last executing test programs: 1m49.460175108s ago: executing program 5 (id=7459): r0 = socket(0x11, 0x3, 0x0) ioctl$SIOCPNENABLEPIPE(r0, 0x541b, 0x1000000000000) 1m48.640064195s ago: executing program 5 (id=7466): mount(&(0x7f0000000080)=@loop={'/dev/loop', 0x0}, &(0x7f00000001c0)='./cgroup\x00', &(0x7f0000000000)='xfs\x00', 0x1a0c099, 0x0) quotactl$Q_SETQUOTA(0xffffffff80000800, &(0x7f00000003c0)=@loop={'/dev/loop', 0x0}, 0x0, 0x0) 1m47.995557883s ago: executing program 5 (id=7470): r0 = socket(0x10, 0x3, 0x4) sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000780)={&(0x7f00000007c0)=@newqdisc={0x58, 0x14, 0xf0b, 0xfffffffe, 0x0, {0x2, 0x0, 0x0, 0x0, {0x0, 0x9}, {0xfff1, 0x5}, {0x6, 0xffff}}, [@TCA_INGRESS_BLOCK={0x8, 0xd, 0x2}, @TCA_STAB={0x2c, 0x8, 0x0, 0x1, [{{0x1c, 0x1, {0x15, 0xf, 0xffff, 0x9, 0x1, 0x5, 0xffff2ec3, 0x4}}, {0xc, 0x2, [0x3, 0x6, 0x4, 0x771]}}]}]}, 0x58}}, 0x0) 1m47.093957018s ago: executing program 5 (id=7475): syz_mount_image$jfs(&(0x7f0000000240), &(0x7f0000000040)='./file1\x00', 0x3010846, &(0x7f00000002c0)=ANY=[@ANYBLOB='iocharset=koi8-u,discard=0x0000000000000004,iocharset=iso8859-9,discard,iocharset=koi8-ru,errors=remount-ro,uid=', @ANYRESHEX=0x0, @ANYBLOB="2c6572726f72733d72656d6f756e742d726f2c6572726f72733d636f6e74696e75652c6e6f646973636172642c696f636861727365743d69736f383835392d332c005d245603bb5b494e31b3e32f7a4536f7389f889613f9bebfad670d9c5b69025afa2ed8a0983033c21a066b886aded885e0be89c3a88225b41e870229bff872d594d5a79ca2a73ae38725a8a4251c102dd8a175ce9f42f974c650e3f4d216c776b32d707119113d826189e7cc3f2b74b5191cce0209a7c007d15932d18b9ea2f49c0c2b7395277707"], 0x24, 0x62d7, &(0x7f0000021240)="$eJzs3c1vHGcdB/Df7JtfStuoh6pECLlteCmleS0hUKDtAQ5cOKBcUSLXrSJSQElAaRURV75w4I8AIXFEiCMn/oAeuHLjDyCSgwTqAXXQ2M/jjKe7XjuJd3Yzn4/kzPzmmfE+k++Od9cz4ycAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgPjhD358roiIK79KC05EfC76Eb2Ilapei4iVtRP1bV6IneZ4PiKGSxHV9jv/PBvxekR8/EzE9v0769Xi84fsx/f//I8//OSpH/39T8Mz//3Lrf4bk9a7ffu3//nr3YffXwAAAOiisizLIn3MPxkRg/TZHgB48uXX/zLJy9VzV2/OWX/UarVavYB1XTne3XoREZv1bar3DE7HA8CC2YxP2u4CLZJ/pw0i4qm2OwHMtaLtDnAstu/fWS9SvkX99WBttz1fC7Iv/81i7/6OSdNpmteYzOr5tRX9eG5Cf1Zm1Id5kvPvNfO/sts+Susdd/6zMin/0e6tT52T8+838294cvLvjc2/q3L+gyPl35c/AAAAAADMsfz7/xMtn/9devRdOZSDzv+uzagPAAAAAAAAAPC4HXX8v0Fj/L89xv8DAACAuVV9Vq/87pkHyyb9LbZq+eUi4unG+kDHpJtlVtvuBwAAAAAAAAAAAAB0yWD3Gt7LRcQwIp5eXS3Lsvqqa9ZH9ajbL7qu7z90Wds/5AEAYNfHzzTu5S8iliPicvpbf8PV1dWyXF5ZLVfLlaX8fna0tFyu1D7X5mm1bGl0iDfEg1FZfbPl2nZ10z4vT2tvfr/qsUZl/xAdm40WAweAiNh9Ndqe9Ir0P69Xi6ksn42W3+SwIA44/llQjn8Oo+3nKQAAAHD8yrIsi/TnvE+mc/69tjsFAMxEfv1vnhdQq9VqtVr95NV15Xh360VEbNa3qd4zGI4fABbMZnzSdhdokfw7bRARL7TdCWCuFW13gGOxff/OepHyLeqvB2l893wtyL78N4ud7fL246bTNK8xmdXzayv68dyE/jw/oz7Mk5x/r5n/ld32UVrv0fMv9/2asK1rjCblX+3niRb607acf7+Zf8NxH/+zshW9sfl3Vc5/cKT8+/IHAAAAAIA5ln//f2Kuzv+OHnZ3pjro/O/a2C2Ory8AAAAAAAAA8Lhs37+znu97zef/vzBmPfd/Pply/oX8Oynn32vk/9XGev3a/L23H+T/7/t31v9461+fz9PD5r+UZ4r0zCrSM6JIj1QM0vRR9u6ztob9UfVIw6LXH6Rrfsrhu3EtrsdGnN23bi/9fzxoP7evverpcKe97O+2n9/XPthrz9tf2Nc+TFcXlSu5/XSsx8/jeryz0161LU3Z/+Up7eWU9px/3/HfSdtpOnjw9WxVr6blRWNaufdR7zPHfX067nHeuvbF35w91j05nK3o7+1bXbV/L7XQn53/k6dG8cubGzdO375669aNc5Em+5aejzR5zPLxP0xfez//X95tzz/368frvY9GR85/XmzFYGL+L9fmq/19ZcZ9a0POf5S+cv7vpPbxx/8i5z/5+H+1hf4AAAAAAAAAAAAAAADAQcqy3LlF9K2IuJju/2nr3kwAYLby63+Z5OWzqvszfjy1esHrYs76M9P603K++qNWL2JdV473Zr2IiL/Vt6neM/x63DcDAObZpxHxz7Y7QWvk32H57/1V01NtdwaYqZsffPjTq9evb9y42XZPAAAAAAAAAICHlcf/XKuN/3yqLMu7jfX2jf/6dqw96vifgzyzN8DohIGq+0ffp4Ns9Ub9Xm248Rdj0vjfw725g8b/Hkx5vOGU9tGU9qUp7ctT2sfe6FGT83+xNt75qYg42Rh+vQvjvzbHvO+CnP9Ltedzlf9XGuvV8y9/v8j59/blf+bW+784c/ODD1+79v7V9zbe2/jZhXPnzl64ePHSpUtn3r12fePs7r8t9vh45fzz2NeuA+2WnH/OXP7dkvP/Uqrl3y05/y+nWv7dkvPP7/fk3y05//zZR/7dkvN/JdXy75ac/9dSLf9uyfm/murp+U/7jSaLJOf/9VQ7/rsl5/9aquXfLTn/06mWf7fk/M+k+pD5rxx3v5iNnH8+w+X475acf76yQf7dkvM/n2r5d0vO/0Kq5d8tOf/XUy3/bsn5fyPV8u+WnP/FVMu/W3L+30y1/Lsl538p1fLvlpz/t1It/27J+X871fLvlpz/G6mWf7fk/L+Tavl3S87/u6mWf7fk/L+Xavl3S87/zVTLv1se/P1/M2bMmMkzbf9kAgAAAAAAAAAAAACaZnE5cdv7CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPyfHTgQAAAAAADyf22EqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqKuzAgQAAAAAAkP9rI1RVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVh7+5i5DrLO4Cf/fTaIYmBkDqpgY1jQkg22bWd+IM2xYTPhq8SCIV+YLvetVlwbOO1S6CRbBookTAqqmgbLtoCQm1uKnLBBa0A5QK1QmoF7QXtBQKhchFVAQWkSrQCtppz3vfdmdnZmV3vePfMOb+fZD+eM2fmvHPmnTPz7Po/BwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAZre8Zu4TQ1mWNf7kf23Psuc1/r11cnu+7JWbPUIAAABgvX6R//3c9WnB4VXcqGmdf37Jt768uLi4mL175M/HPrO4mK6YzLKxLVmWXxc99YP3DDWvEzyWTQwNN10e7rH5kR7Xj/a4fqzH9eM9rt/S4/qJHtcv2wHLbC1+HpPf2e78n9uLXZrdkI3l1+3ucKvHhrYMD8ef5eSG8tssjp3I5rNT2Vw207J+se5Qvv5Xb2ls641Z3NZw07Z2NmbITx49HscwFPbx7pZtLd1n9KNXZ5M//cmjx//2/LM3dao9d0PL/RXjvH1XY5wfC0uKsQ5lW9I+ieMcbhrnzg7PyUjLOIfy2zX+3T7O51Y5zpGlYW6o9ud8IhvO//3tfD+NNv9YL+2nnWHZz27NsuzS0rDb11m2rWw429ayZHjp+ZkoZmTjPhpT6QXZ6Jrm6S2rmKeNOru7dZ62vybi839LuN3oCmNofpp+9NHxpuf954tXMk+jxqNe6bXSPgf7/VopyxyM8+Lb+YN+vOMc3B0e/6O3rTwHO86dDnMwPe6mObir1xwcHh/Jx5yehKH8NktzcE/L+iP5loby+sxt3efg9PmHz04vfPgjd80/fOzk3Mm50/v27JnZt3//wYMHp0/Mn5qbKf6+wr1dftuy4fQa2BX2XXwNvLxt3eapuvj58WXH3yt9HU50eR1ub1u336/D0fYHN7QxL8jlc7p4bbyzsdMnLg9nK7zG8ufnjvW/DtPjbnodjja9Dju+p3R4HY6u4nXYWOfsHav7zDLa9KfTGFZ+L1jfHNzeNAfbP4+0z8F+fx4pyxycCPPiu3es/F6wM4z38am1fh4ZWTYH08MNx57GkvR5f+JgXjrNy5sbV1wznl1YmDt39yPHzp8/tycLZUO8sGmutM/XbU2PKVs2X4fXPF8Pz7/k8Zs7LN8e9tXEXY2/JlZ8rhrr3HN39+cqf3frvD9blu7NQumzjd6fnd7NG/tzPMs++42PPvi1Rz/7mhX3Z6Pf/Nj0+j+Lp7606fg7tsLxN/b9vyy2l+7qsZGx0eL1O5L2zljL8bj1qRrNj11D+bafm17d8Xgs/Nno4/ENXY7HO9rW7ffxeKz9wcXj8VCvn3asT/vzORHmyamZ7sfjxjo79q51To52PR7fGupQ2P+vCJ1C6oua5s5K8zZta3R0LDyu0biF1nm6r2X9sdCbNbb15N7woTCNcnXz9PZbi/VHmm4XbdQ8nWxbt9/zNP3sa6V5OtTrp29Xpv35nAjz4oZ93edpY52n71n/sXNr/GfTsXO81xwcGxlvjHksTcL8eJ8tbo1z8O7seHYmO5XN5teO5/NpKN/W1L2rO1aOhz8bfazc0WUO3t62br/nYHofW2nuDY0uf/B90P58ToR58cS93edgY53XHujvZ9fbiyVLP4pu+uza/vO1lX7mdXPbbrpac6UxksZj+caB7j+bbaxz6uBa+8zu++nOsOSaDvup/fW70mtqNtuY/bQjjPPZgyvvp8Z4Gut85tAq59PhLMsufvD+/Oe94fcrFy9858stv3fp9Dudix+8/8fXnvintYwfgMH3y6JsK97rmn4ztZrf/wMAAAADIfb9w6Em+n8AAACojNj3x/8Vnuj/AQAAoDJi3z8aalKF/v+Pe6+y47XPzv/yYpaS+YtBvD7thgeK9WLGdSZcnlxc0lh+/xfn/ucfL65ueMNZlv38gT/quP6OB+K4CpNhnE+9rnX5Ml++a1XbPvrQxbTd5vz658L9x8ez2mnQKYI7k2XZV6//VL6dyfdczuvTDxzN64OXHn+ssc5zh4rL8fbPvLBY/69C+PfwiWMtt38m7Icfhjrzps77I97uS5dfsfPAu5a2F283tOu6/GE/8d7ifuP35Hz6sWL9uJ9XGv/XPvnklxrrP/KyzuO/ONx5/E+G+/1iqP/74mL95uegcTne7uNh/HF78XZ3f+HrHcf/1CeK9c++vljvaKhx+7eHy7tf/+x88/56ZOhYy+PK3lCsF7c/850/za+P9xfvv338E0cut+yP9vnx9L8X9zPdtn5cHrcT/UPb9hv30zw/4/af/JOjLfu51/afevCZFzfut337d7atd/aDd+TbX7q/1m9s+uuPf6rj9uJ4Dv/92ZbHc/jt4XUctv/Ee8N8DNf/31PF/bV/u8LRt7cef+L6n9t+seXxRG/8abH9p151Mq9bJrZuu+Z511536aWNfZdl395S3F+v7Z/8mzMt4//8jcX+iNfHjH779lcSt3/uQ1OnzyxcmJ9Ne/XR6/PvznlzMZ443uvDsbX98pEz5983d25yZnImyyar+xV6V+wLof64KJe6r7247Ah6x0Ph+bz5L7+67bZ/+2Rc/h/vLJZfflPxvvXysN6nw/Lt4flb2/aXe+KWG/PX99DTYYSLy78veD127v7vg72+3zcXHn/754I438++6H35fmhcl79vxNf1Osf/vdnifr4S9uti+GbmXTcuba95/fjdCJffUbze173/wmEuPq9/F57vt/ywuP84rvh4vxc+x3x9R+vxLs6Pr1wcbr///Fs8LoXjSXapuD6uFff35edu7Di8+D0k2aWb8st/lu7npjU9zJUsfHhh+tT86QuPTJ+fWzg/vfDhjxx5+MyF0+eP5N/leeT9vW6/dHzalh+fZuf235PlR6szRbnKNnv8Zx86Pntg5rbZuRPHLpw4/9DZuXMnjy8sHJ+bXbjt2IkTcx/qdfv52fv27D2078DeqZPzs/cdPHRo36Gp+dNnGsMoBtXD/pkPTJ0+dyS/ycJ99xzac++998xMPXxmdu6+AzMzUxd63T5/b5pq3PoPp87NnTp2fv7huamF+Y/M3bfn0P79e3t+G+DDZ08sTE6fu3B6+sLC3Lnp4rFMns8XN977et2ealr4fvF5tt1Q8UV82dvu3J++n7Xhix9d8a6KVdq+QPTZ8F0033z+2YOruRz7/rFQkyr0/wAAAEAu9v3joSb6fwAAAKiM2PdvCTXR/wMAAEBlxL5/ItT0XwJq0v9XLv+/4+Kqti//L//fvL/k/2uW/39H2fL/xfFC/r8/1pu/r0P+f1Uryv/L/8v/y//L/9MHZcv/x75/a5b5/T8AAABUVOz7t4Wa6P8BAACgMmLff02oif4fAAAAKiP2/c8LNalJ/y//L/8v/y//L//fefvy/4NJ/r+7kuX/J9oXyP9vfv4/q1f+/1I/x78J+f+tzRfk/ymjsuX/Y99/bahJTfp/AAAAqIPY918XaqL/BwAAgMqIff/1oSb6fwAAAKiM2PdvDzWpSf8v/7+u/H/KXA1u/r/Ysvy//L/8v/x/Vcj/d1ey/P8y8v+bn/93/v+Byv+3kP+njMqW/499//NDTWrS/wMAAEAdxL7/BaEm+n8AAAAon9Eru1ns+18YarKs/7/CDQAAAACbLvb9N2RtQfCa/P5f/t/5/0t7/v8x+X/5/0L58/8jmfx/ecj/dyf/30M/8v+X5P/l/+X/5f+Jypb/z/v+bCJ7UahJTfp/AAAAqIPY998YaqL/BwAAgMqIff+vhJro/wEAAKAyYt+/I9SkJv2//H9l8v8/a37qKpH/d/5/+f+g/Pl/5/8vE/n/7uT/e3D+f/l/+X/5f/pqoWOntHn5/9j33xRqUpP+HwAAAOog9v03h5ro/wEAAKAyYt//q6Em+n8AAACojNj37ww1qUn/L/9f8vx/TI7W8fz/8v/y/0GZ8/8T8v+lI//fnfx/D/L/8v/y//L/9NXC94vPs+02K/8f+/4Xh5rUpP8HAACAOoh9/0tCTfT/AAAAUBmx739pqIn+HwAAACoj9v2ToSY16f/Xkv8fuiT/v5KrfP7/8VWc/7+F/P+m5P9H5f8Ldcr/Z/L/pSP/3538fw/y//L/8v/y//RV2fL/se+/JdSkJv0/AAAA1EHs+3eFmuj/AQAAoDJi339rqIn+HwAAACoj9v27Q01q0v87//9A5P8z+f+ByP87/38g/9+Z/P/GkP/vTv6/B/l/+X/5f/l/+qps+f/Y978s1KQm/T8AAADUQez7bws10f8DAABAZcS+/+WhJvp/AAAAqIzY998ealKT/l/+X/5f/l/+X/6/8/Y3PP9/Sf6/H+T/u5P/70H+X/5f/l/+n74qW/4/9v2vCDWpSf8PAAAAdRD7/jtCTfT/AAAAUBmx778z1ET/DwAAAJUR+/6pUJOa9P/y//L/1cz//6f8f5fty/+XNP/v/P99If/fnfx/D/L/8v/9yP+PhQXy//L/bHr+P35ei5dj339XqElN+n8AAACog9j33x1qov8HAACAyoh9/3Soif4fAAAAKiP2/TOhJjXp/+X/5f+rmf93/v9u219X/v+lS/cr/1+Q/y8X+f/u5P976Gf+f4v8f23z/+s6//+Y/D+Vstn5//bLse/fE2pSk/4fAAAA6iD2/XtDTfT/AAAAUBmx798XaqL/BwAAgMqIff89oSY16f/l/+X/5f/l/53/v/P25f8Hk/x/d/3P/8eHKP/v/P/y//3J/zv/P9VStvx/7PvvDTWpSf8PAAAAdRD7/v2hJvp/AAAAqIzY9x8INdH/AwAAQGXEvv9gqElN+n/5f/l/+X/5f/n/ztuX/x9M8v/dOf9/D/L/8v8DnP9vzC35f8qmbPn/2PcfCjWpSf8PAAAAdRD7/leGmuj/AQAAoDJi3/9roSb6fwAAACih8Su6Vez7fz3UpCb9v/y//L/8v/z/Juf/x3rl/8fl/+X/10D+vzv5/x7k/+X/Bzj/v8L5/68NV8v/synKlv+Pff99oSY16f8BAACgDmLf/xuhJvp/AAAAqIzY978q1ET/DwAAAJUR+/7DoSY16f/l/zco/x8Xljb/H5PM8v/5Avl/5/+X/x9Y8v/dyf/3IP8v/1+9/H+/z//f/jadyP/TSdny/7Hvf3WoSU36fwAAAKiD2PffH2qi/wcAAIDKiH3/a0JN9P8AAABQGbHvf22oSU36f/l/5//f/PP/j7WMXf5/6Xby/wX5f/n/tZD/707+vwf5f/l/+X/n/6evypb/j33/60JNatL/AwAAQB3Evv/1oSb6fwAAAKiM2Pe/IdRE/w8AAACVEfv+N4aa1KT/l/+X/9/8/L/z/8v/F+T/5f/7Qf6/O/n/HuT/5f/l/+X/6auy5f9j3/+boSY16f8BAACgDmLf/0Coif4fAAAAKiP2/W8KNdH/AwAAQGXEvv/NoSY16f/l/+X/5f/l/+X/O29f/n8wyf93N2D5/19cF5bL/xfk/8s9/rXm/0fbLl+V/P8PVsr/L25pv738P1dD2fL/se9/S6hJTfp/AAAAqIPY97811ET/DwAAAJUR+/63hZro/wEAAKAyYt//W6EmNen/5f8b41hKL8v/y//nC+T/5f/l/weW/H93Kf//XKd3riblyP87/38b+f9yj9/5/+X/Wa5s+f/Y97891KQm/T8AAADUQez7Hww10f8DAABAZcS+/x2hJvp/AAAAqIzY978z1KQm/b/8v/P/y//L/8v/d96+/P9gkv/vbsDO/y//30b+v9zjvyr5//+S/2ewlS3/H/v+h0JNatL/AwAAQB3Evv9doSb6fwAAAKiM2Pf/dqiJ/h8AAAAqI/b97w41qUn/L/8/KPn/Sfn/Neb/x8My+X/5f/n/epH/707+vwf5f/n/suX/nf+fAVe2/H/s+98TarL6/n9i1WsCAAAAV1P7r5OS2Pf/TqhJTX7/DwAAAHUQ+/7fDTXR/wMAAEBlxL7/90JNatL/y/8PSv7f+f8z5/+X/297PPL/8v+dbFz+Px551pT/39Jr+/L/8v/y/4M7fvl/+X+WK1v+P/b9vx9qUpP+HwAAAOog9v3vDTXR/wMAAMBA6PR/stvFvv9IqIn+HwAAACoj9v1HQ01q0v/L/8v/y/+XNP//F7v+5bvfeuvRPfL/8v/y/2uyoef/b7z4nf9f/l/+P5H/l/+X/6dd2fL/se8/Fmqy1Pi92Qn+AQAAYLDFvv8PQk1q8vt/AAAAqIPY9x8PNdH/AwAAQGXEvn821KQm/b/8/ybm/0ezLJP/l/+v4Pn/4/4YpPz/1JYByv/Hg678f0cbmv9/11JOXP5/rfn/8Y5L2/P/Q/L/LeT/1zz+b2ZZtmHjv/iv8v/y/7QrW/4/9v1zoSY16f8BAACgDkLfP3yiqEtX6P8BAACgMmLffzLURP8PAAAAlRH7/veFmtSk/5f/d/5/+X/5f+f/77z90ub/nf+/K/n/7sqT/+/M+f/l/wd5/M7/L//PcmXL/8e+fz7UpCb9PwAAANRB7PvfH2qi/wcAAIDKiH3/B0JN9P/w/+zdyZNlZZnH8ZuQRFUF0RG960Uvuve96k1vWDSrXnT/Ab1gw6YjulvFAeeJwnnEeR7QUBEHHEARUVGcBScUcUTFGcQJJ0SlDCqf56kcTp6bWXUz77nv+/ksfIqE5F4IrOJXybcOAABAM3L3Pzhu6WT/6//1/032/0f0/2Ovr//X/7dM/z9O/z+H/l//r//X/7NQU+v/c/c/JG7pZP8DAABAD3L3XxS32P8AAADQjNz9D41b7H8AAABoRu7+h8Utnex//b/+v8n+/z/u/r/7/13/v9vr6//1/y3T/4/T/8+h/9f/6//1/yzU1Pr/3P0Pj1s62f8AAADQg9z9j4hb7H8AAABoRu7+i+MW+x8AAACakbv/kXFLJ/t/W/+/Nuuz/8+MV//fUv/v+f+7vr7+X//fssPt/y994Hs+/b/+X/8f9P/6f/0/202t/8/d/6i4pZP9DwAAAD3I3f/ouMX+BwAAgGbk7n9M3GL/AwAAQDNy9z82bulk/3v+v+f/6//1//r/4dfX/68mz/8f11P/f/Gt5150z7X/eN1+Xl//r//X/+v/Wayp9f+5+x8Xt3Sy/wEAAKAHufsfH7fY/wAAANCM3P1PiFvsfwAAAFhBxwY/mrv/iXFLJ/tf/6//1/9H/39U/6//1/+3QP8/btn9/9CPl5t5/n/7/f+DFvJOl/f+x+j/9f/sNLX+P3f/k+KWTvY/AAAA9CB3/5PjFvsfAAAApmvef1i2Te7+S+IW+x8AAACakbv/eNzSyf7X/x98//9X/f9q9P+e/6//1/83Qf8/btn9/zz6//b7/4O07Pev/9f/s9PU+v/c/ZfGLZ3sfwAAAOhB7v6nxC32PwAAADQjd/9T4xb7HwAAAJqRu/9pcUsn+1//7/n/+n/9/+H3/xvf2er/T/1d1f8vjv5/nP5/Dv3/mfbz5+j/9f/6fzbbZ/9/38h32wvp/3P3Pz1u6WT/AwAAQA9y9z8jbrH/AQAAoBm5+58Zt9j/AAAA0Izc/c+KWzrZ//p//b/+X/9/2v3/zn/0TvL8/2H6/8Oh/x83mf5/bX3ww/r/le//Pf9f/6//Z4upPf8/d/+z45ZO9j8AAAD0IHf/c+KWkf2/75/MBwAAAJYqd/9z4xZf/wcAAICVl9VZ7v7nxS2d7H/9v/5f/6//P/zn/69+/3/dpven/58W/f+4yfT/u9D/6/9X+f3r//X/7DS1/j93//Pjlk72PwAAAPQgd/9lcYv9DwAAAM3I3f+CuMX+BwAAgGbk7n9h3NLJ/h/u/0/9/kn3/9sj4Zn+P+n/2+7/88+o/x/t/8/3/P8+6f/H6f/n0P/r//X/u/X/x+Z9vv6fIVPr/3P3vyhu6WT/AwAAQA9y9784brH/AQAAoBm5+18St9j/AAAA0Izc/S+NWzrZ/57/r//X/69e/+/5/xuW+fz/2aH3/+v6/z1abv+/dn/+CKr/P733r//X/6/y+2+y/z9ntvX5/yO/CoD+nyFT6/9z978sbulk/wMAAEAPcve/PG6x/wEAAGA1bP5vB4aeFTeb1e5/Rdxi/wMAAEAzcve/Mm5pZ/+PPqtT/6//1/+f/HT9v/5/oP9fn02n//f8/73y/P9x+v859P8H0c+vN9b/X77b50+h/7/k4J7//6/zPl//z5At/f8Npz6+rP4/d/+r4pZ29j8AAAB0L3f/q+MW+x8AAACakbv/NXGL/Q8AAADNyN3/2rilk/1/4P3/yK8+oP/X/0+k//f8f/3/4OtP6/n/+v+90v+P0//Pof/3/H/P/9f/c+Y2/Svjlv5/k2X1/7n7Xxe3dLL/AQAAoAe5+18ft9j/AAAA0Izc/ZfHLfY/AAAANCN3/xvilk72v+f/6//1//p//f/w6+v/V9MZ9fdn6f+L/l//r//X/+v/WYCp9f9bd39/+x8AAAB68MaT/3s0fr7e/gcAAIAW5e5/U9xi/wMAAEAzcve/OW7pZP/r/w+2/8+P6//1/zP9v/5f/38oun3+/9rQj0Q77dL/3/y/x/9r60f0//p//b/+X//PHv39yO+bRP9/4tS/Xebuf0vc0sn+BwAAgB7k7r8ibrH/AQAAoBm5+98at9j/AAAA0Izc/VfGLfvc/2PNw5Tp/z3/X/+v/9f/D7++/n81ddv/75Hn/8+h/9f/6//1/yzUJPr/Tb+du/9tcYuv/wMAAEAzcve/PW6x/wEAAKAZufvfEbfY/wAAANCM3P3vjFs62f/6f/2//l//r/8ffn39/2rS/4/T/8+xSv3/lWfQ/68Pf3jZ/fyZWvb71//r/9lpav1/7v6r4pZO9j8AAAD0IHf/u+IW+x8AAACakbv/3XGL/Q8AAADNyN3/nrilk/2v/9f/6//1//r/4dfX/68m/f84/f9sNrt65A0M9f8njkyz//f8/8m9f/2//p+dptb/5+5/b9zSyf4HAACAHuTuvzpusf8BAACgGbn7r4lb7H8AAABoRu7+98Utnex//b/+X/+v/9f/D7++/n816f/H6f/nWKXn/+v/J/f+9f/6f3aaWv+fu//9cUsn+x8AAAB6kLv/2rjF/gcAAIBm5O7/QNxi/wMAAEAzcvdfF7d0sv/1//p//b/+f6D/P/l/df2//n8VHVz/P9P/6//1/3Po//X/+n+2m1r/n7v/g3FLJ/sfAAAAepC7//q4xf4HAACAZuTu/1DcYv8DAABAM3L3fzhu6WT/6//1//p//b/n/w+/vv5/NXn+/zj9/xz6f/2//l//z0IN9/+XLK3/z93/kbilk/0PAAAAPcjdf0PcYv8DAABAM3L3fzRusf8BAACgGbn7Pxa3dLL/9f/6/639/2ym/9f/6/83DPT/t917xd/Vby+g/z860/8vnP5/nP5/Dv1/m/3/WbOG+v9ju36+/p8pmtrz/3P33xi3dLL/AQAAoAe5+z8et9j/AAAA0Izc/Z+IW+x/AAAAaEbu/k/GLZ3sf/2//n/Bz/+/68KB96H/36D/X/n+3/P/V4D+f5z+fw79f5v9v+f/6/9Zmqn1/7n7PxW3dLL/AQAAoAe5+z8dt9j/AAAA0Izc/Z+JW+x/AAAAaEbu/s/GLZ3sf/2//n/B/b/n/+v/9f+70P8fDv3/OP3/HPr/5vr//Ld7/b/+n+WYWv+fu/9zcUsn+x8AAAB6kLv/prjF/gcAAIBm5O6/OW6x/wEAAKAZufs/H7d0sv/1//p//f9q9v9Ht/T/Z8/0/6f+eP1/36bS/5933n/eov/X/+v/l9//e/6//p/lmlr/n7v/C3FLJ/sfAAAAepC7/4txi/0PAAAAzcjd/6W4xf4HAACAZuTu/3Lc0sn+39n/nzPbKFQ3DPX/0ajp/zfR/299//r/4X8+PP9f/6//P3hT6f89///03r/+X/+/yu9/X/3/P+/8fP0/LZpa/5+7/5a4pZP9DwAAAD3I3f+VuMX+BwAAgGbk7v9q3GL/AwAAQDNy998at3Sy/z3/X/+v/9f/L7z/v/7OjW/o/7fQ/x+O0+zv/+3G+Ib+P+j/9f/6/36f/3+2/p/FmVr/n7v/a3FLJ/sfAAAAepC7/7a4xf4HAACAZuTu/3rcYv8DAABAM3L3fyNu6WT/6//1//p//b/n/w+/vv5/NXn+/zj9f9n+l7ahn/7/6NAHl93Pn6llv/9m+n/P/2eBptb/5+7/ZtzSyf4HAACAHuTu/1bcYv8DAABAM3L3fztusf8BAACgGbn7vxO3dLL/9f/6//b7/wv1/9teX/+v/2+Z/j9/RB+m/5+jn/5/0LL7+VV///p//T87Ta3/z91/e9zSyf4HAACAHuTu/27cYv8DAABAM3L3fy9usf8BAACgGbn7vx+3dLL/9f999f9rsx77f8//1//r/3ui/x+n/59D/6//1//r/1moqfX/ufvvWFvvcv8DAADAqvrvf/n/2/f6x95x8n+Pzn4Qt5w/O7HHL2MDAAAAE/fA7l9bn81+ePK3fP0fAAAAWpS7/0dxSyf7X//fV//f5/P/9f/6f/1/T4b6+6Hvo3ej/w/6f/2//l//r/9nAabW/+fu/3Hcsmn4re/7rxIAAACYktz9P4lbOvn6PwAAAPQgd/9P45Yd+98vBwgAAACrKnf/z+KWTr7+r/+feP8/O6D+P/44/f8G/b/+f+j19f+ryfP/x51h/39iTf+v/x+h/9f/6//Zbmr9f+7+O+OWTvY/AAAANGrLzyjk7r8rbrH/AQAAoBm5+38et9j/AAAA0Izc/XfHLZ3sf/3/off/maof4PP/j9W3PP+/8/7/sqODr6//1/+3TP8/zvP/59D/t9L/H9H/6/+Zhqn1/7n7fxG3dLL/AQAAoAe5+38Zt9j/AAAA0Izc/b+KW+x/AAAAaEbu/l/HLZ3sf/3/xJ//f1r9/x6e/6//76P/3+X12+n//+Hc4zdd8D/XXKX/55TD7P/zn4VD7v+P7PfPuZn+fw79fyv9v+f/6/+ZiMX3/+tbPrjf/j93/2/ilk72PwAAAPQgd/89cYv9DwAAAM3I3f/buMX+BwAAgGbk7v9d3NLJ/tf/6/+n0v/n3+sl9P/HT7v/PzabzZbS/2dT3Hv/7/n/+v+dPP9/nP5/Dv2//l//r/9noRbf/2/94H77/9z9v49bOtn/AAAA0IPc/X+IW3L/r+37p+4BAACAicnd/8e4xdf/AQAAoBm5+++NWzrZ//p//f9U+v/k+f+nPq+t5/9fUHFqn/3/P9W39P8HS/8/Tv8/h/5f/6//1/+zUFPr/3P3/ylu6WT/AwAAQA9y998Xt9j/AAAA0Izc/X+OW+x/AAAAaEbu/r/ELZ3sf/1/q/1/FvH6f/3/VPp/z//3/P/Dof8fp/+fQ/+v/9f/6/9ZqKn1/7n7/xYAAP//2HxcCQ==") mount$overlay(0x0, &(0x7f0000000140)='./file0\x00', &(0x7f0000000180), 0x40, &(0x7f0000000200)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 1m45.34233404s ago: executing program 5 (id=7492): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFULNL_MSG_CONFIG(r0, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000640)=ANY=[@ANYBLOB="2c000000010401010000000000000000070000020800044000007cf1050001"], 0x2c}, 0x1, 0x0, 0x0, 0x8000}, 0x4000004) 1m44.171198037s ago: executing program 1 (id=7503): r0 = socket(0x1d, 0x2, 0x6) setsockopt$inet_sctp6_SCTP_AUTH_DELETE_KEY(r0, 0x6a, 0x19, 0x0, 0x0) 1m43.848048041s ago: executing program 5 (id=7505): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={0x38, 0x25, 0x109, 0x870bd22, 0x25dfdbfd, {0x2}, [@nested={0x10, 0x3d, 0x0, 0x1, [@typed={0x9, 0x153, 0x0, 0x0, @str='SEG6\x00'}]}, @typed={0x8, 0x3, 0x0, 0x0, @binary='G\x00\x00\x00'}, @nested={0xc, 0x3e, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @u32=0x7}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x1000c957}, 0x0) 1m43.133799527s ago: executing program 32 (id=7505): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000007c0)={0x38, 0x25, 0x109, 0x870bd22, 0x25dfdbfd, {0x2}, [@nested={0x10, 0x3d, 0x0, 0x1, [@typed={0x9, 0x153, 0x0, 0x0, @str='SEG6\x00'}]}, @typed={0x8, 0x3, 0x0, 0x0, @binary='G\x00\x00\x00'}, @nested={0xc, 0x3e, 0x0, 0x1, [@typed={0x8, 0x10, 0x0, 0x0, @u32=0x7}]}]}, 0x38}, 0x1, 0x0, 0x0, 0x1000c957}, 0x0) 1m43.128503171s ago: executing program 1 (id=7510): r0 = syz_open_dev$dvb_frontend(&(0x7f00000002c0), 0x0, 0x2) ioctl$FE_READ_SIGNAL_STRENGTH(r0, 0x80026f47, &(0x7f0000000040)) 1m37.059405819s ago: executing program 1 (id=7526): r0 = openat$iommufd(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) ioctl$IOMMU_TEST_OP_ACCESS_RW(r0, 0x3ba0, &(0x7f0000000ac0)={0x48, 0x14, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}) 1m36.77956733s ago: executing program 1 (id=7513): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000500)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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") mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 1m35.938224926s ago: executing program 1 (id=7519): r0 = syz_open_dev$dvb_demux(&(0x7f0000000080), 0x0, 0x41) ioctl$DVB_DEMUX_DMX_SET_PES_FILTER(r0, 0x40146f2c, &(0x7f00000000c0)={0x1, 0x0, 0x3, 0x13}) 1m35.431070135s ago: executing program 1 (id=7530): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x300, 0x0) sendfile(r0, r0, &(0x7f0000000040)=0x1, 0xfffffffffffffbff) 1m34.379445481s ago: executing program 33 (id=7530): r0 = openat$ttyS3(0xffffffffffffff9c, &(0x7f0000000100), 0x300, 0x0) sendfile(r0, r0, &(0x7f0000000040)=0x1, 0xfffffffffffffbff) 5.090192366s ago: executing program 4 (id=8524): r0 = openat$sysctl(0xffffffffffffff9c, &(0x7f0000000280)='/proc/sys/vm/drop_caches\x00', 0x1, 0x0) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000140)='2', 0x1}], 0x1) 4.553452441s ago: executing program 4 (id=8531): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000140)={&(0x7f00000001c0)={0x14, 0x3a, 0x301, 0x70bd25, 0xfffffffc, {0x6}}, 0x14}, 0x1, 0x0, 0x0, 0x448d3}, 0x0) 4.235292188s ago: executing program 4 (id=8537): r0 = syz_open_dev$dvb_demux(&(0x7f0000000400), 0x0, 0x700) ioctl$DVB_DEMUX_DMX_SET_BUFFER_SIZE(r0, 0x6f2d, 0xffffffffff60014a) 2.500608495s ago: executing program 6 (id=8556): r0 = openat$vnet(0xffffffffffffff9c, &(0x7f0000000180), 0x2, 0x0) ioctl$VHOST_NET_SET_BACKEND(r0, 0x4008af25, &(0x7f0000000040)) 2.305626834s ago: executing program 2 (id=8559): syz_mount_image$ext4(&(0x7f0000000080)='ext3\x00', &(0x7f0000000480)='./file0\x00', 0x0, &(0x7f0000000180)={[{@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x7}}, {@bh}, {@nomblk_io_submit}, {@data_err_ignore}, {@usrjquota}]}, 0xfe, 0x469, &(0x7f0000000500)="$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") unlinkat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x200) 2.169042832s ago: executing program 6 (id=8561): r0 = syz_init_net_socket$llc(0x1a, 0x1, 0x0) accept(r0, 0x0, 0x0) 1.978911776s ago: executing program 3 (id=8563): r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1) setsockopt$inet_mreq(r0, 0x0, 0x20, &(0x7f0000000040)={@private=0xa010102, @local}, 0x8) 1.930461953s ago: executing program 6 (id=8564): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f00000003c0)={0x0, 0x0, &(0x7f0000000380)={&(0x7f0000000700)=@newsa={0x104, 0x1a, 0x7, 0x0, 0x0, {{@in6=@rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x02', @in=@multicast2, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x20, 0x2, 0x0, 0xee00}, {@in6=@mcast1, 0x2, 0x2b}, @in6=@private0={0xfc, 0x0, '\x00', 0xfc}, {0x300, 0x3, 0x2, 0xfeffff7f00000000}, {0x0, 0x200000, 0x8, 0x1}, {0x40000, 0x4, 0xae8}, 0x0, 0x3, 0xa, 0x0, 0x4, 0x70}, [@coaddr={0x14, 0xe, @in=@initdev={0xac, 0x1e, 0x1, 0x0}}]}, 0x104}}, 0xc000000) 1.901612308s ago: executing program 7 (id=8565): r0 = socket$kcm(0x10, 0x2, 0x4) sendmsg$kcm(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)=[{&(0x7f0000000040)="89000000120081ae08060cdc030ec0007f03e3f70000000140e2ffca1b1f00f0000004c00e72f750375ed08a56331dbf9ed7815e381ad6e747033a0093b837dc6cc01e32efaec8c7a6ec08120c000200040000000400446b9bbc7a46e3988285dcdf12f21308f868fece01955fed0009d78f0a947ee2b49e33538afa8af92347514f0b56a20ff27fff", 0x89}], 0x1}, 0x0) 1.811215629s ago: executing program 4 (id=8566): add_key$keyring(&(0x7f0000000000), &(0x7f00000000c0)={'syz', 0x0}, 0x0, 0x0, 0xfffffffffffffffe) keyctl$join(0x1, &(0x7f0000000680)={'syz', 0x0}) 1.735485379s ago: executing program 0 (id=8567): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000f80)={0x24, 0x2c, 0x107, 0x0, 0x25dfdbff, {0x3, 0x7c}, [@nested={0x8, 0x1, 0x0, 0x1, [@typed={0x4, 0x6}]}, @nested={0x8, 0x2, 0x0, 0x1, [@nested={0x4, 0x1}]}]}, 0x24}, 0x1, 0x0, 0x0, 0xc000}, 0xc010) 1.528229585s ago: executing program 2 (id=8568): socketpair$unix(0x1, 0x5, 0x0, &(0x7f0000000080)={0xffffffffffffffff}) sendmmsg(r0, &(0x7f0000001c00), 0x400000000000159, 0x40840) 1.52808454s ago: executing program 3 (id=8569): r0 = syz_open_dev$video4linux(&(0x7f0000000080), 0x0, 0x0) ioctl$VIDIOC_QUERYMENU(r0, 0xc008561c, &(0x7f00000001c0)={0x980915, 0x8081, @name="6736516728a5678c18a4ec047f3f1fa52fe9a9987d0406b3a0c705c611b66f06"}) 1.525886816s ago: executing program 6 (id=8570): r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) ioctl$vim2m_VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f00000000c0)={0x2, @pix={0x7ff, 0x25, 0x4c47504a, 0x4, 0x9, 0x9, 0x9, 0x3, 0x1, 0x2, 0x2, 0x3}}) 1.482115993s ago: executing program 7 (id=8571): r0 = syz_open_dev$evdev(&(0x7f0000000b80), 0x0, 0x0) ioctl$EVIOCSKEYCODE_V2(r0, 0x80104592, &(0x7f00000001c0)={0x8, 0x2, 0x0, 0x20, "20033d0000000012000300000000000010000000000000c17ebdc3e13e3800"}) 1.403294445s ago: executing program 0 (id=8572): r0 = socket(0x400000000010, 0x3, 0x0) ioctl$sock_ipv4_tunnel_SIOCCHGTUNNEL(r0, 0x8932, &(0x7f00000006c0)={'gre0\x00', 0x0}) 1.403022506s ago: executing program 4 (id=8573): socketpair$nbd(0x1, 0x1, 0x0, &(0x7f00000000c0)={0xffffffffffffffff}) ioctl$SIOCSIFHWADDR(r0, 0x8b26, &(0x7f0000000000)={'wlan1\x00', @random="dc91005f00"}) 1.29584053s ago: executing program 3 (id=8574): r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x89901) move_mount(r0, &(0x7f0000000100)='.