last executing test programs:
2.874638794s ago: executing program 1 (id=2915):
r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f0000000080), 0x2)
ioctl$SNDRV_SEQ_IOCTL_QUERY_SUBS(r0, 0xc058534f, &(0x7f0000000140)={{0xf9, 0x5}, 0x1, 0xf, 0xe8d1, {0x5, 0x5}, 0x8, 0x4})
2.674191008s ago: executing program 1 (id=2917):
sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000040)=ANY=[@ANYBLOB="1c0000002000010300000000fcffffff0200f1"], 0x1c}}, 0x0)
syz_emit_ethernet(0x1f, &(0x7f0000000040)=ANY=[@ANYBLOB="ffffffffff81f793350000000011424203"], 0x0)
2.514692491s ago: executing program 1 (id=2919):
r0 = syz_init_net_socket$bt_hidp(0x1f, 0x3, 0x6)
ioctl$sock_bt_hidp_HIDPGETCONNLIST(r0, 0x800448d2, &(0x7f0000000340)={0x1, &(0x7f0000000580)=[{@none}]})
2.305367866s ago: executing program 1 (id=2922):
r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000040)=ANY=[@ANYBLOB="1201000014da2108ab1204000000000000010902240001b30000040904410c17ff5d810009050f1f05e13f000009058303"], 0x0)
syz_usb_ep_read(r0, 0xf, 0xffffffffffffffd2, 0x0)
2.283995416s ago: executing program 0 (id=2924):
r0 = socket$kcm(0xa, 0x1, 0x106)
setsockopt$sock_attach_bpf(r0, 0x29, 0x1a, 0x0, 0x4)
2.119497809s ago: executing program 0 (id=2925):
r0 = syz_mount_image$btrfs(&(0x7f0000000080), &(0x7f00000015c0)='./file0\x00', 0x4000, &(0x7f0000003a40), 0x0, 0x559e, &(0x7f000000ac40)="$eJzs3X9sVeX9B/BzWwoN+C39jhUYfxAgBoMkyJYtjqB4MQa24eKlgsKcCEQlBivYRDcYqUWSZcaghU4EF5GQaDJjscM/FMywy7CMZfzY5hZjs4JSaZZsAzVrHDG69N77XO49l9tembNOXy/SnvPcz3me+9yT88d9X/qcGwEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEAURUcSc9+d0f3i0ZE1X77/Hz+e+OjGn4zfvX/roVvu23T/gjMjbto5a1nf+mlN8zdsbDjS/PS+ObdGUSLdL5Htf9u136q/88bbvlsdBly+MLOtrS31lJmuJzON4QUP9vcr/FkRRVFVbIDK7PbV7E5FwQC53cbiAQf0Tuui6O7J8ya1dT01bklyYU/xS6df9VBPYKhkr6ue89dSMv27InZErp136SUKLtFM//gF96m8CADgY5mZSm9yb0ezb3Fz7eZ4PdZOxtotsXZ4h9CS37gYmXGHl5rnpHh9iOaZzESFESXnGatnz3+unYr3j7VjUeNjzLPw0GykqS41z7Wx+lDNEwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOCzZOzxo2tWtD2y575fdtQceff9OVc+8KWOw22LT4y8eunKHWum/HTWsr7105rmb9jYcKT56X1zbo2i2nS/RKZ74kTL5b9NjZ3fvXfcG427n6vpq8yOG7bD8g6OXg87s0ZH0cq8Sk8Y9q81UZQqLKSb0Y7iwl3pnW+HAgAAAJ8nX0n/rsi1M3GwqqCdSKfJRPpfkAmL77Quiu6ePG9SW9dT45YkF/Zc/HipEuMlLzherl17/ieRF4xD/I2Pd74eDm0sGmdg8RHjef7SMWPefmty/eSvT5v7xA3PjOru+r8nZ2xJ/bGu5oUrru+tf/a6ovxfO3D+D2dO/gcAAOA/If/HxxnYYPn/jqVTt7z+i2Grft3a8MTB+h1/bv3OMzsXneq54Ud9L09N3v7o1UX5f1LBUxbl/zDjkP8roovL/wAAAPBZ9t/O/8micQY2WP5vONM3+wcHX6vr+PucxXt+9dAVi8+e/tv8U7t3DV9zR8v6uoeuLMr/M8vL/8Pypx0e/F2Y8OrRUTSz/JMKAAAAFAj/737+o4WQ1zOfHMTz+rX/vKp5380ffPMbD97zpzff/s2xA7MnrdteN/PgyzfVf1j5ve3dRfk/WV7+r/p0Xi4AAABQhuePrpw773jPucfPvtB18vDu3pMznjyzrqnvdOslLatXbTr2WlH+T5WX/0cMzcsBAAAALuDeO59bsfnVl/oe2H/X2Ck9FVc1XpK4ZduOqU0TPuq8tPfy7VuL8v/y8vL/yOw2u/Ih06kz/BVC6+goqu7fWZspHIparskVAAAAgE9IyOlbP1ixbOzOsb3jj59+rObQG4dn/2Vt55yN13RXdW/uXNZ4WdH9AkJiL3X//3Cng7D+v+D+f0Xr//MKmbv+zXZjAAAAAL6Iitfzh9vjZ765oNT375e7/n9J3cQTiba33lv11XMHzo1ZsP/7129aV9/be8+El37/wz9M/6i6KP83l5f/K/O3n+T3/wEAAMBF+F/7/r+lReMMbLD7/zdV9DWsWrd3+uota7csTCw7UH3qwdV731+w5l9Tb36+qea6A0X5v6W8/B+2o/JfXkc4P5tGR9H4/p3s3QR/Hqa7OlZor8orZE58rMeNoUe20D4ir5C2Ntbja6OjaHL/TnOs8P+h0BIrnK3JFnbFCsdCIXs95Ap7YoWOcKVtq8lON154MRSyCyzawwqKUbklEbEe75Xq0V+4YI+u3JMDAAB8oYTwnM2yVYXNKB5l2xODHTBysAMqBjugcrADhsUOiB9Y6vFoeWEhPH575yMbNjVMSb7y8NzHfvbms40T9j1+WV3v5g9f2XbvxJ3TW6YW5f9d5eX/cCqGZzal1v9HYf1/9nsNc+v/l4dCbazQHgqp+B0DUuE5MmH34fActalsj7PjcwUAAAD4XAufC1QO8TwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/s3evcdJVd0JAj/d9INumqaNE9GMk3TUgGakaWwNw+AoaoxGRZpZddxkNBBoEGmE8FgFURtQZxziZ3ztrJnoCAoiu+qHGFeDwUhcxIw6iWLiA/Cxjq7r+h6VGM2E/XTfOkXVrS67EFDa+X7/6DpVv/O89eg69946FwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA/xjuPfjlk4YunP0PHzace8nqqqmL/kfH6Mv+cNW3vvjUPy5b9G9h/i9GnLll3kEXHjd/wbR/6Vi++ogzQmjtKleWFC977oqvPtS613HP3jFw48wbb63fUpWpNxMP/Tr/lGfuXBxbfbF/CHeXhVCRDgypSwKVmft1sb5960LYI2wLZEu01SYl0g2HB2pCWBK2BbJVra4JoS4ncMqG+++7vDNxTU0IXwkhVKfbeKY6aaMmHRhUlQRq04HpFUngt1sT2cBPypMA7LD4Zsi+6Fe15mdo6L5ckddf5U7r2KcrPbw+MdFQPN/rR+3iTuWoSj/QukNPW0F17BIFb4+13m294N1WsJ2v8LTlfpHKfEPZui1UHcontk0aP6d9dnykPDQ19SlW0y56np9+e/6E7Un3mtdh7EDDTnkdXvrYiun9lo2+9OrNvxqz4ayaA3a0m0/lbNLc9K5WHTKvuV7zPEajfJ70grdfwbekRl+6Qghbzz17xtfnTDz7iD63PLnu1QcfrNty9pwFvzhz4nmLLj55w7/Pf6lg/t/w0fP/+HKOt+V5uWOrH9Ync/P4SF1MvFmfzM0BAACg1+gNe01Xnv/6X73+/bWtMxed/u23Dj73w71afz3i/gFVB7yxrqn1/I2ff6Vg/t9Y2vH/eMi/Lne0a0MY1ZVYNCCEvbseTwIrY3e+OyCEL3elWvMDR6UCa0PYpytxULaqVIm+sURjKvByfSYwKhVYHwOtqcDyGLgiFbg4BlalAhNiYG0qcHQMhCn54/hqfWYcJQdqYmBcshFXxbMQ3qmPraW21aZsVQAAADtJZnZYmX8351yHHc0Qp5eranrKEM/ALpqhOlVDegabnVYVraGipxrKe6ohO+6Ojx5+Qc1lPdVccBpGWX6GG9f85X2LXjzsC2P3mvj5xUMvmPKz8eGst++uerx5yYtv7XvEzesK5v/NHz3/r+6mI2UFx/9DGNv1N+Yuz0Tas/FxrXkZAAAAgB1w0R//xR61Lw85oGHT+2X3zl/7xKMrfrl5j1NOf3/c8a//8PCaxnsL5v+jSjv/P+4T6ZOTOTwSd0NMHRBCc34gqXZkYSA56t0vEwAAAIDeIHs8PnssfErmNjlFOz2fLszfup3544H/Ud3m//09/7P2jq3/+mLZBd89d0TNgKX/9GrHhBNOPvqW47/1zj4VB/yyvGD+31ra+f+1+bdJJ9bHXlw9IIS+OYEHYy87A10aY+D5I/MDmfGvjxtgcawqc2JCtqrFscS4GGhOBZYUK/FotsTe+YHMk5VtfFF2HFMyJXICAAAA8ImLuwPicfl4/n/LGSNO++vvzfrbha88eN7qCy75q+Ed80eedP/THzbMvXJp2PTmEQXz/3Hbd/5/1zy44PT+9n4hDK0IoU/6hwGP1CYLA8ZAXVkmcW9tUlefdFULa0MY2TmwdFUvZNb/r0ivMfh4TVJVDOy93y1vD+pMLKsJYWhu4IlvLz2sMzEnFcg2flpNCF/qHG268bv6Jo1Xphu/tm8IX8wJZKua0DeEzsaq0lX9r+rMdQzSVa2qDmHPnEC2quHVIcwNAPRW8X/pxNwHZ82dN3V8e3vbzF2YiDvxa8KkKe1tTROmt0+sLtKniak+561jtKBwTKVe+mZTZo2ixSsnV5aSzv5QsDm3rcyO/IIzBzP345ehyq5xHlKZd7clPeQD9y9sIuR8lSo25PJdPOTa3Eq2PYkF9cf8VaFf6DtnVtvMpvPGz549c1jyt9TshyR/43GmZFsNS2+r2u76VsLLo+hyWSkfd1sNyq1k6OxpM4bOmjtvyJRp4ye3TW47p+XQP2sZMXz410YM7RxUc/K3h5EO6q7m1Ei3Li1xWDtxpF+oyKnkk/jQkJCQ6G2J/f7L5odH77n+nOt/9tqPz+/3zdPu3fvImT889KqpD1Xve/ji24ccWDD/n/HR8//4qRM/+DPrMxQ7/t8QD/Mnj287zD8uBpaUevy/odjR/OyJAY2pQEcMdDjMDwAAwGdD3B0Z92bGndKbb1m/buOSlrk/aHin5dY17Utvuum+U39y58ATvjQ47LXhuhM+VzD/7yjt9/87af3/7NL1JxRb5v+gWKK52Pr/6WX+s+v/dxRb/z+9zH92/f8ln8L6/3OygdQmecf6/wAAwGfBJ7f+f4/L+6cvEFCQocfl/dMXCCjI0OMy/qVeIGC71/9f8+Bff6Wq35g7/qTlN/WXvPZ39xzWeuS6zTP/5Etb10+877qxt6wpmP9fUdr838L9AAAAsPv4z5ddU3H02Xff0bJu6sZxbw5+98m3lgzq80HF0Q+3j3xh4Bu3nlcw/19S2vz/k1//LxQ7/7+xWKC12MKA1v8DAACglyq2/t89Q1sa/zCm/x+eHvab5Q/ePPqnj/z898v3+/mJPyvfZ8Gxz8+8bFLB/H9VafP/eNpFeV7u2JsP65M17UJ6Tbs367M/GQAAAIDeoTw0NVWWmDdvYdSjPn6bT2eWAv2odK7vvXLt2ZtfmH7c46ev+7uaEwbvOWHaBasa/2b4gXd+ftQley7ddGrB/H9tafP/vN9lXPrYiun9lo2+9MOrN/9qzIazag7YdvwfAAAA2HVK3S8BAAAAAAAAAAAAAAB8+s7tWHzhI8uOfe+bt//F/kcseXXwbXcd+Lsh/V664qoHJq1648zJXy/4/X8Y21Wu2O//43X/4u8L/igvd2y15/X/MvdPOfH2uV1LFj5SH8L+uYGpC6fuETLX5h+cG7jvjIMGdiYWpkusefbolzoT30kHjh/yuS2dicNTgXFxkcR90oF4VcUt/VOBuLzi4+lA3B6r0oGqTOCy/sk4ytLb6pW6ZFuVpbfVxroQBuQEstvq7rqkjbL0AK9JBbID/F46EAd4ciZQnu7V7f2SXsVAXSx6Q7+kVwAA7Lbit8DKMGlKe1tz/Aofb79QkX8b5S1ZtqCw2rISm9+UWZps8crJlaWk+6S/i2671nhlqO4cwrCCr6u5Wcq6Rrlzaulh0/1RkSH3tNpbeZFyadu76aqKj6gmGVHThOntEyt7HHhLz1kOqegxy7CCyU5ulvKuTVpCLSX0pYQRlbhtSuhyvF8empr6pHL9eQw2hDw9vSJK/b1+7jp/xV4FuXluO/TKt758zE+f++CfP/9E/2+cVnP7rO+/e+KvX7//wEOOuG5C05otBfP/htLm/9W549qSuRhAR7yy3sgBIYwrcUQAAADw2XfbRbfecfr09a9MWlvx5GOPTS0fc3rl1vl3zp93ycZ7Fx9/2cErdjR+2Fm//f5vBu//b89e9dJPR+7zwA03/58nD3v8z3//8I8eeqduZZ+x7xXM/xtLm//HPViZQ8HJ3o618fr/iwaE0HVp/YYksDIO97sDQvhyV6o1lkguqH9CLNGcBFbGHSYHxRLjWvOr6hsDq1KBl+szgbWpwPoYyOyluCVkduVcWR/CYV2psfklZsQSDanAmBhoTAWaYqA5FegfA6NSgdf6ZwKtqcDDMRCm5G+rH/fPbCsAAIDtkZlnVebfDel53qqKnjKU9ZShtqcM5T1lqO4pQ7FRxPt3xAyVqZNXynIyVaZrrUnVUpAhXgx/u/tVkCE8mp8zXbCg6Xj+QfZ8g7L8DFf+4NlT1w+e/tDqzcd8beBt/zhkz4Obp9e9t+CGp3475pzrnv/TQQXz/+bS5v+1+bdJ6+vj/H/b9f+SwIOxe1fHU8cbY+D5I/MDmR0D6+Nkd3G2qtZMicykfXEsMSoGGlOBGTEwKhUYNzYTWDIwP5CZaWcbX5RtfEqmRE4AAAAAPnFxB0HcTRPn/zce9YOr3x8wccuyeTPvH9vyxMmjv3H1XT+6d/9ld767YvCAce99p2D+P6q0+X9sr19uYxfH3rzYP4S7y7b1JhsYUpcE4n6Muvjz+H3rQtgjZwdHtkRbbVKiKtVweKAm+YV6Vbqq1TXJGgPx/ikb7r/v8s7ENTUhfCVn70u2jWeqkzZq0oFBVUmgNh2YXpEE4p6fbOAn5UkAdlh2r2B8QWVOdclq6L5ckdffZ+WaoOnhFewD7SZfd7+52lWq0w9k9qlmbd/TVlAdu0TB22Otd1tvfLc1eLflfpHKfEPZui1UHcontk0aP6d9dnwk95esBXbR85z7K9VS0jvhddjx8Xvbs+p0B5pTHx/N3Zfr/nVYFqu79LEV0/stG33p1Zt/NWbDWTUHlNyNIuIPhX+05X9XPpWzeXe16pB5zfW6z5NWnye98d9Ao6cthHDZ9cfsu+TdX+/33A3Pnbqu7Maxr/7lrHs2Lf+bysNHrXv/yaGjLy+Y/7eWNv+vSN12+V3cmLMGhHBgzsZ9JG7+YwYkn4M5geRTcs/CQHLI/V/ri35yAgAAwM6W3d2R3V8wJXObnBCenicX5m/dzvxxf8WobvOX2u9j121cedLQN6474G8vOPGNv7/28Kceuv6ysnXL//vYD1avuXzxe08UzP/HffT8v2+qm47/O/7PLuL4f7d2913RfdMPdOzQruiC6tglHP/v1u7+bnP8v1uO/zv+3x3H/3vg+H+3dvenreBb0gxfujonwdff+fPfTbzpg7mN+x180lPPHDrxun+6quXuu0555b+de9601761uWD+P6O0+b/1/7pftC+7/t+4Yuv/zSi2/l+H9f8AAIBdqshCc+l5XsHqfQUZ0qv3FWTocYHAHpcYtP7fdq//t3Dkv1904Q+fb7n2nTvHXb5m07Fnvvr0utXPzFpx3Lnnv9V6112tBfP/jtLm//Hl0C+39d6y/l/j2CJVXREDMywMCAAAwO6o2A4CAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPl2HnvbO+5d8/R/aBv1ixc1/f+v/+7/P1q594JvfuGn4L6f86RllazZcM+LMLfMOuvC4+Qum/UvH8tVHnBHClK5yZUnxsueu+OpDrXsd9+wdAzfOvPHW+i3VmXorM7d/nJc7tvphfQhLch6pi4k36zvvbAuccuLtcys6E4/Uh7B/bmDqwql7dCaW14cwODdw3xkHDexMLEyXWPPs0S91Jr6TDhw/5HNbOhOHZwJl6e5e1z/pblm6u5f3D2FATiDb3bP751eVbeO4TKA83caKuqSNGKiLRa+tS9qIgfZYYkrfEIZWhNAnXdU/VydV9UlXdU91UlWfdFUXVYcwMoRQka7quaqkqor0yB+tSqqKgb33u+XtQZ2JpVUhDM0NPPHtpYd1JmamAtnG/1NVCF/qfMmkG/9xZdJ4Zbrx/1oZwhdDCFXpEu9VJCWq0iVeqAhhz5zAto1YEcLcwGdD/PSZmPvgrLnzpo5vb2+buQsTVZm2asKkKe1tTROmt0+sTvWpmLKc9NYFH3/sm96eP6HzdvHKyZWlpCsy5Sq7unxIZd7dlt2997FftbmVbHs+CuqP+atCv9B3zqy2mU3njZ89e+aw5G+p2Q9J/vbJRJNtNay3bKtBuZUMnT1txtBZc+cNmTJt/OS2yW3ntBz6Zy0jhg//2oihnYNqTv7ujJEu/eRH+oWKnEo+ife/hIREb0uU5326Ne/un+MFX/S3dbQyVHd9QBdMK3KzlHWNcmcM+qiPOeKP8zWlxxENK5g4FGQ5pOcsLQWTiW1ZapIsXV/rCiaHuTWVd23SeL88NDX1KbYdGvLv5m7e13dg8z6d2XSlpgEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA+P/swIEAAAAAAJD/ayNUVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYQcOBAAAAACA/F8boaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqgo7cCwAAAAAIMzfOoyeDQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAC4FAAA//8fSxmR")
