink: 'syz.2.8893': attribute type 3 has an invalid length.
[ 1083.877398][ T6230] stv0680 2-1:4.0: STV(e): camera ping failed!!
[ 1083.889595][T26884] netlink: 224 bytes leftover after parsing attributes in process `syz.2.8893'.
[ 1083.971945][ T6245] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1084.092346][ T6230] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 1084.110396][ T6230] stv0680 2-1:4.0: last error: 70,  command = 0x88
[ 1084.154177][ T6230] usb 2-1: USB disconnect, device number 16
[ 1084.168330][ T6245] usb 5-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1084.199629][ T6245] usb 5-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1084.238024][ T6245] usb 5-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1084.269449][ T6245] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1084.323457][T26882] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22
[ 1084.356883][ T6245] usb 5-1: Quirk or no altset; falling back to MIDI 1.0
[ 1084.452026][T26904] loop3: detected capacity change from 0 to 128
[ 1084.504289][T26904] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1084.548148][T26904] hpfs: filesystem error: improperly stopped
[ 1084.554217][T26904] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1084.580666][T26904] hpfs: You really don't want any checks? You are crazy...
[ 1084.588300][T26904] hpfs: hpfs_map_sector(): read error
[ 1084.604385][T26904] hpfs: code page support is disabled
[ 1084.620756][T26904] hpfs: hpfs_map_4sectors(): unaligned read
[ 1084.655139][T26904] hpfs: hpfs_map_4sectors(): unaligned read
[ 1084.687309][T26904] hpfs: filesystem error: unable to find root dir
[ 1084.844923][ T6215] usb 5-1: USB disconnect, device number 20
[ 1085.914900][T26942] netlink: 16 bytes leftover after parsing attributes in process `syz.6.8921'.
[ 1085.920354][T26943] netlink: 'syz.4.8922': attribute type 2 has an invalid length.
[ 1085.970701][T26943] netlink: 'syz.4.8922': attribute type 1 has an invalid length.
[ 1086.256026][T26953] netlink: 24 bytes leftover after parsing attributes in process `syz.4.8927'.
[ 1086.274332][T26924] loop5: detected capacity change from 0 to 32768
[ 1086.287228][T26953] virt_wifi0 speed is unknown, defaulting to 1000
[ 1086.321898][T26924] JBD2: Ignoring recovery information on journal
[ 1086.521819][T26920] loop1: detected capacity change from 0 to 32768
[ 1086.548460][T26924] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode.
[ 1086.569637][T26962] kAFS: unable to lookup cell '\/'
[ 1086.609181][T26920] XFS (loop1): DAX unsupported by block device. Turning off DAX.
[ 1086.663815][T26920] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1086.756420][T26924] OCFS2: ERROR (device loop5): ocfs2_claim_suballoc_bits: Chain allocator dinode 73 has 4294901761 used bits but only 0 total
[ 1086.837817][T26924] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1086.847965][T26924] OCFS2: File system is now read-only.
[ 1086.853429][T26924] (syz.5.8914,26924,1):ocfs2_claim_suballoc_bits:2063 ERROR: status = -30
[ 1086.862481][T26924] (syz.5.8914,26924,1):ocfs2_claim_metadata:2088 ERROR: status = -30
[ 1086.882062][T26924] (syz.5.8914,26924,1):ocfs2_claim_metadata:2101 ERROR: status = -30
[ 1086.890692][T26924] (syz.5.8914,26924,1):ocfs2_dx_dir_attach_index:2336 ERROR: status = -30
[ 1086.899369][T26924] (syz.5.8914,26924,1):ocfs2_expand_inline_dir:3029 ERROR: status = -30
[ 1086.925288][T26920] XFS (loop1): Ending clean mount
[ 1086.932125][T26924] (syz.5.8914,26924,1):ocfs2_extend_dir:3211 ERROR: status = -30
[ 1086.958518][T26924] (syz.5.8914,26924,1):ocfs2_prepare_dir_for_insert:4316 ERROR: status = -30
[ 1086.969176][T26920] XFS (loop1): Quotacheck needed: Please wait.
[ 1087.003890][T26924] (syz.5.8914,26924,1):ocfs2_mknod:301 ERROR: status = -30
[ 1087.064050][T26924] (syz.5.8914,26924,1):ocfs2_mknod:505 ERROR: status = -30
[ 1087.071137][T26920] XFS (loop1): Quotacheck: Done.
[ 1087.136367][T26924] (syz.5.8914,26924,1):ocfs2_mkdir:661 ERROR: status = -30
[ 1087.193237][T26981] Device name not specified.
[ 1087.193237][T26981] 
[ 1087.338800][ T6150] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d
[ 1087.508530][ T6160] ocfs2: Unmounting device (7,5) on (node local)
[ 1087.790257][T26987] loop3: detected capacity change from 0 to 4096
[ 1087.848051][T26987] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512).
[ 1087.865485][T26989] bond2: option ad_user_port_key: mode dependency failed, not supported in mode balance-alb(6)
[ 1087.931377][T26989] bond2 (unregistering): Released all slaves
[ 1087.946729][T26987] ntfs3(loop3): ino=19, mi_enum_attr
[ 1087.970895][T26987] ntfs3(loop3): Mark volume as dirty due to NTFS errors
[ 1088.024651][T26958] loop2: detected capacity change from 0 to 32768
[ 1088.109719][T26987] ntfs3(loop3): failed to convert "c46c" to cp864
[ 1088.120297][T26987] ntfs3(loop3): ino=20, mi_enum_attr
[ 1088.163456][T26958] ialloc: diAlloc returned -5!
[ 1088.467469][T27001] loop6: detected capacity change from 0 to 256
[ 1088.472633][T26996] netlink: 40 bytes leftover after parsing attributes in process `syz.1.8939'.