\x00', 0xffffffffffffff9c, 0x0, 0x51) 1.232268079s ago: executing program 6 (id=8575): syz_mount_image$erofs(&(0x7f0000000200), &(0x7f0000000080)='./bus\x00', 0x0, &(0x7f0000000180)=ANY=[], 0x4, 0x1df, &(0x7f0000000300)="$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") openat(0xffffffffffffff9c, &(0x7f0000000180)='./file1\x00', 0x42, 0x0) 1.119377127s ago: executing program 7 (id=8576): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$IPCTNL_MSG_CT_GET_DYING(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000040)={0x14, 0x6, 0x1, 0x401, 0x0, 0x0, {0x0, 0x0, 0x4}}, 0x14}, 0x1, 0x0, 0x0, 0x2404c031}, 0x20000000) 1.086842787s ago: executing program 4 (id=8577): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000002380)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='GPL\x00'}, 0x62) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002300)={r0, 0x18000000000002a0, 0x22, 0x0, &(0x7f0000000580)="b9ff0300600d698cff9e13f008004de7f9c764360000000100135433f6e31e17128c", 0x0, 0xfffffffe, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.086213994s ago: executing program 0 (id=8578): r0 = socket(0x10, 0x3, 0x0) write(r0, &(0x7f0000000340)="1b0000001a005f0400f9f4070009040180002000e98c0000000000", 0x1b) 1.018997571s ago: executing program 3 (id=8579): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) clock_settime(0xfffffffb, 0x0) 881.905682ms ago: executing program 7 (id=8580): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$kcm(r0, &(0x7f0000000940)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f0000000140)="d80000001c0081044e81f782db44b904021d08020e0000008100e0a1180002000000000000000e1208000f0100810401a8001600200001400300000803600cfab94dcf5c0461c1d67f6f94007134cf6ee08000a0e408e8d8ef075c11503c6bbace8017cb090000001fb791643a5ee4001b146218a07445d6d930dfe1d9d322fe7c9fd68775730d16a4683f5aeb4edbb57a5025ccca9e00360db70100000040fad95667e0060000000000000080bb9ad809d5e1cace81ed0bffece0b42a9ecbee5de6ccd40dd68adbef3d93452a00"/216, 0xd8}], 0x1, 0x0, 0x0, 0x7400}, 0x0) 763.157399ms ago: executing program 0 (id=8581): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f0000002c40)={0x7, 0x17, &(0x7f00000007c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014a3dcd55c030000000000008500000005000000bf09000000000000c6090100000003e70600000006000000180100002020702500000000002020207b9af8ff00000000ae9100000000000037010000f8ffffffb702000008000000b70300000000000114000000060000005c93000000000000b5030000b68f3f208500000076000000b70000000000000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) 747.431635ms ago: executing program 2 (id=8582): r0 = socket$inet6_sctp(0xa, 0x5, 0x84) setsockopt(r0, 0x84, 0x14, &(0x7f00000002c0)="1a00000002000000", 0x8) 738.906298ms ago: executing program 6 (id=8583): r0 = openat$sequencer(0xffffffffffffff9c, &(0x7f00000002c0), 0x2441, 0x0) ioctl$SNDCTL_SEQ_THRESHOLD(r0, 0x4004510d, &(0x7f0000000400)=0xb8e7) 693.505099ms ago: executing program 3 (id=8584): syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x105042, 0x0) 559.196815ms ago: executing program 7 (id=8585): r0 = userfaultfd(0x80001) ppoll(&(0x7f0000000140)=[{r0}], 0x1, 0x0, 0x0, 0x0) 498.319605ms ago: executing program 0 (id=8586): syz_mount_image$hfsplus(&(0x7f0000000600), &(0x7f0000000640)='./file0\x00', 0x200041a, &(0x7f0000001500)=ANY=[@ANYBLOB="6465636f6d706f73652c6e6f626172726965722c6e6c733d63703433372c003e9d740800000000000000d9078a0de6ea38a6de8889e50ee5dd76d457f64e28eb80c66e303a0b46c3283301b8549a9bf465d4370d60cfccc6733f1f7ed4ae7f05fecd0c901c9296595dc7ba2dca56b181e33637d7a2eb7d028f3e2d1ce59d8dbc5448f49012626e5513fc4247b733c86c1361d4f95bc7f6dd07af4708c528986b077c7e9fc9a655466f095c09434ef7b751c8f1c4e7898c3ac9621a7e09c52c65d0b9fe6143a0db3e326834a8b437bf974e4ec6634476f3c414eedfd64ba4712d896e73990134a8bb3a3e12a7a94115960230"], 0x1, 0x5c8, &(0x7f00000006c0)="$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") creat(&(0x7f00000009c0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x44) 492.089106ms ago: executing program 2 (id=8587): r0 = socket(0x2d, 0x2, 0x0) sendmsg$RDMA_NLDEV_CMD_DELLINK(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2d, 0x20, 0x0, 0x4}, 0xc, &(0x7f00000000c0)={0x0}, 0x1, 0x0, 0x0, 0x57c02931d9dbff28}, 0x0) 293.383528ms ago: executing program 7 (id=8588): syz_mount_image$nilfs2(&(0x7f0000000140), &(0x7f0000000f00)='./file1\x00', 0x208800, &(0x7f0000003100)=ANY=[], 0x2, 0xf04, &(0x7f0000000f40)="$eJzs3U9sHNUZAPA3a6/txCZeAwUDJaTQikDBDkmkprcgUI+IS++gkNAIQ1FDD0T8MT0gKiGKhDhVHKi4UCqlSK0EqlShntqeWvXWE+qFSlUqBfXQRkpc2X5vvX72sOuxPbv2/n7St2/fvNn5vslazsx49m0AhlZj5fHkydkihHc/fefRl58qfru87K72GkdWHovYa4UQmh39Itve53HBtSsvndmsLcLxlcfUD49dbr92MoSwGI6Ez0IrfDS/8OWH7z1y9OPXJ2556+Izr+zS7rfl+wEAAPvRpT8v/P2+f/7pgZmrlw6fDuPt5en4vBX7k/G4/1g8UE7Hy42wvl90RKexbL2RGI1svZFsvdEsz2hJvma2nWbJemNd8o10LNtsPwEAAGAvSue1rVA05tb1G425udXz/mWfT48Vc8+dXzh3oU+FAgAAAJX959WVm26FEEIIIUSt0RyAGoQQQgxTLE33+woEAAAAMGzy+cI2WNzZmbraW2v1lv/yw43NXw87oO6ff/n3Vv4PXvMbBwCA6vbr0WTar3QcneYxyOcRHMlet9Xj/0a2ndEt1lk2r+C65cXgvk1l9ef/roOqrP6tvo/9UlZ/Ph/moCqrP5+nc1CV1T9ecx1VldU/UXMdVZXVf6DmOqoqq/9gzXVUVVb/ZM11VFVW/1TNdVRVVv8NNddRVVn9h2quo6qy+vfKbbVl9bdqrqOqsvpnaq6jqrL6b6y5jqrK6r+p5jqqKqv/5prr6Jc7Y5v+HQ5n453nz/k53V45xwMAAIBh9z/z/wkhhBAbYuU+iAGoQ4j9HcUA1CC+Ktp/7xuAWoQQ249X+3r1AQAAABgE6XMB6QPoS1EaH+kyPho/S7QyPrG2Qhpvdnn9WJfx8S7jAAAAQAi/e+PcbW8Xa5/z3+58eB3zRl0PFeYxyie622r+7c57tt38e2XeMgAAAIZL8b3Prt//6PsvzFy9dPh0x9nv9Xi+m+YBHY3XBj6J/XRfwFTWL9I59On1eRol6+XXB24o297j29xRAAAAGGLp/L0VisZcx3l3KzQac3Nr5+OzoVmcO79w9ljsp+9n+eN0c3x5+UM11w0AAAD0bu18f/Pz//Q9vrNhrJh77vzCuQur/an28maj87rA9NryovO6QCtbfrxk+YnYT9/f+YPpAyvL5878cOGpnd55AAAAGBIXXrz4zJMLC2d/5IknnnjSftLv30wAAMBO++KLd5o/PjH1+9XP/6/Nf5c+/38k9ltxbr+/xBXSfQLpcwAbPq//xPo802XrPb9+vVa23kiM8azuiY7tLDuQvW6mLF9r/XbGSvJNZvmmsnz5PAWj2fop36FseT4/YVpvOluez8M4muUosvx3BwAAACg3/8Kzz89fePHig+efffLps0+ffe7E8VPfPXXq2EPfeWh+5b7++c67+wEAAIC9aO2m335XAgAAAAAAAAAAAAAAAAAAAMOrjq8T6/c+AgAAwLD796shhEUhhKgcS+P9r0EIIYQQQog9Eyvf7V5/3ka/rz8AAAAAw+falZfOhDARQlhuN7FY7Gi+9tZaq831K6t5Uzv14N9mliOtdvnhkXWvP7ij1TDsrsWfu9RusMM///LvrfwfvLaz+SfSk55//2WXjE9Xy3vv/C9nO/PfPtpj/nz/H6+W/2iW/97QW/6l97P8T1TLf1+W/2CP+Tfs//PV8t8f88/G/tF7es2//v0fj23ajwM95v92tv9PhV7zZ/vf6jFh5oGYHwCG0X69ASAdJaTj6MnYT/sbDzfDSPa6rR7/N7LtjG678vXbTcdBt8Z+Ol6ayvImW61/MtveDRXrzOV1Daqy+nfqfdxtZfU3a66jqrL6x2quo6qy+sdrrqOqsvonaq6jqrL6ez0P7bey+vfKdeWy+idrrqOqsvqnaq6jqrL6t/r/eL+U1X+o5jqqKqt/uuY6qiqrv+JltdqV1T9Tcx1VldV/Y811VFVW/00111FVWf0311xHv9wR27Lz4XT+OR3HUr+V9cc3+bfcr9cWAAAAYK/519DO/xevdPS9DiGEEELs1ZgY9GOJZFe2P7rL2xd1x3+XVvW7DiHE7sXSUt1XHBgku/tpZgAGld//w837P9y8/8PN+89XSffwF1k/GekyPtplvNllfCwbz39ex7uM35Rtdyld14xu7jL+tS7jh7qM39plfLbL+G1dxm/vMn5Hl3EAAACGwy2xdX4IAAAA+9fLv/rkzd/c+8SVmauXDp8OYxvmnT8W++Pxb+tvxH4+733SjH/z/0ns/yK2f4jtP7L13X8CAAAAuy99T4y//wMAAMD+lb6n1Pk/AAAA7F8zsXX+DwAAAPvXjbF1/g8AAAD7WDGx+eLYpusCd8e213n9AIDB9/XY3hnbw7G9K7bfiG06Drgntt+sqT4AYOf8/Ps/PfV2sTbf/4ls/FpcntoNFlevFBSN9TP5H4jtwdh+q8d68u8D6DV/cqjHPLuVf3qb+QEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/aOx8njy5GwRwrufvvPoz8be/OvysrvaaxxZeSxirxVCaLZfl0bX+r+OK1678tKZzvZ6bItwPBShaC8Pj11uZ5oMISyGI+Gz0AofzS98+eF7jxz9+PWJW966+Mwru/hPsG7/AAAAYD/6fwAAAP//ScMebw==") truncate(&(0x7f00000001c0)='./file1\x00', 0x80000001) 291.229042ms ago: executing program 3 (id=8589): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000340)=@newtaction={0x50, 0x30, 0x1, 0x2, 0x0, {}, [{0x3c, 0x1, [@m_mpls={0x38, 0x1, 0x0, 0x0, {{0x9}, {0xc, 0x2, 0x0, 0x1, [@TCA_MPLS_LABEL={0x8, 0x5, 0xfffffffd}]}, {0x4, 0x4}, {0xc}, {0xc}}}]}]}, 0x50}, 0x1, 0x0, 0x0, 0x20000000}, 0x20000004) 227.930748ms ago: executing program 2 (id=8590): r0 = socket$rds(0x15, 0x5, 0x0) ioctl$sock_ifreq(r0, 0x8990, &(0x7f0000000100)={'gretap0\x00', @ifru_names='pimreg0\x00'}) 52.064524ms ago: executing program 0 (id=8591): r0 = syz_open_dev$loop(&(0x7f0000000100), 0xd79, 0x0) ioctl$LOOP_CONFIGURE(r0, 0x1262, 0x0) 0s ago: executing program 2 (id=8592): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f0000000000)={0x0, 0x3, &(0x7f0000000080)={&(0x7f00000001c0)=ANY=[@ANYBLOB="020300090c00000000000000000000000300060000000e0002000000e00000090000000000000000020001000000000000ddfb0100000000030005006c00000e02000000ac1414aa1000000000000000020008"], 0x60}}, 0x0) kernel console output (not intermixed with test programs): d-only mode [ 729.634396][T22688] EXT4-fs (loop3): orphan cleanup on readonly fs [ 729.657589][T22656] loop4: detected capacity change from 0 to 32768 [ 729.689956][T22688] Quota error (device loop3): v2_read_file_info: Can't read info structure [ 729.699553][T22688] EXT4-fs warning (device loop3): ext4_enable_quotas:7265: Failed to enable quota tracking (type=1, err=-5, ino=4). Please run e2fsck to fix. [ 729.714739][T22688] EXT4-fs (loop3): Cannot turn on quotas: error -5 [ 729.726763][T22688] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm syz.3.7359: bg 0: block 64: padding at end of block bitmap is not set [ 729.737106][T22656] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7342 (22656) [ 729.762426][T22688] loop3: lost filesystem error report for type 5 error -117 [ 729.762966][T22688] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6679: Corrupt filesystem [ 729.779238][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 729.779273][ C0] EXT4-fs (loop3): initial error at time 1778532501: ext4_validate_block_bitmap:440 [ 729.779319][ C0] EXT4-fs (loop3): last error at time 1778532501: ext4_validate_block_bitmap:440 [ 729.830289][T22656] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 729.860937][T22656] BTRFS info (device loop4): using sha256 checksum algorithm [ 729.887011][T22688] loop3: lost filesystem error report for type 5 error -117 [ 729.889249][T22688] EXT4-fs (loop3): 1 truncate cleaned up [ 729.947564][T22688] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 730.000737][T22698] loop2: detected capacity change from 0 to 2048 [ 730.045910][T22698] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 730.102708][T22712] netlink: 'syz.1.7364': attribute type 1 has an invalid length. [ 730.129664][T22656] BTRFS info (device loop4): enabling ssd optimizations [ 730.161964][T22656] BTRFS info (device loop4): turning on async discard [ 730.189534][T22656] BTRFS info (device loop4): enabling free space tree [ 730.313548][ T5628] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 730.354495][T19958] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 730.545611][T19958] usb 1-1: unable to get BOS descriptor or descriptor too short [ 730.575839][T19958] usb 1-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7 [ 730.619832][T19958] usb 1-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7 [ 730.641760][T22683] loop5: detected capacity change from 0 to 32768 [ 730.674706][ T5636] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 730.685708][T22683] BTRFS info: device /dev/loop5 (7:5) using temp-fsid 2c5abe75-505c-4053-af0b-e234d27be201 [ 730.718445][T19958] usb 1-1: string descriptor 0 read error: -22 [ 730.742325][T22683] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7356 (22683) [ 730.755972][T19958] usb 1-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40 [ 730.771864][T19958] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 730.831374][T22683] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 730.885959][T22683] BTRFS info (device loop5): using sha256 checksum algorithm [ 731.059841][T22683] BTRFS info (device loop5): setting nodatasum [ 731.082919][T22683] BTRFS info (device loop5): enabling ssd optimizations [ 731.120869][T22683] BTRFS info (device loop5): turning on async discard [ 731.150915][T22683] BTRFS info (device loop5): enabling free space tree [ 731.646945][T19958] usb 1-1: USB disconnect, device number 28 [ 731.917611][ T5620] BTRFS info (device loop5): last unmount of filesystem 2c5abe75-505c-4053-af0b-e234d27be201 [ 732.251083][T22769] netlink: 'syz.3.7383': attribute type 21 has an invalid length. [ 732.303798][T22769] IPv6: NLM_F_CREATE should be specified when creating new route [ 732.623255][T22776] bond0: Removing last ns target with arp_interval on [ 733.529681][T22817] bridge0: port 3(dummy0) entered disabled state [ 733.605744][T22817] bridge_slave_0: left allmulticast mode [ 733.650653][T22817] bridge_slave_0: left promiscuous mode [ 733.691181][T22817] bridge0: port 1(bridge_slave_0) entered disabled state [ 733.752245][T22817] bridge_slave_1: left allmulticast mode [ 733.794646][T22817] bridge_slave_1: left promiscuous mode [ 733.814620][T22817] bridge0: port 2(bridge_slave_1) entered disabled state [ 733.904739][T22833] loop5: detected capacity change from 0 to 8 [ 733.912695][T22833] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 733.986576][ T5640] udevd[5640]: incorrect cramfs checksum on /dev/loop5 [ 734.100850][ T5640] udevd[5640]: incorrect cramfs checksum on /dev/loop5 [ 734.427333][T22845] netlink: 'syz.2.7419': attribute type 11 has an invalid length. [ 734.449176][T22847] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7421'. [ 734.476254][T22845] netlink: 224 bytes leftover after parsing attributes in process `syz.2.7419'. [ 734.612247][T22851] loop5: detected capacity change from 0 to 16 [ 734.631932][T22851] erofs (device loop5): mounted with root inode @ nid 36. [ 734.694104][T22851] erofs (device loop5): readahead error at folio 2 @ nid 89 [ 734.727520][T22851] erofs (device loop5): readahead error at folio 1 @ nid 89 [ 734.739837][T22851] erofs (device loop5): readahead error at folio 0 @ nid 89 [ 734.759805][T22851] erofs (device loop5): read error -117 @ 0 of nid 89 [ 734.774286][T22817] .`: (slave bond_slave_1): Releasing backup interface [ 734.790104][ T30] audit: type=1800 audit(1778532506.301:296): pid=22851 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.7423" name="file3" dev="loop5" ino=89 res=0 errno=0 [ 734.920728][T22817] team0: Port device team_slave_0 removed [ 734.966808][T22817] team0: Port device team_slave_1 removed [ 734.989853][T22855] loop2: detected capacity change from 0 to 4096 [ 734.995314][T22817] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 735.033868][T22855] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 735.034266][T22817] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 735.127583][T22855] ntfs3(loop2): ino=19, mi_enum_attr [ 735.129981][T22817] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 735.148534][T22855] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 735.179977][T22817] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 735.231747][T22817] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 735.235771][T22855] ntfs3(loop2): failed to convert "c46c" to koi8-r [ 735.275286][T22855] ntfs3(loop2): ino=20, mi_enum_attr [ 735.292663][T22823] workqueue: Failed to create a rescuer kthread for wq "bond4": -EINTR [ 735.605839][T22872] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7433'. [ 735.675095][T22872] netlink: 24 bytes leftover after parsing attributes in process `syz.5.7433'. [ 735.758633][T22876] loop1: detected capacity change from 0 to 164 [ 735.801937][T17386] usb 5-1: new high-speed USB device number 31 using dummy_hcd [ 735.993683][T17386] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 736.033263][T17386] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 3 [ 736.073619][T17386] usb 5-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00 [ 736.107662][T17386] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 736.134220][T17386] usb 5-1: config 0 descriptor?? [ 736.277385][T22887] netlink: 9 bytes leftover after parsing attributes in process `syz.2.7441'. [ 736.493154][T22861] loop3: detected capacity change from 0 to 32768 [ 736.537291][T22861] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 736.592503][T17386] Bluetooth: Can't get state to change to load configuration err [ 736.604065][T22902] netlink: 'syz.2.7445': attribute type 11 has an invalid length. [ 736.612159][T17386] Bluetooth: Loading sysconfig file failed [ 736.619865][T17386] ath3k 5-1:0.0: probe with driver ath3k failed with error -16 [ 736.644109][T17386] usb 5-1: USB disconnect, device number 31 [ 736.784453][T22861] XFS (loop3): Ending clean mount [ 736.835966][T22904] .`: (slave bond_slave_0): Releasing backup interface [ 736.901262][T22906] netlink: 'syz.0.7458': attribute type 2 has an invalid length. [ 736.912038][T22904] .