ioctl$BTRFS_IOC_SET_RECEIVED_SUBVOL(r0, 0xc0c89425, &(0x7f0000000200)={"00000000000000000000000100", 0x0, 0x0, {0x80, 0x2}, {0x6, 0x7}, 0x8, [0x4, 0x0, 0x5, 0x3, 0x1be, 0x3, 0xfffffffffffffffe, 0x8, 0x66a, 0xffffffffffffffff, 0xfffffffffffffffb, 0x8, 0xba, 0x9, 0x6, 0x8]})
1.003676771s ago: executing program 2 (id=2933):
r0 = socket$nl_generic(0x10, 0x3, 0x10)
accept4(r0, 0x0, 0x0, 0x80000)
974.087981ms ago: executing program 3 (id=2934):
r0 = openat$vim2m(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0)
ioctl$vim2m_VIDIOC_S_FMT(r0, 0xc0d05640, &(0x7f0000000440)={0x1, @pix_mp={0x10001, 0x0, 0x47425247}})
806.463945ms ago: executing program 3 (id=2935):
r0 = socket$inet6_tcp(0xa, 0x1, 0x0)
setsockopt$inet6_mreq(r0, 0x29, 0x1b, &(0x7f0000000080)={@remote}, 0x14)
768.754886ms ago: executing program 2 (id=2936):
r0 = socket$inet(0x2, 0x2, 0x1)
sendmsg$inet(r0, &(0x7f0000000080)={&(0x7f0000000000)={0x2, 0x4e23, @multicast2}, 0x10, &(0x7f00000000c0)=[{&(0x7f0000000400)='\b\x00', 0x2}, {&(0x7f0000000180)="96bc1480bb58", 0x6}], 0x2, &(0x7f0000000040)=[@ip_ttl={{0x14, 0x0, 0x2, 0x7ff}}], 0x18}, 0x40090)
674.602018ms ago: executing program 2 (id=2937):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route_sched(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000002c0)={&(0x7f0000000900)=@newtaction={0x8c, 0x30, 0xb, 0x5, 0x0, {}, [{0x78, 0x1, [@m_ct={0x74, 0x1, 0x0, 0x0, {{0x7}, {0x4c, 0x2, 0x0, 0x1, [@TCA_CT_PARMS={0x18, 0x1, {0x80000001, 0x0, 0x0, 0x0, 0x400}}, @TCA_CT_ACTION={0x6, 0x3, 0x19}, @TCA_CT_NAT_IPV4_MIN={0x8, 0x9, @private=0xa010102}, @TCA_CT_NAT_IPV4_MAX={0x8, 0xa, @initdev={0xac, 0x1e, 0x1, 0x0}}, @TCA_CT_MARK={0x8, 0x5, 0x9}, @TCA_CT_NAT_PORT_MIN={0x6, 0xd, 0x4e24}, @TCA_CT_NAT_PORT_MAX={0x6, 0xe, 0x4e22}]}, {0x4}, {0xc, 0x7, {0x0, 0x1}}, {0xc}}}]}]}, 0x8c}, 0x1, 0x0, 0x0, 0x8890}, 0x40)
607.869778ms ago: executing program 3 (id=2938):
r0 = bpf$MAP_CREATE(0x0, &(0x7f00000003c0)=@base={0x2, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x10}, 0x50)
bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000200)=@framed={{}, [@ringbuf_output={{0x18, 0x1, 0x1, 0x0, r0}, {}, {}, {}, {}, {}, {}, {0x85, 0x0, 0x0, 0x3}}]}, &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90)
607.116659ms ago: executing program 0 (id=2939):
r0 = socket(0x10, 0x3, 0x0)
sendmsg$nl_generic(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000cc0)={0x14, 0x12, 0xa01, 0x0, 0x0, {0x80}}, 0x14}}, 0x0)
494.431331ms ago: executing program 2 (id=2940):
ioperm(0x0, 0x2, 0x7e)
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, 0x0)
450.932121ms ago: executing program 0 (id=2941):
r0 = openat$dsp(0xffffffffffffff9c, &(0x7f00000003c0), 0x101a02, 0x0)
close_range(r0, 0xffffffffffffffff, 0x0)
442.962162ms ago: executing program 1 (id=2942):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f00000002c0)=@ipv6_newroute={0x30, 0x18, 0x309, 0x70bd2c, 0xfffffffd, {0xa, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3}, [@RTA_GATEWAY={0x14, 0x5, @ipv4={'\x00', '\xff\xff', @remote}}]}, 0x30}}, 0x1000c840)
408.741533ms ago: executing program 3 (id=2943):
r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000001100)='/proc/slabinfo\x00', 0x0, 0x0)
preadv(r0, &(0x7f00000010c0)=[{&(0x7f0000001800)=""/250, 0xfa}], 0x1, 0x40000004, 0x0)
300.808705ms ago: executing program 2 (id=2944):
r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48)
bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000140)={0xd, 0x10, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000b7080000000000007b8af8ff00000000b7080000000000007b8af0ff00000000bf8100000000000007080000f8ffffffbfa400000000000007040000f0ffffffb70200000800000018210000", @ANYRES32=r0, @ANYBLOB="0000000002000000b70500000800000085000000aa00000095"], &(0x7f0000000500)='GPL\x00', 0x8, 0x1043, &(0x7f00000017c0)=""/4098, 0x41000, 0x9}, 0x94)
249.436915ms ago: executing program 0 (id=2945):
r0 = syz_open_dev$loop(&(0x7f00000001c0), 0x75f, 0x800)
ioctl$LOOP_SET_BLOCK_SIZE(r0, 0x125d, 0x10000000010005)
183.891547ms ago: executing program 1 (id=2946):
mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0)
mount$tmpfs(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000240), 0x800000, &(0x7f0000000540)={[{@usrquota_inode_hardlimit={'usrquota_inode_hardlimit', 0x3d, [0x78]}}]})
154.612567ms ago: executing program 3 (id=2947):
r0 = socket$nl_rdma(0x10, 0x3, 0x14)
sendmsg$RDMA_NLDEV_CMD_STAT_GET(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000100)=ANY=[@ANYBLOB="18000000111467ef0000000900000000080005"], 0x18}}, 0x0)
110.380478ms ago: executing program 2 (id=2948):
r0 = socket$key(0xf, 0x3, 0x2)
sendmsg$key(r0, &(0x7f0000000040)={0x3, 0x0, &(0x7f0000000340)={&(0x7f0000000cc0)={0x2, 0x5, 0x0, 0x3, 0xa, 0x0, 0x70bd2b, 0x0, [@sadb_sa={0x2, 0x1, 0x0, 0x0, 0x0, 0x2, 0xd, 0x20000000}, @sadb_address={0x3, 0x6, 0x0, 0x0, 0x0, @in={0x2, 0x4e1d, @private=0x80}}, @sadb_address={0x3, 0x5, 0x32, 0x0, 0x0, @in={0x2, 0x0, @dev}}]}, 0x50}, 0x1, 0x7}, 0x0)
20.84389ms ago: executing program 0 (id=2949):
mlockall(0x6)
brk(0x689d80000003)
0s ago: executing program 3 (id=2950):
seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0xc, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6, 0x2, 0x4, 0x7fff7fff}]})
gettid()
kernel console output (not intermixed with test programs):
ound reiserfs format "3.6" with non-standard journal
[ 132.950674][ T7079] REISERFS (device loop2): using ordered data mode
[ 132.957386][ T7079] reiserfs: using flush barriers
[ 132.982295][ T7088] geneve2: entered promiscuous mode
[ 132.990855][ T7079] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 133.029573][ T7079] REISERFS (device loop2): checking transaction log (loop2)
[ 133.147313][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 133.165977][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 133.414545][ T7079] REISERFS (device loop2): Using tea hash to sort names
[ 133.431009][ T7079] REISERFS warning (device loop2): vs-13060 reiserfs_update_sd_size: stat data of object [1 2 0x0 SD] (nlink == 4) not found (pos 2)
[ 133.485011][ T7079] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[ 133.611580][ T7100] misc userio: The device must be registered before sending interrupts
[ 134.400652][ T7126] misc userio: The device must be registered before sending interrupts
[ 134.582210][ T2127] usb 3-1: new high-speed USB device number 3 using dummy_hcd
[ 134.787544][ T2127] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 134.817483][ T2127] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 134.852784][ T2127] usb 3-1: config 0 descriptor??
[ 134.882044][ T2127] cp210x 3-1:0.0: cp210x converter detected
[ 135.122522][ T2127] usb 3-1: cp210x converter now attached to ttyUSB0
[ 135.250173][ T7156] misc userio: The device must be registered before sending interrupts
[ 135.352271][ T9] usb 3-1: USB disconnect, device number 3
[ 135.371763][ T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 135.380388][ T9] cp210x 3-1:0.0: device disconnected
[ 135.658622][ T7168] openvswitch: netlink: Missing valid actions attribute.
[ 135.685303][ T7168] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 135.908342][ T7175] loop3: detected capacity change from 0 to 256
[ 136.032418][ T7175] FAT-fs (loop3): Directory bread(block 64) failed
[ 136.039044][ T7175] FAT-fs (loop3): Directory bread(block 65) failed
[ 136.100756][ T7175] FAT-fs (loop3): Directory bread(block 66) failed
[ 136.107364][ T7175] FAT-fs (loop3): Directory bread(block 67) failed
[ 136.149605][ T7175] FAT-fs (loop3): Directory bread(block 68) failed
[ 136.180894][ T7175] FAT-fs (loop3): Directory bread(block 69) failed
[ 136.187610][ T7175] FAT-fs (loop3): Directory bread(block 70) failed
[ 136.220500][ T7175] FAT-fs (loop3): Directory bread(block 71) failed
[ 136.227206][ T7175] FAT-fs (loop3): Directory bread(block 72) failed
[ 136.256754][ T7175] FAT-fs (loop3): Directory bread(block 73) failed
[ 136.606339][ T7197] openvswitch: netlink: Missing valid actions attribute.
[ 136.623577][ T7197] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 136.970010][ T7211] libceph: resolve '+ælc' (ret=-3): failed
[ 137.070602][ T2127] usb 1-1: new high-speed USB device number 3 using dummy_hcd
[ 137.087309][ T7216] netlink: 'syz.3.614': attribute type 21 has an invalid length.
[ 137.111721][ T7216] netlink: 128 bytes leftover after parsing attributes in process `syz.3.614'.
[ 137.144469][ T7216] netlink: 'syz.3.614': attribute type 4 has an invalid length.
[ 137.253309][ T2127] usb 1-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3
[ 137.281828][ T2127] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 137.319286][ T2127] usb 1-1: config 0 descriptor??
[ 137.338306][ T2127] cp210x 1-1:0.0: cp210x converter detected
[ 137.571548][ T2127] usb 1-1: cp210x converter now attached to ttyUSB0
[ 137.781189][ T9] usb 1-1: USB disconnect, device number 3
[ 137.819511][ T9] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0
[ 137.838369][ T9] cp210x 1-1:0.0: device disconnected
[ 138.231895][ T7254] netlink: 76 bytes leftover after parsing attributes in process `syz.2.633'.
[ 138.465824][ T7258] mmap: syz.1.629 (7258) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst.
[ 139.599772][ T7303] netlink: 28 bytes leftover after parsing attributes in process `syz.0.652'.
[ 139.630628][ T7303] netlink: 108 bytes leftover after parsing attributes in process `syz.0.652'.
[ 139.666651][ T7303] netlink: 28 bytes leftover after parsing attributes in process `syz.0.652'.