[ 1088.631645][T27004] loop2: detected capacity change from 0 to 256
[ 1088.744733][   T30] audit: type=1326 audit(2000525316.196:151): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27008 comm="syz.5.8949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1088.858302][   T30] audit: type=1326 audit(2000525316.196:152): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27008 comm="syz.5.8949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1088.954603][   T30] audit: type=1326 audit(2000525316.196:153): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27008 comm="syz.5.8949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1089.027979][   T30] audit: type=1326 audit(2000525316.196:154): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27008 comm="syz.5.8949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1089.163462][   T30] audit: type=1326 audit(2000525316.196:155): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27008 comm="syz.5.8949" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1090.258237][T27062] xt_SECMARK: invalid mode: 2
[ 1090.480531][T27072] overlayfs: missing 'lowerdir'
[ 1091.080155][T27093] netlink: 'syz.5.8991': attribute type 2 has an invalid length.
[ 1091.107781][T27093] �9: entered promiscuous mode
[ 1091.368017][T27097] bond3: entered promiscuous mode
[ 1091.392976][T27097] bond3: entered allmulticast mode
[ 1091.398574][T27097] 8021q: adding VLAN 0 to HW filter on device bond3
[ 1091.478818][T27110] loop1: detected capacity change from 0 to 128
[ 1091.501035][   T30] audit: type=1326 audit(2000525318.777:156): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27109 comm="syz.5.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1091.556381][   T30] audit: type=1326 audit(2000525318.777:157): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27109 comm="syz.5.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1091.584639][T27110] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1091.585814][   T30] audit: type=1326 audit(2000525318.796:158): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27109 comm="syz.5.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=303 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1091.619257][   T30] audit: type=1326 audit(2000525318.796:159): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27109 comm="syz.5.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1091.641731][   T30] audit: type=1326 audit(2000525318.796:160): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27109 comm="syz.5.8998" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8c21b8efc9 code=0x7ffc0000
[ 1091.704950][T27110] ext4 filesystem being mounted at /1417/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff)
[ 1091.743567][T27118] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1091.799463][ T6237] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1092.006214][ T6237] usb 5-1: config 0 has an invalid interface number: 90 but max is 0
[ 1092.021474][ T6237] usb 5-1: config 0 has no interface number 0
[ 1092.053307][ T6237] usb 5-1: New USB device found, idVendor=0547, idProduct=2720, bcdDevice=de.7f
[ 1092.066025][ T6150] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1092.096881][ T6237] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1092.115677][ T6237] usb 5-1: Product: syz
[ 1092.144031][ T6237] usb 5-1: Manufacturer: syz
[ 1092.154816][ T6237] usb 5-1: SerialNumber: syz
[ 1092.182265][ T6237] usb 5-1: config 0 descriptor??
[ 1092.212062][T27132] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1092.443495][ T6237] cdc_subset 5-1:0.90: probe with driver cdc_subset failed with error -22
[ 1092.522765][T27139] netlink: 'syz.3.9010': attribute type 2 has an invalid length.
[ 1092.688785][ T6215] usb 5-1: USB disconnect, device number 21
[ 1092.718331][T27147] loop1: detected capacity change from 0 to 64
[ 1092.748197][T27150] netlink: 8 bytes leftover after parsing attributes in process `syz.3.9015'.
[ 1092.826559][ T6237] usb 3-1: new high-speed USB device number 19 using dummy_hcd
[ 1092.987919][T27153] loop3: detected capacity change from 0 to 1024
[ 1093.031845][ T6237] usb 3-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1093.058796][ T6237] usb 3-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1093.103134][ T6237] usb 3-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1093.136301][ T6237] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1093.171741][T27145] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22
[ 1093.246793][ T6237] usb 3-1: Quirk or no altset; falling back to MIDI 1.0
[ 1093.641410][T27173] loop5: detected capacity change from 0 to 128
[ 1093.666997][  T932] usb 3-1: USB disconnect, device number 19
[ 1093.681283][T27173] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only
[ 1093.805445][T27173] hpfs: filesystem error: improperly stopped
[ 1093.837083][T27173] hpfs: filesystem error: warning: spare dnodes used, try chkdsk
[ 1093.891314][T27173] hpfs: You really don't want any checks? You are crazy...
[ 1093.915060][T27173] hpfs: hpfs_map_sector(): read error
[ 1093.937469][T27173] hpfs: code page support is disabled
[ 1093.943554][T27173] hpfs: hpfs_map_4sectors(): unaligned read
[ 1093.956147][T27173] hpfs: hpfs_map_4sectors(): unaligned read
[ 1093.974838][T27173] hpfs: filesystem error: unable to find root dir
[ 1094.122612][T27185] loop6: detected capacity change from 0 to 22
[ 1094.164963][T27185] MTD: Attempt to mount non-MTD device "/dev/loop6"
[ 1094.211522][T27185] romfs: Mounting image 'rom 637cf1fa' through the block layer
[ 1094.211759][   T30] audit: type=1326 audit(2000525321.292:161): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27186 comm="syz.4.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1094.372019][   T30] audit: type=1326 audit(2000525321.348:162): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27186 comm="syz.4.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1094.470563][   T30] audit: type=1326 audit(2000525321.348:163): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27186 comm="syz.4.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=63 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1094.597847][   T30] audit: type=1326 audit(2000525321.348:164): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27186 comm="syz.4.9034" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fd84ff8efc9 code=0x7ffc0000
[ 1094.676042][T27201] tipc: Can't bind to reserved service type 0
[ 1094.687262][T27200] loop5: detected capacity change from 0 to 512
[ 1094.763834][T27200] EXT4-fs (loop5): 1 orphan inode deleted
[ 1094.787701][T17502] Quota error (device loop5): do_check_range: Getting dqdh_entries 15 out of range 0-14
[ 1094.838507][T27200] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1094.851832][T17502] EXT4-fs error (device loop5): ext4_release_dquot:6979: comm kworker/u8:15: Failed to release dquot type 1
[ 1094.863861][T27200] ext4 filesystem being mounted at /1530/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1094.896210][T27209] loop2: detected capacity change from 0 to 512
[ 1094.937413][T27209] EXT4-fs: Ignoring removed bh option
[ 1094.982971][T27209] EXT4-fs (loop2): feature flags set on rev 0 fs, running e2fsck is recommended
[ 1095.009064][T27209] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem
[ 1095.065277][ T6160] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1095.098889][T27209] EXT4-fs (loop2): warning: mounting unchecked fs, running e2fsck is recommended
[ 1095.172657][T27209] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=c002e01c, mo2=0006]
[ 1095.271922][T27209] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1095.419069][T27209] EXT4-fs warning (device loop2): ext4_group_extend:1885: will only finish group (16384 blocks, 16256 new)
[ 1095.446487][ T6230] usb 6-1: new high-speed USB device number 12 using dummy_hcd
[ 1095.477308][T27209] EXT4-fs warning (device loop2): ext4_group_extend:1891: can't read last block, resize aborted
[ 1095.614404][T27226] netlink: 'syz.3.9052': attribute type 1 has an invalid length.