`: (slave bond_slave_1): Releasing backup interface [ 736.925755][T22906] netlink: 'syz.0.7458': attribute type 1 has an invalid length. [ 736.966810][T22904] team0: Port device team_slave_0 removed [ 737.018902][T22904] team0: Port device team_slave_1 removed [ 737.028378][ T5628] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 737.050369][T22904] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 737.086791][T22904] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 737.104920][T22904] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 737.112560][T22904] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 737.155922][T22904] A link change request failed with some changes committed already. Interface hsr_slave_0 may have been left with an inconsistent configuration, please check. [ 737.191657][T22882] loop5: detected capacity change from 0 to 32768 [ 737.202532][T22910] loop2: detected capacity change from 0 to 1024 [ 737.235412][T22882] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.7438 (22882) [ 737.289510][T22882] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 737.347193][T22882] BTRFS info (device loop5): using sha256 checksum algorithm [ 737.633486][T22882] BTRFS info (device loop5): enabling ssd optimizations [ 737.693477][T22882] BTRFS info (device loop5): turning on async discard [ 737.717742][T22882] BTRFS info (device loop5): enabling free space tree [ 737.976133][T22944] netlink: 9 bytes leftover after parsing attributes in process `syz.0.7457'. [ 738.006157][T22928] loop4: detected capacity change from 0 to 8192 [ 738.031529][T22944] netlink: 9 bytes leftover after parsing attributes in process `syz.0.7457'. [ 738.080008][ T5620] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 738.102138][ T5756] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 738.302476][ T5756] usb 4-1: New USB device found, idVendor=0cf3, idProduct=9271, bcdDevice= 1.08 [ 738.360192][ T5756] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 738.403738][ T5756] usb 4-1: Product: syz [ 738.429454][ T5756] usb 4-1: Manufacturer: syz [ 738.454884][ T5756] usb 4-1: SerialNumber: syz [ 738.509771][ T5756] usb 4-1: ath9k_htc: Firmware ath9k_htc/htc_9271-1.4.0.fw requested [ 738.577107][ T10] usb 4-1: ath9k_htc: Transferred FW: ath9k_htc/htc_9271-1.4.0.fw, size: 51008 [ 739.202299][T19958] usb 4-1: USB disconnect, device number 30 [ 739.343880][T22971] loop0: detected capacity change from 0 to 64 [ 739.695972][ T10] ath9k_htc 4-1:1.0: ath9k_htc: Target is unresponsive [ 739.736492][ T10] ath9k_htc: Failed to initialize the device [ 739.779902][T19958] usb 4-1: ath9k_htc: USB layer deinitialized [ 740.079263][T22949] loop1: detected capacity change from 0 to 32768 [ 740.115301][T22949] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 740.160226][T22957] loop2: detected capacity change from 0 to 32768 [ 740.281903][T22949] XFS (loop1): Ending clean mount [ 740.537791][ T5627] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 741.866753][T22994] loop5: detected capacity change from 0 to 32768 [ 741.985555][T22997] loop2: detected capacity change from 0 to 32768 [ 742.014692][T22997] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7472 (22997) [ 742.072976][T22997] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 742.117673][T22997] BTRFS info (device loop2): using sha256 checksum algorithm [ 742.292631][T22997] BTRFS info (device loop2): enabling ssd optimizations [ 742.307964][ T5620] read_mapping_page failed! [ 742.337027][ T5620] ERROR: (device loop5): txAbort: [ 742.337027][ T5620] [ 742.351984][T22997] BTRFS info (device loop2): turning on async discard [ 742.358251][T23013] loop3: detected capacity change from 0 to 32768 [ 742.376306][ T5620] read_mapping_page failed! [ 742.384856][T22997] BTRFS info (device loop2): enabling free space tree [ 742.395381][ T5620] ERROR: (device loop5): txAbort: [ 742.395381][ T5620] [ 742.419270][T23013] XFS (loop3): Mounting V5 filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 in no-recovery mode. Filesystem will be inconsistent. [ 742.700193][ T5628] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 742.810647][T23056] loop4: detected capacity change from 0 to 164 [ 742.847275][ T5626] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 743.027332][ T30] audit: type=1326 audit(1778532514.541:297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23061 comm="syz.3.7496" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 743.196053][ T30] audit: type=1326 audit(1778532514.541:298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23061 comm="syz.3.7496" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 743.343840][ T30] audit: type=1326 audit(1778532514.571:299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23061 comm="syz.3.7496" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=296 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 743.509963][ T30] audit: type=1326 audit(1778532514.571:300): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23061 comm="syz.3.7496" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 743.760823][T23075] tmpfs: Bad value for 'mpol' [ 744.173494][T21035] netdevsim netdevsim5 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.504502][T23085] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 744.544808][T21035] netdevsim netdevsim5 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.788535][T21035] netdevsim netdevsim5 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.819098][ T50] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 744.834006][ T50] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 744.842905][ T50] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 744.875582][ T50] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 744.877199][T21035] netdevsim netdevsim5 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 744.884805][ T50] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 744.920357][ T5622] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1 [ 744.931139][ T5622] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9 [ 744.945511][ T5622] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9 [ 744.960730][ T5622] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4 [ 744.970226][ T5622] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2 [ 745.789290][T21035] bond0 (unregistering): Released all slaves [ 745.804411][T21035] bond1 (unregistering): Released all slaves [ 745.825184][T21035] bond2 (unregistering): Released all slaves [ 745.843551][T21035] bond3 (unregistering): Released all slaves [ 745.868611][ T5282] 8021q: adding VLAN 0 to HW filter on device eth1 [ 746.009966][T21035] hmac(sha224): left promiscuous mode [ 746.495066][T23092] wlan1 speed is unknown, defaulting to 1000 [ 746.593346][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 746.855736][ T5282] 8021q: adding VLAN 0 to HW filter on device eth3 [ 746.888450][T21035] hsr_slave_1: left promiscuous mode [ 746.913198][T21035] veth1_macvtap: left promiscuous mode [ 746.920086][T21035] veth1_vlan: left promiscuous mode [ 746.927112][T21035] veth0_vlan: left promiscuous mode [ 747.051912][ T5622] Bluetooth: hci1: command tx timeout [ 747.625001][T23092] bridge0: port 1(bridge_slave_0) entered blocking state [ 747.634068][T23092] bridge0: port 1(bridge_slave_0) entered disabled state [ 747.652204][T23092] bridge_slave_0: entered allmulticast mode [ 747.662411][T23092] bridge_slave_0: entered promiscuous mode [ 747.673192][T23092] bridge0: port 2(bridge_slave_1) entered blocking state [ 747.684501][T23092] bridge0: port 2(bridge_slave_1) entered disabled state [ 747.701277][T23092] bridge_slave_1: entered allmulticast mode [ 747.714550][T23092] bridge_slave_1: entered promiscuous mode [ 747.760520][T23092] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 747.800006][T23092] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 747.895296][T23092] team0: Port device team_slave_0 added [ 747.914037][T23092] team0: Port device team_slave_1 added [ 747.977285][T23092] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 747.984733][T23092] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 748.013648][T23092] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 748.027439][T23092] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 748.034875][T23092] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 748.061629][T23092] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 748.088122][T21035] IPVS: stop unused estimator thread 0... [ 748.155082][T23092] hsr_slave_0: entered promiscuous mode [ 748.166773][T23092] hsr_slave_1: entered promiscuous mode [ 748.343652][ T5282] 8021q: adding VLAN 0 to HW filter on device eth2 [ 748.495172][T23092] netdevsim netdevsim6 netdevsim0: renamed from eth0 [ 748.510472][T23092] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 748.519230][T23092] netdevsim netdevsim6 netdevsim1: renamed from eth1 [ 748.538607][T23092] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 748.547899][T23092] netdevsim netdevsim6 netdevsim2: renamed from eth2 [ 748.558882][T23092] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 748.568411][T23092] netdevsim netdevsim6 netdevsim3: renamed from eth3 [ 748.582046][T23092] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 748.706574][T23092] 8021q: adding VLAN 0 to HW filter on device bond0 [ 748.738573][T23092] 8021q: adding VLAN 0 to HW filter on device team0 [ 748.758758][T21035] bridge0: port 1(bridge_slave_0) entered blocking state [ 748.765941][T21035] bridge0: port 1(bridge_slave_0) entered forwarding state [ 748.782892][T15761] bridge0: port 2(bridge_slave_1) entered blocking state [ 748.790052][T15761] bridge0: port 2(bridge_slave_1) entered forwarding state [ 749.046067][ T5282] 8021q: adding VLAN 0 to HW filter on device eth4 [ 749.132456][ T5622] Bluetooth: hci1: command tx timeout [ 749.481108][T23092] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 749.889723][T23092] veth0_vlan: entered promiscuous mode [ 749.905724][T23092] veth1_vlan: entered promiscuous mode [ 749.963419][T23092] veth0_macvtap: entered promiscuous mode [ 749.977056][T23092] veth1_macvtap: entered promiscuous mode [ 750.002304][T23092] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 750.020203][T23092] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 750.048097][ T12] netdevsim netdevsim6 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.069719][ T12] netdevsim netdevsim6 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.080174][ T12] netdevsim netdevsim6 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.103929][ T12] netdevsim netdevsim6 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 750.272910][T21034] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 750.292715][T21034] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 750.350664][T21035] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 750.358708][T21035] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 750.579465][T23226] xt_cgroup: path and classid specified [ 750.911427][T23238] loop1: detected capacity change from 0 to 128 [ 750.948746][T23238] UDF-fs: error (device loop1): udf_read_tagged: read failed, block=256, location=256 [ 750.994557][T23238] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 751.075493][T23238] UDF-fs: error (device loop1): udf_read_tagged: tag checksum failed, block 93: 0x5d != 0x05 [ 751.129671][T23238] UDF-fs: error (device loop1): udf_count_free_bitmap: udf_count_free failed [ 751.211900][ T5622] Bluetooth: hci1: command tx timeout [ 751.350385][T23245] bond1: entered allmulticast mode [ 751.463562][ T5627] UDF-fs: error (device loop1): udf_read_inode: (ino 104) failed !bh [ 751.503341][ T5627] UDF-fs: error (device loop1): udf_read_inode: (ino 104) failed !bh [ 751.934398][ T5756] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 751.972562][ T9164] usb 5-1: new high-speed USB device number 32 using dummy_hcd [ 752.017149][T23263] loop3: detected capacity change from 0 to 4096 [ 752.062685][T23263] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 752.112127][ T5756] usb 1-1: Using ep0 maxpacket: 32 [ 752.128135][ T5756] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 752.149803][ T9164] usb 5-1: unable to get BOS descriptor or descriptor too short [ 752.167687][ T5756] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 752.198995][ T9164] usb 5-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7 [ 752.220826][ T5756] usb 1-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 752.234307][T23263] ntfs3(loop3): ino=19, mi_enum_attr [ 752.254882][T23241] loop6: detected capacity change from 0 to 32768 [ 752.262582][T23263] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 752.271241][ T9164] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7 [ 752.286173][ T5756] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 752.318061][T23241] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7511 (23241) [ 752.347730][ T5756] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 752.347765][ T9164] usb 5-1: string descriptor 0 read error: -22 [ 752.393145][T23241] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 752.397392][ T12] netdevsim netdevsim1 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 752.405749][T23263] ntfs3(loop3): failed to convert "c46c" to koi8-r [ 752.428249][ T9164] usb 5-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40 [ 752.435996][ T5756] usb 1-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 752.459238][T23241] BTRFS info (device loop6): using sha256 checksum algorithm [ 752.466883][ T9164] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 752.472418][ T5756] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 752.519730][T23263] ntfs3(loop3): ino=20, mi_enum_attr [ 752.525404][ T5756] usb 1-1: Product: syz [ 752.527071][ T5756] usb 1-1: Manufacturer: syz [ 752.549738][ T5756] usb 1-1: SerialNumber: syz [ 752.605474][ T5756] usb 1-1: config 0 descriptor?? [ 752.663320][ T5756] input: Generic X-Box pad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/input/input48 [ 752.747115][T23241] BTRFS info (device loop6): enabling ssd optimizations [ 752.807214][T23241] BTRFS info (device loop6): turning on async discard [ 752.851775][T23241] BTRFS info (device loop6): enabling free space tree [ 753.063524][T17824] usb 1-1: USB disconnect, device number 29 [ 753.089886][ T12] netdevsim netdevsim1 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 753.292125][ T5622] Bluetooth: hci1: command tx timeout [ 753.305909][ T9164] usb 5-1: USB disconnect, device number 32 [ 753.314834][T23288] netlink: 'syz.3.7534': attribute type 2 has an invalid length. [ 753.358781][T23092] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 753.766357][ T12] .`: (slave netdevsim1): Releasing backup interface [ 753.904039][ T12] netdevsim netdevsim1 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 753.984621][ T50] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 754.000114][ T50] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 754.011299][ T50] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 754.020812][ T50] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 754.031535][ T50] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 754.206238][T23303] loop0: detected capacity change from 0 to 1024 [ 754.392090][ T30] audit: type=1326 audit(1778532525.901:301): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 754.465033][ T12] netdevsim netdevsim1  (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 754.575412][ T30] audit: type=1326 audit(1778532525.901:302): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 754.604169][T23314] loop6: detected capacity change from 0 to 256 [ 754.722333][ T30] audit: type=1326 audit(1778532525.901:303): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 754.880176][ T30] audit: type=1326 audit(1778532525.901:304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.025696][ T30] audit: type=1326 audit(1778532525.901:305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.186150][ T30] audit: type=1326 audit(1778532525.901:306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.310977][ T30] audit: type=1326 audit(1778532525.901:307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.313539][ T9164] usb 1-1: new high-speed USB device number 30 using dummy_hcd [ 755.488540][ T30] audit: type=1326 audit(1778532525.901:308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.623803][ T9164] usb 1-1: Using ep0 maxpacket: 8 [ 755.637211][ T30] audit: type=1326 audit(1778532525.941:309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.654553][ T9164] usb 1-1: config 179 has an invalid interface number: 65 but max is 0 [ 755.739564][ T9164] usb 1-1: config 179 has no interface number 0 [ 755.750389][T23341] netlink: 'syz.6.7552': attribute type 10 has an invalid length. [ 755.761726][ T30] audit: type=1326 audit(1778532525.941:310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23308 comm="syz.2.7542" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x50000 [ 755.774565][ T9164] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 755.800835][T23341] netlink: 40 bytes leftover after parsing attributes in process `syz.6.7552'. [ 755.886729][ T9164] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 755.954638][ T9164] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9 [ 756.010234][ T9164] usb 1-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024 [ 756.073562][ T9164] usb 1-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 756.102477][ T5622] Bluetooth: hci3: command tx timeout [ 756.122087][ T9164] usb 1-1: config 179 interface 65 has no altsetting 0 [ 756.131623][ T9164] usb 1-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 756.141091][ T9164] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 756.179923][ T9164] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:179.65/input/input49 [ 756.256171][ T4972] input input49: unable to receive magic message: -110 [ 756.290259][ T4972] input input49: unable to receive magic message: -32 [ 756.336944][ T4972] input input49: unable to receive magic message: -32 [ 756.391495][ T4972] input input49: unable to receive magic message: -32 [ 756.558301][ T5652] input input49: unable to receive magic message: -32 [ 756.718093][ T4972] input input49: unable to receive magic message: -32 [ 756.804762][T23212] usb 1-1: USB disconnect, device number 30 [ 756.804849][ C1] xpad 1-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 757.170533][T23374] loop2: detected capacity change from 0 to 8 [ 757.205303][T23374] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 757.290407][ T5640] udevd[5640]: incorrect cramfs checksum on /dev/loop2 [ 757.332954][ T5756] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 757.354878][T23378] loop6: detected capacity change from 0 to 2048 [ 757.395153][T23378] UDF-fs: error (device loop6): udf_read_tagged: tag checksum failed, block 160: 0xa1 != 0xd4 [ 757.431516][T23378] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 757.532956][ T5756] usb 4-1: Using ep0 maxpacket: 16 [ 757.558765][ T5756] usb 4-1: config 0 has an invalid interface number: 8 but max is 0 [ 757.585724][ T5756] usb 4-1: config 0 has no interface number 0 [ 757.622664][ T5756] usb 4-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 757.675080][ T5756] usb 4-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 757.732059][ T5756] usb 4-1: Product: syz [ 757.743984][ T5756] usb 4-1: SerialNumber: syz [ 757.762613][ T5756] usb 4-1: config 0 descriptor?? [ 757.811787][ T5756] cm109 4-1:0.8: invalid payload size 32, expected 4 [ 757.830001][ T5756] input: CM109 USB driver as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.8/input/input50 [ 758.024376][ C0] cm109_urb_ctl_callback: 104 callbacks suppressed [ 758.024417][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 758.038343][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 758.046357][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 758.054160][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 758.061827][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 758.069182][ T5756] usb 4-1: USB disconnect, device number 31 [ 758.075246][ C0] cm109 4-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 758.075290][ C0] cm109 4-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 758.116692][ T5756] cm109 4-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 758.173041][ T5622] Bluetooth: hci3: command tx timeout [ 758.178199][ T12] .