[ 139.706988][ T7303] netlink: 108 bytes leftover after parsing attributes in process `syz.0.652'.
[ 139.718173][ T7303] netlink: 84 bytes leftover after parsing attributes in process `syz.0.652'.
[ 139.938643][ T7311] usb usb8: check_ctrlrecip: process 7311 (syz.0.655) requesting ep 01 but needs 81
[ 139.958183][ T7313] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 139.966540][ T7311] usb usb8: usbfs: process 7311 (syz.0.655) did not claim interface 0 before use
[ 140.792033][ T7345] usb usb8: check_ctrlrecip: process 7345 (syz.3.670) requesting ep 01 but needs 81
[ 140.820741][ T7345] usb usb8: usbfs: process 7345 (syz.3.670) did not claim interface 0 before use
[ 142.045709][ T7391] loop2: detected capacity change from 0 to 2048
[ 142.088605][ T7391] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[ 142.115559][ T7391] UDF-fs: Scanning with blocksize 512 failed
[ 142.165057][ T7391] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 145.290541][ T2127] usb 2-1: new full-speed USB device number 4 using dummy_hcd
[ 145.365558][ T7491] comedi comedi1: 8255: I/O port conflict (0x3,4)
[ 145.382995][ T7491] comedi comedi1: 8255: I/O port conflict (0x10002,4)
[ 145.513337][ T2127] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 145.528551][ T2127] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[ 145.540665][ T2127] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x83 has invalid wMaxPacketSize 0
[ 145.550984][ T2127] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 145.565506][ T2127] usb 2-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[ 145.574925][ T2127] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 145.597872][ T2127] usb 2-1: config 0 descriptor??
[ 145.634883][ T2127] gspca_main: spca561-2.14.0 probing abcd:cdee
[ 145.855182][ T2127] spca561: probe of 2-1:0.0 failed with error -22
[ 145.864411][ T2127] usb 2-1: Quirk or no altest; falling back to MIDI 1.0
[ 145.883391][ T2127] usb 2-1: MIDIStreaming interface descriptor not found
[ 146.121495][ T2127] snd-usb-audio: probe of 2-1:0.0 failed with error -12
[ 146.217200][ T2127] usb 2-1: USB disconnect, device number 4
[ 146.981480][ T7542] netlink: 76 bytes leftover after parsing attributes in process `syz.1.764'.
[ 147.044116][ T7546] netlink: 'syz.3.767': attribute type 5 has an invalid length.
[ 147.165159][ T7546] �: entered promiscuous mode
[ 147.994496][ T7572] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 148.147381][ T7572] syz.0.780 (7572) used greatest stack depth: 19912 bytes left
[ 148.246381][ T7552] loop2: detected capacity change from 0 to 40427
[ 148.279575][ T7552] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[ 148.316340][ T7552] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock
[ 148.335703][ T7552] F2FS-fs (loop2): build fault injection attr: rate: 18446, type: 0x7ffff
[ 148.357908][ T7582] netlink: 76 bytes leftover after parsing attributes in process `syz.0.785'.
[ 148.362151][ T7584] netlink: 'syz.1.786': attribute type 5 has an invalid length.
[ 148.379701][ T7552] F2FS-fs (loop2): invalid crc value
[ 148.398546][ T7584] �: entered promiscuous mode
[ 148.411675][ T7552] F2FS-fs (loop2): Found nat_bits in checkpoint
[ 148.420885][ T9] usb 4-1: new high-speed USB device number 6 using dummy_hcd
[ 148.561545][ T7552] F2FS-fs (loop2): Start checkpoint disabled!
[ 148.583872][ T7552] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0
[ 148.604617][ T7552] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6
[ 148.634356][ T9] usb 4-1: Using ep0 maxpacket: 32
[ 148.658544][ T9] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 148.702204][ T9] usb 4-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80
[ 148.731387][ T9] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 148.759828][ T9] usb 4-1: Product: syz
[ 148.770107][ T9] usb 4-1: Manufacturer: syz
[ 148.790267][ T9] usb 4-1: SerialNumber: syz
[ 148.834803][ T9] usb 4-1: config 0 descriptor??
[ 148.855121][ T9] usb 4-1: bad CDC descriptors
[ 148.882397][ T9] usb 4-1: unsupported MDLM descriptors
[ 148.892404][ T28] audit: type=1326 audit(1756821718.511:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.0.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 148.956109][ T28] audit: type=1326 audit(1756821718.511:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.0.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 149.060579][ T28] audit: type=1326 audit(1756821718.511:12): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.0.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 149.121097][ T28] audit: type=1326 audit(1756821718.511:13): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.0.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 149.145010][ T9] usb 4-1: USB disconnect, device number 6
[ 149.197031][ T28] audit: type=1326 audit(1756821718.511:14): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7591 comm="syz.0.797" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 149.226185][ T2954] kworker/u4:7: attempt to access beyond end of device
[ 149.226185][ T2954] loop2: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 149.245463][ T2954] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 149.259427][ T2954] F2FS-fs (loop2): Stopped filesystem due to reason: 3
[ 149.829910][ T7611] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check.
[ 150.103491][ T7618] netlink: 'syz.0.809': attribute type 8 has an invalid length.
[ 150.123935][ T28] audit: type=1326 audit(1756821719.741:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7617 comm="syz.3.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 150.208673][ T28] audit: type=1326 audit(1756821719.741:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7617 comm="syz.3.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 150.305108][ T28] audit: type=1326 audit(1756821719.771:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7617 comm="syz.3.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=26 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 150.350910][ T28] audit: type=1326 audit(1756821719.771:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7617 comm="syz.3.801" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 150.460746][ T7627] geneve3: entered allmulticast mode
[ 150.521377][ T7631] netlink: 12 bytes leftover after parsing attributes in process `syz.2.807'.
[ 150.530322][ T7631] netlink: 20 bytes leftover after parsing attributes in process `syz.2.807'.
[ 150.549091][ T7631] netlink: 40 bytes leftover after parsing attributes in process `syz.2.807'.
[ 150.958647][ T7645] netlink: 'syz.2.814': attribute type 8 has an invalid length.
[ 151.193756][ T7651] netlink: 4 bytes leftover after parsing attributes in process `syz.3.818'.
[ 151.371601][ T7659] netlink: 20 bytes leftover after parsing attributes in process `syz.0.823'.
[ 151.395940][ T7661] loop1: detected capacity change from 0 to 256
[ 152.081833][ T7683] netlink: 4 bytes leftover after parsing attributes in process `syz.0.833'.
[ 152.519735][ T7664] loop3: detected capacity change from 0 to 40427
[ 152.525354][ T7695] netlink: 24 bytes leftover after parsing attributes in process `syz.0.839'.
[ 152.548874][ T7664] F2FS-fs (loop3): Invalid Fs Meta Ino: node(1) meta(2) root(0)
[ 152.571340][ T7664] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 152.579837][ T7664] F2FS-fs (loop3): build fault injection attr: rate: 18446, type: 0x7ffff
[ 152.608247][ T7664] F2FS-fs (loop3): invalid crc value
[ 152.616767][ T7664] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 152.721943][ T7664] F2FS-fs (loop3): Start checkpoint disabled!
[ 152.730814][ T5835] usb 2-1: new high-speed USB device number 5 using dummy_hcd
[ 152.762679][ T7664] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 152.774456][ T7664] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 152.937464][ T5835] usb 2-1: New USB device found, idVendor=0df6, idProduct=0056, bcdDevice=a0.b5
[ 152.950868][ T5835] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 152.977170][ T5835] usb 2-1: config 0 descriptor??
[ 153.283670][ T48] kworker/u4:3: attempt to access beyond end of device
[ 153.283670][ T48] loop3: rw=2049, sector=40960, nr_sectors = 16 limit=40427
[ 153.321645][ T48] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 153.340971][ T48] F2FS-fs (loop3): Stopped filesystem due to reason: 3
[ 153.436265][ T5835] asix 2-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71
[ 153.467715][ T5835] asix 2-1:0.0 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9
[ 153.504523][ T5835] asix: probe of 2-1:0.0 failed with error -71
[ 153.560799][ T5835] usb 2-1: USB disconnect, device number 5
[ 153.992094][ T7728] netlink: 20 bytes leftover after parsing attributes in process `syz.3.845'.
[ 154.047898][ T28] audit: type=1326 audit(1756821723.661:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7729 comm="syz.0.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 154.080024][ T28] audit: type=1326 audit(1756821723.691:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7729 comm="syz.0.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 154.150533][ T28] audit: type=1326 audit(1756821723.691:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7729 comm="syz.0.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=35 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 154.236097][ T28] audit: type=1326 audit(1756821723.751:22): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7729 comm="syz.0.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 154.309450][ T28] audit: type=1326 audit(1756821723.751:23): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7729 comm="syz.0.857" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 154.499939][ T7743] PKCS7: Unknown OID: [4] 0.0
[ 154.537618][ T7743] PKCS7: Only support pkcs7_signedData type
[ 155.207654][ T7773] PKCS7: Unknown OID: [4] 0.0
[ 155.220690][ T7773] PKCS7: Only support pkcs7_signedData type
[ 155.819651][ T7786] xt_TCPMSS: Only works on TCP SYN packets
[ 156.017199][ T7793] dummy0: entered promiscuous mode
[ 156.042894][ T7791] dummy0: left promiscuous mode
[ 156.548948][ T7809] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 157.028915][ T7823] netlink: 20 bytes leftover after parsing attributes in process `syz.1.902'.
[ 157.371786][ T7837] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore
[ 157.400728][ T7837] overlayfs: missing 'lowerdir'
[ 157.489915][ T7843] netlink: 'syz.1.912': attribute type 1 has an invalid length.
[ 157.728533][ T7851] netlink: 20 bytes leftover after parsing attributes in process `syz.3.916'.
[ 157.752472][ T7853] syz.2.914 uses old SIOCAX25GETINFO
[ 157.940249][ T7857] netlink: 8 bytes leftover after parsing attributes in process `syz.2.920'.
[ 158.009581][ T7860] netlink: 28 bytes leftover after parsing attributes in process `syz.3.919'.
[ 159.089360][ T7900] netlink: 'syz.0.938': attribute type 1 has an invalid length.
[ 159.208121][ T7904] loop3: detected capacity change from 0 to 16
[ 159.219218][ T7904] erofs: (device loop3): mounted with root inode @ nid 36.
[ 159.377021][ T7906] No such timeout policy "syz0"
[ 160.131874][ T7932] No such timeout policy "syz0"
[ 160.240635][ T2127] usb 4-1: new high-speed USB device number 7 using dummy_hcd
[ 160.451952][ T2127] usb 4-1: config 1 interface 0 altsetting 6 bulk endpoint 0x82 has invalid maxpacket 32
[ 160.475310][ T2127] usb 4-1: config 1 interface 0 altsetting 6 bulk endpoint 0x3 has invalid maxpacket 32
[ 160.505755][ T2127] usb 4-1: config 1 interface 0 has no altsetting 0
[ 160.523796][ T2127] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 160.540811][ T2127] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 160.558460][ T2127] usb 4-1: Product: syz
[ 160.570505][ T2127] usb 4-1: Manufacturer: syz
[ 160.591440][ T2127] usb 4-1: SerialNumber: syz
[ 160.611528][ T7920] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 160.619330][ T7920] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 160.887111][ T2127] cdc_ether: probe of 4-1:1.0 failed with error -71
[ 160.931697][ T2127] usb 4-1: USB disconnect, device number 7
[ 160.963959][ T7960] loop2: detected capacity change from 0 to 16
[ 160.973745][ T7960] erofs: (device loop2): mounted with root inode @ nid 36.
[ 161.036649][ T7962] netlink: 16 bytes leftover after parsing attributes in process `syz.1.969'.
[ 162.403853][ T8002] loop1: detected capacity change from 0 to 4096
[ 162.419418][ T8008] netlink: 16 bytes leftover after parsing attributes in process `syz.3.992'.
[ 162.454709][ T8002] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 162.521952][ T8002] ntfs: (device loop1): ntfs_is_extended_system_file(): Non-resident file name. You should run chkdsk.
[ 162.536219][ T8002] ntfs: (device loop1): ntfs_read_locked_inode(): $DATA attribute is missing.
[ 162.547547][ T8002] ntfs: (device loop1): ntfs_read_locked_inode(): Failed with error code -2. Marking corrupt inode 0x1 as bad. Run chkdsk.
[ 162.587133][ T8002] ntfs: (device loop1): load_system_files(): Failed to load $MFTMirr. Mounting read-only. Run ntfsfix and/or chkdsk.
[ 162.691529][ T8002] ntfs: volume version 3.1.
[ 162.805590][ T8002] ntfs: (device loop1): ntfs_nlstoucs(): Name using character set euc-jp contains characters that cannot be converted to Unicode.
[ 162.864871][ T8002] ntfs: (device loop1): ntfs_lookup(): Failed to convert name to Unicode.
[ 163.599338][ T8034] netlink: 'syz.0.1005': attribute type 2 has an invalid length.
[ 163.810965][ T8044] netlink: 12 bytes leftover after parsing attributes in process `syz.1.1010'.
[ 163.838574][ T8044] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1010'.
[ 164.148471][ T8056] loop2: detected capacity change from 0 to 512
[ 164.310207][ T8056] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 164.331243][ T8056] ext4 filesystem being mounted at /263/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 164.430051][ T8056] EXT4-fs error (device loop2): ext4_xattr_block_get:596: inode #15: comm syz.2.1015: corrupted xattr block 19: invalid ea_ino
[ 164.666681][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 164.860195][ T8082] tmpfs: Bad value for 'mpol'
[ 165.302597][ T8099] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1037'.
[ 165.327095][ T8099] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1037'.
[ 166.035878][ T28] audit: type=1400 audit(1756821735.651:24): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=262620E7 pid=8126 comm="syz.0.1049"
[ 166.554132][ T8119] loop1: detected capacity change from 0 to 32768
[ 166.830526][ T28] audit: type=1400 audit(1756821736.441:25): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-2 profile="unconfined" name=3A0C7E pid=8140 comm="syz.2.1057"
[ 167.103874][ T8129] loop3: detected capacity change from 0 to 32768
[ 167.163849][ T8129] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 167.245387][ T8129] (syz.3.1051,8129,1):ocfs2_inode_is_valid_to_delete:872 ERROR: Skipping delete of system file 72
[ 167.355608][ T8129] ocfs2: Unmounting device (7,3) on (node local)
[ 168.179441][ T8179] netlink: 'syz.0.1075': attribute type 11 has an invalid length.
[ 168.208773][ T8179] netlink: 3657 bytes leftover after parsing attributes in process `syz.0.1075'.
[ 170.106717][ T8242] netlink: set zone limit has 4 unknown bytes
[ 170.120859][ T5885] usb 2-1: new high-speed USB device number 6 using dummy_hcd
[ 170.310906][ T5885] usb 2-1: Using ep0 maxpacket: 8
[ 170.330173][ T5885] usb 2-1: config index 0 descriptor too short (expected 301, got 45)
[ 170.362361][ T5885] usb 2-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 170.372848][ T5885] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 170.383837][ T5885] usb 2-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 170.400505][ T5885] usb 2-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 170.425795][ T5885] usb 2-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 170.480589][ T5885] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 170.609906][ T8258] netlink: 'syz.2.1113': attribute type 11 has an invalid length.
[ 170.618377][ T8258] netlink: 3657 bytes leftover after parsing attributes in process `syz.2.1113'.