[ 1095.630372][ T6230] usb 6-1: config 220 has an invalid interface number: 76 but max is 2
[ 1095.644512][ T6146] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1095.660422][T27226] netlink: 228 bytes leftover after parsing attributes in process `syz.3.9052'.
[ 1095.673038][ T6230] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1095.706007][ T6230] usb 6-1: config 220 has no interface number 2
[ 1095.712334][ T6230] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12
[ 1095.727412][ T6230] usb 6-1: config 220 interface 0 has no altsetting 0
[ 1095.734208][ T6230] usb 6-1: config 220 interface 76 has no altsetting 0
[ 1095.742378][ T6230] usb 6-1: config 220 interface 1 has no altsetting 0
[ 1095.767179][ T6230] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1095.809277][ T6230] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1095.830692][ T6230] usb 6-1: Product: syz
[ 1095.852263][ T6230] usb 6-1: Manufacturer: syz
[ 1095.861992][ T6230] usb 6-1: SerialNumber: syz
[ 1095.986157][T27197] loop4: detected capacity change from 0 to 32768
[ 1096.049138][T27197] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1096.133810][ T6230] usb 6-1: selecting invalid altsetting 0
[ 1096.151005][ T6230] uvcvideo 6-1:220.0: Found UVC 7.01 device syz (8086:0b07)
[ 1096.161271][ T6230] uvcvideo 6-1:220.0: No valid video chain found.
[ 1096.172900][T27197] XFS (loop4): Ending clean mount
[ 1096.185627][ T6230] usb 6-1: selecting invalid altsetting 0
[ 1096.202255][ T6230] usbtest 6-1:220.1: probe with driver usbtest failed with error -22
[ 1096.217061][ T6215] usb 3-1: new high-speed USB device number 20 using dummy_hcd
[ 1096.226832][ T6230] usb 6-1: USB disconnect, device number 12
[ 1096.430872][ T6163] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1096.465984][ T6215] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1096.495371][ T6215] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1096.523018][ T6215] usb 3-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[ 1096.548036][ T6215] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1096.589849][ T6215] usb 3-1: config 0 descriptor??
[ 1097.084035][ T6215] Bluetooth: Can't get version to change to load ram patch err
[ 1097.104419][ T6215] Bluetooth: Loading patch file failed
[ 1097.139168][ T6215] ath3k 3-1:0.0: probe with driver ath3k failed with error -71
[ 1097.165360][ T6215] usb 3-1: USB disconnect, device number 20
[ 1097.345655][T27266] loop1: detected capacity change from 0 to 4096
[ 1097.382315][T27266] ntfs3(loop1): Different NTFS sector size (4096) and media sector size (512).
[ 1097.565033][T27266] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[ 1097.585064][T27266] ntfs3(loop1): Failed to initialize $Extend/$Reparse.
[ 1097.759884][T27249] loop3: detected capacity change from 0 to 40427
[ 1097.787721][T17500] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[ 1097.794915][ T6150] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[ 1097.811863][T27249] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1097.819721][ T6150] ntfs3(loop1): Mark volume as dirty due to NTFS errors
[ 1097.838786][T27277] loop6: detected capacity change from 0 to 4096
[ 1097.846789][T27249] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1097.855653][ T6150] ntfs3(loop1): ino=3, ntfs_set_state failed, -22.
[ 1097.875495][T27277] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512).
[ 1097.892248][T17500] ntfs3(loop1): ino=3, ntfs3_write_inode failed, -22.
[ 1097.900182][T27249] F2FS-fs (loop3): invalid crc value
[ 1097.971872][T27277] ntfs3(loop6): Mark volume as dirty due to NTFS errors
[ 1098.000764][T27277] ntfs3(loop6): ino=19, mi_enum_attr
[ 1098.143845][T27277] ntfs3(loop6): failed to convert "c46c" to cp1251
[ 1098.198196][T27277] ntfs3(loop6): ino=20, mi_enum_attr
[ 1098.350673][T27249] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1098.354129][T27249] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1098.354168][T27249] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1098.512243][T27299] netlink: 5 bytes leftover after parsing attributes in process `syz.1.9081'.