` (unregistering): Released all slaves [ 758.211650][ T12] bond1 (unregistering): Released all slaves [ 758.250676][ T12] bond2 (unregistering): Released all slaves [ 758.288950][ T12] bond3 (unregistering): Released all slaves [ 758.321501][ T12] bond0 (unregistering): Released all slaves [ 758.388712][T23297] wlan1 speed is unknown, defaulting to 1000 [ 758.746413][T23400] loop4: detected capacity change from 0 to 512 [ 758.780107][ T12] hmac(sha224): left promiscuous mode [ 758.873987][T23400] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 759.021890][T23400] ext4 filesystem being mounted at /1276/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 759.123246][T23400] fscrypt (loop4, inode 15): Error -61 getting encryption context [ 759.350858][T23423] loop6: detected capacity change from 0 to 1024 [ 759.375099][T23425] openvswitch: netlink: Multiple metadata blocks provided [ 759.537616][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 759.585162][T23431] netlink: 84 bytes leftover after parsing attributes in process `syz.0.7582'. [ 759.906563][ T9164] IPVS: starting estimator thread 0... [ 760.012079][T23440] IPVS: using max 23 ests per chain, 55200 per kthread [ 760.253548][ T5622] Bluetooth: hci3: command tx timeout [ 760.279656][T23450] loop4: detected capacity change from 0 to 1024 [ 760.426804][T23454] netlink: 56 bytes leftover after parsing attributes in process `syz.0.7591'. [ 760.908504][ T12] hsr_slave_0: left promiscuous mode [ 760.954199][ T12] hsr_slave_1: left promiscuous mode [ 761.074335][T23465] loop0: detected capacity change from 0 to 4096 [ 761.120549][T23465] ntfs3(loop0): Different NTFS sector size (4096) and media sector size (512). [ 761.155014][ T12] veth1_macvtap: left promiscuous mode [ 761.181429][ T12] veth0_macvtap: left promiscuous mode [ 761.206471][ T12] veth1_vlan: left promiscuous mode [ 761.239668][ T12] veth0_vlan: left promiscuous mode [ 761.247915][T23465] ntfs3(loop0): ino=19, mi_enum_attr [ 761.380418][T23465] ntfs3(loop0): failed to convert "c46c" to maccroatian [ 761.402304][T23465] ntfs3(loop0): ino=20, mi_enum_attr [ 762.331879][ T5622] Bluetooth: hci3: command tx timeout [ 762.416389][T23510] loop4: detected capacity change from 0 to 512 [ 762.506428][T23514] tmpfs: Bad value for 'mpol' [ 762.561085][T23510] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 762.669135][T23520] loop0: detected capacity change from 0 to 8 [ 762.771620][T23520] SQUASHFS error: lzo decompression failed, data probably corrupt [ 762.829091][T23520] SQUASHFS error: Failed to read block 0x0: -5 [ 762.902961][T23520] SQUASHFS error: lzo decompression failed, data probably corrupt [ 762.945262][T23520] SQUASHFS error: Failed to read block 0x0: -5 [ 762.995057][ T30] kauditd_printk_skb: 57 callbacks suppressed [ 762.995084][ T30] audit: type=1800 audit(1778532534.511:368): pid=23520 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.0.7616" name="file2" dev="loop0" ino=3 res=0 errno=0 [ 763.005418][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 763.144473][T23525] binder: 23524:23525 ioctl c018620c 2000000002c0 returned -1 [ 763.379868][T23529] loop0: detected capacity change from 0 to 256 [ 763.416530][T23529] FAT-fs (loop0): bogus sectors per cluster 0 [ 763.447061][T23529] FAT-fs (loop0): Can't find a valid FAT filesystem [ 764.098854][T23517] loop3: detected capacity change from 0 to 32768 [ 764.330605][T23545] loop4: detected capacity change from 0 to 2048 [ 764.381041][T23545] UDF-fs: error (device loop4): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 764.450936][T23545] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 764.558591][T23552] loop3: detected capacity change from 0 to 512 [ 764.628160][T23555] loop2: detected capacity change from 0 to 64 [ 764.678585][T23555] hfs: filesystem is marked locked, mounting read-only. [ 764.887525][ T5282] 8021q: adding VLAN 0 to HW filter on device eth5 [ 765.008168][T23561] set match dimension is over the limit! [ 765.515824][ T5756] usb 4-1: new high-speed USB device number 32 using dummy_hcd [ 765.650837][T23297] bridge0: port 1(bridge_slave_0) entered blocking state [ 765.667494][T23297] bridge0: port 1(bridge_slave_0) entered disabled state [ 765.702540][ T5756] usb 4-1: Using ep0 maxpacket: 32 [ 765.708329][T23297] bridge_slave_0: entered allmulticast mode [ 765.728160][ T5756] usb 4-1: config 0 has an invalid interface number: 146 but max is 0 [ 765.738949][T23297] bridge_slave_0: entered promiscuous mode [ 765.755535][ T5756] usb 4-1: config 0 has no interface number 0 [ 765.785037][ T5756] usb 4-1: config 0 interface 146 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 765.797660][T23297] bridge0: port 2(bridge_slave_1) entered blocking state [ 765.837046][T23297] bridge0: port 2(bridge_slave_1) entered disabled state [ 765.853951][ T5756] usb 4-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xE3, changing to 0x83 [ 765.878928][T23297] bridge_slave_1: entered allmulticast mode [ 765.907308][ T5756] usb 4-1: config 0 interface 146 altsetting 0 endpoint 0x83 has invalid maxpacket 33307, setting to 1024 [ 765.926884][T23297] bridge_slave_1: entered promiscuous mode [ 765.967109][ T5756] usb 4-1: config 0 interface 146 altsetting 0 bulk endpoint 0x83 has invalid maxpacket 1024 [ 766.015558][ T5756] usb 4-1: config 0 interface 146 altsetting 0 has an endpoint descriptor with address 0xF2, changing to 0x82 [ 766.057872][ T5756] usb 4-1: config 0 interface 146 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 766.089569][T23590] netlink: 1544 bytes leftover after parsing attributes in process `syz.4.7645'. [ 766.093227][ T5756] usb 4-1: config 0 interface 146 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 766.152337][T23297] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 766.175114][ T5756] usb 4-1: config 0 interface 146 altsetting 0 endpoint 0x1 has invalid wMaxPacketSize 0 [ 766.193631][ T12] IPVS: stop unused estimator thread 0... [ 766.215460][ T5756] usb 4-1: config 0 interface 146 altsetting 0 has 4 endpoint descriptors, different from the interface descriptor's value: 3 [ 766.243924][T23297] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 766.267830][ T5756] usb 4-1: New USB device found, idVendor=05da, idProduct=009a, bcdDevice=62.95 [ 766.291923][ T5756] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 766.318917][ T5756] usb 4-1: Product: syz [ 766.341225][ T5756] usb 4-1: Manufacturer: syz [ 766.349115][T23595] netlink: 'syz.0.7648': attribute type 10 has an invalid length. [ 766.369671][ T5756] usb 4-1: SerialNumber: syz [ 766.399799][ T5756] usb 4-1: config 0 descriptor?? [ 766.419630][T23297] team0: Port device team_slave_0 added [ 766.431960][T23572] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 766.454763][T23595] ,Íìpó»: left promiscuous mode [ 766.463677][ T5756] usb 4-1: can only deal with bulk endpoints; endpoint 1 is not bulk. [ 766.479147][T23595] macvlan1: entered promiscuous mode [ 766.486641][ T5756] usb 4-1: couldn't find an output bulk endpoint. Bailing out. [ 766.499329][T23595] macvlan1: entered allmulticast mode [ 766.552508][T23595] ,Íìpó»: entered promiscuous mode [ 766.574658][T23595] ,Íìpó»: entered allmulticast mode [ 766.592677][T23600] netlink: 'syz.2.7650': attribute type 1 has an invalid length. [ 766.617298][T23595] .`: (slave macvlan1): Enslaving as an active interface with an up link [ 766.649291][T23297] team0: Port device team_slave_1 added [ 766.806101][ T802] usb 4-1: USB disconnect, device number 32 [ 766.855942][T23573] loop6: detected capacity change from 0 to 32768 [ 766.891463][T23573] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.7636 (23573) [ 766.899588][T23297] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 766.949465][T23297] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 766.984028][T23573] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 767.009362][T23573] BTRFS info (device loop6): using sha256 checksum algorithm [ 767.053638][T23297] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 767.104952][T23297] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 767.136806][T23297] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem. [ 767.201244][T23573] BTRFS info (device loop6): enabling ssd optimizations [ 767.206009][T23297] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 767.219343][T23573] BTRFS info (device loop6): turning on async discard [ 767.233092][T23573] BTRFS info (device loop6): enabling free space tree [ 767.262886][T23628] xt_NFQUEUE: number of total queues is 0 [ 767.578451][T23092] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 767.620164][T23297] hsr_slave_0: entered promiscuous mode [ 767.652463][T23297] hsr_slave_1: entered promiscuous mode [ 767.685402][T23297] debugfs: 'hsr0' already exists in 'hsr' [ 767.721242][T23297] Cannot create hsr debugfs directory [ 767.857161][T23641] netlink: 'syz.2.7659': attribute type 22 has an invalid length. [ 767.951805][T19958] usb 4-1: new high-speed USB device number 33 using dummy_hcd [ 768.144799][T19958] usb 4-1: Using ep0 maxpacket: 32 [ 768.164650][T19958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 768.215189][T19958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 768.280926][T19958] usb 4-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 768.331222][T19958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 768.396869][T19958] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 768.443204][T19958] usb 4-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 768.486803][T19958] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 768.539576][T19958] usb 4-1: Product: syz [ 768.561492][T19958] usb 4-1: Manufacturer: syz [ 768.586421][T19958] usb 4-1: SerialNumber: syz [ 768.624792][T19958] usb 4-1: config 0 descriptor?? [ 768.705651][T19958] input: Generic X-Box pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input51 [ 768.747431][T23610] loop0: detected capacity change from 0 to 32768 [ 768.811462][T23610] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.7653 (23610) [ 768.846966][ T5282] 8021q: adding VLAN 0 to HW filter on device eth7 [ 768.879207][T23610] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 768.932872][T23610] BTRFS info (device loop0): using sha256 checksum algorithm [ 769.070508][T23212] usb 4-1: USB disconnect, device number 33 [ 769.284009][T23610] BTRFS info (device loop0): enabling ssd optimizations [ 769.296129][T23610] BTRFS info (device loop0): turning on async discard [ 769.314181][T23610] BTRFS info (device loop0): enabling free space tree [ 769.554299][T23688] netlink: 8 bytes leftover after parsing attributes in process `syz.4.7669'. [ 769.637206][ T5619] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 769.737928][T23655] loop6: detected capacity change from 0 to 32768 [ 769.928166][T23696] loop2: detected capacity change from 0 to 512 [ 769.935610][T23655] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 770.086588][T23297] netdevsim netdevsim7 netdevsim0: renamed from eth0 [ 770.217435][T23697] loop4: detected capacity change from 0 to 4096 [ 770.268114][T23297] 8021q: adding VLAN 0 to HW filter on device netdevsim0 [ 770.283491][T23697] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 770.323998][T23297] netdevsim netdevsim7 netdevsim1: renamed from eth1 [ 770.414028][T23697] ntfs3(loop4): ino=19, mi_enum_attr [ 770.448633][T23297] 8021q: adding VLAN 0 to HW filter on device netdevsim1 [ 770.520758][T23297] netdevsim netdevsim7 netdevsim2: renamed from eth2 [ 770.574982][T23697] ntfs3(loop4): failed to convert "c46c" to maccroatian [ 770.627438][T23697] ntfs3(loop4): ino=20, mi_enum_attr [ 770.644574][T23297] 8021q: adding VLAN 0 to HW filter on device netdevsim2 [ 770.676074][T23092] ocfs2: Unmounting device (7,6) on (node local) [ 770.686664][T23297] netdevsim netdevsim7 netdevsim3: renamed from eth3 [ 770.777881][T23297] 8021q: adding VLAN 0 to HW filter on device netdevsim3 [ 770.817443][T23708] netlink: 20 bytes leftover after parsing attributes in process `syz.2.7674'. [ 771.360284][T23729] netlink: 'syz.6.7682': attribute type 2 has an invalid length. [ 771.366497][T23297] 8021q: adding VLAN 0 to HW filter on device bond0 [ 771.383595][T23729] netlink: 'syz.6.7682': attribute type 1 has an invalid length. [ 771.423302][T23733] kAFS: Can only specify source 'none' with -o dyn [ 771.505249][T23297] 8021q: adding VLAN 0 to HW filter on device team0 [ 771.582456][T21035] bridge0: port 1(bridge_slave_0) entered blocking state [ 771.589705][T21035] bridge0: port 1(bridge_slave_0) entered forwarding state [ 771.663869][T17824] usb 4-1: new high-speed USB device number 34 using dummy_hcd [ 771.690898][T21016] bridge0: port 2(bridge_slave_1) entered blocking state [ 771.698185][T21016] bridge0: port 2(bridge_slave_1) entered forwarding state [ 771.862460][ T5756] usb 5-1: new high-speed USB device number 33 using dummy_hcd [ 771.879768][T23743] loop2: detected capacity change from 0 to 512 [ 771.886477][T17824] usb 4-1: Using ep0 maxpacket: 32 [ 771.914022][T17824] usb 4-1: config 0 has an invalid interface number: 85 but max is 0 [ 771.953224][T17824] usb 4-1: config 0 has no interface number 0 [ 771.986828][T23743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 772.000520][T17824] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 772.013449][T17824] usb 4-1: config 0 interface 85 altsetting 7 endpoint 0x82 has invalid wMaxPacketSize 0 [ 772.032190][T17824] usb 4-1: config 0 interface 85 has no altsetting 0 [ 772.041364][T23743] EXT4-fs error (device loop2): ext4_find_dest_de:2049: inode #2: block 6: comm syz.2.7687: bad entry in directory: rec_len is smaller than minimal - offset=0, inode=2, rec_len=8, size=4096 fake=1 [ 772.042447][T17824] usb 4-1: New USB device found, idVendor=05ac, idProduct=0219, bcdDevice=f0.72 [ 772.070914][T17824] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 772.079111][T17824] usb 4-1: Product: syz [ 772.083508][ T5756] usb 5-1: Using ep0 maxpacket: 32 [ 772.088803][T17824] usb 4-1: Manufacturer: syz [ 772.105159][ T5756] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 772.124771][ T5756] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x9 has invalid wMaxPacketSize 0 [ 772.137397][T17824] usb 4-1: SerialNumber: syz [ 772.161577][ T5756] usb 5-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 772.200616][T17824] usb 4-1: config 0 descriptor?? [ 772.220931][ T5756] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 772.257196][ T5756] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 772.291537][ T5756] usb 5-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 772.311038][ T5756] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 772.324351][ T5756] usb 5-1: Product: syz [ 772.331125][ T5756] usb 5-1: Manufacturer: syz [ 772.350504][ T5756] usb 5-1: SerialNumber: syz [ 772.365162][ T5626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 772.390338][ T5756] usb 5-1: config 0 descriptor?? [ 772.440009][ T5756] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/input/input53 [ 772.535275][ T5282] 8021q: adding VLAN 0 to HW filter on device eth6 [ 772.661040][T17824] appletouch 4-1:0.85: Failed to request geyser raw mode [ 772.692531][T17824] appletouch 4-1:0.85: probe with driver appletouch failed with error -5 [ 772.785420][T17824] usb 4-1: USB disconnect, device number 34 [ 772.832671][ T5756] usb 5-1: USB disconnect, device number 33 [ 773.202258][T23212] usb 7-1: new high-speed USB device number 2 using dummy_hcd [ 773.387854][T23212] usb 7-1: unable to get BOS descriptor or descriptor too short [ 773.419102][T23212] usb 7-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 37, changing to 7 [ 773.479482][T23212] usb 7-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 116, changing to 7 [ 773.501304][T23776] xt_l2tp: missing protocol rule (udp|l2tpip) [ 773.521515][T23749] loop0: detected capacity change from 0 to 32768 [ 773.547663][T23212] usb 7-1: string descriptor 0 read error: -22 [ 773.573247][T23212] usb 7-1: New USB device found, idVendor=1235, idProduct=8012, bcdDevice= 0.40 [ 773.615663][T23212] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 773.652518][T23749] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 774.069760][ T5619] ocfs2: Unmounting device (7,0) on (node local) [ 774.144279][T23212] usb 7-1: USB disconnect, device number 2 [ 774.311299][T23796] pim6reg: entered allmulticast mode [ 774.397715][T23297] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 774.685734][T23805] loop3: detected capacity change from 0 to 512 [ 774.775371][T23805] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 774.824469][T23809] loop2: detected capacity change from 0 to 512 [ 774.908787][T23809] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 774.937975][T23809] EXT4-fs (loop2): orphan cleanup on readonly fs [ 774.994089][T23809] EXT4-fs error (device loop2): ext4_orphan_get:1397: comm syz.2.7705: inode #15: comm syz.2.7705: iget: illegal inode # [ 775.009839][T23809] loop2: lost filesystem error report for type 5 error -117 [ 775.010331][T23809] EXT4-fs (loop2): Remounting filesystem read-only [ 775.017775][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 775.017811][ C0] EXT4-fs (loop2): initial error at time 1778532546: ext4_orphan_get:1397 [ 775.017855][ C0] EXT4-fs (loop2): last error at time 1778532546: ext4_orphan_get:1397 [ 775.026910][ T5628] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 775.039223][T23809] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 775.091779][T17824] usb 5-1: new high-speed USB device number 34 using dummy_hcd [ 775.241760][T17824] usb 5-1: Using ep0 maxpacket: 16 [ 775.241833][T17386] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 775.271515][T17824] usb 5-1: config 0 has an invalid interface number: 8 but max is 0 [ 775.310434][T17824] usb 5-1: config 0 has no interface number 0 [ 775.329375][T17824] usb 5-1: New USB device found, idVendor=0d8c, idProduct=000e, bcdDevice=8e.8f [ 775.352507][ T5626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 775.361660][T17824] usb 5-1: New USB device strings: Mfr=0, Product=24, SerialNumber=3 [ 775.392971][T17824] usb 5-1: Product: syz [ 775.422988][T17824] usb 5-1: SerialNumber: syz [ 775.433216][T17386] usb 1-1: Using ep0 maxpacket: 16 [ 775.465417][T17386] usb 1-1: config 0 has an invalid interface number: 1 but max is 0 [ 775.467082][T17824] usb 5-1: config 0 descriptor?? [ 775.497695][T17386] usb 1-1: config 0 has no interface number 0 [ 775.530584][T17824] cm109 5-1:0.8: invalid payload size 32, expected 4 [ 775.530590][T17386] usb 1-1: New USB device found, idVendor=06b9, idProduct=4061, bcdDevice= 1.88 [ 775.588978][T17386] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 775.602686][ T5282] 8021q: adding VLAN 0 to HW filter on device eth8 [ 775.618398][T17386] usb 1-1: Product: syz [ 775.627821][T17824] input: CM109 USB driver as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.8/input/input54 [ 775.642462][T17386] usb 1-1: Manufacturer: syz [ 775.665798][T17386] usb 1-1: SerialNumber: syz [ 775.710192][T17386] usb 1-1: config 0 descriptor?? [ 775.900569][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.907845][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.915764][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.922964][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.930133][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.937358][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.944568][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.951752][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.959163][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.966438][ C0] cm109 5-1:0.8: cm109_urb_ctl_callback: urb status -71 [ 775.987918][T17386] usb 1-1: selecting invalid altsetting 1 [ 775.992663][ T5756] usb 5-1: USB disconnect, device number 34 [ 775.993733][ C0] cm109 5-1:0.8: cm109_submit_buzz_toggle: usb_submit_urb (urb_ctl) failed -19 [ 776.056343][T17386] speedtch 1-1:0.1: speedtch_bind: setting interface to 1 failed (-22)! [ 776.090005][ T5756] cm109 5-1:0.8: cm109_toggle_buzzer_sync: usb_control_msg() failed -19 [ 776.107788][T17386] speedtch 1-1:0.1: usbatm_usb_probe: bind failed: -22! [ 776.148154][T17386] speedtch 1-1:0.1: probe with driver speedtch failed with error -22 [ 776.178222][T23297] veth0_vlan: entered promiscuous mode [ 776.204060][T17386] usb 1-1: USB disconnect, device number 31 [ 776.244005][T23297] veth1_vlan: entered promiscuous mode [ 776.403575][T23297] veth0_macvtap: entered promiscuous mode [ 776.441326][T23836] loop2: detected capacity change from 0 to 4096 [ 776.448445][T23297] veth1_macvtap: entered promiscuous mode [ 776.471000][T23836] ntfs3(loop2): Different NTFS sector size (4096) and media sector size (512). [ 776.515084][T23297] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 776.540777][T23836] ntfs3(loop2): ino=19, mi_enum_attr [ 776.553563][T23836] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 776.570183][T23297] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 776.630750][T23836] ntfs3(loop2): failed to convert "c46c" to macgreek [ 776.639325][ T12] netdevsim netdevsim7 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 776.660294][T23836] ntfs3(loop2): ino=20, mi_enum_attr [ 776.693843][ T12] netdevsim netdevsim7 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 776.726186][ T12] netdevsim netdevsim7 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 776.760971][ T12] netdevsim netdevsim7 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 777.202230][T23853] siw: device registration error -23 [ 777.373491][T15761] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 777.420398][T15761] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 777.645808][T21034] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 777.678502][T21034] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 777.695954][T23865] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7725'. [ 777.723101][T23839] loop3: detected capacity change from 0 to 32768 [ 777.744631][T23839] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7714 (23839) [ 777.851540][T23839] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 777.907306][T23839] BTRFS info (device loop3): using sha256 checksum algorithm [ 778.164761][T23839] BTRFS info (device loop3): enabling ssd optimizations [ 778.217850][T23839] BTRFS info (device loop3): turning on async discard [ 778.235514][T23839] BTRFS info (device loop3): enabling free space tree [ 778.463262][ T5756] usb 1-1: new high-speed USB device number 32 using dummy_hcd [ 778.604822][ T5628] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 778.673439][ T5756] usb 1-1: Using ep0 maxpacket: 8 [ 778.736689][ T5756] usb 1-1: New USB device found, idVendor=110a, idProduct=1450, bcdDevice=62.cb [ 778.788239][ T5756] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 778.811641][ T5756] usb 1-1: Product: syz [ 778.815977][ T5756] usb 1-1: Manufacturer: syz [ 778.820723][ T5756] usb 1-1: SerialNumber: syz [ 778.836899][T23907] loop6: detected