[ 170.733534][ T8260] pci 0000:00:05.0: vgaarb: VGA decodes changed: olddecodes=io+mem,decodes=none:owns=io+mem
[ 171.010862][ T5835] usb 2-1: USB disconnect, device number 6
[ 171.304014][ T8279] loop3: detected capacity change from 0 to 2048
[ 171.343028][ T8281] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 171.513230][ T8279] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 171.542039][ T8279] Remounting filesystem read-only
[ 171.561878][ T8279] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 171.930800][ T8297] netlink: set zone limit has 4 unknown bytes
[ 172.409164][ T8315] netlink: 648 bytes leftover after parsing attributes in process `syz.2.1142'.
[ 172.434775][ T8318] sctp: [Deprecated]: syz.3.1144 (pid 8318) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 172.434775][ T8318] Use struct sctp_sack_info instead
[ 172.638390][ T8322] Cannot find del_set index 0 as target
[ 172.889415][ T8335] netlink: 128 bytes leftover after parsing attributes in process `syz.0.1152'.
[ 172.909286][ T8335] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1152'.
[ 173.075344][ T8337] bridge2: entered allmulticast mode
[ 173.104302][ T8340] sctp: [Deprecated]: syz.1.1154 (pid 8340) Use of struct sctp_assoc_value in delayed_ack socket option.
[ 173.104302][ T8340] Use struct sctp_sack_info instead
[ 173.548125][ T8357] netlink: 7 bytes leftover after parsing attributes in process `syz.1.1163'.
[ 173.567705][ T8357] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1163'.
[ 173.855279][ T8368] netlink: 648 bytes leftover after parsing attributes in process `syz.3.1168'.
[ 174.074329][ T8376] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1172'.
[ 174.561609][ T9] usb 4-1: new high-speed USB device number 8 using dummy_hcd
[ 174.747704][ T8400] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1183'.
[ 174.772523][ T9] usb 4-1: Using ep0 maxpacket: 8
[ 174.802127][ T9] usb 4-1: config index 0 descriptor too short (expected 301, got 45)
[ 174.818544][ T9] usb 4-1: config 16 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 174.824784][ T8402] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.1184'.
[ 174.861894][ T9] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 174.891431][ T9] usb 4-1: config 16 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 32
[ 174.932409][ T9] usb 4-1: config 16 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 3
[ 174.985552][ T9] usb 4-1: New USB device found, idVendor=ee8d, idProduct=db1e, bcdDevice=61.23
[ 175.025938][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 175.414336][ T28] audit: type=1400 audit(1756821745.031:26): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=8417 comm="syz.2.1193"
[ 175.543598][ T5885] usb 4-1: USB disconnect, device number 8
[ 175.892338][ T8436] __nla_validate_parse: 2 callbacks suppressed
[ 175.892355][ T8436] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1201'.
[ 176.184754][ T28] audit: type=1400 audit(1756821745.801:27): apparmor="DENIED" operation="stack" class="file" info="label not found" error=-2 profile="unconfined" name=26260A3A0CCA7C2B08C9DFF78977F306B457CA93031D371D06D2E59E863E2FE54118A4EE43068DF6BA88E1B6DC3A2F2C91AE1C817D6B6014270B8BC51F73363852F4F12EE955F464599F0C485D pid=8443 comm="syz.0.1205"
[ 176.405830][ T8453] netlink: 199836 bytes leftover after parsing attributes in process `syz.2.1210'.
[ 176.894577][ T8469] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1217'.
[ 177.449375][ T28] audit: type=1326 audit(1756821747.061:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8484 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 177.516218][ T28] audit: type=1326 audit(1756821747.091:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8484 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 177.588545][ T8466] loop1: detected capacity change from 0 to 32768
[ 177.590526][ T28] audit: type=1326 audit(1756821747.101:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8484 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=59 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 177.683105][ T8490] netlink: 28 bytes leftover after parsing attributes in process `syz.0.1227'.
[ 177.697182][ T8466] ocfs2: Slot 0 on device (7,1) was already allocated to this node!
[ 177.706974][ T28] audit: type=1326 audit(1756821747.101:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8484 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 177.751476][ T28] audit: type=1326 audit(1756821747.101:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8484 comm="syz.0.1226" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 177.818745][ T8466] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 177.864277][ T8466] (syz.1.1215,8466,1):ocfs2_read_blocks:239 ERROR: status = -12
[ 177.910870][ T8466] (syz.1.1215,8466,0):ocfs2_xattr_block_find:2831 ERROR: status = -12
[ 178.152216][ T5783] ocfs2: Unmounting device (7,1) on (node local)
[ 178.290641][ T5786] Bluetooth: Wrong link type (-22)
[ 178.451358][ T8512] usb usb8: usbfs: process 8512 (syz.0.1238) did not claim interface 0 before use
[ 179.307039][ T8536] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1251'.
[ 179.769040][ T5786] Bluetooth: hci3: ACL packet for unknown connection handle 201
[ 181.013956][ T8606] loop3: detected capacity change from 0 to 128
[ 181.083126][ T8606] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 181.113360][ T8606] ext4 filesystem being mounted at /312/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 181.136743][ T8606] EXT4-fs warning (device loop3): verify_group_input:151: Cannot add at group 49 (only 1 groups)
[ 181.303174][ T5788] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 181.918948][ T8635] loop2: detected capacity change from 0 to 256
[ 182.067060][ T8635] FAT-fs (loop2): Directory bread(block 64) failed
[ 182.085543][ T8635] FAT-fs (loop2): Directory bread(block 65) failed
[ 182.100952][ T8635] FAT-fs (loop2): Directory bread(block 66) failed
[ 182.125121][ T8635] FAT-fs (loop2): Directory bread(block 67) failed
[ 182.151295][ T8635] FAT-fs (loop2): Directory bread(block 68) failed
[ 182.190575][ T8635] FAT-fs (loop2): Directory bread(block 69) failed
[ 182.197293][ T8635] FAT-fs (loop2): Directory bread(block 70) failed
[ 182.229885][ T8635] FAT-fs (loop2): Directory bread(block 71) failed
[ 182.257222][ T8635] FAT-fs (loop2): Directory bread(block 72) failed
[ 182.284849][ T8635] FAT-fs (loop2): Directory bread(block 73) failed
[ 182.359913][ T8645] netlink: 52 bytes leftover after parsing attributes in process `syz.3.1301'.
[ 182.601416][ T8648] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1302'.
[ 182.746191][ T8653] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1304'.
[ 182.933956][ T8658] x_tables: duplicate underflow at hook 1
[ 183.789387][ T8688] x_tables: duplicate underflow at hook 1
[ 184.015582][ T8695] loop3: detected capacity change from 0 to 256
[ 184.051477][ T8695] exfat: Deprecated parameter 'namecase'
[ 184.057275][ T8695] exfat: Deprecated parameter 'namecase'
[ 184.128676][ T8695] exfat: Deprecated parameter 'utf8'
[ 184.159380][ T8695] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012366, chksum : 0xd06b6363, utbl_chksum : 0xe619d30d)
[ 184.605571][ T8706] loop3: detected capacity change from 0 to 8192
[ 184.641483][ T8706] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 184.663176][ T8706] REISERFS (device loop3): found reiserfs format "3.5" with non-standard journal
[ 184.704318][ T8706] REISERFS (device loop3): using ordered data mode
[ 184.712326][ T8706] reiserfs: using flush barriers
[ 184.722185][ T8706] REISERFS (device loop3): journal params: device loop3, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 184.741605][ T8706] REISERFS (device loop3): checking transaction log (loop3)
[ 184.759369][ T8706] REISERFS (device loop3): Using r5 hash to sort names
[ 184.828309][ T8706] REISERFS (device loop3): Created .reiserfs_priv - reserved for xattr storage.
[ 185.086870][ T8724] syz.1.1335: vmalloc error: size 8589938688, exceeds total pages, mode:0xdc0(GFP_KERNEL|__GFP_ZERO), nodemask=(null),cpuset=syz1,mems_allowed=0-1
[ 185.209648][ T8724] CPU: 0 PID: 8724 Comm: syz.1.1335 Not tainted syzkaller #0
[ 185.217100][ T8724] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 185.227210][ T8724] Call Trace:
[ 185.230535][ T8724]
[ 185.233540][ T8724] dump_stack_lvl+0x16c/0x230
[ 185.238286][ T8724] ? show_regs_print_info+0x20/0x20
[ 185.243537][ T8724] ? load_image+0x3b0/0x3b0
[ 185.248101][ T8724] ? cpuset_print_current_mems_allowed+0x1f/0x360
[ 185.254562][ T8724] ? cpuset_print_current_mems_allowed+0x2e3/0x360
[ 185.261117][ T8724] warn_alloc+0x210/0x300
[ 185.265517][ T8724] ? stack_trace_save+0x9c/0xe0
[ 185.270419][ T8724] ? zone_watermark_ok_safe+0x230/0x230
[ 185.276122][ T8724] ? kasan_set_track+0x5f/0x70
[ 185.280955][ T8724] ? kasan_set_track+0x4e/0x70
[ 185.281896][ T28] audit: type=1326 audit(1756821754.901:33): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.2.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 185.285739][ T8724] ? __kasan_kmalloc+0x8f/0xa0
[ 185.312759][ T8724] ? xsk_init_queue+0xb0/0x110
[ 185.317576][ T8724] ? xsk_setsockopt+0x43c/0x6f0
[ 185.322470][ T8724] ? do_sock_setsockopt+0x175/0x1a0
[ 185.327727][ T8724] ? __x64_sys_setsockopt+0x184/0x200
[ 185.333171][ T8724] __vmalloc_node_range+0x126/0x1320
[ 185.338541][ T8724] ? free_vm_area+0x50/0x50
[ 185.343113][ T8724] vmalloc_user+0x74/0x80
[ 185.347495][ T8724] ? xskq_create+0xbf/0x170
[ 185.352045][ T8724] xskq_create+0xbf/0x170
[ 185.356426][ T8724] xsk_init_queue+0xb0/0x110
[ 185.360062][ T28] audit: type=1326 audit(1756821754.901:34): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.2.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 185.361055][ T8724] xsk_setsockopt+0x43c/0x6f0
[ 185.361083][ T8724] ? xsk_poll+0x670/0x670
[ 185.361107][ T8724] ? __fget_files+0x28/0x4d0
[ 185.361139][ T8724] ? bpf_lsm_socket_setsockopt+0x9/0x10
[ 185.361170][ T8724] ? security_socket_setsockopt+0x7e/0xa0
[ 185.361190][ T8724] ? xsk_poll+0x670/0x670
[ 185.361212][ T8724] do_sock_setsockopt+0x175/0x1a0
[ 185.418055][ T8724] ? __fdget+0x180/0x210
[ 185.422369][ T8724] __x64_sys_setsockopt+0x184/0x200
[ 185.427645][ T8724] do_syscall_64+0x55/0xb0
[ 185.432318][ T8724] ? clear_bhb_loop+0x40/0x90
[ 185.437053][ T8724] ? clear_bhb_loop+0x40/0x90
[ 185.441783][ T8724] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 185.447922][ T8724] RIP: 0033:0x7ff03978ebe9
[ 185.452402][ T8724] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 185.460626][ T28] audit: type=1326 audit(1756821755.061:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.2.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=274 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 185.472464][ T8724] RSP: 002b:00007ff03a554038 EFLAGS: 00000246 ORIG_RAX: 0000000000000036
[ 185.472492][ T8724] RAX: ffffffffffffffda RBX: 00007ff0399c5fa0 RCX: 00007ff03978ebe9
[ 185.472507][ T8724] RDX: 0000000000000006 RSI: 000000000000011b RDI: 0000000000000003
[ 185.472519][ T8724] RBP: 00007ff039811e19 R08: 0000000000000004 R09: 0000000000000000
[ 185.472533][ T8724] R10: 0000200000000000 R11: 0000000000000246 R12: 0000000000000000
[ 185.472546][ T8724] R13: 00007ff0399c6038 R14: 00007ff0399c5fa0 R15: 00007ffe17803808
[ 185.472577][ T8724]
[ 185.472690][ C0] vkms_vblank_simulate: vblank timer overrun
[ 185.552409][ C0] vkms_vblank_simulate: vblank timer overrun
[ 185.595093][ T8731] x_tables: duplicate entry at hook 3
[ 185.600807][ T28] audit: type=1326 audit(1756821755.061:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.2.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 185.640740][ T8724] Mem-Info:
[ 185.644477][ T8724] active_anon:10372 inactive_anon:0 isolated_anon:0
[ 185.644477][ T8724] active_file:5678 inactive_file:39947 isolated_file:0
[ 185.644477][ T8724] unevictable:768 dirty:212 writeback:0
[ 185.644477][ T8724] slab_reclaimable:10213 slab_unreclaimable:93224
[ 185.644477][ T8724] mapped:29057 shmem:6271 pagetables:571
[ 185.644477][ T8724] sec_pagetables:0 bounce:0
[ 185.644477][ T8724] kernel_misc_reclaimable:0
[ 185.644477][ T8724] free:1356424 free_pcp:8553 free_cma:0
[ 185.689685][ C0] vkms_vblank_simulate: vblank timer overrun
[ 185.702791][ T28] audit: type=1326 audit(1756821755.061:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8725 comm="syz.2.1339" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 185.725267][ T8734] netlink: 'syz.2.1341': attribute type 1 has an invalid length.
[ 185.742474][ T8724] Node 0 active_anon:41988kB inactive_anon:0kB active_file:23012kB inactive_file:159588kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:116628kB dirty:848kB writeback:0kB shmem:23948kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:11348kB pagetables:2384kB sec_pagetables:0kB all_unreclaimable? no
[ 185.946509][ T8724] Node 1 active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB isolated(anon):0kB isolated(file):0kB mapped:0kB dirty:0kB writeback:0kB shmem:1536kB shmem_thp:0kB shmem_pmdmapped:0kB anon_thp:0kB writeback_tmp:0kB kernel_stack:16kB pagetables:0kB sec_pagetables:0kB all_unreclaimable? no
[ 186.029863][ T8724] Node 0 DMA free:15360kB boost:0kB min:204kB low:252kB high:300kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:0kB unevictable:0kB writepending:0kB present:15992kB managed:15360kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 186.078544][ T8743] loop2: detected capacity change from 0 to 1024
[ 186.117219][ T8743] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 186.158878][ T8724] lowmem_reserve[]: 0 2525 2526 2526 2526
[ 186.193204][ T8743] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 186.260762][ T8724] Node 0 DMA32 free:1508284kB boost:0kB min:34676kB low:43344kB high:52012kB reserved_highatomic:0KB active_anon:45800kB inactive_anon:0kB active_file:26104kB inactive_file:158308kB unevictable:1536kB writepending:872kB present:3129332kB managed:2589592kB mlocked:0kB bounce:0kB free_pcp:12172kB local_pcp:2508kB free_cma:0kB
[ 186.291288][ C0] vkms_vblank_simulate: vblank timer overrun
[ 186.311223][ T8743] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2867: Unable to expand inode 12. Delete some EAs or run e2fsck.