[ 1098.604386][ T6230] usb 6-1: new high-speed USB device number 13 using dummy_hcd
[ 1098.764827][ T6230] usb 6-1: config 27 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7
[ 1098.847411][ T6230] usb 6-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47
[ 1098.850588][ T6230] usb 6-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d
[ 1098.850632][ T6230] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1098.854835][T27306] loop6: detected capacity change from 0 to 64
[ 1098.874369][T27294] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22
[ 1098.891549][ T6230] usb 6-1: Quirk or no altset; falling back to MIDI 1.0
[ 1099.242757][ T6230] usb 6-1: USB disconnect, device number 13
[ 1099.313976][ T6556] udevd[6556]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:27.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1099.471930][T27317] loop1: detected capacity change from 0 to 16
[ 1099.586935][T27317] erofs (device loop1): mounted with root inode @ nid 36.
[ 1099.593334][T27321] loop6: detected capacity change from 0 to 1024
[ 1099.671481][T27321] hfsplus: keylen 65060 too large
[ 1099.819957][T27324] loop3: detected capacity change from 0 to 1764
[ 1099.893543][T27325] loop4: detected capacity change from 0 to 2048
[ 1099.954287][T27325] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=27485, location=27485
[ 1100.051878][T27325] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1100.097757][T27332] loop6: detected capacity change from 0 to 128
[ 1100.123268][T27333] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1100.191329][T27332] EXT4-fs (loop6): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1100.287155][T27337] netlink: 'syz.3.9100': attribute type 10 has an invalid length.
[ 1100.323512][T27332] ext4 filesystem being mounted at /619/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1100.339385][T27337] veth1_vlan: entered allmulticast mode
[ 1100.587035][T18491] EXT4-fs (loop6): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1100.827515][T27353] loop6: detected capacity change from 0 to 128
[ 1101.071304][T27357] loop4: detected capacity change from 0 to 2048
[ 1101.111995][T27359] loop2: detected capacity change from 0 to 2048
[ 1101.118626][T27357] NILFS (loop4): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1101.204632][T27357] syz.4.9109: attempt to access beyond end of device
[ 1101.204632][T27357] loop4: rw=524288, sector=33554430, nr_sectors = 2 limit=2048
[ 1101.204723][T27362] NILFS (loop4): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1101.323973][T27357] syz.4.9109: attempt to access beyond end of device
[ 1101.323973][T27357] loop4: rw=0, sector=9437254, nr_sectors = 2 limit=2048
[ 1101.387331][T27357] NILFS (loop4): I/O error reading meta-data file (ino=6, block-offset=0)
[ 1101.447785][T27368] netlink: 12 bytes leftover after parsing attributes in process `syz.3.9115'.
[ 1101.616890][T27341] loop1: detected capacity change from 0 to 32768
[ 1101.656064][T27341] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.9103 (27341)
[ 1101.759966][T27341] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1101.810109][T27341] BTRFS info (device loop1): using sha256 (sha256-lib) checksum algorithm
[ 1101.826136][T27374] loop2: detected capacity change from 0 to 2048
[ 1101.867097][T27374] UDF-fs: error (device loop2): udf_read_tagged: read failed, block=27485, location=27485
[ 1101.922670][T27374] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1101.949635][ T6215] usb 7-1: new high-speed USB device number 22 using dummy_hcd
[ 1101.968422][T27393] netlink: 'syz.4.9120': attribute type 10 has an invalid length.
[ 1102.001005][T27393] veth1_vlan: entered allmulticast mode
[ 1102.066397][T27341] BTRFS info (device loop1): enabling ssd optimizations
[ 1102.129720][T27341] BTRFS info (device loop1): turning on async discard
[ 1102.156719][T27341] BTRFS info (device loop1): enabling free space tree
[ 1102.163046][ T6215] usb 7-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1102.198466][ T6215] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1102.243740][ T6215] usb 7-1: config 0 descriptor??
[ 1102.531650][ T6215] udl 7-1:0.0: [drm] Unrecognized vendor firmware descriptor
[ 1102.550086][ T6150] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1102.753260][ T6215] [drm:udl_init] *ERROR* Selecting channel failed
[ 1102.838957][ T6215] [drm] Initialized udl 0.0.1 for 7-1:0.0 on minor 2
[ 1102.845703][ T6215] [drm] Initialized udl on minor 2
[ 1102.912902][ T6215] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1102.943299][ T6215] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[ 1103.014815][  T932] udl 7-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1103.023962][ T6215] usb 7-1: USB disconnect, device number 22
[ 1103.032128][  T932] udl 7-1:0.0: [drm] Cannot find any crtc or sizes
[ 1103.511746][T27431] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1103.826898][   T30] audit: type=1326 audit(2000525330.296:165): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1103.865632][  T932] usb 6-1: new high-speed USB device number 14 using dummy_hcd
[ 1103.910730][   T30] audit: type=1326 audit(2000525330.296:166): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1103.936940][   T30] audit: type=1326 audit(2000525330.296:167): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1103.995980][   T30] audit: type=1326 audit(2000525330.296:168): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.041134][   T30] audit: type=1326 audit(2000525330.296:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.109770][  T932] usb 6-1: Using ep0 maxpacket: 32
[ 1104.122112][  T932] usb 6-1: unable to get BOS descriptor or descriptor too short
[ 1104.139538][   T30] audit: type=1326 audit(2000525330.296:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.153042][  T932] usb 6-1: config 7 has an invalid descriptor of length 0, skipping remainder of the config
[ 1104.218146][  T932] usb 6-1: New USB device found, idVendor=18d1, idProduct=1eaf, bcdDevice=5a.bb