capacity change from 0 to 16 [ 778.908253][T23907] erofs (device loop6): DAX unsupported by block device. Turning off DAX. [ 779.341184][ T5756] mxuport 1-1:254.0: mxuport_recv_ctrl_urb - usb_control_msg failed (-71) [ 779.391107][ T5756] mxuport 1-1:254.0: probe with driver mxuport failed with error -5 [ 779.469997][ T5756] usb 1-1: USB disconnect, device number 32 [ 779.800431][T23929] loop3: detected capacity change from 0 to 1024 [ 779.830672][T23931] xt_socket: unknown flags 0x48 [ 779.930535][T23936] netlink: 76 bytes leftover after parsing attributes in process `syz.7.7744'. [ 779.956734][T23907] erofs (device loop6): mounted with root inode @ nid 36. [ 780.603256][T23953] loop2: detected capacity change from 0 to 8 [ 780.693442][T23953] SQUASHFS error: Unable to read inode 0xa7 [ 781.102095][T23968] loop4: detected capacity change from 0 to 256 [ 781.135085][T23968] exfat: Deprecated parameter 'namecase' [ 781.171842][T23968] exfat: Deprecated parameter 'namecase' [ 781.306862][T23968] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 781.454583][T23976] netlink: 3980 bytes leftover after parsing attributes in process `syz.6.7750'. [ 781.880413][ T30] audit: type=1326 audit(1778532553.391:369): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23989 comm="syz.2.7763" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x7ffc0000 [ 781.939068][T23985] loop0: detected capacity change from 0 to 4096 [ 782.008781][ T30] audit: type=1326 audit(1778532553.421:370): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23989 comm="syz.2.7763" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x7ffc0000 [ 782.146799][ T30] audit: type=1326 audit(1778532553.441:371): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23989 comm="syz.2.7763" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fe64bf9cdd9 code=0x7ffc0000 [ 782.228339][T23985] NILFS error (device loop0): nilfs_check_folio: bad entry in directory #2: disallowed inode number - offset=32, inode=6, rec_len=24, name_len=6 [ 782.231193][T23962] loop3: detected capacity change from 0 to 32768 [ 782.315927][ T30] audit: type=1326 audit(1778532553.451:372): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23989 comm="syz.2.7763" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x7ffc0000 [ 782.350334][T23962] JBD2: Ignoring recovery information on journal [ 782.364869][ T30] audit: type=1326 audit(1778532553.451:373): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=23989 comm="syz.2.7763" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe64bf9cdd9 code=0x7ffc0000 [ 782.621431][T23962] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 782.895936][T24011] openvswitch: netlink: Unexpected mask (mask=40040, allowed=10048) [ 782.917148][T23971] loop7: detected capacity change from 0 to 32768 [ 782.967482][T23971] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop7 (7:7) scanned by syz.7.7755 (23971) [ 783.045390][T23971] BTRFS error: failed to open device for path /dev/loop7 with flags 0x23: -13 [ 783.144344][ T5628] ocfs2: Unmounting device (7,3) on (node local) [ 783.462685][T24027] netlink: 256 bytes leftover after parsing attributes in process `syz.6.7777'. [ 783.501591][T24028] loop4: detected capacity change from 0 to 1024 [ 783.632527][T23212] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 783.832128][T23212] usb 4-1: Using ep0 maxpacket: 32 [ 783.874201][T23212] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 783.922658][T23212] usb 4-1: config 0 has no interface number 0 [ 783.965912][T23212] usb 4-1: New USB device found, idVendor=8086, idProduct=9500, bcdDevice=93.d8 [ 784.027560][T23212] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 784.064803][T23212] usb 4-1: Product: syz [ 784.094822][T23212] usb 4-1: Manufacturer: syz [ 784.125345][T23212] usb 4-1: SerialNumber: syz [ 784.166489][T23212] usb 4-1: config 0 descriptor?? [ 784.227713][T23212] usb 4-1: dvb_usb_v2: found a 'Intel CE9500 reference design' in warm state [ 784.275267][T23212] usb 4-1: selecting invalid altsetting 1 [ 784.303151][T23212] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-22 [ 784.447197][T23212] usb 4-1: dvb_usb_v2: will pass the complete MPEG2 transport stream to the software demuxer [ 784.499208][T23212] dvbdev: DVB: registering new adapter (Intel CE9500 reference design) [ 784.546130][T23212] usb 4-1: media controller created [ 784.582414][ T30] audit: type=1326 audit(1778532556.091:374): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24053 comm="syz.0.7788" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb92ef9cdd9 code=0x7ffc0000 [ 784.591834][T17386] usb 7-1: new high-speed USB device number 3 using dummy_hcd [ 784.712374][ T30] audit: type=1326 audit(1778532556.131:375): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24053 comm="syz.0.7788" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb92ef9cdd9 code=0x7ffc0000 [ 784.767244][T23212] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 784.813084][T17386] usb 7-1: Using ep0 maxpacket: 8 [ 784.838927][ T30] audit: type=1326 audit(1778532556.141:376): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24053 comm="syz.0.7788" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb92ef9cdd9 code=0x7ffc0000 [ 784.839596][T17386] usb 7-1: config 179 has an invalid interface number: 65 but max is 0 [ 784.946108][T24058] trusted_key: encrypted_key: key description must be 16 hexadecimal characters long [ 784.974967][ T30] audit: type=1326 audit(1778532556.141:377): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24053 comm="syz.0.7788" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb92ef9cdd9 code=0x7ffc0000 [ 784.999824][T17386] usb 7-1: config 179 has no interface number 0 [ 785.040546][T17386] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9 [ 785.078991][ T30] audit: type=1326 audit(1778532556.141:378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24053 comm="syz.0.7788" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=31 compat=0 ip=0x7fb92ef9cdd9 code=0x7ffc0000 [ 785.090844][T17386] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024 [ 785.214925][T17386] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9 [ 785.229186][T23212] usb 4-1: dvb_usb_ce6230: usb_set_interface() failed=-71 [ 785.266460][T17386] usb 7-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024 [ 785.305179][T24031] loop2: detected capacity change from 0 to 32768 [ 785.316322][T17386] usb 7-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23 [ 785.388964][T17386] usb 7-1: config 179 interface 65 has no altsetting 0 [ 785.411444][T24065] loop0: detected capacity change from 0 to 1024 [ 785.412493][T24066] overlayfs: NFS export requires "redirect_dir=nofollow" on non-upper mount, falling back to nfs_export=off. [ 785.424114][T17386] usb 7-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00 [ 785.487433][T17386] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 785.536884][T24066] overlayfs: missing 'lowerdir' [ 785.551300][T24065] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 785.581274][T17386] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.6/usb7/7-1/7-1:179.65/input/input55 [ 785.662185][ T4972] input input55: unable to receive magic message: -110 [ 785.709992][T24065] EXT4-fs error (device loop0): ext4_xattr_inode_iget:441: inode #11: comm syz.0.7792: missing EA_INODE flag [ 785.730958][ T4972] input input55: unable to receive magic message: -32 [ 785.801501][ T4972] input input55: unable to receive magic message: -32 [ 785.843999][T24065] EXT4-fs (loop0): Remounting filesystem read-only [ 785.889897][ T4972] input input55: unable to receive magic message: -32 [ 785.921234][T23212] usb 4-1: USB disconnect, device number 35 [ 786.193039][ T6219] input input55: unable to receive magic message: -32 [ 786.221350][T24080] loop4: detected capacity change from 0 to 128 [ 786.245702][ T5619] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 786.281417][T17386] usb 7-1: USB disconnect, device number 3 [ 786.281497][ C1] xpad 7-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19 [ 786.295737][ C1] xpad 7-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19 [ 786.307065][T24080] EXT4-fs (loop4): Test dummy encryption mode enabled [ 786.328935][T24080] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=16, mo=a806c018, mo2=0042] [ 786.353398][T24080] System zones: 1-3, 19-19, 35-36 [ 786.460404][T24080] EXT4-fs (loop4): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: writeback. [ 786.526844][T24080] ext4 filesystem being mounted at /1325/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 786.879436][ T5636] EXT4-fs (loop4): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 787.097161][T24097] loop6: detected capacity change from 0 to 256 [ 787.164836][T24097] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x32e3664b, utbl_chksum : 0xe619d30d) [ 787.220253][T24100] loop3: detected capacity change from 0 to 64 [ 787.389137][T24071] loop2: detected capacity change from 0 to 32768 [ 787.418417][T24071] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.7793 (24071) [ 787.506702][T24071] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 787.563244][T24071] BTRFS info (device loop2): using sha256 checksum algorithm [ 787.712429][T24123] loop6: detected capacity change from 0 to 256 [ 787.737671][T24123] exfat: Deprecated parameter 'utf8' [ 787.738761][T24071] BTRFS info (device loop2): enabling ssd optimizations [ 787.759524][T24123] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0xf4f74c50, utbl_chksum : 0xe619d30d) [ 787.793573][T24071] BTRFS info (device loop2): turning on async discard [ 787.819692][T24071] BTRFS info (device loop2): enabling free space tree [ 788.036655][T24132] netlink: 8 bytes leftover after parsing attributes in process `syz.3.7814'. [ 788.290156][ T5626] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 788.804180][T24150] loop4: detected capacity change from 0 to 2048 [ 788.845595][T24150] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found! [ 788.870974][T24150] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 789.371225][T24164] tmpfs: Bad value for 'mpol' [ 789.505648][T24171] netlink: 'syz.2.7831': attribute type 5 has an invalid length. [ 789.507840][T24165] loop3: detected capacity change from 0 to 2048 [ 789.602053][T24165] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 789.664559][T24165] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 789.688373][T24167] loop6: detected capacity change from 0 to 4096 [ 789.733551][T24167] ntfs3(loop6): Different NTFS sector size (4096) and media sector size (512). [ 789.921550][T24167] ntfs3(loop6): ino=19, mi_enum_attr [ 790.039714][T24167] ntfs3(loop6): failed to convert "c46c" to maccroatian [ 790.085610][T24167] ntfs3(loop6): ino=20, mi_enum_attr [ 790.575590][T24198] loop0: detected capacity change from 0 to 512 [ 790.598246][T24198] EXT4-fs: Ignoring removed bh option [ 790.607675][T24203] x_tables: (null)_tables: AUDIT.0 target: invalid size 8 (kernel) != (user) 16 [ 790.652977][T24198] EXT4-fs (loop0): orphan cleanup on readonly fs [ 790.872130][T24198] EXT4-fs error (device loop0): ext4_map_blocks:791: inode #11: block 1: comm syz.0.7844: lblock 0 mapped to illegal pblock 1 (length 1) [ 790.915580][T24198] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 790.921721][ C1] EXT4-fs (loop0): error count since last fsck: 1 [ 790.937377][ C1] EXT4-fs (loop0): initial error at time 1778532562: ext4_map_blocks:791: inode 11: block 1 [ 790.947560][ C1] EXT4-fs (loop0): last error at time 1778532562: ext4_map_blocks:791: inode 11: block 1 [ 791.015734][T24198] EXT4-fs warning (device loop0): ext4_expand_extra_isize_ea:2859: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 791.096902][T24198] EXT4-fs error (device loop0): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.0.7844: EA inode 11 ref wraparound: ref_count=0 ref_change=-1 [ 791.097010][T24198] loop0: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 791.135027][T24198] EXT4-fs warning (device loop0): ext4_xattr_inode_dec_ref_all:1230: inode #11: comm syz.0.7844: ea_inode dec ref err=-117 [ 791.140404][T24198] EXT4-fs (loop0): 1 orphan inode deleted [ 791.148498][T24198] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 791.360594][T24223] netlink: 2160 bytes leftover after parsing attributes in process `syz.3.7849'. [ 791.360633][T24223] netlink: 2160 bytes leftover after parsing attributes in process `syz.3.7849'. [ 791.374784][T24224] netlink: 'syz.7.7851': attribute type 10 has an invalid length. [ 791.419573][ T5619] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 791.491583][T24224] veth0_vlan: left promiscuous mode [ 791.508630][T24224] veth0_vlan: entered promiscuous mode [ 791.565838][T24224] team0: Device veth0_vlan failed to register rx_handler [ 791.688422][T24178] loop4: detected capacity change from 0 to 32768 [ 791.697901][T24178] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.7833 (24178) [ 791.725359][T24178] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 791.725414][T24178] BTRFS info (device loop4): using sha256 checksum algorithm [ 791.757359][T24232] loop3: detected capacity change from 0 to 256 [ 791.758435][T24232] exfat: Deprecated parameter 'utf8' [ 791.758508][T24232] exfat: Deprecated parameter 'namecase' [ 791.758668][T24232] exfat: Deprecated parameter 'namecase' [ 791.771183][T24232] exfat: Deprecated parameter 'utf8' [ 791.831634][T24232] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d) [ 791.833939][T24232] exFAT-fs (loop3): failed to test first cluster bit of root dir(5) [ 791.989371][T24178] BTRFS info (device loop4): enabling ssd optimizations [ 791.989414][T24178] BTRFS info (device loop4): turning on async discard [ 791.989446][T24178] BTRFS info (device loop4): enabling free space tree [ 792.529046][ T5636] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 793.940789][T24306] loop6: detected capacity change from 0 to 1024 [ 794.697645][T24325] Sensor A: ================= START STATUS ================= [ 794.729885][T24325] Sensor A: Test Pattern: 75% Colorbar [ 794.776798][T24325] Sensor A: Show Information: All [ 794.795366][T24325] Sensor A: Vertical Flip: false [ 794.813520][T24325] Sensor A: Horizontal Flip: true [ 794.839986][T24325] Sensor A: Brightness: 128 [ 794.856993][T24325] Sensor A: Contrast: 128 [ 794.871751][T24325] Sensor A: Hue: 0 [ 794.881655][T24325] Sensor A: Saturation: 7 [ 794.897539][T24325] Sensor A: Pixel Rate: 160000000 [ 794.914828][T24287] loop0: detected capacity change from 0 to 32768 [ 794.921472][T24325] Sensor A: Horizontal Blanking: 800 [ 794.933614][T24325] Sensor A: Vertical Blanking: 3223 [ 794.952071][T24325] Sensor A: ================== END STATUS ================== [ 795.005220][T24287] jfs_strtoUCS: char2uni returned -22. [ 795.034195][T24287] charset = cp1255, char = 0xfc [ 795.149488][T24305] loop3: detected capacity change from 0 to 32768 [ 795.198579][T24305] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.7874 (24305) [ 795.322266][T24305] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 795.377518][T24305] BTRFS info (device loop3): using sha256 checksum algorithm [ 795.543841][T24305] BTRFS info (device loop3): enabling ssd optimizations [ 795.614068][T24305] BTRFS info (device loop3): turning on async discard [ 795.659558][T24305] BTRFS info (device loop3): enabling free space tree [ 795.986798][ T5628] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 796.115228][T24369] netlink: 'syz.4.7893': attribute type 6 has an invalid length. [ 796.434608][T24327] loop6: detected capacity change from 0 to 32768 [ 796.472161][T24379] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7897'. [ 796.573468][T24379] netlink: 76 bytes leftover after parsing attributes in process `syz.4.7897'. [ 797.586815][T24402] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7906'. [ 797.631420][T24402] netlink: 224 bytes leftover after parsing attributes in process `syz.6.7906'. [ 797.641876][T24402] netlink: 8 bytes leftover after parsing attributes in process `syz.6.7906'. [ 797.685107][T24405] netlink: 28 bytes leftover after parsing attributes in process `syz.3.7907'. [ 798.049207][T24416] --map-set only usable from mangle table [ 798.294960][T24423] openvswitch: netlink: Unknown VXLAN extension attribute 0 [ 798.563210][T24432] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 799.640042][T24473] tmpfs: Bad value for 'mpol' [ 800.594763][T24510] ªªªªªª: renamed from dummy0 [ 801.024949][T24520] loop7: detected capacity change from 0 to 2048 [ 801.064106][T24523] loop0: detected capacity change from 0 to 256 [ 801.131384][T24529] xt_connbytes: Forcing CT accounting to be enabled [ 801.169487][T24529] xt_bpf: check failed: parse error [ 801.443283][T24532] loop3: detected capacity change from 0 to 4096 [ 801.516522][T24532] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 801.786923][ T5628] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 802.214253][T24567] dlm: plock device version mismatch: kernel (1.2.0), user (1.4194304.4294901762) [ 802.403684][T24572] loop7: detected capacity change from 0 to 512 [ 802.805172][T24588] netlink: 'syz.0.7981': attribute type 6 has an invalid length. [ 802.823418][T24589] netlink: 'syz.6.7982': attribute type 10 has an invalid length. [ 802.861234][T24588] netlink: 176 bytes leftover after parsing attributes in process `syz.0.7981'. [ 802.934270][T24589] veth0_vlan: left promiscuous mode [ 802.977920][T24596] netlink: 'syz.3.7985': attribute type 2 has an invalid length. [ 802.979872][T24589] veth0_vlan: entered promiscuous mode [ 803.025143][T24589] team0: Device veth0_vlan failed to register rx_handler [ 803.825666][T24621] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7996'. [ 803.864997][T24621] netlink: 12 bytes leftover after parsing attributes in process `syz.4.7996'. [ 803.870587][T24624] dlm: no locking on control device [ 803.968222][T24628] kernel profiling enabled (shift: 9) [ 804.514831][T24647] trusted_key: encrypted_key: keyword 'update' not allowed when called from .instantiate method [ 804.621842][T24652] loop4: detected capacity change from 0 to 2048 [ 804.662585][T24652] UDF-fs: error (device loop4): udf_read_tagged: read failed, block=27485, location=27485 [ 804.718729][T24652] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 805.737227][T24690] netlink: 'syz.4.8029': attribute type 11 has an invalid length. [ 805.809843][T24692] netlink: 'syz.2.8030': attribute type 10 has an invalid length. [ 805.889712][T24688] loop0: detected capacity change from 0 to 4096 [ 805.989528][T24688] ntfs3(loop0): Mark volume as dirty due to NTFS errors [ 806.077381][T24688] ntfs3(loop0): Failed to load $Extend (-22). [ 806.107912][T24688] ntfs3(loop0): Failed to initialize $Extend. [ 806.143051][T24702] loop4: detected capacity change from 0 to 256 [ 806.270929][T24702] FAT-fs (loop4): Directory bread(block 64) failed [ 806.312368][T24702] FAT-fs (loop4): Directory bread(block 65) failed [ 806.336377][T24702] FAT-fs (loop4): Directory bread(block 66) failed [ 806.365908][T24702] FAT-fs (loop4): Directory bread(block 67) failed [ 806.405578][T24702] FAT-fs (loop4): Directory bread(block 68) failed [ 806.438149][T24702] FAT-fs (loop4): Directory bread(block 69) failed [ 806.465727][T24702] FAT-fs (loop4): Directory bread(block 70) failed [ 806.505994][T24702] FAT-fs (loop4): Directory bread(block 71) failed [ 806.545297][T24702] FAT-fs (loop4): Directory bread(block 72) failed [ 806.598571][T24702] FAT-fs (loop4): Directory bread(block 73) failed [ 806.789974][T24722] loop2: detected capacity change from 0 to 512 [ 806.850478][T24722] FAT-fs (loop2): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 806.946280][T24721] loop3: detected capacity change from 0 to 4096 [ 807.055973][T24729] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 807.973159][T24752] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8059'. [ 808.014744][ T1308] ieee802154 phy1 wpan1: encryption failed: -22 [ 808.158735][T24727] loop6: detected capacity change from 0 to 32768 [ 808.200032][T24727] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.8047 (24727) [ 808.269944][T24760] xt_connbytes: Forcing CT accounting to be enabled [ 808.296292][T24760] set match dimension is over the limit! [ 808.304838][T24727] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 808.333634][ T30] kauditd_printk_skb: 4 callbacks suppressed [ 808.333660][ T30] audit: type=1326 audit(1778532579.851:383): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24763 comm="syz.4.8066" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f9d9cdd9 code=0x7ffc0000 [ 808.345353][T24727] BTRFS info (device loop6): using sha256 checksum algorithm [ 808.490742][ T30] audit: type=1326 audit(1778532579.851:384): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24763 comm="syz.4.8066" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f9d9cdd9 code=0x7ffc0000 [ 808.613320][ T30] audit: type=1326 audit(1778532579.901:385): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24763 comm="syz.4.8066" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=36 compat=0 ip=0x7f69f9d9cdd9 code=0x7ffc0000 [ 808.673866][ T30] audit: type=1326 audit(1778532579.901:386): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=24763 comm="syz.4.8066" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f69f9d9cdd9 code=0x7ffc0000 [ 808.735251][T24727] BTRFS info (device loop6): enabling ssd optimizations [ 808.763781][T24727] BTRFS info (device loop6): using spread ssd allocation scheme [ 808.784167][T24727] BTRFS info (device loop6): turning on async discard [ 808.802117][T24727] BTRFS info (device loop6): enabling free space tree [ 808.886082][ T802] usb 1-1: new high-speed USB device number 33 using dummy_hcd [ 809.038193][T24796] tmpfs: Bad value for 'mpol' [ 809.051861][ T802] usb 1-1: Using ep0 maxpacket: 16 [ 809.071438][ T802] usb 1-1: config 0 has an invalid interface number: 63 but max is 0 [ 809.096396][ T802] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 809.137377][ T802] usb 1-1: config 0 has no interface number 0 [ 809.161029][ T802] usb 1-1: config 0 interface 63 altsetting 0 endpoint 0x6 has invalid wMaxPacketSize 0 [ 809.203145][ T802] usb 1-1: config 0 interface 63 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 809.253258][ T802] usb 1-1: New USB device found, idVendor=0644, idProduct=800e, bcdDevice=41.e6 [ 809.283130][ T802] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 809.312175][T24803] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 809.318176][ T802] usb 1-1: config 0 descriptor?? [ 809.630476][ T802] usb 1-1: USB disconnect, device number 33 [ 809.809520][T23092] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 810.180275][T24820] loop3: detected capacity change from 0 to 1024 [ 811.399627][T24863] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8106'. [ 811.434528][T24863] netlink: 24 bytes leftover after parsing attributes in process `syz.7.8106'. [ 811.504367][T24868] netlink: 8 bytes leftover after parsing attributes in process `syz.3.8109'. [ 811.657562][T24863] bond1: Removing last arp target with arp_interval on [ 811.697892][T24863] bond1: entered allmulticast mode [ 811.723780][T24863] 8021q: adding VLAN 0 to HW filter on device bond1 [ 811.811341][T24882] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 811.952476][T24868] bond2 (unregistering): Released all slaves [ 812.019786][T24887] loop4: detected capacity change from 0 to 1024 [ 812.470685][T24902] gre1: entered promiscuous mode [ 812.600997][T24908] netlink: 59 bytes leftover after parsing attributes in process `syz.3.8126'. [ 812.651904][T24908] netlink: 59 bytes leftover after parsing attributes in process `syz.3.8126'. [ 812.695496][T24912] netlink: 256 bytes leftover after parsing attributes in process `syz.6.8128'. [ 812.715083][T24910] loop7: detected capacity change from 0 to 512 [ 812.741982][T23212] usb 1-1: new high-speed USB device number 34 using dummy_hcd [ 812.940518][T23212] usb 1-1: config 27 interface 0 altsetting 0 endpoint 0x8 has invalid maxpacket 127, setting to 64 [ 812.980934][T23212] usb 1-1: config 27 interface 0 altsetting 0 bulk endpoint 0xB has invalid maxpacket 47 [ 813.023517][T23212] usb 1-1: New USB device found, idVendor=0582, idProduct=0014, bcdDevice=bb.9d [ 813.045547][T23212] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 813.068681][T24906] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 813.135143][T23212] usb 1-1: Quirk or no altset; falling back to MIDI 1.0 [ 813.140320][T24924] PKCS8: Unsupported PKCS#8 version [ 813.164627][T23212] usb 1-1: invalid MIDI in EP 0 [ 813.512030][ T802] usb 7-1: new high-speed USB device number 4 using dummy_hcd [ 813.596120][T23212] snd-usb-audio 1-1:27.0: probe with driver snd-usb-audio failed with error -22 [ 813.648365][T23212] usb 1-1: USB disconnect, device number 34 [ 813.683977][ T802] usb 7-1: Using ep0 maxpacket: 32 [ 813.700431][T24940] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8142'. [ 813.723186][ T802] usb 7-1: config 0 has an invalid interface number: 188 but max is 0 [ 813.744131][T24940] netlink: 20 bytes leftover after parsing attributes in process `syz.4.8142'. [ 813.757348][ T802] usb 7-1: config 0 has no interface number 0 [ 813.782794][ T802] usb 7-1: config 0 interface 188 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 32 [ 813.822927][ T802] usb 7-1: New USB device found, idVendor=17ef, idProduct=7203, bcdDevice=2e.36 [ 813.843841][ T802] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 813.870873][ T802] usb 7-1: Product: syz [ 813.879107][ T802] usb 7-1: Manufacturer: syz [ 813.894948][ T802] usb 7-1: SerialNumber: syz [ 813.920662][ T802] usb 7-1: config 0 descriptor?? [ 813.946435][T24929] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 814.152885][T24954] Unknown options in mask b7f2 [ 814.199732][T24929] raw-gadget.1 gadget.6: fail, usb_ep_enable returned -22 [ 814.459351][ T802] asix 7-1:0.188 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 814.514839][ T802] asix 7-1:0.188: probe with driver asix failed with error -71 [ 814.571089][ T802] usb 7-1: USB disconnect, device number 4 [ 814.636556][T24972] netlink: 'syz.2.8158': attribute type 10 has an invalid length. [ 814.718499][T24972] veth0_vlan: left promiscuous mode [ 814.744581][T24972] veth0_vlan: entered promiscuous mode [ 814.795041][T24972] team0: Device veth0_vlan failed to register rx_handler [ 815.044972][T24985] loop4: detected capacity change from 0 to 1024 [ 815.082953][T24985] EXT4-fs: Ignoring removed orlov option [ 815.185512][T24985] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 815.334022][ T5636] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 815.632838][T25008] netlink: 'syz.6.8173': attribute type 3 has an invalid length. [ 815.670814][T25008] netlink: 'syz.6.8173': attribute type 3 has an invalid length. [ 815.746468][T25013] loop4: detected capacity change from 0 to 164 [ 816.061925][T25024] sctp: [Deprecated]: syz.2.8181 (pid 25024) Use of int in max_burst socket option deprecated. [ 816.061925][T25024] Use struct sctp_assoc_value instead [ 816.828186][T25045] loop6: detected capacity change from 0 to 16 [ 816.854067][T25045] erofs (device loop6): mounted with root inode @ nid 36. [ 816.902996][T25045] syz.6.8192: attempt to access beyond end of device [ 816.902996][T25045] loop6: rw=524288, sector=1056, nr_sectors = 16 limit=16 [ 816.938690][T25045] erofs (device loop6): bogus lookback distance 0 @ lcn 8 of nid 89 [ 816.951439][T25045] erofs (device loop6): readahead error at folio 8 @ nid 89 [ 816.959407][T25045] syz.6.8192: attempt to access beyond end of device [ 816.959407][T25045] loop6: rw=524288, sector=16, nr_sectors = 8 limit=16 [ 816.983759][T25045] syz.6.8192: attempt to access beyond end of device [ 816.983759][T25045] loop6: rw=524288, sector=32, nr_sectors = 24 limit=16 [ 817.002270][ T5756] usb 5-1: new high-speed USB device number 35 using dummy_hcd [ 817.083289][T25045] erofs (device loop6): failed to decompress (lz4) corrupted compressed data @ pa 4096 size 4096 => 8192 [ 817.097482][T25045] erofs (device loop6): read error -117 @ 1 of nid 89 [ 817.107250][ T30] audit: type=1800 audit(1778532588.621:387): pid=25045 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.8192" name="file2" dev="loop6" ino=89 res=0 errno=0 [ 817.175168][ T5756] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 817.186196][T25053] loop2: detected capacity change from 0 to 256 [ 817.200803][ T5756] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 817.241920][ T5756] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 817.271819][ T802] usb 1-1: new high-speed USB device number 35 using dummy_hcd [ 817.277667][ T5756] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 817.291884][T25045] syz.6.8192 (25045) used greatest stack depth: 20008 bytes left [ 817.320856][ T5756] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 817.335175][ T5756] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 817.382228][ T5756] usb 5-1: config 0 descriptor?? [ 817.432743][ T802] usb 1-1: Using ep0 maxpacket: 8 [ 817.459779][ T802] usb 1-1: config 0 has an invalid interface number: 55 but max is 0 [ 817.479099][T25057] netlink: 'syz.6.8198': attribute type 4 has an invalid length. [ 817.491927][T25057] netlink: 17 bytes leftover after parsing attributes in process `syz.6.8198'. [ 817.499125][ T802] usb 1-1: config 0 has no interface number 0 [ 817.525658][ T802] usb 1-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 817.559341][ T802] usb 1-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 817.591822][ T802] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 817.609657][ T802] usb 1-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 817.621933][ T802] usb 1-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 817.656474][ T5756] hdpvr 5-1:0.0: firmware version 0xd dated 8°mPª{, [ 817.656474][ T5756] #ðãpó⊻’lôEÈ¥£]Ô +±aV@g_C.ÏÁ«r‡9 [ 817.659760][ T802] usb 1-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 817.724840][ T802] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 817.755551][ T802] usb 1-1: config 0 descriptor?? [ 817.780020][ T802] ldusb 1-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 817.873969][ T5756] hdpvr 5-1:0.0: device init failed [ 817.894163][ T5756] hdpvr 5-1:0.0: probe with driver hdpvr failed with error -12 [ 817.922624][ T5756] usb 5-1: USB disconnect, device number 35 [ 818.026582][T25051] ldusb 1-1:0.55: Couldn't submit interrupt_in_urb -90 [ 818.068233][T19958] usb 1-1: USB disconnect, device number 35 [ 818.110104][T19958] ldusb 1-1:0.55: LD USB Device #0 now disconnected [ 818.632091][T19958] usb 7-1: new high-speed USB device number 5 using dummy_hcd [ 818.857157][T19958] usb 7-1: Using ep0 maxpacket: 8 [ 818.867652][T25095] netlink: 16 bytes leftover after parsing attributes in process `syz.7.8217'. [ 818.894354][T19958] usb 7-1: config 1 has an invalid descriptor of length 97, skipping remainder of the config [ 818.934294][T19958] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 97, changing to 7 [ 818.990795][T19958] usb 7-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid maxpacket 24929, setting to 1024 [ 819.042309][T19958] usb 7-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 3 [ 819.116517][T19958] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a3, bcdDevice= 0.40 [ 819.152619][T19958] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 819.188977][T19958] usb 7-1: Product: syz [ 819.207561][T19958] usb 7-1: Manufacturer: syz [ 819.228649][T19958] usb 7-1: SerialNumber: syz [ 819.274231][T19958] cdc_ether 7-1:1.0: probe with driver cdc_ether failed with error -22 [ 819.313371][T19958] usbtest 7-1:1.0: Linux user mode ISO test driver [ 819.336835][T19958] usbtest 7-1:1.0: high-speed {control iso-in} tests (+alt) [ 819.547144][T19958] usb 7-1: USB disconnect, device number 5 [ 820.376361][T25138] loop3: detected capacity change from 0 to 4096 [ 820.413405][T25138] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 820.458136][T25144] netlink: 'syz.2.8241': attribute type 1 has an invalid length. [ 820.487442][T25144] netlink: 224 bytes leftover after parsing attributes in process `syz.2.8241'. [ 820.558215][T25138] ntfs3(loop3): ino=19, mi_enum_attr [ 820.586040][T25138] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 820.631082][T25138] ntfs3(loop3): ino=1a, mi_enum_attr [ 820.656195][T25138] ntfs3(loop3): ino=1a, mi_enum_attr [ 820.686206][T25138] ntfs3(loop3): Failed to initialize $Extend/$Reparse. [ 821.071987][T25123] loop0: detected capacity change from 0 to 32768 [ 821.116694][T25123] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 (7:0) scanned by syz.0.8231 (25123) [ 821.215471][T25123] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 821.231824][T25123] BTRFS info (device loop0): using sha256 checksum algorithm [ 821.241926][T25162] loop2: detected capacity change from 0 to 2048 [ 821.304960][T25173] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 821.515770][T25123] BTRFS info (device loop0): enabling ssd optimizations [ 821.553393][T25123] BTRFS info (device loop0): using spread ssd allocation scheme [ 821.581252][T25123] BTRFS info (device loop0): turning on async discard [ 821.603857][ T30] audit: type=1326 audit(1778532593.111:388): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 821.651228][T25123] BTRFS info (device loop0): enabling free space tree [ 821.738249][ T30] audit: type=1326 audit(1778532593.151:389): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 821.830643][ T30] audit: type=1326 audit(1778532593.161:390): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 821.952457][ T5619] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 821.955702][ T30] audit: type=1326 audit(1778532593.161:391): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 822.088782][ T30] audit: type=1326 audit(1778532593.161:392): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=126 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 822.232426][T17824] usb 5-1: new high-speed USB device number 36 using dummy_hcd [ 822.238718][ T30] audit: type=1326 audit(1778532593.161:393): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 822.291931][T25204] netlink: 4 bytes leftover after parsing attributes in process `syz.6.8263'. [ 822.300976][ T30] audit: type=1326 audit(1778532593.161:395): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 822.428584][ T30] audit: type=1326 audit(1778532593.161:394): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 822.462296][T17824] usb 5-1: Using ep0 maxpacket: 16 [ 822.488088][T17824] usb 5-1: config index 0 descriptor too short (expected 16456, got 72) [ 822.541613][T17824] usb 5-1: config 0 has an invalid interface number: 125 but max is 1 [ 822.551089][ T30] audit: type=1326 audit(1778532593.161:396): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25187 comm="syz.3.8255" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 822.564316][T17824] usb 5-1: config 0 has an invalid interface number: 125 but max is 1 [ 822.672264][T17824] usb 5-1: config 0 has an invalid interface number: 125 but max is 1 [ 822.723120][T17824] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 822.751986][T17824] usb 5-1: config 0 has no interface number 0 [ 822.795719][T17824] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64 [ 822.832083][T17824] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0 [ 822.891885][T17824] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0 [ 822.950684][T17824] usb 5-1: config 0 interface 125 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 823.003105][T17824] usb 5-1: config 0 interface 125 has no altsetting 0 [ 823.055422][T17824] usb 5-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27 [ 823.085886][T17824] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 823.129765][T17824] usb 5-1: Product: syz [ 823.145526][T17824] usb 5-1: Manufacturer: syz [ 823.162591][T17824] usb 5-1: SerialNumber: syz [ 823.201502][T17824] usb 5-1: config 0 descriptor?? [ 823.312030][ T802] usb 1-1: new full-speed USB device number 36 using dummy_hcd [ 823.478481][ T802] usb 1-1: unable to get BOS descriptor or descriptor too short [ 823.512175][ T802] usb 1-1: not running at top speed; connect to a high speed hub [ 823.548841][ T802] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 823.589534][ T802] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 823.632693][ T802] usb 1-1: New USB device found, idVendor=041e, idProduct=3020, bcdDevice= 0.40 [ 823.659991][ T802] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 823.701309][ T802] usb 1-1: Product: syz [ 823.714120][ T802] usb 1-1: Manufacturer: syz [ 823.736643][ T802] usb 1-1: SerialNumber: syz [ 823.794164][ T5756] usb 5-1: USB disconnect, device number 36 [ 823.808569][T25237] netlink: 'syz.3.8278': attribute type 10 has an invalid length. [ 823.921269][T25235] loop6: detected capacity change from 0 to 4096 [ 823.929662][T25206] loop7: detected capacity change from 0 to 32768 [ 823.980350][T25237] veth0_vlan: left promiscuous mode [ 823.996914][T25237] veth0_vlan: entered promiscuous mode [ 824.025626][T25206] XFS (loop7): Mounting V5 filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d in no-recovery mode. Filesystem will be inconsistent. [ 824.033306][ T802] usb 1-1: 0:1 : does not exist [ 824.040383][T25235] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 824.063167][ T802] usb 1-1: 0:2 : does not exist [ 824.085796][ T802] usb 1-1: 6:0: failed to get current value for ch 1 (-22) [ 824.094460][T25237] team0: Device veth0_vlan failed to register rx_handler [ 824.112665][ T802] usb 1-1: 6:0: failed to get current value for ch 0 (-22) [ 824.148585][ T802] usb 1-1: 6:0: failed to get current value for ch 1 (-22) [ 824.170608][T25206] XFS (loop7): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 824.326975][ T802] usb 1-1: USB disconnect, device number 36 [ 824.506798][T23092] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 824.878557][ T5634] udevd[5634]: error opening ATTR{/sys/devices/platform/dummy_hcd.0/usb1/1-1/1-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 824.984255][T25261] 9p: Unknown Cache mode or invalid value fscach [ 825.584758][T25276] netlink: 'syz.7.8292': attribute type 2 has an invalid length. [ 826.558072][T25311] loop3: detected capacity change from 0 to 256 [ 826.591209][T25311] exfat: Deprecated parameter 'namecase' [ 826.641652][T25311] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 826.689439][T25311] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x7f1fc68d, utbl_chksum : 0xe619d30d) [ 827.428928][T25343] xt_CHECKSUM: unsupported CHECKSUM operation 68 [ 827.689740][T25347] netlink: 24 bytes leftover after parsing attributes in process `syz.7.8328'. [ 827.804338][T25355] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it. [ 827.837381][T25355] overlayfs: missing 'lowerdir' [ 827.890239][T25356] loop4: detected capacity change from 0 to 2048 [ 827.941524][T25356] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 828.444643][T25373] netlink: 'syz.6.8341': attribute type 1 has an invalid length. [ 828.444681][T25373] netlink: 'syz.6.8341': attribute type 2 has an invalid length. [ 828.453597][T25365] loop0: detected capacity change from 0 to 4096 [ 828.460631][T25365] EXT4-fs: Ignoring removed bh option [ 828.538055][T25365] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 828.856591][ T5619] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 829.324691][T25352] syz.2.8330 (25352): drop_caches: 2 [ 829.729249][T25409] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8356'. [ 829.772415][T25409] netlink: 4 bytes leftover after parsing attributes in process `syz.0.8356'. [ 829.849089][T25414] dlm: no locking on control device [ 830.016102][T25420] netlink: 'syz.3.8363': attribute type 1 has an invalid length. [ 830.051054][T25420] netlink: 228 bytes leftover after parsing attributes in process `syz.3.8363'. [ 830.352831][T25428] netlink: 'syz.4.8367': attribute type 2 has an invalid length. [ 830.405659][T25428] netlink: 132 bytes leftover after parsing attributes in process `syz.4.8367'. [ 830.501921][T19958] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 830.671632][T25440] netlink: 'syz.3.8373': attribute type 10 has an invalid length. [ 830.675617][T19958] usb 3-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 830.709523][T25440] vxcan1: entered promiscuous mode [ 830.726453][T19958] usb 3-1: config 220 has 2 interfaces, different from the descriptor's value: 3 [ 830.728921][T25440] team0: Device vxcan1 is of different type [ 830.763413][T19958] usb 3-1: config 220 interface 1 altsetting 5 endpoint 0x89 has an invalid bInterval 52, changing to 7 [ 830.798384][T19958] usb 3-1: config 220 interface 1 altsetting 5 endpoint 0x89 has invalid maxpacket 9272, setting to 1024 [ 830.848482][T19958] usb 3-1: config 220 interface 1 altsetting 5 has 1 endpoint descriptor, different from the interface descriptor's value: 12 [ 830.910062][T19958] usb 3-1: config 220 interface 0 has no altsetting 0 [ 830.934103][T25448] netlink: 'syz.6.8377': attribute type 1 has an invalid length. [ 830.938051][T19958] usb 3-1: config 220 interface 1 has no altsetting 