[ 186.351499][ T8743] EXT4-fs error (device loop2): ext4_xattr_inode_iget:440: inode #11: comm syz.2.1345: missing EA_INODE flag
[ 186.376053][ T8724] lowmem_reserve[]: 0 0 1 1 1
[ 186.386550][ T8724] Node 0 Normal free:16kB boost:0kB min:16kB low:20kB high:24kB reserved_highatomic:0KB active_anon:48kB inactive_anon:0kB active_file:0kB inactive_file:1320kB unevictable:0kB writepending:0kB present:1048576kB managed:1384kB mlocked:0kB bounce:0kB free_pcp:0kB local_pcp:0kB free_cma:0kB
[ 186.420598][ T8743] EXT4-fs (loop2): Remounting filesystem read-only
[ 186.530793][ T8724] lowmem_reserve[]: 0 0 0 0 0
[ 186.564081][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 186.610714][ T8724] Node 1 Normal free:3897756kB boost:0kB min:55208kB low:69008kB high:82808kB reserved_highatomic:0KB active_anon:0kB inactive_anon:0kB active_file:0kB inactive_file:200kB unevictable:1536kB writepending:0kB present:4194304kB managed:4117312kB mlocked:0kB bounce:0kB free_pcp:17028kB local_pcp:9184kB free_cma:0kB
[ 186.701163][ T8724] lowmem_reserve[]: 0 0 0 0 0
[ 186.706020][ T8724] Node 0 DMA: 0*4kB 0*8kB 0*16kB 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 1*1024kB (U) 1*2048kB (M) 3*4096kB (M) = 15360kB
[ 186.778038][ T8724] Node 0 DMA32: 236*4kB (UE) 577*8kB (UE) 449*16kB (U) 320*32kB (UE) 28*64kB (UME) 6*128kB (UME) 2*256kB (ME) 1*512kB (U) 2*1024kB (ME) 3*2048kB (UME) 356*4096kB (M) = 1492936kB
[ 186.839656][ T8724] Node 0 Normal: 0*4kB 0*8kB 1*16kB (M) 0*32kB 0*64kB 0*128kB 0*256kB 0*512kB 0*1024kB 0*2048kB 0*4096kB = 16kB
[ 186.869442][ T8724] Node 1 Normal: 233*4kB (UM) 55*8kB (UME) 32*16kB (UME) 66*32kB (UME) 24*64kB (UME) 6*128kB (UE) 1*256kB (E) 2*512kB (ME) 1*1024kB (U) 1*2048kB (E) 949*4096kB (M) = 3897756kB
[ 187.000083][ T8724] Node 0 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 187.039440][ T8724] Node 0 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 187.106218][ T8724] Node 1 hugepages_total=0 hugepages_free=0 hugepages_surp=0 hugepages_size=1048576kB
[ 187.192146][ T8724] Node 1 hugepages_total=2 hugepages_free=2 hugepages_surp=0 hugepages_size=2048kB
[ 187.220622][ T8724] 60228 total pagecache pages
[ 187.247666][ T8724] 0 pages in swap cache
[ 187.264486][ T8724] Free swap = 124996kB
[ 187.276702][ T8724] Total swap = 124996kB
[ 187.281689][ T8724] 2097051 pages RAM
[ 187.291819][ T8724] 0 pages HighMem/MovableOnly
[ 187.296558][ T8724] 416139 pages reserved
[ 187.316584][ T8724] 0 pages cma reserved
[ 188.859283][ T8808] loop2: detected capacity change from 0 to 8192
[ 188.910018][ T8808] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025
[ 188.917080][ T8814] x_tables: duplicate entry at hook 3
[ 188.990181][ T8808] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal
[ 189.058618][ T8808] REISERFS (device loop2): using ordered data mode
[ 189.097501][ T8808] reiserfs: using flush barriers
[ 189.126255][ T8808] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30
[ 189.181006][ T8808] REISERFS (device loop2): checking transaction log (loop2)
[ 189.238959][ T8808] REISERFS (device loop2): Using r5 hash to sort names
[ 189.259945][ T8808] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage.
[ 189.372234][ T8822] loop1: detected capacity change from 0 to 1024
[ 189.442739][ T8822] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 189.636881][ T8822] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 189.816281][ T8832] bridge_slave_0: left allmulticast mode
[ 189.860794][ T8832] bridge0: port 1(bridge_slave_0) entered disabled state
[ 189.863724][ T8822] EXT4-fs error (device loop1): ext4_xattr_inode_iget:440: inode #11: comm syz.1.1379: missing EA_INODE flag
[ 189.906803][ T8822] EXT4-fs (loop1): Remounting filesystem read-only
[ 190.069478][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 190.274477][ T8844] netlink: 24 bytes leftover after parsing attributes in process `syz.3.1392'.
[ 190.875791][ T8861] bridge_slave_0: left allmulticast mode
[ 190.904405][ T8864] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1402'.
[ 190.913708][ T8861] bridge0: port 1(bridge_slave_0) entered disabled state
[ 191.203303][ T8870] netlink: 4768 bytes leftover after parsing attributes in process `syz.2.1404'.
[ 191.223999][ T5835] usb 2-1: new high-speed USB device number 7 using dummy_hcd
[ 191.457297][ T8876] loop2: detected capacity change from 0 to 256
[ 191.481604][ T8876] exfat: Deprecated parameter 'namecase'
[ 191.487398][ T8876] exfat: Deprecated parameter 'namecase'
[ 191.495580][ T5835] usb 2-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice= 0.00
[ 191.528495][ T5835] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 191.528650][ T8876] exfat: Deprecated parameter 'utf8'
[ 191.576183][ T5835] usb 2-1: Product: syz
[ 191.584743][ T5835] usb 2-1: Manufacturer: syz
[ 191.589400][ T5835] usb 2-1: SerialNumber: syz
[ 191.637666][ T5835] usb 2-1: config 0 descriptor??
[ 191.686032][ T8876] exFAT-fs (loop2): failed to load upcase table (idx : 0x00012366, chksum : 0xd06b6363, utbl_chksum : 0xe619d30d)
[ 191.697669][ T8880] loop3: detected capacity change from 0 to 164
[ 191.842154][ T8880] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 191.915642][ T5835] hso 2-1:0.0: Failed to find INT IN ep
[ 191.941248][ T5835] usb-storage 2-1:0.0: USB Mass Storage device detected
[ 192.217635][ T5835] usb 2-1: USB disconnect, device number 7
[ 192.254597][ T8886] tunl0: entered promiscuous mode
[ 192.296945][ T8886] netlink: 'syz.3.1412': attribute type 4 has an invalid length.
[ 192.343182][ T8886] netlink: 9 bytes leftover after parsing attributes in process `syz.3.1412'.
[ 193.014826][ T8906] loop2: detected capacity change from 0 to 256
[ 193.109735][ T8911] loop3: detected capacity change from 0 to 256
[ 193.166742][ T8906] FAT-fs (loop2): Directory bread(block 64) failed
[ 193.179817][ T8906] FAT-fs (loop2): Directory bread(block 65) failed
[ 193.230753][ T8906] FAT-fs (loop2): Directory bread(block 66) failed
[ 193.247749][ T8906] FAT-fs (loop2): Directory bread(block 67) failed
[ 193.268722][ T8906] FAT-fs (loop2): Directory bread(block 68) failed
[ 193.283934][ T8906] FAT-fs (loop2): Directory bread(block 69) failed
[ 193.297020][ T8906] FAT-fs (loop2): Directory bread(block 70) failed
[ 193.332956][ T8911] FAT-fs (loop3): Directory bread(block 64) failed
[ 193.338900][ T8906] FAT-fs (loop2): Directory bread(block 71) failed
[ 193.372261][ T8911] FAT-fs (loop3): Directory bread(block 65) failed
[ 193.379012][ T8906] FAT-fs (loop2): Directory bread(block 72) failed
[ 193.379027][ T8911] FAT-fs (loop3): Directory bread(block 66) failed
[ 193.405097][ T8906] FAT-fs (loop2): Directory bread(block 73) failed
[ 193.452289][ T8911] FAT-fs (loop3): Directory bread(block 67) failed
[ 193.473070][ T8911] FAT-fs (loop3): Directory bread(block 68) failed
[ 193.497979][ T8911] FAT-fs (loop3): Directory bread(block 69) failed
[ 193.519891][ T8911] FAT-fs (loop3): Directory bread(block 70) failed
[ 193.533867][ T8911] FAT-fs (loop3): Directory bread(block 71) failed
[ 193.561831][ T8911] FAT-fs (loop3): Directory bread(block 72) failed
[ 193.568479][ T8911] FAT-fs (loop3): Directory bread(block 73) failed
[ 193.980748][ T8923] netlink: 'syz.0.1429': attribute type 1 has an invalid length.
[ 194.620309][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 194.627094][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 195.317874][ T8965] ubi0: attaching mtd0
[ 195.331743][ T8965] ubi0 error: ubi_attach_mtd_dev: bad VID header (1) or data offsets (65)
[ 195.958652][ T8954] loop1: detected capacity change from 0 to 32768
[ 195.997694][ T8954] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop1 scanned by syz.1.1444 (8954)
[ 196.049338][ T8954] BTRFS info (device loop1): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 196.091621][ T8954] BTRFS info (device loop1): using crc32c (crc32c-intel) checksum algorithm
[ 196.115948][ T8954] BTRFS info (device loop1): setting nodatacow, compression disabled
[ 196.142299][ T8954] BTRFS info (device loop1): max_inline at 0
[ 196.148404][ T8954] BTRFS info (device loop1): enabling disk space caching
[ 196.201306][ T8954] BTRFS info (device loop1): turning off barriers
[ 196.207903][ T8954] BTRFS info (device loop1): turning on flush-on-commit
[ 196.223675][ T8985] ubi0: attaching mtd0
[ 196.230770][ T8981] loop2: detected capacity change from 0 to 4096
[ 196.240886][ T8954] BTRFS info (device loop1): doing ref verification
[ 196.247554][ T8954] BTRFS info (device loop1): force clearing of disk cache
[ 196.270254][ T8985] ubi0 error: ubi_attach_mtd_dev: bad VID header (1) or data offsets (65)
[ 196.294333][ T8954] BTRFS info (device loop1): enabling ssd optimizations
[ 196.313611][ T8954] BTRFS info (device loop1): max_inline at 4096
[ 196.333434][ T8954] BTRFS info (device loop1): disk space caching is enabled
[ 196.551755][ T8954] BTRFS info (device loop1): auto enabling async discard
[ 196.613885][ T8954] BTRFS info (device loop1): rebuilding free space tree
[ 196.775952][ T8954] BTRFS info (device loop1): disabling free space tree
[ 196.790185][ T8954] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 196.836509][ T8954] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 197.001082][ T8954] BTRFS info (device loop1: state M): max_inline at 0
[ 197.008208][ T8954] BTRFS info (device loop1: state M): doing ref verification
[ 197.059478][ T8954] BTRFS info (device loop1: state M): force clearing of disk cache
[ 197.080925][ T8954] BTRFS info (device loop1: state M): max_inline at 4096
[ 197.081393][ T9018] comedi comedi2: dt2814: I/O port conflict (0xc,2)
[ 197.263634][ T5783] BTRFS info (device loop1): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf
[ 197.580722][ T9030] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 198.079815][ T9047] netlink: 'syz.2.1481': attribute type 15 has an invalid length.
[ 198.273370][ T28] audit: type=1326 audit(1756821767.871:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9050 comm="syz.3.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 198.298564][ T9053] comedi comedi0: Minor 65535 is invalid!
[ 198.350574][ T28] audit: type=1326 audit(1756821767.871:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9050 comm="syz.3.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 198.449977][ T28] audit: type=1326 audit(1756821767.891:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9050 comm="syz.3.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 198.550634][ T28] audit: type=1326 audit(1756821767.891:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9050 comm="syz.3.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 198.664200][ T28] audit: type=1326 audit(1756821767.891:42): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9050 comm="syz.3.1483" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 198.733896][ T9068] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1490'.
[ 199.392415][ T9086] loop1: detected capacity change from 0 to 4096
[ 199.420835][ T9086] ntfs: (device loop1): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel.
[ 199.490028][ T9086] ntfs: volume version 3.1.
[ 199.848614][ T28] audit: type=1326 audit(1756821769.461:43): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9103 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 199.933310][ T28] audit: type=1326 audit(1756821769.461:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9103 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 200.039617][ T28] audit: type=1326 audit(1756821769.461:45): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9103 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=64 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 200.076222][ T28] audit: type=1326 audit(1756821769.461:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9103 comm="syz.0.1509" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 200.172014][ T9113] cgroup: noprefix used incorrectly
[ 200.314798][ T9119] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1516'.
[ 200.617028][ T9130] loop1: detected capacity change from 0 to 8
[ 200.663442][ T9130] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 200.694244][ T9130] SQUASHFS error: Failed to read block 0x91: -5
[ 200.727703][ T9130] SQUASHFS error: Unable to read metadata cache entry [8f]
[ 200.742991][ T9130] SQUASHFS error: Unable to read inode 0x11f
[ 201.107070][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.130328][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.153109][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.167771][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.216349][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.240586][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.273096][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.300697][ T9142] netlink: 4 bytes leftover after parsing attributes in process `syz.0.1528'.
[ 201.310660][ T27] usb 2-1: new high-speed USB device number 8 using dummy_hcd
[ 201.516887][ T27] usb 2-1: config 0 interface 0 altsetting 12 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 201.545499][ T27] usb 2-1: config 0 interface 0 has no altsetting 0
[ 201.562598][ T27] usb 2-1: New USB device found, idVendor=06cd, idProduct=0115, bcdDevice=d9.c3
[ 201.580659][ T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 201.597161][ T27] usb 2-1: Product: syz
[ 201.603521][ T27] usb 2-1: Manufacturer: syz
[ 201.608172][ T27] usb 2-1: SerialNumber: syz
[ 201.673667][ T27] usb 2-1: config 0 descriptor??
[ 201.694203][ T27] keyspan 2-1:0.0: Keyspan 2 port adapter converter detected
[ 201.725093][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 7
[ 201.736434][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 81
[ 201.746781][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 1
[ 201.758637][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 2
[ 201.780862][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 85
[ 201.788698][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 5
[ 201.824997][ T27] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[ 201.873430][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 83
[ 201.908293][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 3
[ 201.929413][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 4
[ 201.950578][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 86
[ 201.978911][ T27] keyspan 2-1:0.0: found no endpoint descriptor for endpoint 6
[ 202.018578][ T27] usb 2-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[ 202.042819][ T27] usb 2-1: USB disconnect, device number 8
[ 202.071237][ T27] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[ 202.113640][ T27] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[ 202.142475][ T27] keyspan 2-1:0.0: device disconnected
[ 203.667642][ T9224] loop3: detected capacity change from 0 to 8
[ 203.716607][ T9224] SQUASHFS error: lzo decompression failed, data probably corrupt
[ 203.743903][ T9224] SQUASHFS error: Failed to read block 0x91: -5
[ 203.761121][ T9224] SQUASHFS error: Unable to read metadata cache entry [8f]
[ 203.768572][ T9224] SQUASHFS error: Unable to read inode 0x11f
[ 204.124861][ T9235] binfmt_misc: register: failed to install interpreter file ./bus
[ 204.179365][ T9238] __nla_validate_parse: 46 callbacks suppressed
[ 204.179384][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.212903][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.274309][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.288757][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.310143][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.346148][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.366232][ T9242] netlink: 'syz.2.1576': attribute type 1 has an invalid length.
[ 204.380939][ T9242] netlink: 112865 bytes leftover after parsing attributes in process `syz.2.1576'.
[ 204.381746][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.417985][ T28] kauditd_printk_skb: 1 callbacks suppressed
[ 204.418000][ T28] audit: type=1326 audit(1756821774.021:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.0.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 204.447091][ C0] vkms_vblank_simulate: vblank timer overrun
[ 204.450679][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.480601][ T9238] netlink: 4 bytes leftover after parsing attributes in process `syz.3.1573'.
[ 204.539915][ T28] audit: type=1326 audit(1756821774.021:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.0.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 204.562254][ C0] vkms_vblank_simulate: vblank timer overrun
[ 204.627719][ T28] audit: type=1326 audit(1756821774.071:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.0.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 204.684725][ T9251] netlink: 'syz.0.1580': attribute type 3 has an invalid length.