[ 1104.227485][   T30] audit: type=1326 audit(2000525330.296:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.230617][   T30] audit: type=1326 audit(2000525330.296:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.283790][ T6215] usb 7-1: new high-speed USB device number 23 using dummy_hcd
[ 1104.315142][  T932] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1104.345279][  T932] usb 6-1: Product: syz
[ 1104.352909][  T932] usb 6-1: Manufacturer: syz
[ 1104.356511][   T30] audit: type=1326 audit(2000525330.296:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.368685][  T932] usb 6-1: SerialNumber: syz
[ 1104.411649][   T30] audit: type=1326 audit(2000525330.296:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=27442 comm="syz.3.9145" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f044e58efc9 code=0x50000
[ 1104.465437][ T6215] usb 7-1: unable to get BOS descriptor or descriptor too short
[ 1104.474723][ T6215] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1104.516017][ T6215] usb 7-1: config 1 interface 0 altsetting 247 has 1 endpoint descriptor, different from the interface descriptor's value: 0
[ 1104.558979][ T6215] usb 7-1: config 1 interface 0 has no altsetting 1
[ 1104.584044][ T6215] usb 7-1: New USB device found, idVendor=2040, idProduct=b990, bcdDevice=f6.75
[ 1104.602963][ T6215] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1104.622196][ T6215] usb 7-1: Product: syz
[ 1104.646063][  T932] usb 6-1: Invalid number of CPorts: 0
[ 1104.651596][  T932] es2_ap_driver 6-1:7.0: probe with driver es2_ap_driver failed with error -22
[ 1104.668025][ T6215] usb 7-1: Manufacturer: syz
[ 1104.677038][ T6215] usb 7-1: SerialNumber: syz
[ 1104.734800][ T6215] smsusb:smsusb_probe: board id=8, interface number 0
[ 1104.847586][ T6230] usb 3-1: new high-speed USB device number 21 using dummy_hcd
[ 1104.959041][ T6215] smsusb:smsusb_probe: Device initialized with return code -19
[ 1104.975330][  T932] usb 6-1: USB disconnect, device number 14
[ 1105.014751][ T6230] usb 3-1: New USB device found, idVendor=17e9, idProduct=8b4e, bcdDevice=9c.08
[ 1105.046134][ T6230] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1105.067958][ T6230] usb 3-1: config 0 descriptor??
[ 1105.206265][  T932] usb 7-1: USB disconnect, device number 23
[ 1105.332140][ T6230] udl 3-1:0.0: [drm] Unrecognized vendor firmware descriptor
[ 1105.568684][ T6230] [drm:udl_init] *ERROR* Selecting channel failed
[ 1105.634354][ T6230] [drm] Initialized udl 0.0.1 for 3-1:0.0 on minor 2
[ 1105.667229][ T6230] [drm] Initialized udl on minor 2
[ 1105.704144][ T6230] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1105.725331][T27483] netlink: 'syz.4.9164': attribute type 49 has an invalid length.
[ 1105.739890][ T6230] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[ 1105.750641][ T6313] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1105.795022][ T6313] udl 3-1:0.0: [drm] *ERROR* Read EDID byte 0 failed err ffffffb9
[ 1105.804798][ T6230] usb 3-1: USB disconnect, device number 21
[ 1105.824188][ T6313] udl 3-1:0.0: [drm] Cannot find any crtc or sizes
[ 1106.144412][T27489] bond4 (unregistering): Released all slaves
[ 1107.290078][T27526] netlink: 184 bytes leftover after parsing attributes in process `syz.6.9185'.
[ 1107.437968][ T6230] usb 3-1: new high-speed USB device number 22 using dummy_hcd
[ 1107.628658][ T6230] usb 3-1: Using ep0 maxpacket: 32
[ 1107.658380][ T6230] usb 3-1: config 0 has an invalid interface number: 196 but max is 0
[ 1107.692431][ T6230] usb 3-1: config 0 has no interface number 0
[ 1107.698585][ T6230] usb 3-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1107.754540][ T6230] usb 3-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0
[ 1107.801762][ T6230] usb 3-1: config 0 interface 196 has no altsetting 0
[ 1107.838539][T27544] x_tables: unsorted entry at hook 2
[ 1107.845251][ T6230] usb 3-1: New USB device found, idVendor=05ac, idProduct=77c2, bcdDevice=eb.3a
[ 1107.861529][ T6230] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1107.882080][ T6230] usb 3-1: Product: syz
[ 1107.892908][ T6230] usb 3-1: Manufacturer: syz
[ 1107.899069][ T6230] usb 3-1: SerialNumber: syz
[ 1107.930070][ T6230] usb 3-1: config 0 descriptor??
[ 1108.029182][T27504] loop4: detected capacity change from 0 to 40427
[ 1108.042629][T27550] loop3: detected capacity change from 0 to 8
[ 1108.089264][T27504] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12
[ 1108.097019][T27504] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock
[ 1108.121389][T27550] SQUASHFS error: Unable to read inode 0xe3
[ 1108.159517][ T6230] ipheth 3-1:0.196: Unable to find endpoints
[ 1108.189318][T27504] F2FS-fs (loop4): invalid crc value
[ 1108.213781][ T6230] usb 3-1: USB disconnect, device number 22
[ 1108.652380][T27504] F2FS-fs (loop4): f2fs_recover_fsync_data: recovery fsync data, check_only: 0
[ 1108.706158][T27504] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0
[ 1108.749015][T27504] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5
[ 1109.153155][T27586] comedi comedi0: Cannot bond this driver to itself!
[ 1110.073629][T27610] loop3: detected capacity change from 0 to 1024
[ 1110.184476][T27610] /dev/loop3: Can't open blockdev
[ 1111.481617][T27660] loop3: detected capacity change from 0 to 128
[ 1111.497160][T27662] loop4: detected capacity change from 0 to 8
[ 1111.560335][T27662] SQUASHFS error: xz decompression failed, data probably corrupt
[ 1111.605247][T27660] FAT-fs (loop3): Invalid FSINFO signature: 0x41075252, 0x80417272 (sector = 1)
[ 1111.625163][T27662] SQUASHFS error: Failed to read block 0x108: -5
[ 1111.672856][T27660] FAT-fs (loop3): error, fat_get_cluster: invalid start cluster (i_pos 0, start 00070003)
[ 1111.674258][T27662] SQUASHFS error: Unable to read metadata cache entry [106]
[ 1111.686315][T27660] FAT-fs (loop3): Filesystem has been set read-only
[ 1111.716254][T27662] SQUASHFS error: Unable to read inode 0x11f
[ 1111.891727][T27668] bond1 (unregistering): Released all slaves
[ 1112.542521][T27695] openvswitch: netlink: Missing key (keys=40, expected=80)
[ 1112.594770][T27698] netlink: 48 bytes leftover after parsing attributes in process `syz.4.9266'.