0 [ 830.987316][T19958] usb 3-1: New USB device found, idVendor=8086, idProduct=0b03, bcdDevice=6c.b9 [ 831.018069][T19958] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 831.059918][T19958] usb 3-1: Product: syz [ 831.079202][T19958] usb 3-1: Manufacturer: syz [ 831.100789][T19958] usb 3-1: SerialNumber: syz [ 831.195094][T25457] loop3: detected capacity change from 0 to 256 [ 831.224170][T25457] exfat: Deprecated parameter 'namecase' [ 831.257633][T25457] exfat: Deprecated parameter 'namecase' [ 831.309799][T25457] exFAT-fs (loop3): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 831.346341][T25461] netlink: 'syz.0.8383': attribute type 28 has an invalid length. [ 831.379749][T25461] netlink: 'syz.0.8383': attribute type 3 has an invalid length. [ 831.402430][T19958] usb 3-1: selecting invalid altsetting 0 [ 831.418919][T19958] uvcvideo 3-1:220.0: probe with driver uvcvideo failed with error -22 [ 831.428913][T25461] netlink: 132 bytes leftover after parsing attributes in process `syz.0.8383'. [ 831.480925][T19958] usb 3-1: selecting invalid altsetting 0 [ 831.500425][T19958] usbtest 3-1:220.1: probe with driver usbtest failed with error -22 [ 831.561246][T19958] usb 3-1: USB disconnect, device number 31 [ 831.762611][T25469] vti0: entered promiscuous mode [ 832.002269][T19958] usb 1-1: new high-speed USB device number 37 using dummy_hcd [ 832.177553][T19958] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 832.221849][T19958] usb 1-1: New USB device found, idVendor=0cf3, idProduct=9374, bcdDevice=bc.3b [ 832.255924][T19958] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 832.350071][T19958] usb 1-1: config 0 descriptor?? [ 832.672057][ T30] audit: type=1326 audit(1778532604.181:397): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25503 comm="syz.3.8404" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 832.765744][ T30] audit: type=1326 audit(1778532604.181:398): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25503 comm="syz.3.8404" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 832.802694][T19958] ath6kl: Failed to read usb control message: -71 [ 832.826647][T19958] ath6kl: Unable to read the bmi data from the device: -71 [ 832.859336][T19958] ath6kl: Unable to recv target info: -71 [ 832.888834][T19958] ath6kl: Failed to init ath6kl core: -71 [ 832.908322][ T30] audit: type=1326 audit(1778532604.191:399): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25503 comm="syz.3.8404" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=451 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 832.913497][T23212] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 832.951384][T19958] ath6kl_usb 1-1:0.0: probe with driver ath6kl_usb failed with error -71 [ 833.008903][ T30] audit: type=1326 audit(1778532604.191:400): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=25503 comm="syz.3.8404" exe="/root/ci-upstream-kasan-badwrites-root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2fbfb9cdd9 code=0x7ffc0000 [ 833.066094][T19958] usb 1-1: USB disconnect, device number 37 [ 833.187549][T25517] Can not set IPV6_FL_F_REFLECT if flowlabel_consistency sysctl is enable [ 833.188685][T23212] usb 3-1: config 0 has too many interfaces: 253, using maximum allowed: 32 [ 833.225589][T23212] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 253 [ 833.267486][T23212] usb 3-1: New USB device found, idVendor=055f, idProduct=c630, bcdDevice=b6.ac [ 833.290531][T23212] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 833.317177][T23212] usb 3-1: Product: syz [ 833.352268][T23212] usb 3-1: Manufacturer: syz [ 833.367157][T23212] usb 3-1: SerialNumber: syz [ 833.389171][T23212] usb 3-1: config 0 descriptor?? [ 833.424673][T25522] netlink: 28 bytes leftover after parsing attributes in process `syz.4.8412'. [ 833.440354][T23212] gspca_main: sunplus-2.14.0 probing 055f:c630 [ 833.517867][T25526] loop7: detected capacity change from 0 to 512 [ 833.560947][T25526] EXT4-fs: Ignoring removed nomblk_io_submit option [ 833.855562][T23212] gspca_sunplus: reg_r err -71 [ 833.870650][T23212] sunplus 3-1:0.0: probe with driver sunplus failed with error -71 [ 833.908795][T23212] usb 3-1: USB disconnect, device number 32 [ 834.659589][T25551] loop6: detected capacity change from 0 to 4096 [ 834.675985][T25552] loop4: detected capacity change from 0 to 4096 [ 834.766865][T25561] NILFS (loop6): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 834.834944][T25552] ntfs3(loop4): Mark volume as dirty due to NTFS errors [ 834.878900][T25552] ntfs3(loop4): Failed to load $Extend (-22). [ 834.929725][T25552] ntfs3(loop4): Failed to initialize $Extend. [ 835.061161][T25552] ntfs3(loop4): ino=5, "/" indx_read_ra [ 835.231874][ T802] usb 1-1: new high-speed USB device number 38 using dummy_hcd [ 835.289167][ T5636] ntfs3(loop4): ino=9, ntfs_sync_fs failed, -22. [ 835.428514][ T802] usb 1-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.02 [ 835.462039][ T802] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 835.498744][ T802] usb 1-1: Product: syz [ 835.517861][T25581] netlink: 'syz.2.8441': attribute type 10 has an invalid length. [ 835.529521][ T802] usb 1-1: Manufacturer: syz [ 835.551783][ T802] usb 1-1: SerialNumber: syz [ 835.600605][T25581] team0: Port device vxcan1 added [ 835.613247][ T802] usb 1-1: config 0 descriptor?? [ 835.853452][T25587] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8445'. [ 835.865410][T25588] ip6t_REJECT: TCP_RESET illegal for non-tcp [ 835.886014][T25589] ieee802154 phy1 wpan1: encryption failed: -22 [ 836.079243][ T5756] usb 1-1: USB disconnect, device number 38 [ 836.443888][T25606] loop3: detected capacity change from 0 to 1024 [ 836.507625][T25606] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 836.591940][T25612] EXT4-fs error (device loop3): ext4_validate_block_bitmap:440: comm ext4lazyinit: bg 0: block 440: padding at end of block bitmap is not set [ 836.662570][ T5756] usb 7-1: new high-speed USB device number 6 using dummy_hcd [ 836.676367][T25606] EXT4-fs error (device loop3): ext4_empty_dir:3114: inode #11: block 623: comm syz.3.8452: Attempting to read directory block (623) that is past i_size (638464) [ 836.823190][ T5756] usb 7-1: Using ep0 maxpacket: 8 [ 836.853454][ T5756] usb 7-1: New USB device found, idVendor=047d, idProduct=5003, bcdDevice=2f.8c [ 836.894666][ T5756] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 836.910227][ T5628] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 836.920851][ T5756] usb 7-1: Product: syz [ 836.935745][ T5756] usb 7-1: Manufacturer: syz [ 836.958207][ T5756] usb 7-1: SerialNumber: syz [ 837.010760][ T5756] usb 7-1: config 0 descriptor?? [ 837.038434][ T5756] gspca_main: se401-2.14.0 probing 047d:5003 [ 837.470678][ T5756] gspca_se401: write req failed req 0x57 val 0x00 error -71 [ 837.508163][ T5756] se401 7-1:0.0: probe with driver se401 failed with error -71 [ 837.557634][ T5756] usb 7-1: USB disconnect, device number 6 [ 838.061051][ T30] audit: type=1800 audit(1778532609.571:401): pid=25641 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=set_data cause=unavailable-hash-algorithm comm="syz.0.8467" name="/newroot/1405/file0" dev="tmpfs" ino=7193 res=0 errno=0 [ 838.180705][T25640] syz.3.8466 (25640): drop_caches: 2 [ 838.210565][T25669] loop4: detected capacity change from 0 to 256 [ 838.348712][T25669] exfat: Deprecated parameter 'utf8' [ 838.387561][T25625] loop2: detected capacity change from 0 to 32768 [ 838.417194][T25669] exfat: Deprecated parameter 'namecase' [ 838.508536][T25669] exfat: Deprecated parameter 'namecase' [ 838.670359][T25625] XFS (loop2): Mounting V5 filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d in no-recovery mode. Filesystem will be inconsistent. [ 838.721004][T25625] XFS (loop2): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 838.783471][T25669] exFAT-fs (loop4): failed to load upcase table (idx : 0x0001fe89, chksum : 0xc374f927, utbl_chksum : 0xe619d30d) [ 839.319405][T25696] loop7: detected capacity change from 0 to 512 [ 839.941038][T25716] loop0: detected capacity change from 0 to 64 [ 840.241831][T17386] usb 4-1: new high-speed USB device number 36 using dummy_hcd [ 840.340231][T25731] loop0: detected capacity change from 0 to 256 [ 840.436651][T17386] usb 4-1: Using ep0 maxpacket: 8 [ 840.461076][T17386] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9 [ 840.492452][T17386] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 840.524720][T17386] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0 [ 840.569204][T17386] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024 [ 840.648486][T17386] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024 [ 840.718128][T17386] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58 [ 840.771613][T17386] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 840.818211][T17386] usb 4-1: config 0 descriptor?? [ 840.838134][T25721] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22 [ 841.306049][ T802] usb 4-1: USB disconnect, device number 36 [ 841.311266][ T5622] Bluetooth: hci6: Opcode 0x0c03 failed: -19 [ 841.458433][T25759] loop6: detected capacity change from 0 to 512 [ 841.524257][T25759] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 841.676621][T25770] netlink: 132 bytes leftover after parsing attributes in process `syz.7.8514'. [ 841.817770][T25772] loop2: detected capacity change from 0 to 256 [ 841.906949][T23092] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 842.013018][T25772] FAT-fs (loop2): Directory bread(block 64) failed [ 842.063568][T25772] FAT-fs (loop2): Directory bread(block 65) failed [ 842.103682][T25772] FAT-fs (loop2): Directory bread(block 66) failed [ 842.141825][T25772] FAT-fs (loop2): Directory bread(block 67) failed [ 842.172913][T25782] openvswitch: netlink: IPv4 tun info is not correct [ 842.173425][T25772] FAT-fs (loop2): Directory bread(block 68) failed [ 842.247579][T25772] FAT-fs (loop2): Directory bread(block 69) failed [ 842.286926][T25772] FAT-fs (loop2): Directory bread(block 70) failed [ 842.319468][T25772] FAT-fs (loop2): Directory bread(block 71) failed [ 842.355969][T25772] FAT-fs (loop2): Directory bread(block 72) failed [ 842.395094][T25772] FAT-fs (loop2): Directory bread(block 73) failed [ 842.699923][T25796] syz.4.8524 (25796): drop_caches: 2 [ 842.919643][T25804] netlink: 8 bytes leftover after parsing attributes in process `syz.2.8527'. [ 842.956882][T25804] netlink: 'syz.2.8527': attribute type 1 has an invalid length. [ 842.992954][T25804] netlink: 'syz.2.8527': attribute type 2 has an invalid length. [ 843.023130][T25804] netlink: 112 bytes leftover after parsing attributes in process `syz.2.8527'. [ 843.399668][T25821] syz.4.8537: vmalloc error: size 18446744073699066186, exceeds total pages, mode:0xcc0(GFP_KERNEL), nodemask=(null),cpuset=/,mems_allowed=0-1 [ 843.470041][T25821] CPU: 1 UID: 0 PID: 25821 Comm: syz.4.8537 Tainted: G L syzkaller #0 PREEMPT(full) [ 843.470100][T25821] Tainted: [L]=SOFTLOCKUP [ 843.470114][T25821] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 843.470139][T25821] Call Trace: [ 843.470152][T25821] [ 843.470167][T25821] dump_stack_lvl+0x100/0x190 [ 843.470215][T25821] warn_alloc.cold+0x95/0x1c1 [ 843.470258][T25821] ? __pfx_warn_alloc+0x10/0x10 [ 843.470305][T25821] ? do_syscall_64+0x10b/0xf80 [ 843.470374][T25821] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.470425][T25821] ? __lock_acquire+0x4a5/0x2630 [ 843.470483][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.470555][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.470620][T25821] __vmalloc_node_range_noprof+0x136c/0x1630 [ 843.470663][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.470717][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.470766][T25821] ? rcu_is_watching+0x12/0xc0 [ 843.470822][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.470889][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.470937][T25821] ? trace_contention_end+0x122/0x170 [ 843.470992][T25821] ? dvb_demux_do_ioctl+0x9e0/0x1200 [ 843.471038][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.471089][T25821] ? dvb_demux_do_ioctl+0x929/0x1200 [ 843.471134][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.471189][T25821] ? lockdep_hardirqs_on+0x78/0x100 [ 843.471249][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.471298][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.471347][T25821] ? find_held_lock+0x2b/0x80 [ 843.471417][T25821] ? __pfx___vmalloc_node_range_noprof+0x10/0x10 [ 843.471458][T25821] ? __pfx___mutex_lock+0x10/0x10 [ 843.471533][T25821] ? tomoyo_path_number_perm+0x188/0x580 [ 843.471581][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.471651][T25821] ? dvb_demux_do_ioctl+0x9e0/0x1200 [ 843.471697][T25821] __vmalloc_node_noprof+0xad/0xf0 [ 843.471737][T25821] ? dvb_demux_do_ioctl+0x9e0/0x1200 [ 843.471783][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.471855][T25821] dvb_demux_do_ioctl+0x9e0/0x1200 [ 843.471904][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.471953][T25821] ? do_vfs_ioctl+0x226/0x13e0 [ 843.472017][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.472083][T25821] dvb_usercopy+0x167/0x340 [ 843.472122][T25821] ? __pfx_dvb_demux_do_ioctl+0x10/0x10 [ 843.472167][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.472236][T25821] ? __pfx_dvb_usercopy+0x10/0x10 [ 843.472294][T25821] ? srso_alias_return_thunk+0x5/0xfbef5 [ 843.472339][T25821] ? __fget_files+0x21f/0x3d0 [ 843.472547][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.472681][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.472777][T25821] dvb_demux_ioctl+0x29/0x40 [ 843.472833][T25821] ? __pfx_dvb_demux_ioctl+0x10/0x10 [ 843.472892][T25821] __x64_sys_ioctl+0x18e/0x210 [ 843.472981][T25821] do_syscall_64+0x10b/0xf80 [ 843.473075][T25821] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 843.473132][T25821] RIP: 0033:0x7f69f9d9cdd9 [ 843.473176][T25821] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 843.473231][T25821] RSP: 002b:00007f69f7ff6028 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 843.473282][T25821] RAX: ffffffffffffffda RBX: 00007f69fa015fa0 RCX: 00007f69f9d9cdd9 [ 843.473321][T25821] RDX: ffffffffff60014a RSI: 0000000000006f2d RDI: 0000000000000003 [ 843.473347][T25821] RBP: 00007f69f9e32d69 R08: 0000000000000000 R09: 0000000000000000 [ 843.473371][T25821] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 843.473395][T25821] R13: 00007f69fa016038 R14: 00007f69fa015fa0 R15: 00007ffd5e6cd228 [ 843.473435][T25821] ? __UNIQUE_ID_modinfo_717+0x63e5d7f6/0xffffffffffeca6ac [ 843.473513][T25821] [ 843.973286][T25825] netlink: 12 bytes leftover after parsing attributes in process `syz.7.8539'. [ 844.004503][T25821] Mem-Info: [ 844.013883][T25821] active_anon:12528 inactive_anon:0 isolated_anon:0 [ 844.013883][T25821] active_file:15507 inactive_file:4673 isolated_file:0 [ 844.013883][T25821] unevictable:768 dirty:369 writeback:25 [ 844.013883][T25821] slab_reclaimable:8292 slab_unreclaimable:109609 [ 844.013883][T25821] mapped:35853 shmem:5413 pagetables:1710 [ 844.013883][T25821] sec_pagetables:0 bounce:0 [ 844.013883][T25821] kernel_misc_reclaimable:0 [ 844.013883][T25821] free:1305350 free_pcp:9827 free_cma:0 [ 844.130508][T25821] Node 0 active_anon:50312kB inactive_anon:0kB active_file:62028kB inactive_file:18552kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:143412kB dirty:1176kB writeback:0kB shmem:20116kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:13712kB pagetables:6692kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB [ 844.311854][T25821] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB kernel_stack:64kB pagetables:148kB sec_pagetables:0kB all_unreclaimable? no Balloon:0kB gpu_active:0kB gpu_reclaim:0kB [ 844.394418][T25820] comedi comedi0: reset error (fatal) [ 844.396071][T25821] Node 0 DMA free:15360kB boost:0kB min:208kB low:260kB high:312kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB [ 844.470769][T25837] syz.7.8544 (25837): drop_caches: 2 [ 844.512445][T25821] lowmem_reserve[]: 0 2477 2478 2478 2478 [ 844.535226][T25821] Node 0 DMA32 free:1268724kB boost:0kB min:34056kB low:42568kB high:51080kB reserved_highatomic:0KB free_highatomic:0KB active_anon:50192kB inactive_anon:0kB active_file:62028kB inactive_file:18552kB unevictable:1536kB writepending:1188kB zspages:0kB present:3129332kB managed:2537212kB mlocked:0kB bounce:0kB free_pcp:35608kB local_pcp:15596kB free_cma:0kB [ 844.607326][T25843] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8548'. [ 844.631781][T25821] lowmem_reserve[]: 0 0 1 1 1 [ 844.638352][T25821] Node 0 Normal free:0kB boost:0kB min:12kB low:12kB high:12kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB zspages:0kB present:1048580kB managed:1096kB mlocked:0kB bounce:0kB free_pcp:4kB local_pcp:0kB free_cma:0kB [ 844.673332][T25843] netlink: 8 bytes leftover after parsing attributes in process `syz.0.8548'. [ 844.739823][T25821] lowmem_reserve[]: 0 0 0 0 0 [ 844.770801][T25821] Node 1 Normal free:3937188kB boost:0kB min:55828kB low:69784kB high:83740kB reserved_highatomic:0KB free_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:140kB unevictable:1536kB writepending:0kB zspages:0kB present:4194300kB managed:4111100kB mlocked:0kB bounce:0kB free_pcp:4096kB local_pcp:0kB free_cma:0kB [ 844.905566][T25821] lowmem_reserve[]: 0 0 0 0 0 [ 844.928569][T25821] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB [ 844.991874][T25821] Node 0 DMA32: 3533*4kB (UM) 4358*8kB (UME) 2439*16kB (UME) 296*32kB (UME) 393*64kB (UME) 565*128kB (UME) 316*256kB (UME) 167*512kB (UME) 78*1024kB (UE) 36*2048kB (UME) 184*4096kB (UM) = 1268628kB [ 845.064540][T25821] Node 0 Normal: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 0kB [ 845.106663][T25821] Node 1 Normal: 3*4kB (UM) 5*8kB (UM) 15*16kB (UM) 10*32kB (UM) 9*64kB (UM) 4*128kB (UM) 5*256kB (UM) 4*512kB (UM) 2*1024kB (UM) 1*2048kB (U) 959*4096kB (UM) = 3937188kB [ 845.197626][T25821] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 845.246418][T25821] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=2048kB [ 845.290142][T25821] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB [ 845.323754][T25821] Node 1 hugepages_total=4 hugepages_free=4 hugepages_surp=0 hugepages_size=2048kB [ 845.361780][T25821] 25506 total pagecache pages [ 845.380258][T25864] loop7: detected capacity change from 0 to 256 [ 845.382161][T25866] loop2: detected capacity change from 0 to 512 [ 845.410986][T25821] 0 pages in swap cache [ 845.428022][T25821] Free swap = 124996kB [ 845.440935][T25866] EXT4-fs: Ignoring removed bh option [ 845.458557][T25821] Total swap = 124996kB [ 845.477829][T25866] EXT4-fs: Ignoring removed nomblk_io_submit option [ 845.484672][T25821] 2097051 pages RAM [ 845.512011][T25821] 0 pages HighMem/MovableOnly [ 845.522827][T25821] 430859 pages reserved [ 845.544579][T25821] 0 pages cma reserved [ 845.550302][T25866] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 845.670802][T25866] EXT4-fs (loop2): 1 truncate cleaned up [ 845.731574][T25866] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 845.924908][T25883] netlink: 'syz.0.8567': attribute type 1 has an invalid length. [ 846.150692][ T5626] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 846.432904][T25898] loop6: detected capacity change from 0 to 16 [ 846.519545][T25898] erofs (device loop6): mounted with root inode @ nid 36. [ 846.581124][T25898] erofs (device loop6): read error -117 @ 0 of nid 36 [ 846.769560][T25909] netlink: 132 bytes leftover after parsing attributes in process `syz.7.8580'. [ 846.949713][T25915] loop3: detected capacity change from 0 to 64 [ 846.982998][T25915] hfs: unable to locate alternate MDB [ 847.003927][T25915] hfs: continuing without an alternate MDB [ 847.061987][ T30] audit: type=1800 audit(1778532618.571:402): pid=25915 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.8584" name="file1" dev="loop3" ino=22 res=0 errno=0 [ 847.197546][T25921] loop0: detected capacity change from 0 to 1024 [ 847.455956][T25923] loop7: detected capacity change from 0 to 4096 [ 847.593412][ T36] [ 847.595811][ T36] ====================================================== [ 847.602830][ T36] WARNING: possible circular locking dependency detected [ 847.609950][ T36] syzkaller #0 Tainted: G L [ 847.615934][ T36] ------------------------------------------------------ [ 847.622957][ T36] kworker/u8:2/36 is trying to acquire lock: [ 847.628941][ T36] ffff88804a9da030 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}, at: hfs_extend_file+0xa6/0xcf0 [ 847.639720][ T36] [ 847.639720][ T36] but task is already holding lock: [ 847.647095][ T36] ffff88804ab180a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 847.656655][ T36] [ 847.656655][ T36] which lock already depends on the new lock. [ 847.656655][ T36] [ 847.667052][ T36] [ 847.667052][ T36] the existing dependency chain (in reverse order) is: [ 847.676062][ T36] [ 847.676062][ T36] -> #1 (&tree->tree_lock#2/1){+.