[ 204.690620][ T28] audit: type=1326 audit(1756821774.071:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.0.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 204.715023][ C0] vkms_vblank_simulate: vblank timer overrun
[ 204.744945][ T28] audit: type=1326 audit(1756821774.071:52): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9243 comm="syz.0.1577" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 206.030538][ T27] usb 4-1: new high-speed USB device number 9 using dummy_hcd
[ 206.085169][ T9292] loop1: detected capacity change from 0 to 2048
[ 206.136390][ T9293] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 206.213503][ T27] usb 4-1: config 0 interface 0 altsetting 12 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 206.237201][ T27] usb 4-1: config 0 interface 0 has no altsetting 0
[ 206.252892][ T27] usb 4-1: New USB device found, idVendor=06cd, idProduct=0115, bcdDevice=d9.c3
[ 206.271590][ T27] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 206.300708][ T27] usb 4-1: Product: syz
[ 206.305113][ T27] usb 4-1: Manufacturer: syz
[ 206.309762][ T27] usb 4-1: SerialNumber: syz
[ 206.331496][ T27] usb 4-1: config 0 descriptor??
[ 206.365004][ T27] keyspan 4-1:0.0: Keyspan 2 port adapter converter detected
[ 206.387910][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 7
[ 206.422844][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 81
[ 206.436538][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 1
[ 206.477138][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 2
[ 206.509334][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 85
[ 206.538654][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 5
[ 206.562787][ T28] audit: type=1326 audit(1756821776.181:53): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9298 comm="syz.1.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03978ebe9 code=0x7ffc0000
[ 206.579623][ T27] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB0
[ 206.646377][ T28] audit: type=1326 audit(1756821776.181:54): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9298 comm="syz.1.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03978ebe9 code=0x7ffc0000
[ 206.646735][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 83
[ 206.730596][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 3
[ 206.738330][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 4
[ 206.742277][ T28] audit: type=1326 audit(1756821776.221:55): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9298 comm="syz.1.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=311 compat=0 ip=0x7ff03978ebe9 code=0x7ffc0000
[ 206.756698][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 86
[ 206.790690][ T27] keyspan 4-1:0.0: found no endpoint descriptor for endpoint 6
[ 206.810697][ T27] usb 4-1: Keyspan 2 port adapter converter now attached to ttyUSB1
[ 206.823175][ T28] audit: type=1326 audit(1756821776.221:56): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9298 comm="syz.1.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03978ebe9 code=0x7ffc0000
[ 206.845486][ C0] vkms_vblank_simulate: vblank timer overrun
[ 206.867068][ T28] audit: type=1326 audit(1756821776.221:57): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9298 comm="syz.1.1602" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff03978ebe9 code=0x7ffc0000
[ 206.881857][ T27] usb 4-1: USB disconnect, device number 9
[ 206.969958][ T27] keyspan_2 ttyUSB0: Keyspan 2 port adapter converter now disconnected from ttyUSB0
[ 207.022548][ T27] keyspan_2 ttyUSB1: Keyspan 2 port adapter converter now disconnected from ttyUSB1
[ 207.053095][ T27] keyspan 4-1:0.0: device disconnected
[ 207.101280][ T5887] usb 2-1: new high-speed USB device number 9 using dummy_hcd
[ 207.295364][ T5887] usb 2-1: config 0 has an invalid interface number: 194 but max is 0
[ 207.314979][ T5887] usb 2-1: config 0 has no interface number 0
[ 207.334664][ T5887] usb 2-1: too many endpoints for config 0 interface 194 altsetting 233: 59, using maximum allowed: 30
[ 207.374301][ T5887] usb 2-1: config 0 interface 194 altsetting 233 has 0 endpoint descriptors, different from the interface descriptor's value: 59
[ 207.417225][ T5887] usb 2-1: config 0 interface 194 has no altsetting 0
[ 207.453668][ T5887] usb 2-1: New USB device found, idVendor=0c72, idProduct=0012, bcdDevice=22.96
[ 207.478887][ T5887] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 207.510562][ T5887] usb 2-1: Product: syz
[ 207.514804][ T5887] usb 2-1: Manufacturer: syz
[ 207.529306][ T9319] loop2: detected capacity change from 0 to 1764
[ 207.539962][ T5887] usb 2-1: SerialNumber: syz
[ 207.556164][ T5887] usb 2-1: config 0 descriptor??
[ 207.619384][ T9319] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 207.633525][ T9323] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 207.800851][ T9327] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 207.808771][ T9327] IPv6: NLM_F_CREATE should be set when creating new route
[ 207.816229][ T9327] IPv6: NLM_F_CREATE should be set when creating new route
[ 207.841184][ T5887] peak_usb: probe of 2-1:0.194 failed with error 194
[ 207.859400][ T5887] usb 2-1: USB disconnect, device number 9
[ 208.219371][ T9341] Invalid option length (1040122) for dns_resolver key
[ 208.389354][ T9345] loop3: detected capacity change from 0 to 1024
[ 208.465412][ T9345] hfsplus: inconsistency in B*Tree (9,1,255,1,0)
[ 208.483266][ T9345] hfsplus: xattr searching failed
[ 208.565931][ T9350] loop1: detected capacity change from 0 to 1764
[ 208.640500][ T9350] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 208.650184][ T12] hfsplus: b-tree write err: -5, ino 4
[ 209.440551][ T5835] usb 4-1: new high-speed USB device number 10 using dummy_hcd
[ 209.645536][ T9391] __nla_validate_parse: 49 callbacks suppressed
[ 209.645614][ T9391] netlink: 16 bytes leftover after parsing attributes in process `syz.0.1644'.
[ 209.663164][ T5835] usb 4-1: config 0 has an invalid interface number: 194 but max is 0
[ 209.690941][ T5835] usb 4-1: config 0 has no interface number 0
[ 209.697258][ T5835] usb 4-1: too many endpoints for config 0 interface 194 altsetting 233: 59, using maximum allowed: 30
[ 209.729647][ T5835] usb 4-1: config 0 interface 194 altsetting 233 has 0 endpoint descriptors, different from the interface descriptor's value: 59
[ 209.762722][ T5835] usb 4-1: config 0 interface 194 has no altsetting 0
[ 209.780798][ T5835] usb 4-1: New USB device found, idVendor=0c72, idProduct=0012, bcdDevice=22.96
[ 209.817679][ T5835] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 209.829383][ T5835] usb 4-1: Product: syz
[ 209.860502][ T5835] usb 4-1: Manufacturer: syz
[ 209.865274][ T5835] usb 4-1: SerialNumber: syz
[ 209.911580][ T5835] usb 4-1: config 0 descriptor??
[ 210.143118][ T5835] peak_usb: probe of 4-1:0.194 failed with error 194
[ 210.172358][ T5835] usb 4-1: USB disconnect, device number 10
[ 210.370853][ T27] usb 2-1: new full-speed USB device number 10 using dummy_hcd
[ 210.577886][ T27] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 210.602203][ T27] usb 2-1: New USB device found, idVendor=0572, idProduct=0041, bcdDevice=70.54
[ 210.621350][ T27] usb 2-1: New USB device strings: Mfr=1, Product=34, SerialNumber=7
[ 210.640268][ T27] usb 2-1: Product: syz
[ 210.645043][ T27] usb 2-1: Manufacturer: syz
[ 210.660966][ T27] usb 2-1: SerialNumber: syz
[ 210.668487][ T27] usb 2-1: config 0 descriptor??
[ 210.689906][ T27] gspca_main: conex-2.14.0 probing 0572:0041
[ 210.899898][ T9424] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 211.120030][ T27] usb 2-1: USB disconnect, device number 10
[ 211.816449][ T9447] A link change request failed with some changes committed already. Interface caif0 may have been left with an inconsistent configuration, please check.
[ 212.024964][ T9401] Bluetooth: hci3: command 0x0406 tx timeout
[ 212.031240][ T5795] Bluetooth: hci0: command 0x0406 tx timeout
[ 212.037428][ T9401] Bluetooth: hci1: command 0x0406 tx timeout
[ 212.048005][ T5795] Bluetooth: hci2: command 0x0406 tx timeout
[ 212.263496][ T9467] netlink: 'syz.2.1675': attribute type 1 has an invalid length.
[ 212.454543][ T9474] netlink: 'syz.3.1680': attribute type 21 has an invalid length.
[ 212.462614][ T5887] usb 1-1: new high-speed USB device number 4 using dummy_hcd
[ 212.480598][ T9474] netlink: 132 bytes leftover after parsing attributes in process `syz.3.1680'.
[ 212.521509][ T9478] netlink: 'syz.1.1689': attribute type 4 has an invalid length.
[ 212.650943][ T5887] usb 1-1: Using ep0 maxpacket: 8
[ 212.660819][ T5887] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 212.675107][ T5887] usb 1-1: New USB device found, idVendor=046d, idProduct=0892, bcdDevice=6d.2a
[ 212.684695][ T5887] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 212.703255][ T5887] usb 1-1: config 0 descriptor??
[ 212.717601][ T5887] gspca_main: vc032x-2.14.0 probing 046d:0892
[ 213.118878][ T5887] gspca_vc032x: reg_w err -71
[ 213.133523][ T5887] vc032x: probe of 1-1:0.0 failed with error -71
[ 213.159410][ T5887] usb 1-1: USB disconnect, device number 4
[ 213.283356][ T9502] loop1: detected capacity change from 0 to 256
[ 213.549001][ T28] audit: type=1326 audit(1756821783.161:58): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9511 comm="syz.3.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 213.666779][ T28] audit: type=1326 audit(1756821783.161:59): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9511 comm="syz.3.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 213.731524][ T28] audit: type=1326 audit(1756821783.191:60): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9511 comm="syz.3.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 213.810556][ T28] audit: type=1326 audit(1756821783.191:61): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9511 comm="syz.3.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 213.913886][ T28] audit: type=1326 audit(1756821783.191:62): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=9511 comm="syz.3.1699" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 213.979190][ T9524] netlink: 28 bytes leftover after parsing attributes in process `syz.2.1704'.
[ 214.029453][ T9524] netlink: 24 bytes leftover after parsing attributes in process `syz.2.1704'.
[ 214.318295][ T9536] RDS: rds_bind could not find a transport for 2001::2, load rds_tcp or rds_rdma?
[ 215.765762][ T9589] netlink: 'syz.1.1737': attribute type 1 has an invalid length.
[ 215.793366][ T9589] netlink: 216 bytes leftover after parsing attributes in process `syz.1.1737'.
[ 215.827584][ T9589] NCSI netlink: No device for ifindex 0
[ 216.412978][ T9610] veth3: entered promiscuous mode
[ 216.445260][ T9610] veth3: entered allmulticast mode
[ 216.486201][ T9616] loop2: detected capacity change from 0 to 256
[ 216.509854][ T9616] exfat: Deprecated parameter 'utf8'
[ 216.534188][ T9616] exfat: Deprecated parameter 'namecase'
[ 216.577943][ T9616] exFAT-fs (loop2): failed to load upcase table (idx : 0x0001016b, chksum : 0xc5c53e17, utbl_chksum : 0xe619d30d)
[ 216.956428][ T9629] netlink: 16 bytes leftover after parsing attributes in process `syz.3.1757'.
[ 217.576482][ T9656] netlink: 'syz.0.1770': attribute type 29 has an invalid length.
[ 217.792618][ T9664] netlink: 72 bytes leftover after parsing attributes in process `syz.3.1774'.
[ 217.802033][ T9664] netlink: 172 bytes leftover after parsing attributes in process `syz.3.1774'.
[ 218.027267][ T9672] loop2: detected capacity change from 0 to 1024
[ 218.113704][ T9672] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 218.226356][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 219.570925][ T9731] netlink: 'syz.2.1804': attribute type 15 has an invalid length.
[ 219.688575][ T9733] netlink: 'syz.1.1805': attribute type 10 has an invalid length.
[ 219.721316][ T9733] netlink: 40 bytes leftover after parsing attributes in process `syz.1.1805'.
[ 219.743862][ T9733] batman_adv: batadv0: Adding interface: vlan1
[ 219.750140][ T9733] batman_adv: batadv0: The MTU of interface vlan1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 219.825535][ T9737] overlayfs: option "volatile" is meaningless in a non-upper mount, ignoring it.
[ 219.831087][ T9733] batman_adv: batadv0: Interface activated: vlan1
[ 219.856323][ T9737] overlayfs: missing 'lowerdir'
[ 220.071295][ T9741] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1809'.
[ 220.216699][ T9722] loop3: detected capacity change from 0 to 32768
[ 220.320711][ T9722] ERROR: (device loop3): dbAlloc: unable to allocate blocks
[ 220.320711][ T9722]
[ 220.351529][ T9722] ERROR: (device loop3): remounting filesystem as read-only
[ 220.359802][ T9722] jfs_create: dtInsert returned -EIO
[ 220.390598][ T9722] ERROR: (device loop3): jfs_create:
[ 220.390598][ T9722]
[ 220.423282][ T9751] netlink: 8 bytes leftover after parsing attributes in process `syz.2.1814'.
[ 220.741216][ T9762] cgroup: Unknown subsys name 'smackfshat'
[ 222.775114][ T9797] loop3: detected capacity change from 0 to 40427
[ 222.819148][ T9797] F2FS-fs (loop3): invalid crc value
[ 222.834835][ T9797] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 222.984382][ T9832] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1854'.
[ 222.990875][ T9797] F2FS-fs (loop3): Start checkpoint disabled!
[ 223.007756][ T9797] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6
[ 223.113622][ T9797] F2FS-fs (loop3): f2fs_check_nid_range: out-of-range nid=0, run fsck to fix.
[ 223.244099][ T9839] netlink: 16186 bytes leftover after parsing attributes in process `syz.0.1857'.
[ 223.630513][ T27] usb 3-1: new high-speed USB device number 4 using dummy_hcd
[ 223.842648][ T27] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 223.873632][ T27] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 223.910477][ T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 223.952803][ T27] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 224.559698][ T9880] loop1: detected capacity change from 0 to 4096
[ 224.571780][ T9880] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512).
[ 224.637938][ T9880] ntfs3: loop1: Failed to load $Extend (-22).
[ 224.645823][ T9880] ntfs3: loop1: Failed to initialize $Extend.
[ 225.064980][ T27] stv0680 3-1:4.0: STV(e): camera ping failed!!
[ 225.267852][ T27] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 225.267886][ T27] stv0680 3-1:4.0: last error: 0, command = 0x0
[ 225.280761][ T27] usb 3-1: USB disconnect, device number 4
[ 225.589237][ T9900] netlink: 20 bytes leftover after parsing attributes in process `syz.1.1887'.
[ 226.622945][ T9933] ieee802154 phy0 wpan0: encryption failed: -22
[ 227.142290][ T9952] netlink: 'syz.2.1911': attribute type 2 has an invalid length.
[ 227.503765][ T9960] tmpfs: Unknown parameter 'func'
[ 227.576613][ T9928] loop1: detected capacity change from 0 to 40427
[ 227.632235][ T9928] F2FS-fs (loop1): invalid crc value
[ 227.646143][ T9928] F2FS-fs (loop1): Found nat_bits in checkpoint
[ 227.811273][ T9928] F2FS-fs (loop1): Start checkpoint disabled!
[ 227.834243][ T9928] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6
[ 227.942034][ T9928] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=0, run fsck to fix.
[ 227.977076][ T9976] netlink: 40 bytes leftover after parsing attributes in process `syz.0.1924'.