[ 1112.656592][T27701] ip6t_rpfilter: unknown options
[ 1112.765932][T27703] loop1: detected capacity change from 0 to 128
[ 1112.833129][T27703] EXT4-fs warning (device loop1): ext4_init_metadata_csum:4634: metadata_csum and uninit_bg are redundant flags; please run fsck.
[ 1112.907684][T27703] EXT4-fs (loop1): Encoding requested by superblock is unknown
[ 1112.965051][T27703] tmpfs: Bad value for 'grpquota_block_hardlimit'
[ 1113.040836][T27714] netlink: 4 bytes leftover after parsing attributes in process `syz.4.9275'.
[ 1113.193828][T27717] loop2: detected capacity change from 0 to 512
[ 1113.237439][T27717] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem
[ 1113.297151][T27717] EXT4-fs (loop2): invalid journal inode
[ 1113.310901][T27722] loop6: detected capacity change from 0 to 64
[ 1113.344153][T27717] EXT4-fs (loop2): can't get journal size
[ 1113.404007][T27717] EXT4-fs (loop2): 1 truncate cleaned up
[ 1113.438434][T27725] libceph: resolve '400' (ret=-3): failed
[ 1113.447845][T27717] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1113.714803][ T6146] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1113.915938][T27744] tmpfs: Bad value for 'mpol'
[ 1114.501458][T27766] netlink: 'syz.3.9297': attribute type 15 has an invalid length.
[ 1114.501494][T27766] netlink: 24 bytes leftover after parsing attributes in process `syz.3.9297'.
[ 1115.522720][T27792] IPVS: Unknown mcast interface: syzkaller1
[ 1115.750655][T27796] loop2: detected capacity change from 0 to 128
[ 1115.789871][T27796] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1115.793218][T27796] ext4 filesystem being mounted at /1513/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1115.843224][T27796] EXT4-fs warning (device loop2): verify_group_input:136: Cannot add at group 7 (only 1 groups)
[ 1116.042914][T27784] loop3: detected capacity change from 0 to 32768
[ 1116.064489][ T6146] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1116.100647][T27784] (syz.3.9306,27784,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1116.101070][T27784] (syz.3.9306,27784,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1116.124991][T27804] overlayfs: conflicting options: userxattr,metacopy=on
[ 1116.138660][T27784] JBD2: Ignoring recovery information on journal
[ 1116.301907][T27784] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1116.388663][T27784] 
[ 1116.388679][T27784] ======================================================
[ 1116.388695][T27784] WARNING: possible circular locking dependency detected
[ 1116.388712][T27784] syzkaller #0 Not tainted
[ 1116.388731][T27784] ------------------------------------------------------
[ 1116.388746][T27784] syz.3.9306/27784 is trying to acquire lock:
[ 1116.388766][T27784] ffff888051af6a20 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}, at: ocfs2_lock_global_qf+0x1c1/0x2d0
[ 1116.388867][T27784] 
[ 1116.388867][T27784] but task is already holding lock:
[ 1116.388879][T27784] ffff888051af6d80 (&ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_lock_global_qf+0x194/0x2d0
[ 1116.388970][T27784] 
[ 1116.388970][T27784] which lock already depends on the new lock.
[ 1116.388970][T27784] 
[ 1116.388984][T27784] 
[ 1116.388984][T27784] the existing dependency chain (in reverse order) is:
[ 1116.388998][T27784] 
[ 1116.388998][T27784] -> #6 (&ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}:
[ 1116.389055][T27784]        down_write+0x92/0x200
[ 1116.389105][T27784]        ocfs2_lock_global_qf+0x194/0x2d0
[ 1116.389145][T27784]        ocfs2_acquire_dquot+0x258/0xb00
[ 1116.389186][T27784]        dqget+0x693/0x1180
[ 1116.389222][T27784]        dquot_set_dqblk+0x2b/0x1290
[ 1116.389260][T27784]        quota_setquota+0x4c4/0x5e0
[ 1116.389313][T27784]        do_quotactl+0xaf6/0x13d0
[ 1116.389367][T27784]        __x64_sys_quotactl+0x1b3/0x440
[ 1116.389426][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.389468][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.389507][T27784] 
[ 1116.389507][T27784] -> #5 (&dquot->dq_lock){+.+.}-{4:4}:
[ 1116.389559][T27784]        __mutex_lock+0x193/0x1060
[ 1116.389610][T27784]        dqget+0x5f1/0x1180
[ 1116.389644][T27784]        dquot_transfer+0x52f/0x6a0
[ 1116.389687][T27784]        ext4_setattr+0x885/0x2ae0
[ 1116.389733][T27784]        notify_change+0x6d2/0x12a0
[ 1116.389780][T27784]        chown_common+0x54e/0x680
[ 1116.389814][T27784]        do_fchownat+0x1a7/0x200
[ 1116.389848][T27784]        __x64_sys_lchown+0x7e/0xc0
[ 1116.389885][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.389925][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.389962][T27784] 
[ 1116.389962][T27784] -> #4 (&ei->xattr_sem){++++}-{4:4}:
[ 1116.390015][T27784]        down_read+0x9b/0x480
[ 1116.390062][T27784]        ext4_setattr+0x875/0x2ae0