+.}-{4:4}: [ 847.684195][ T36] __mutex_lock+0x1a4/0x1b10 [ 847.689348][ T36] hfs_find_init+0x273/0x330 [ 847.694478][ T36] hfs_ext_read_extent+0x19d/0x9d0 [ 847.700143][ T36] hfs_extend_file+0x4ff/0xcf0 [ 847.705464][ T36] hfs_bmap_reserve+0x2ab/0x3a0 [ 847.710864][ T36] hfs_cat_create+0x348/0x980 [ 847.716091][ T36] hfs_mkdir+0x7d/0x100 [ 847.720805][ T36] vfs_mkdir+0x361/0x850 [ 847.725593][ T36] filename_mkdirat+0x48b/0x5e0 [ 847.730976][ T36] __x64_sys_mkdirat+0x89/0xc0 [ 847.736271][ T36] do_syscall_64+0x10b/0xf80 [ 847.741428][ T36] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 847.747855][ T36] [ 847.747855][ T36] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{4:4}: [ 847.757098][ T36] __lock_acquire+0x14b8/0x2630 [ 847.762489][ T36] lock_acquire+0x1b1/0x370 [ 847.767531][ T36] __mutex_lock+0x1a4/0x1b10 [ 847.772673][ T36] hfs_extend_file+0xa6/0xcf0 [ 847.777899][ T36] hfs_bmap_reserve+0x2ab/0x3a0 [ 847.783291][ T36] __hfs_ext_write_extent+0x3c4/0x510 [ 847.789218][ T36] hfs_ext_write_extent+0x1b7/0x200 [ 847.794969][ T36] hfs_write_inode+0xce/0xab0 [ 847.800173][ T36] __writeback_single_inode+0xcd4/0x1350 [ 847.806364][ T36] writeback_sb_inodes+0x766/0x1c60 [ 847.812114][ T36] wb_writeback+0x1bf/0xb90 [ 847.817251][ T36] wb_workfn+0x14f/0xc00 [ 847.822040][ T36] process_one_work+0xa0e/0x1980 [ 847.827517][ T36] worker_thread+0x5ef/0xe50 [ 847.832646][ T36] kthread+0x370/0x450 [ 847.837258][ T36] ret_from_fork+0x72b/0xd50 [ 847.842383][ T36] ret_from_fork_asm+0x1a/0x30 [ 847.847695][ T36] [ 847.847695][ T36] other info that might help us debug this: [ 847.847695][ T36] [ 847.857919][ T36] Possible unsafe locking scenario: [ 847.857919][ T36] [ 847.865370][ T36] CPU0 CPU1 [ 847.870731][ T36] ---- ---- [ 847.876088][ T36] lock(&tree->tree_lock#2/1); [ 847.880972][ T36] lock(&HFS_I(tree->inode)->extents_lock); [ 847.889484][ T36] lock(&tree->tree_lock#2/1); [ 847.896896][ T36] lock(&HFS_I(tree->inode)->extents_lock); [ 847.902891][ T36] [ 847.902891][ T36] *** DEADLOCK *** [ 847.902891][ T36] [ 847.911030][ T36] 3 locks held by kworker/u8:2/36: [ 847.916141][ T36] #0: ffff8880206b9140 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x12d6/0x1980 [ 847.926912][ T36] #1: ffffc90000ac7d08 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x973/0x1980 [ 847.938813][ T36] #2: ffff88804ab180a8 (&tree->tree_lock#2/1){+.+.}-{4:4}, at: hfs_find_init+0x273/0x330 [ 847.948905][ T36] [ 847.948905][ T36] stack backtrace: [ 847.954800][ T36] CPU: 0 UID: 0 PID: 36 Comm: kworker/u8:2 Tainted: G L syzkaller #0 PREEMPT(full) [ 847.954852][ T36] Tainted: [L]=SOFTLOCKUP [ 847.954865][ T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 847.954891][ T36] Workqueue: writeback wb_workfn (flush-7:3) [ 847.954957][ T36] Call Trace: [ 847.954969][ T36] [ 847.954981][ T36] dump_stack_lvl+0x100/0x190 [ 847.955021][ T36] print_circular_bug.cold+0x178/0x1c7 [ 847.955082][ T36] check_noncircular+0x146/0x160 [ 847.955120][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.955171][ T36] __lock_acquire+0x14b8/0x2630 [ 847.955218][ T36] ? __pfx_stack_trace_save+0x10/0x10 [ 847.955255][ T36] lock_acquire+0x1b1/0x370 [ 847.955296][ T36] ? hfs_extend_file+0xa6/0xcf0 [ 847.955353][ T36] ? __pfx___might_resched+0x10/0x10 [ 847.955402][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.955446][ T36] ? add_lock_to_list+0x99/0x110 [ 847.955481][ T36] __mutex_lock+0x1a4/0x1b10 [ 847.955538][ T36] ? hfs_extend_file+0xa6/0xcf0 [ 847.955592][ T36] ? hfs_extend_file+0xa6/0xcf0 [ 847.955654][ T36] ? hfs_write_inode+0xce/0xab0 [ 847.955686][ T36] ? __writeback_single_inode+0xcd4/0x1350 [ 847.955743][ T36] ? __pfx___mutex_lock+0x10/0x10 [ 847.955800][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.955844][ T36] ? lock_acquire+0x1b1/0x370 [ 847.955889][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.955932][ T36] ? trace_contention_end+0x122/0x170 [ 847.955979][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.956026][ T36] ? hfs_extend_file+0xa6/0xcf0 [ 847.956079][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.956122][ T36] hfs_extend_file+0xa6/0xcf0 [ 847.956180][ T36] ? __pfx_hfs_extend_file+0x10/0x10 [ 847.956234][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.956284][ T36] hfs_bmap_reserve+0x2ab/0x3a0 [ 847.956339][ T36] __hfs_ext_write_extent+0x3c4/0x510 [ 847.956395][ T36] ? hfs_find_init+0x273/0x330 [ 847.956434][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.956481][ T36] hfs_ext_write_extent+0x1b7/0x200 [ 847.956537][ T36] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 847.956598][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.956644][ T36] ? __mpage_writepages+0x1a8/0x210 [ 847.956680][ T36] ? __pfx___mpage_writepages+0x10/0x10 [ 847.956716][ T36] hfs_write_inode+0xce/0xab0 [ 847.956751][ T36] ? __pfx_hfs_write_inode+0x10/0x10 [ 847.956784][ T36] ? __lock_acquire+0x4a5/0x2630 [ 847.956838][ T36] ? __writeback_single_inode+0x454/0x1350 [ 847.956895][ T36] ? __writeback_single_inode+0x454/0x1350 [ 847.956950][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.956999][ T36] __writeback_single_inode+0xcd4/0x1350 [ 847.957060][ T36] ? __pfx___writeback_single_inode+0x10/0x10 [ 847.957116][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.957159][ T36] ? do_raw_spin_unlock+0x145/0x1e0 [ 847.957210][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.957256][ T36] writeback_sb_inodes+0x766/0x1c60 [ 847.957322][ T36] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 847.957379][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.957451][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.957493][ T36] ? rcu_is_watching+0x12/0xc0 [ 847.957545][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.957588][ T36] ? queue_io+0x287/0x540 [ 847.957646][ T36] wb_writeback+0x1bf/0xb90 [ 847.957706][ T36] ? __pfx_wb_writeback+0x10/0x10 [ 847.957767][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.957809][ T36] ? mark_held_locks+0x40/0x70 [ 847.957850][ T36] ? _raw_spin_unlock_irq+0x23/0x50 [ 847.957901][ T36] wb_workfn+0x14f/0xc00 [ 847.957958][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958000][ T36] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 847.958053][ T36] ? __pfx_wb_workfn+0x10/0x10 [ 847.958110][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958155][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958200][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958243][ T36] ? rcu_is_watching+0x12/0xc0 [ 847.958294][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958341][ T36] process_one_work+0xa0e/0x1980 [ 847.958396][ T36] ? __pfx_process_one_work+0x10/0x10 [ 847.958439][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958489][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958536][ T36] worker_thread+0x5ef/0xe50 [ 847.958585][ T36] ? __pfx_worker_thread+0x10/0x10 [ 847.958635][ T36] ? kthread+0x13a/0x450 [ 847.958672][ T36] ? __pfx_worker_thread+0x10/0x10 [ 847.958715][ T36] kthread+0x370/0x450 [ 847.958752][ T36] ? __pfx_kthread+0x10/0x10 [ 847.958792][ T36] ret_from_fork+0x72b/0xd50 [ 847.958835][ T36] ? __pfx_ret_from_fork+0x10/0x10 [ 847.958878][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 847.958921][ T36] ? __switch_to+0x800/0x1100 [ 847.958972][ T36] ? __switch_to_asm+0x39/0x70 [ 847.959019][ T36] ? __pfx_kthread+0x10/0x10 [ 847.959060][ T36] ret_from_fork_asm+0x1a/0x30 [ 847.959120][ T36] [ 848.469946][ T36] hfs: new node 0 already hashed? [ 848.475790][ T36] ------------[ cut here ]------------ [ 848.481340][ T36] 1 [ 848.481354][ T36] WARNING: fs/hfs/bnode.c:520 at hfs_bnode_create.cold+0x41/0x49, CPU#1: kworker/u8:2/36 [ 848.494074][ T36] Modules linked in: [ 848.498001][ T36] CPU: 1 UID: 0 PID: 36 Comm: kworker/u8:2 Tainted: G L syzkaller #0 PREEMPT(full) [ 848.508941][ T36] Tainted: [L]=SOFTLOCKUP [ 848.513298][ T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 848.523461][ T36] Workqueue: writeback wb_workfn (flush-7:3) [ 848.529522][ T36] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 848.535555][ T36] Code: c5 c0 64 0a e9 b7 3c d1 01 e8 ab 26 e1 00 4c 89 f7 e8 b3 c0 64 0a e8 9e 26 e1 00 89 ee 48 c7 c7 40 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 b9 3f d1 01 e8 82 26 e1 00 e8 bd 56 4d 00 e9 15 42 d1 [ 848.555736][ T36] RSP: 0018:ffffc90000ac7020 EFLAGS: 00010282 [ 848.562034][ T36] RAX: 000000000000001f RBX: ffff88807aa09600 RCX: 0000000000000000 SYZFAIL: failed to send rpc fd=3 want=51952 sent=0 n=-1 (errno 32: Broken pipe) [ 848.570428][ T36] RDX: 000000000000001f RSI: ffffffff81e73529 RDI: fffff52000158df5 [ 848.578456][ T36] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 848.586543][ T36] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 848.594607][ T36] R13: ffff88804ab18000 R14: ffff88804ab180d8 R15: 0000000000000000 [ 848.602623][ T36] FS: 0000000000000000(0000) GS:ffff888124471000(0000) knlGS:0000000000000000 [ 848.611569][ T36] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 848.618255][ T36] CR2: 0000001b3461cff8 CR3: 000000005b002000 CR4: 0000000000350ef0 [ 848.626407][ T36] Call Trace: [ 848.629692][ T36] [ 848.632682][ T36] ? _raw_spin_unlock+0x28/0x50 [ 848.637575][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.643323][ T36] ? hfs_bnode_put+0x208/0x480 [ 848.648162][ T36] hfs_bmap_alloc+0x5a7/0x6b0 [ 848.652938][ T36] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 848.658177][ T36] ? __asan_memcpy+0x3c/0x60 [ 848.662971][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.668637][ T36] ? hfs_bnode_read.part.0+0x298/0x330 [ 848.674358][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.680170][ T36] ? folio_mark_accessed+0xf3/0x1040 [ 848.685625][ T36] hfs_btree_inc_height.isra.0+0xff/0x820 [ 848.691430][ T36] ? rcu_is_watching+0x12/0xc0 [ 848.696305][ T36] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 848.703155][ T36] ? do_raw_spin_unlock+0x145/0x1e0 [ 848.709510][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.715517][ T36] ? _raw_spin_unlock+0x28/0x50 [ 848.720428][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.726453][ T36] ? hfs_bnode_put+0x208/0x480 [ 848.731265][ T36] hfs_brec_insert+0x8ba/0xc20 [ 848.736294][ T36] ? __pfx_hfs_brec_insert+0x10/0x10 [ 848.741629][ T36] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 848.746728][ T36] __hfs_ext_write_extent+0x3ef/0x510 [ 848.752186][ T36] ? hfs_find_init+0x273/0x330 [ 848.756975][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.762673][ T36] hfs_ext_write_extent+0x1b7/0x200 [ 848.768093][ T36] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 848.774012][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.779690][ T36] ? __mpage_writepages+0x1a8/0x210 [ 848.784962][ T36] ? __pfx___mpage_writepages+0x10/0x10 [ 848.790548][ T36] hfs_write_inode+0xce/0xab0 [ 848.795571][ T36] ? __pfx_hfs_write_inode+0x10/0x10 [ 848.800885][ T36] ? __lock_acquire+0x4a5/0x2630 [ 848.805909][ T36] ? __writeback_single_inode+0x454/0x1350 [ 848.811794][ T36] ? __writeback_single_inode+0x454/0x1350 [ 848.817644][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.823372][ T36] __writeback_single_inode+0xcd4/0x1350 [ 848.829060][ T36] ? __pfx___writeback_single_inode+0x10/0x10 [ 848.835219][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.840922][ T36] ? do_raw_spin_unlock+0x145/0x1e0 [ 848.846201][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.851908][ T36] writeback_sb_inodes+0x766/0x1c60 [ 848.857162][ T36] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 848.862866][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.868705][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.874597][ T36] ? rcu_is_watching+0x12/0xc0 [ 848.879403][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.885101][ T36] ? queue_io+0x287/0x540 [ 848.889464][ T36] wb_writeback+0x1bf/0xb90 [ 848.894108][ T36] ? __pfx_wb_writeback+0x10/0x10 [ 848.899183][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.904895][ T36] ? mark_held_locks+0x40/0x70 [ 848.909686][ T36] ? _raw_spin_unlock_irq+0x23/0x50 [ 848.914967][ T36] wb_workfn+0x14f/0xc00 [ 848.919259][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.924957][ T36] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 848.930804][ T36] ? __pfx_wb_workfn+0x10/0x10 [ 848.935641][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.941317][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.947048][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.952844][ T36] ? rcu_is_watching+0x12/0xc0 [ 848.957651][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.963442][ T36] process_one_work+0xa0e/0x1980 [ 848.968568][ T36] ? __pfx_process_one_work+0x10/0x10 [ 848.974167][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.979863][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 848.985581][ T36] worker_thread+0x5ef/0xe50 [ 848.990213][ T36] ? __pfx_worker_thread+0x10/0x10 [ 848.995387][ T36] ? kthread+0x13a/0x450 [ 848.999651][ T36] ? __pfx_worker_thread+0x10/0x10 [ 849.004817][ T36] kthread+0x370/0x450 [ 849.008915][ T36] ? __pfx_kthread+0x10/0x10 [ 849.013571][ T36] ret_from_fork+0x72b/0xd50 [ 849.018190][ T36] ? __pfx_ret_from_fork+0x10/0x10 [ 849.023392][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.029089][ T36] ? __switch_to+0x800/0x1100 [ 849.033900][ T36] ? __switch_to_asm+0x39/0x70 [ 849.038727][ T36] ? __pfx_kthread+0x10/0x10 [ 849.043394][ T36] ret_from_fork_asm+0x1a/0x30 [ 849.048203][ T36] [ 849.051229][ T36] Kernel panic - not syncing: kernel: panic_on_warn set ... [ 849.058523][ T36] CPU: 1 UID: 0 PID: 36 Comm: kworker/u8:2 Tainted: G L syzkaller #0 PREEMPT(full) [ 849.069501][ T36] Tainted: [L]=SOFTLOCKUP [ 849.073833][ T36] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 849.083908][ T36] Workqueue: writeback wb_workfn (flush-7:3) [ 849.090043][ T36] Call Trace: [ 849.093325][ T36] [ 849.096263][ T36] dump_stack_lvl+0x100/0x190 [ 849.100964][ T36] vpanic+0x552/0x970 [ 849.104967][ T36] ? __pfx_vpanic+0x10/0x10 [ 849.109489][ T36] ? lock_release+0x245/0x310 [ 849.114200][ T36] panic+0xd1/0xe0 [ 849.117936][ T36] ? __pfx_panic+0x10/0x10 [ 849.122378][ T36] ? check_panic_on_warn+0x1f/0x90 [ 849.127508][ T36] check_panic_on_warn.cold+0x19/0x34 [ 849.132898][ T36] ? hfs_bnode_create.cold+0x41/0x49 [ 849.138202][ T36] __warn.cold+0x191/0x328 [ 849.142633][ T36] __report_bug+0x296/0x3d0 [ 849.147165][ T36] ? hfs_bnode_create.cold+0x41/0x49 [ 849.152468][ T36] ? __pfx___report_bug+0x10/0x10 [ 849.157526][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.163178][ T36] ? preempt_schedule_thunk+0x16/0x30 [ 849.168586][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.174238][ T36] ? preempt_count_add+0x76/0x150 [ 849.179308][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.184966][ T36] ? __wake_up_klogd+0xe2/0x140 [ 849.189842][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.195498][ T36] ? vprintk_emit+0x1c9/0x6b0 [ 849.200207][ T36] ? __pfx_vprintk_emit+0x10/0x10 [ 849.205268][ T36] ? hfs_bnode_create.cold+0x41/0x49 [ 849.210587][ T36] report_bug+0xb2/0x220 [ 849.214856][ T36] ? hfs_bnode_create.cold+0x41/0x49 [ 849.220167][ T36] handle_bug+0x16a/0x2a0 [ 849.224508][ T36] exc_invalid_op+0x17/0x50 [ 849.229027][ T36] asm_exc_invalid_op+0x1a/0x20 [ 849.233888][ T36] RIP: 0010:hfs_bnode_create.cold+0x41/0x49 [ 849.239801][ T36] Code: c5 c0 64 0a e9 b7 3c d1 01 e8 ab 26 e1 00 4c 89 f7 e8 b3 c0 64 0a e8 9e 26 e1 00 89 ee 48 c7 c7 40 e3 d1 8b e8 50 df fa ff 90 <0f> 0b 90 e9 b9 3f d1 01 e8 82 26 e1 00 e8 bd 56 4d 00 e9 15 42 d1 [ 849.259434][ T36] RSP: 0018:ffffc90000ac7020 EFLAGS: 00010282 [ 849.265529][ T36] RAX: 000000000000001f RBX: ffff88807aa09600 RCX: 0000000000000000 [ 849.273510][ T36] RDX: 000000000000001f RSI: ffffffff81e73529 RDI: fffff52000158df5 [ 849.281490][ T36] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 849.289482][ T36] R10: 0000000080000000 R11: 77656e203a736668 R12: dffffc0000000000 [ 849.297551][ T36] R13: ffff88804ab18000 R14: ffff88804ab180d8 R15: 0000000000000000 [ 849.305544][ T36] ? vprintk_emit+0x1c9/0x6b0 [ 849.310269][ T36] ? _raw_spin_unlock+0x28/0x50 [ 849.315151][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.320812][ T36] ? hfs_bnode_put+0x208/0x480 [ 849.325622][ T36] hfs_bmap_alloc+0x5a7/0x6b0 [ 849.330343][ T36] ? __pfx_hfs_bmap_alloc+0x10/0x10 [ 849.335582][ T36] ? __asan_memcpy+0x3c/0x60 [ 849.340197][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.345950][ T36] ? hfs_bnode_read.part.0+0x298/0x330 [ 849.351435][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.357087][ T36] ? folio_mark_accessed+0xf3/0x1040 [ 849.362408][ T36] hfs_btree_inc_height.isra.0+0xff/0x820 [ 849.368157][ T36] ? rcu_is_watching+0x12/0xc0 [ 849.372958][ T36] ? __pfx_hfs_btree_inc_height.isra.0+0x10/0x10 [ 849.379317][ T36] ? do_raw_spin_unlock+0x145/0x1e0 [ 849.384561][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.390212][ T36] ? _raw_spin_unlock+0x28/0x50 [ 849.395087][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.400746][ T36] ? hfs_bnode_put+0x208/0x480 [ 849.405540][ T36] hfs_brec_insert+0x8ba/0xc20 [ 849.410351][ T36] ? __pfx_hfs_brec_insert+0x10/0x10 [ 849.415675][ T36] ? hfs_bmap_reserve+0x2c5/0x3a0 [ 849.420782][ T36] __hfs_ext_write_extent+0x3ef/0x510 [ 849.426191][ T36] ? hfs_find_init+0x273/0x330 [ 849.430975][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.436634][ T36] hfs_ext_write_extent+0x1b7/0x200 [ 849.441868][ T36] ? __pfx_hfs_ext_write_extent+0x10/0x10 [ 849.447628][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.453314][ T36] ? __mpage_writepages+0x1a8/0x210 [ 849.458532][ T36] ? __pfx___mpage_writepages+0x10/0x10 [ 849.464095][ T36] hfs_write_inode+0xce/0xab0 [ 849.468788][ T36] ? __pfx_hfs_write_inode+0x10/0x10 [ 849.474083][ T36] ? __lock_acquire+0x4a5/0x2630 [ 849.479053][ T36] ? __writeback_single_inode+0x454/0x1350 [ 849.484896][ T36] ? __writeback_single_inode+0x454/0x1350 [ 849.490741][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.496403][ T36] __writeback_single_inode+0xcd4/0x1350 [ 849.502082][ T36] ? __pfx___writeback_single_inode+0x10/0x10 [ 849.508185][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.513842][ T36] ? do_raw_spin_unlock+0x145/0x1e0 [ 849.519066][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.524725][ T36] writeback_sb_inodes+0x766/0x1c60 [ 849.529971][ T36] ? __pfx_writeback_sb_inodes+0x10/0x10 [ 849.535637][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.541317][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.546979][ T36] ? rcu_is_watching+0x12/0xc0 [ 849.551778][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.557533][ T36] ? queue_io+0x287/0x540 [ 849.561896][ T36] wb_writeback+0x1bf/0xb90 [ 849.566441][ T36] ? __pfx_wb_writeback+0x10/0x10 [ 849.571504][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.577156][ T36] ? mark_held_locks+0x40/0x70 [ 849.581938][ T36] ? _raw_spin_unlock_irq+0x23/0x50 [ 849.587168][ T36] wb_workfn+0x14f/0xc00 [ 849.591458][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.597110][ T36] ? _raw_spin_unlock_irqrestore+0x3b/0x80 [ 849.602952][ T36] ? __pfx_wb_workfn+0x10/0x10 [ 849.607762][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.613433][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.619260][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.624912][ T36] ? rcu_is_watching+0x12/0xc0 [ 849.629710][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.635375][ T36] process_one_work+0xa0e/0x1980 [ 849.640344][ T36] ? __pfx_process_one_work+0x10/0x10 [ 849.645742][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.651401][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.657055][ T36] worker_thread+0x5ef/0xe50 [ 849.661723][ T36] ? __pfx_worker_thread+0x10/0x10 [ 849.666864][ T36] ? kthread+0x13a/0x450 [ 849.671127][ T36] ? __pfx_worker_thread+0x10/0x10 [ 849.676260][ T36] kthread+0x370/0x450 [ 849.680349][ T36] ? __pfx_kthread+0x10/0x10 [ 849.684969][ T36] ret_from_fork+0x72b/0xd50 [ 849.689582][ T36] ? __pfx_ret_from_fork+0x10/0x10 [ 849.694715][ T36] ? srso_alias_return_thunk+0x5/0xfbef5 [ 849.700371][ T36] ? __switch_to+0x800/0x1100 [ 849.705075][ T36] ? __switch_to_asm+0x39/0x70 [ 849.709876][ T36] ? __pfx_kthread+0x10/0x10 [ 849.714484][ T36] ret_from_fork_asm+0x1a/0x30 [ 849.719379][ T36] [ 849.722813][ T36] Kernel Offset: disabled [ 849.727134][ T36] Rebooting in 86400 seconds..