[ 228.014976][ T9974] loop3: detected capacity change from 0 to 2048
[ 228.099128][ T9974] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 228.190842][ T9] usb 3-1: new high-speed USB device number 5 using dummy_hcd
[ 228.430858][ T9] usb 3-1: Using ep0 maxpacket: 16
[ 228.441935][ T9] usb 3-1: config 0 has an invalid interface number: 132 but max is 0
[ 228.458906][ T9] usb 3-1: config 0 has no interface number 0
[ 228.501487][ T9] usb 3-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[ 228.530332][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 228.538854][ T9] usb 3-1: Product: syz
[ 228.565264][ T9] usb 3-1: Manufacturer: syz
[ 228.586509][ T9] usb 3-1: SerialNumber: syz
[ 228.612736][ T9] usb 3-1: config 0 descriptor??
[ 228.627610][ T9] hub 3-1:0.132: bad descriptor, ignoring hub
[ 228.636538][ T9] hub: probe of 3-1:0.132 failed with error -5
[ 228.666822][ T9] input: bcm5974 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.132/input/input12
[ 228.691831][ T9987] bridge0: port 1(netdevsim0) entered blocking state
[ 228.698990][ T9987] bridge0: port 1(netdevsim0) entered disabled state
[ 228.732198][ T9987] netdevsim netdevsim0 netdevsim0: entered allmulticast mode
[ 228.774450][ T9987] netdevsim netdevsim0 netdevsim0: entered promiscuous mode
[ 228.808858][ T9987] bridge0: port 1(netdevsim0) entered blocking state
[ 228.816095][ T9987] bridge0: port 1(netdevsim0) entered forwarding state
[ 228.882691][ T9988] loop3: detected capacity change from 0 to 4096
[ 229.046633][ T9988] ntfs: volume version 3.1.
[ 230.007097][ T5885] usb 3-1: USB disconnect, device number 5
[ 231.069467][T10064] ubi31: attaching mtd0
[ 231.088740][T10064] ubi31: scanning is finished
[ 231.100025][T10064] ubi31: empty MTD device detected
[ 231.221640][T10064] ubi31: attached mtd0 (name "mtdram test device", size 0 MiB)
[ 231.256179][T10064] ubi31: PEB size: 4096 bytes (4 KiB), LEB size: 3968 bytes
[ 231.266314][T10064] ubi31: min./max. I/O unit sizes: 1/64, sub-page size 1
[ 231.284234][T10071] netlink: 'syz.0.1971': attribute type 1 has an invalid length.
[ 231.303870][T10064] ubi31: VID header offset: 64 (aligned 64), data offset: 128
[ 231.323970][T10064] ubi31: good PEBs: 32, bad PEBs: 0, corrupted PEBs: 0
[ 231.346235][T10064] ubi31: user volume: 0, internal volumes: 1, max. volumes count: 23
[ 231.370587][T10064] ubi31: max/mean erase counter: 0/0, WL threshold: 4096, image sequence number: 1618302663
[ 231.410582][T10064] ubi31: available PEBs: 28, total reserved PEBs: 4, PEBs reserved for bad PEB handling: 0
[ 231.441119][T10069] ubi31: background thread "ubi_bgt31d" started, PID 10069
[ 232.443071][T10104] netlink: 'syz.3.1987': attribute type 8 has an invalid length.
[ 232.455701][T10104] netlink: 199836 bytes leftover after parsing attributes in process `syz.3.1987'.
[ 232.494724][T10106] netlink: 'syz.1.1988': attribute type 2 has an invalid length.
[ 232.739635][T10112] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1991'.
[ 232.800649][T10112] netlink: 24 bytes leftover after parsing attributes in process `syz.1.1991'.
[ 232.973114][T10119] loop3: detected capacity change from 0 to 64
[ 233.237153][T10122] loop1: detected capacity change from 0 to 4096
[ 233.255968][T10122] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 233.312311][ C1] sd 0:0:1:0: [sda] tag#2255 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 233.322999][ C1] sd 0:0:1:0: [sda] tag#2255 CDB: Read(6) 08 00 9f d1 fe de
[ 233.511337][T10122] ntfs3: loop1: failed to convert "c46c" to iso8859-1
[ 234.164665][T10152] netlink: 'syz.1.2012': attribute type 9 has an invalid length.
[ 234.179418][T10154] loop2: detected capacity change from 0 to 256
[ 234.179585][T10152] netlink: 'syz.1.2012': attribute type 7 has an invalid length.
[ 234.220722][T10156] netlink: 20 bytes leftover after parsing attributes in process `syz.0.2013'.
[ 234.240561][T10152] netlink: 'syz.1.2012': attribute type 8 has an invalid length.
[ 234.257726][T10154] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x905a013b, utbl_chksum : 0xe619d30d)
[ 234.342437][T10158] loop3: detected capacity change from 0 to 256
[ 234.982846][T10174] overlayfs: overlapping lowerdir path
[ 234.989307][ C1] sd 0:0:1:0: [sda] tag#2276 FAILED Result: hostbyte=DID_ERROR driverbyte=DRIVER_OK cmd_age=0s
[ 234.999821][ C1] sd 0:0:1:0: [sda] tag#2276 CDB: Read(6) 08 00 9f d1 fe de
[ 235.208469][T10184] smb3: Unexpected value for 'rdma'
[ 235.365841][T10190] loop2: detected capacity change from 0 to 64
[ 235.567436][T10192] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2039'.
[ 235.576901][T10192] netlink: 172 bytes leftover after parsing attributes in process `syz.0.2039'.
[ 236.145388][T10210] netlink: 'syz.1.2038': attribute type 9 has an invalid length.
[ 236.567012][ T9] usb 1-1: new high-speed USB device number 5 using dummy_hcd
[ 236.776835][ T9] usb 1-1: Using ep0 maxpacket: 8
[ 236.790089][ T9] usb 1-1: config 0 has too many interfaces: 65, using maximum allowed: 32
[ 236.809762][ T9] usb 1-1: config 0 has an invalid interface number: 150 but max is 64
[ 236.826593][ T9] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 236.863217][ T9] usb 1-1: config 0 has 2 interfaces, different from the descriptor's value: 65
[ 236.881528][ T9] usb 1-1: config 0 has no interface number 0
[ 236.893683][ T9] usb 1-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 236.961596][ T9] usb 1-1: config 0 interface 150 has no altsetting 0
[ 236.969395][ T9] usb 1-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[ 236.979077][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 237.012782][ T9] usb 1-1: config 0 descriptor??
[ 237.213761][T10242] loop3: detected capacity change from 0 to 4096
[ 237.251560][T10242] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[ 237.394400][T10242] ntfs3: loop3: failed to convert "c46c" to maccroatian
[ 237.578405][ T5887] usb 1-1: USB disconnect, device number 5
[ 237.979037][ T5102] Bluetooth: hci0: unexpected event for opcode 0x1005
[ 238.125132][T10270] veth3: entered promiscuous mode
[ 238.143836][T10270] veth3: entered allmulticast mode
[ 238.683720][T10292] tmpfs: Bad value for 'mpol'
[ 239.000549][ T27] usb 1-1: new high-speed USB device number 6 using dummy_hcd
[ 239.051183][ T23] usb 3-1: new high-speed USB device number 6 using dummy_hcd
[ 239.200703][ T27] usb 1-1: Using ep0 maxpacket: 16
[ 239.208335][ T27] usb 1-1: config 0 has an invalid interface number: 132 but max is 0
[ 239.214173][T10312] loop3: detected capacity change from 0 to 1024
[ 239.221800][ T27] usb 1-1: config 0 has no interface number 0
[ 239.242118][T10312] EXT4-fs: Ignoring removed bh option
[ 239.247630][T10312] EXT4-fs: inline encryption not supported
[ 239.254667][ T23] usb 3-1: Using ep0 maxpacket: 8
[ 239.263364][ T27] usb 1-1: New USB device found, idVendor=05ac, idProduct=0291, bcdDevice=43.25
[ 239.273384][ T23] usb 3-1: config 0 has too many interfaces: 65, using maximum allowed: 32
[ 239.290794][ T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 239.298853][ T27] usb 1-1: Product: syz
[ 239.303224][ T23] usb 3-1: config 0 has an invalid interface number: 150 but max is 64
[ 239.321974][ T23] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 239.335183][T10312] EXT4-fs (loop3): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 239.336134][ T27] usb 1-1: Manufacturer: syz
[ 239.360202][ T23] usb 3-1: config 0 has 2 interfaces, different from the descriptor's value: 65
[ 239.363240][T10312] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[ 239.369435][ T27] usb 1-1: SerialNumber: syz
[ 239.382995][ T23] usb 3-1: config 0 has no interface number 0
[ 239.389173][ T23] usb 3-1: config 0 interface 150 altsetting 1 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 239.405909][ T27] usb 1-1: config 0 descriptor??
[ 239.411467][ T23] usb 3-1: config 0 interface 150 has no altsetting 0
[ 239.418889][ T23] usb 3-1: New USB device found, idVendor=1395, idProduct=0300, bcdDevice=81.75
[ 239.420149][ T27] hub 1-1:0.132: bad descriptor, ignoring hub
[ 239.437379][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 239.437727][T10312] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 2: comm syz.3.2090: lblock 2 mapped to illegal pblock 2 (length 1)
[ 239.445554][ T27] hub: probe of 1-1:0.132 failed with error -5
[ 239.477038][T10312] Quota error (device loop3): qtree_write_dquot: dquota write failed
[ 239.488532][ T23] usb 3-1: config 0 descriptor??
[ 239.498551][ T27] input: bcm5974 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.132/input/input13
[ 239.515160][T10312] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 48: comm syz.3.2090: lblock 0 mapped to illegal pblock 48 (length 1)
[ 239.575079][T10312] Quota error (device loop3): v2_write_file_info: Can't write info structure
[ 239.593191][T10312] EXT4-fs error (device loop3): ext4_acquire_dquot:6940: comm syz.3.2090: Failed to acquire dquot type 0
[ 239.608060][T10312] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[ 239.635032][T10312] EXT4-fs error (device loop3): ext4_evict_inode:252: inode #11: comm syz.3.2090: mark_inode_dirty error
[ 239.673927][T10312] EXT4-fs warning (device loop3): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[ 239.697698][T10312] EXT4-fs (loop3): 1 orphan inode deleted
[ 239.707368][T10312] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 239.721063][ T134] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:5: lblock 1 mapped to illegal pblock 1 (length 1)
[ 239.784647][ T134] Quota error (device loop3): remove_tree: Can't read quota data block 1
[ 239.819825][ T134] EXT4-fs error (device loop3): ext4_release_dquot:6976: comm kworker/u4:5: Failed to release dquot type 0
[ 239.823709][T10312] EXT4-fs error (device loop3): ext4_map_blocks:608: inode #3: block 1: comm syz.3.2090: lblock 1 mapped to illegal pblock 1 (length 1)
[ 239.864009][T10312] Quota error (device loop3): find_next_id: Can't read quota tree block 1
[ 239.928414][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 239.970767][ T5788] EXT4-fs error (device loop3): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 239.992903][ T5788] EXT4-fs error (device loop3) in ext4_reserve_inode_write:5902: Corrupt filesystem
[ 240.005934][ T5788] EXT4-fs error (device loop3): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[ 240.023214][ T27] usb 3-1: USB disconnect, device number 6
[ 240.082084][ T2127] usb 1-1: USB disconnect, device number 6
[ 240.288032][T10327] loop1: detected capacity change from 0 to 256
[ 240.301730][T10327] exfat: Deprecated parameter 'namecase'
[ 240.307531][T10327] exfat: Deprecated parameter 'utf8'
[ 240.361692][T10327] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d)
[ 240.452374][T10327] tmpfs: Bad value for 'grpquota_block_hardlimit'
[ 241.348621][T10361] loop2: detected capacity change from 0 to 256
[ 241.990619][ T9] usb 3-1: new high-speed USB device number 7 using dummy_hcd
[ 242.211504][ T9] usb 3-1: Using ep0 maxpacket: 8
[ 242.227344][ T9] usb 3-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a
[ 242.252062][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 242.260131][ T9] usb 3-1: Product: syz
[ 242.290175][ T9] usb 3-1: Manufacturer: syz
[ 242.304226][ T9] usb 3-1: SerialNumber: syz
[ 242.341729][ T9] usb 3-1: config 0 descriptor??
[ 242.350278][ T9] gspca_main: sq930x-2.14.0 probing 2770:930c
[ 242.473918][T10399] cgroup: Unexpected value for 'cpuset_v2_mode'
[ 242.701262][ T5102] Bluetooth: hci0: unexpected event for opcode 0x0c22
[ 242.785831][ T9] gspca_sq930x: ucbus_write failed -71
[ 242.960842][ T5885] usb 4-1: new high-speed USB device number 11 using dummy_hcd
[ 243.030480][ T9] gspca_sq930x: Sensor ov9630 not yet treated
[ 243.036705][ T9] sq930x: probe of 3-1:0.0 failed with error -22
[ 243.094958][ T9] usb 3-1: USB disconnect, device number 7
[ 243.170684][ T5885] usb 4-1: Using ep0 maxpacket: 8
[ 243.182930][ T5885] usb 4-1: unable to get BOS descriptor or descriptor too short
[ 243.209001][ T5885] usb 4-1: config 8 interface 0 altsetting 7 bulk endpoint 0x83 has invalid maxpacket 255
[ 243.228765][ T5885] usb 4-1: config 8 interface 0 has no altsetting 0
[ 243.242182][ T5885] usb 4-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=6a.e5
[ 243.257018][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 243.265242][ T5885] usb 4-1: Product: syz
[ 243.269632][ T5885] usb 4-1: Manufacturer: syz
[ 243.279751][ T5885] usb 4-1: SerialNumber: syz
[ 243.289472][T10401] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 243.390703][ T5835] usb 2-1: new full-speed USB device number 11 using dummy_hcd
[ 243.563752][ T5885] usb 4-1: Quirk or no altest; falling back to MIDI 1.0
[ 243.588023][ T5885] usb 4-1: selecting invalid altsetting 0
[ 243.604499][ T5835] usb 2-1: config 0 has an invalid interface number: 235 but max is 0
[ 243.624475][ T5835] usb 2-1: config 0 has no interface number 0
[ 243.640027][ T5835] usb 2-1: config 0 interface 235 altsetting 16 endpoint 0x5 has invalid wMaxPacketSize 0
[ 243.664806][ T5835] usb 2-1: config 0 interface 235 has no altsetting 0
[ 243.678677][ T5835] usb 2-1: New USB device found, idVendor=06cd, idProduct=0112, bcdDevice=3e.18
[ 243.697689][ T5885] usb 4-1: USB disconnect, device number 11
[ 243.704870][ T5835] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 243.729377][ T5835] usb 2-1: Product: syz
[ 243.740439][ T5835] usb 2-1: Manufacturer: syz
[ 243.745103][ T5835] usb 2-1: SerialNumber: syz
[ 243.784201][ T5835] usb 2-1: config 0 descriptor??
[ 243.815614][ T5835] keyspan 2-1:0.235: Keyspan 1 port adapter converter detected
[ 243.845533][ T5835] keyspan 2-1:0.235: found no endpoint descriptor for endpoint 87
[ 243.891610][ T5835] keyspan 2-1:0.235: found no endpoint descriptor for endpoint 7
[ 243.905825][ T5835] keyspan 2-1:0.235: found no endpoint descriptor for endpoint 81
[ 243.914641][ T5835] keyspan 2-1:0.235: found no endpoint descriptor for endpoint 1
[ 243.941163][ T5835] keyspan 2-1:0.235: found no endpoint descriptor for endpoint 85
[ 243.944129][T10432] udevd[10432]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:8.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 243.973274][ T5835] usb 2-1: Keyspan 1 port adapter converter now attached to ttyUSB0
[ 244.114514][ T5835] usb 2-1: USB disconnect, device number 11
[ 244.149718][ T5835] keyspan_1 ttyUSB0: Keyspan 1 port adapter converter now disconnected from ttyUSB0
[ 244.196549][ T5835] keyspan 2-1:0.235: device disconnected
[ 244.228287][T10440] netlink: 'syz.2.2152': attribute type 21 has an invalid length.