[ 1116.390108][T27784]        notify_change+0x6d2/0x12a0
[ 1116.390154][T27784]        chown_common+0x54e/0x680
[ 1116.390189][T27784]        do_fchownat+0x1a7/0x200
[ 1116.390222][T27784]        __x64_sys_chown+0x7b/0xc0
[ 1116.390258][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.390299][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.390337][T27784] 
[ 1116.390337][T27784] -> #3 (jbd2_handle){++++}-{0:0}:
[ 1116.390390][T27784]        start_this_handle+0x5ea/0x1410
[ 1116.390447][T27784]        jbd2__journal_start+0x394/0x6a0
[ 1116.390501][T27784]        jbd2_journal_start+0x29/0x40
[ 1116.390554][T27784]        ocfs2_start_trans+0x3b9/0x970
[ 1116.390606][T27784]        ocfs2_modify_bh+0xbd/0x490
[ 1116.390639][T27784]        ocfs2_local_read_info+0xdad/0x16b0
[ 1116.390673][T27784]        dquot_load_quota_sb+0x83d/0x1050
[ 1116.390712][T27784]        dquot_load_quota_inode+0x2a3/0x470
[ 1116.390753][T27784]        ocfs2_enable_quotas+0x28a/0x5a0
[ 1116.390805][T27784]        ocfs2_fill_super+0x1d7c/0x43b0
[ 1116.390858][T27784]        get_tree_bdev_flags+0x38c/0x620
[ 1116.390908][T27784]        vfs_get_tree+0x8e/0x340
[ 1116.390949][T27784]        path_mount+0x7b9/0x23a0
[ 1116.390980][T27784]        __x64_sys_mount+0x293/0x310
[ 1116.391014][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.391054][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.391090][T27784] 
[ 1116.391090][T27784] -> #2 (&journal->j_trans_barrier){.+.+}-{4:4}:
[ 1116.391143][T27784]        down_read+0x9b/0x480
[ 1116.391190][T27784]        ocfs2_start_trans+0x3ae/0x970
[ 1116.391236][T27784]        ocfs2_modify_bh+0xbd/0x490
[ 1116.391270][T27784]        ocfs2_local_read_info+0xdad/0x16b0
[ 1116.391305][T27784]        dquot_load_quota_sb+0x83d/0x1050
[ 1116.391346][T27784]        dquot_load_quota_inode+0x2a3/0x470
[ 1116.391387][T27784]        ocfs2_enable_quotas+0x28a/0x5a0
[ 1116.391441][T27784]        ocfs2_fill_super+0x1d7c/0x43b0
[ 1116.391495][T27784]        get_tree_bdev_flags+0x38c/0x620
[ 1116.391546][T27784]        vfs_get_tree+0x8e/0x340
[ 1116.391594][T27784]        path_mount+0x7b9/0x23a0
[ 1116.391626][T27784]        __x64_sys_mount+0x293/0x310
[ 1116.391660][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.391700][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.391736][T27784] 
[ 1116.391736][T27784] -> #1 (sb_internal#3){.+.+}-{0:0}:
[ 1116.391795][T27784]        ocfs2_start_trans+0x29d/0x970
[ 1116.391842][T27784]        ocfs2_write_info+0xf0/0x460
[ 1116.391881][T27784]        dquot_set_dqinfo+0x4d5/0x5d0
[ 1116.391917][T27784]        do_quotactl+0xe94/0x13d0
[ 1116.391969][T27784]        __x64_sys_quotactl+0x1b3/0x440
[ 1116.392022][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.392063][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.392099][T27784] 
[ 1116.392099][T27784] -> #0 (&ocfs2_quota_ip_alloc_sem_key){++++}-{4:4}:
[ 1116.392153][T27784]        __lock_acquire+0x126f/0x1c90
[ 1116.392210][T27784]        lock_acquire+0x179/0x350
[ 1116.392240][T27784]        down_write+0x92/0x200
[ 1116.392286][T27784]        ocfs2_lock_global_qf+0x1c1/0x2d0
[ 1116.392326][T27784]        ocfs2_acquire_dquot+0x258/0xb00
[ 1116.392366][T27784]        dqget+0x693/0x1180
[ 1116.392401][T27784]        dquot_set_dqblk+0x2b/0x1290
[ 1116.392438][T27784]        quota_setquota+0x4c4/0x5e0
[ 1116.392490][T27784]        do_quotactl+0xaf6/0x13d0
[ 1116.392542][T27784]        __x64_sys_quotactl+0x1b3/0x440
[ 1116.392601][T27784]        do_syscall_64+0xcd/0xfa0
[ 1116.392641][T27784]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.392678][T27784] 
[ 1116.392678][T27784] other info that might help us debug this:
[ 1116.392678][T27784] 
[ 1116.392690][T27784] Chain exists of:
[ 1116.392690][T27784]   &ocfs2_quota_ip_alloc_sem_key --> &dquot->dq_lock --> &ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]
[ 1116.392690][T27784] 
[ 1116.392759][T27784]  Possible unsafe locking scenario:
[ 1116.392759][T27784] 
[ 1116.392770][T27784]        CPU0                    CPU1
[ 1116.392782][T27784]        ----                    ----
[ 1116.392795][T27784]   lock(&ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]);
[ 1116.392825][T27784]                                lock(&dquot->dq_lock);
[ 1116.392855][T27784]                                lock(&ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]);
[ 1116.392888][T27784]   lock(&ocfs2_quota_ip_alloc_sem_key);
[ 1116.392916][T27784] 
[ 1116.392916][T27784]  *** DEADLOCK ***
[ 1116.392916][T27784] 
[ 1116.392927][T27784] 3 locks held by syz.3.9306/27784:
[ 1116.392949][T27784]  #0: ffff88801b7ce0e0 (&type->s_umount_key#65){++++}-{4:4}, at: super_lock+0x31c/0x3f0
[ 1116.393057][T27784]  #1: ffff88807a49c0a8 (&dquot->dq_lock){+.+.}-{4:4}, at: ocfs2_acquire_dquot+0x24b/0xb00
[ 1116.393156][T27784]  #2: ffff888051af6d80 (&ocfs2_sysfile_lock_key[USER_QUOTA_SYSTEM_INODE]){+.+.}-{4:4}, at: ocfs2_lock_global_qf+0x194/0x2d0
[ 1116.393257][T27784] 
[ 1116.393257][T27784] stack backtrace:
[ 1116.393273][T27784] CPU: 0 UID: 0 PID: 27784 Comm: syz.3.9306 Not tainted syzkaller #0 PREEMPT(full) 
[ 1116.393317][T27784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/02/2025
[ 1116.393340][T27784] Call Trace:
[ 1116.393351][T27784]  <TASK>
[ 1116.393365][T27784]  dump_stack_lvl+0x116/0x1f0
[ 1116.393408][T27784]  print_circular_bug+0x275/0x350
[ 1116.393468][T27784]  check_noncircular+0x14c/0x170
[ 1116.393534][T27784]  __lock_acquire+0x126f/0x1c90
[ 1116.393644][T27784]  lock_acquire+0x179/0x350
[ 1116.393676][T27784]  ? ocfs2_lock_global_qf+0x1c1/0x2d0
[ 1116.393720][T27784]  ? __pfx___might_resched+0x10/0x10
[ 1116.393773][T27784]  down_write+0x92/0x200
[ 1116.393821][T27784]  ? ocfs2_lock_global_qf+0x1c1/0x2d0
[ 1116.393862][T27784]  ? __pfx_down_write+0x10/0x10
[ 1116.393915][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.393960][T27784]  ? do_raw_spin_unlock+0x172/0x230
[ 1116.394005][T27784]  ocfs2_lock_global_qf+0x1c1/0x2d0
[ 1116.394047][T27784]  ? __pfx_ocfs2_lock_global_qf+0x10/0x10
[ 1116.394097][T27784]  ocfs2_acquire_dquot+0x258/0xb00
[ 1116.394145][T27784]  ? __pfx_ocfs2_acquire_dquot+0x10/0x10
[ 1116.394189][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394241][T27784]  dqget+0x693/0x1180
[ 1116.394281][T27784]  ? __pfx_dqget+0x10/0x10
[ 1116.394318][T27784]  ? map_id_range_down+0x2bc/0x3b0
[ 1116.394365][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394411][T27784]  ? __sanitizer_cov_trace_switch+0x54/0x90
[ 1116.394463][T27784]  dquot_set_dqblk+0x2b/0x1290
[ 1116.394510][T27784]  quota_setquota+0x4c4/0x5e0
[ 1116.394565][T27784]  ? __pfx_quota_setquota+0x10/0x10
[ 1116.394625][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394691][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394736][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394781][T27784]  ? security_capable+0x7e/0x260
[ 1116.394831][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394880][T27784]  do_quotactl+0xaf6/0x13d0
[ 1116.394936][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.394981][T27784]  ? __pfx_do_quotactl+0x10/0x10
[ 1116.395037][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.395089][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.395134][T27784]  ? user_get_super+0x109/0x1b0
[ 1116.395189][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.395233][T27784]  ? quotactl_block+0x17e/0x690
[ 1116.395288][T27784]  ? __pfx_quotactl_block+0x10/0x10
[ 1116.395351][T27784]  __x64_sys_quotactl+0x1b3/0x440
[ 1116.395410][T27784]  ? __pfx___x64_sys_quotactl+0x10/0x10
[ 1116.395466][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.395510][T27784]  ? xfd_validate_state+0x61/0x180
[ 1116.395570][T27784]  ? srso_alias_return_thunk+0x5/0xfbef5
[ 1116.395626][T27784]  do_syscall_64+0xcd/0xfa0
[ 1116.395671][T27784]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 1116.395709][T27784] RIP: 0033:0x7f044e58efc9
[ 1116.395736][T27784] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 1116.395775][T27784] RSP: 002b:00007f044f415038 EFLAGS: 00000246 ORIG_RAX: 00000000000000b3
[ 1116.395809][T27784] RAX: ffffffffffffffda RBX: 00007f044e7e5fa0 RCX: 00007f044e58efc9
[ 1116.395835][T27784] RDX: 000000000000ee00 RSI: 0000200000000100 RDI: ffffffff80000800
[ 1116.395861][T27784] RBP: 00007f044e611f91 R08: 0000000000000000 R09: 0000000000000000
[ 1116.395885][T27784] R10: 0000200000000280 R11: 0000000000000246 R12: 0000000000000000
[ 1116.395910][T27784] R13: 00007f044e7e6038 R14: 00007f044e7e5fa0 R15: 00007fff80588e68
[ 1116.395950][T27784]  </TASK>
[ 1116.540611][T27782] loop5: detected capacity change from 0 to 32768
[ 1116.570938][T27782] 
[ 1116.570938][T27782]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1116.570938][T27782] 
[ 1116.632712][T27816] loop2: detected capacity change from 0 to 512
[ 1116.644626][ T6151] ocfs2: Unmounting device (7,3) on (node local)
[ 1116.651682][T27816] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1116.651777][T27816] ext4 filesystem being mounted at /1515/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1116.666773][ T6160] 
[ 1116.666773][ T6160]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1116.666773][ T6160] 
[ 1116.668895][ T6160] 
[ 1116.668895][ T6160]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1116.668895][ T6160] 
[ 1116.704838][T27816] EXT4-fs error (device loop2): ext4_xattr_block_list:766: inode #15: comm syz.2.9320: corrupted xattr block 13: invalid checksum
[ 1116.854060][ T6146] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1118.445426][ T1297] ieee802154 phy1 wpan1: encryption failed: -22