[ 245.465952][T10480] loop2: detected capacity change from 0 to 1024
[ 245.474394][T10480] EXT4-fs: Ignoring removed bh option
[ 245.479883][T10480] EXT4-fs: inline encryption not supported
[ 245.517168][T10480] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (4096), stripe is disabled
[ 245.537096][T10480] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=c80ce018, mo2=0000]
[ 245.623509][T10480] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 2: comm syz.2.2171: lblock 2 mapped to illegal pblock 2 (length 1)
[ 245.709437][T10480] Quota error (device loop2): qtree_write_dquot: dquota write failed
[ 245.732711][T10480] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 48: comm syz.2.2171: lblock 0 mapped to illegal pblock 48 (length 1)
[ 245.771778][T10480] Quota error (device loop2): v2_write_file_info: Can't write info structure
[ 245.811972][T10480] EXT4-fs error (device loop2): ext4_acquire_dquot:6940: comm syz.2.2171: Failed to acquire dquot type 0
[ 245.832456][T10480] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[ 245.850848][T10480] EXT4-fs error (device loop2): ext4_evict_inode:252: inode #11: comm syz.2.2171: mark_inode_dirty error
[ 245.863067][T10480] EXT4-fs warning (device loop2): ext4_evict_inode:255: couldn't mark inode dirty (err -117)
[ 245.877391][T10480] EXT4-fs (loop2): 1 orphan inode deleted
[ 245.886039][T10480] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 245.931835][ T2913] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm kworker/u4:6: lblock 1 mapped to illegal pblock 1 (length 1)
[ 245.980121][T10462] loop1: detected capacity change from 0 to 32768
[ 245.990568][ T2913] Quota error (device loop2): remove_tree: Can't read quota data block 1
[ 245.999080][ T2913] EXT4-fs error (device loop2): ext4_release_dquot:6976: comm kworker/u4:6: Failed to release dquot type 0
[ 246.006564][T10480] EXT4-fs error (device loop2): ext4_map_blocks:608: inode #3: block 1: comm syz.2.2171: lblock 1 mapped to illegal pblock 1 (length 1)
[ 246.072494][T10480] Quota error (device loop2): find_next_id: Can't read quota tree block 1
[ 246.096288][T10462] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 246.247600][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 246.344772][ T5792] EXT4-fs error (device loop2): __ext4_get_inode_loc:4483: comm syz-executor: Invalid inode table block 1 in block_group 0
[ 246.388401][ T5792] EXT4-fs error (device loop2) in ext4_reserve_inode_write:5902: Corrupt filesystem
[ 246.411089][ T5792] EXT4-fs error (device loop2): ext4_quota_off:7224: inode #3: comm syz-executor: mark_inode_dirty error
[ 246.469313][T10462] XFS (loop1): Ending clean mount
[ 246.711158][ T5783] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 247.102210][T10524] vlan0: entered promiscuous mode
[ 248.198859][T10564] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2204'.
[ 248.479801][T10576] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[ 249.270843][T10605] netlink: 'syz.3.2223': attribute type 2 has an invalid length.
[ 249.278643][T10605] netlink: 723 bytes leftover after parsing attributes in process `syz.3.2223'.
[ 250.264479][T10634] 8021q: adding VLAN 0 to HW filter on device bond0
[ 250.286627][T10634] bond0: (slave ip6tnl0): The slave device specified does not support setting the MAC address
[ 250.313650][T10634] bond0: (slave ip6tnl0): Error -95 calling set_mac_address
[ 250.802142][T10654] loop3: detected capacity change from 0 to 512
[ 250.850948][T10654] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended
[ 250.868372][T10658] loop1: detected capacity change from 0 to 256
[ 250.886313][T10654] EXT4-fs (loop3): warning: checktime reached, running e2fsck is recommended
[ 250.944083][T10654] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=a84fc01c, mo2=0102]
[ 250.977589][T10658] exfat: Deprecated parameter 'namecase'
[ 251.030605][T10654] System zones: 0-2, 18-18, 34-34
[ 251.058690][T10654] EXT4-fs error (device loop3): ext4_orphan_get:1399: inode #15: comm syz.3.2243: iget: bad i_size value: 360287970189639680
[ 251.116708][T10658] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xeb999a00, utbl_chksum : 0xe619d30d)
[ 251.149241][T10654] EXT4-fs error (device loop3): ext4_orphan_get:1404: comm syz.3.2243: couldn't read orphan inode 15 (err -117)
[ 251.228386][T10654] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 251.352923][T10654] EXT4-fs error (device loop3): ext4_find_dest_de:2115: inode #2: block 3: comm syz.3.2243: bad entry in directory: inode out of bounds - offset=0, inode=63, rec_len=12, size=4096 fake=1
[ 251.442934][T10671] loop2: detected capacity change from 0 to 8
[ 251.450250][T10671] MTD: Attempt to mount non-MTD device "/dev/loop2"
[ 251.537153][T10434] udevd[10434]: incorrect cramfs checksum on /dev/loop2
[ 251.572223][ T5788] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 251.597383][T10671] cramfs: Error -5 while decompressing!
[ 251.627768][ T6090] udevd[6090]: incorrect cramfs checksum on /dev/loop2
[ 251.639962][T10671] cramfs: ffffffff96fda308(26)->ffff888054bef000(4096)
[ 251.664863][T10671] cramfs: Error -3 while decompressing!
[ 251.700507][T10671] cramfs: ffffffff96fda322(26)->ffff88806d722000(4096)
[ 251.761713][T10671] cramfs: Error -3 while decompressing!
[ 251.830482][T10671] cramfs: ffffffff96fda33c(16)->ffff88806d723000(4096)
[ 251.837582][T10671] cramfs: Error -5 while decompressing!
[ 251.900699][T10671] cramfs: ffffffff96fda308(26)->ffff888054bef000(4096)
[ 251.923354][ T28] audit: type=1800 audit(1756821821.521:63): pid=10671 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.2248" name="file2" dev="loop2" ino=348 res=0 errno=0
[ 251.943077][ C0] vkms_vblank_simulate: vblank timer overrun
[ 252.726802][T10711] netlink: 'syz.3.2264': attribute type 29 has an invalid length.
[ 252.824191][T10715] tmpfs: User quota block hardlimit too large.
[ 253.972063][T10762] program syz.0.2284 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 254.320627][ T5887] usb 3-1: new high-speed USB device number 8 using dummy_hcd
[ 254.429554][T10780] loop3: detected capacity change from 0 to 1024
[ 254.513742][ T5887] usb 3-1: config 0 has no interfaces?
[ 254.523097][ T5887] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 254.552333][ T5887] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 254.600918][ T5887] usb 3-1: Product: syz
[ 254.617296][ T5887] usb 3-1: Manufacturer: syz
[ 254.636875][ T5887] usb 3-1: SerialNumber: syz
[ 254.661690][ T11] hfsplus: b-tree write err: -5, ino 4
[ 254.667743][ T5887] r8152-cfgselector 3-1: config 0 descriptor??
[ 254.941340][ T5887] usbip-host 3-1: 3-1 is not in match_busid table... skip!
[ 254.980341][T10794] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2296'.
[ 255.180890][ T5887] usb 3-1: USB disconnect, device number 8
[ 255.260590][T10802] mac80211_hwsim hwsim6 wlan1: entered allmulticast mode
[ 255.943034][T10818] netlink: 'syz.3.2308': attribute type 10 has an invalid length.
[ 255.979566][T10818] macvlan0: entered promiscuous mode
[ 255.990555][T10818] macvlan0: entered allmulticast mode
[ 256.025781][ T1287] ieee802154 phy0 wpan0: encryption failed: -22
[ 256.027731][T10818] veth1_vlan: entered allmulticast mode
[ 256.032637][ T1287] ieee802154 phy1 wpan1: encryption failed: -22
[ 256.069685][T10818] bond0: (slave macvlan0): Enslaving as an active interface with an up link
[ 256.333130][T10812] loop1: detected capacity change from 0 to 32768
[ 256.355385][T10812] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.2305 (10812)
[ 256.388534][T10812] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 256.405376][T10812] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm
[ 256.416219][T10812] BTRFS info (device loop1): force clearing of disk cache
[ 256.449264][T10812] BTRFS info (device loop1): enabling auto defrag
[ 256.470795][T10812] BTRFS info (device loop1): max_inline at 0
[ 256.479691][T10812] BTRFS info (device loop1): enabling disk space caching
[ 256.510032][T10812] BTRFS info (device loop1): disk space caching is enabled
[ 256.652505][T10812] BTRFS info (device loop1): enabling ssd optimizations
[ 256.710441][T10812] BTRFS info (device loop1): auto enabling async discard
[ 256.775881][T10812] BTRFS info (device loop1): rebuilding free space tree
[ 256.840290][T10812] BTRFS info (device loop1): disabling free space tree
[ 256.857627][T10812] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1)
[ 256.888404][T10812] BTRFS info (device loop1): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2)
[ 257.278993][ T5783] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 257.457594][T10864] loop3: detected capacity change from 0 to 128
[ 257.511898][T10864] UDF-fs: error (device loop3): udf_read_tagged: read failed, block=256, location=256
[ 257.551862][ T6090] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 11 /dev/loop1 scanned by udevd (6090)
[ 257.909121][T10876] loop2: detected capacity change from 0 to 256
[ 257.921248][T10874] SET target dimension over the limit!
[ 258.124158][T10876] FAT-fs (loop2): Directory bread(block 64) failed
[ 258.158396][T10876] FAT-fs (loop2): Directory bread(block 65) failed
[ 258.167676][T10881] xt_bpf: check failed: parse error
[ 258.190843][T10876] FAT-fs (loop2): Directory bread(block 66) failed
[ 258.197463][T10876] FAT-fs (loop2): Directory bread(block 67) failed
[ 258.270666][T10876] FAT-fs (loop2): Directory bread(block 68) failed
[ 258.277280][T10876] FAT-fs (loop2): Directory bread(block 69) failed
[ 258.342440][T10876] FAT-fs (loop2): Directory bread(block 70) failed
[ 258.349057][T10876] FAT-fs (loop2): Directory bread(block 71) failed
[ 258.390606][T10876] FAT-fs (loop2): Directory bread(block 72) failed
[ 258.423027][T10876] FAT-fs (loop2): Directory bread(block 73) failed
[ 258.888681][T10898] CIFS: VFS: Malformed UNC in devname
[ 259.005378][T10903] loop2: detected capacity change from 0 to 2048
[ 259.057077][T10903] UDF-fs: INFO Mounting volume 'Li�uxUDF', timestamp 2022/11/22 14:59 (1000)
[ 259.420572][T10913] x_tables: duplicate entry at hook 2
[ 259.520734][T10919] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2350'.
[ 259.529800][T10919] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2350'.
[ 259.574708][T10919] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2350'.
[ 259.608588][T10919] netlink: 60 bytes leftover after parsing attributes in process `syz.1.2350'.
[ 259.629491][T10919] netlink: 104 bytes leftover after parsing attributes in process `syz.1.2350'.
[ 259.897550][T10933] tmpfs: Bad value for 'mpol'
[ 260.325138][T10947] afs: Bad value for 'source'
[ 260.541620][T10951] loop3: detected capacity change from 0 to 128
[ 260.619941][T10951] sysv_free_block: flc_count > flc_size
[ 260.669591][T10951] sysv_free_block: flc_count > flc_size
[ 260.694091][T10951] sysv_free_block: flc_count > flc_size
[ 260.699707][T10951] sysv_free_block: flc_count > flc_size
[ 260.730560][T10951] sysv_free_block: flc_count > flc_size
[ 260.736717][T10951] sysv_free_block: flc_count > flc_size
[ 260.750758][T10951] sysv_free_block: flc_count > flc_size
[ 260.756461][T10951] sysv_free_block: flc_count > flc_size
[ 260.786874][T10951] sysv_free_block: flc_count > flc_size
[ 260.801931][T10951] sysv_free_block: flc_count > flc_size
[ 260.832239][T10951] sysv_free_inode: inode 0,1,2 or nonexistent inode
[ 261.501543][T10976] tmpfs: Bad value for 'mpol'
[ 262.268085][T11005] 8021q: adding VLAN 0 to HW filter on device bond3
[ 262.807448][T11028] netlink: 12 bytes leftover after parsing attributes in process `syz.3.2404'.
[ 263.054884][T11038] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2409'.
[ 263.270638][ T2127] usb 3-1: new high-speed USB device number 9 using dummy_hcd
[ 263.471146][ T2127] usb 3-1: Using ep0 maxpacket: 8
[ 263.478722][ T2127] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 263.506066][ T2127] usb 3-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 263.507553][T11056] netlink: 156 bytes leftover after parsing attributes in process `syz.0.2416'.
[ 263.518349][ T2127] usb 3-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 263.535804][ T2127] usb 3-1: Product: syz
[ 263.540032][ T2127] usb 3-1: Manufacturer: syz
[ 263.552730][ T2127] usb 3-1: SerialNumber: syz
[ 263.811269][ T2127] usb 3-1: Invalid connection information received from device
[ 263.838518][T11065] comedi comedi4: bad chanlist[0]=0x000040e3 chan=16611 range length=2
[ 263.969385][T11069] 8021q: VLANs not supported on ipvlan1
[ 264.035541][ T2127] usb 3-1: USB disconnect, device number 9
[ 264.354311][T11081] comedi comedi2: pcmda12: I/O port conflict (0x8,16)
[ 264.786299][T11095] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2436'.
[ 265.018362][T11105] x_tables: duplicate underflow at hook 3
[ 265.137751][T11107] netlink: 16 bytes leftover after parsing attributes in process `syz.3.2444'.
[ 266.067882][T11142] loop2: detected capacity change from 0 to 256
[ 266.173972][T11142] FAT-fs (loop2): Directory bread(block 64) failed
[ 266.186515][T11142] FAT-fs (loop2): Directory bread(block 65) failed
[ 266.206694][T11142] FAT-fs (loop2): Directory bread(block 66) failed
[ 266.231503][T11142] FAT-fs (loop2): Directory bread(block 67) failed
[ 266.248593][T11142] FAT-fs (loop2): Directory bread(block 68) failed
[ 266.264229][T11142] FAT-fs (loop2): Directory bread(block 69) failed
[ 266.291082][T11142] FAT-fs (loop2): Directory bread(block 70) failed
[ 266.312815][T11142] FAT-fs (loop2): Directory bread(block 71) failed
[ 266.334684][T11142] FAT-fs (loop2): Directory bread(block 72) failed
[ 266.356247][T11142] FAT-fs (loop2): Directory bread(block 73) failed
[ 266.911479][T11155] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 266.942333][T11140] loop3: detected capacity change from 0 to 32768
[ 266.968826][T11140] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[ 267.313444][ T6090] BTRFS error: device /dev/loop3 already registered with a higher generation, found 8 expect 11
[ 267.603626][T11177] netlink: 20 bytes leftover after parsing attributes in process `syz.2.2474'.
[ 267.871071][ T5835] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 267.936828][T11187] netdevsim netdevsim3 netdevsim3: entered allmulticast mode
[ 267.972602][T11186] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: invalid value (0)
[ 268.000046][T11186] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: allowed values 1 - 65535
[ 268.092184][ T12] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 268.479584][T11204] (unnamed net_device) (uninitialized): option min_links: invalid value (18446744071562067969)
[ 268.533069][T11204] (unnamed net_device) (uninitialized): option min_links: allowed values 0 - 2147483647
[ 268.689595][T11211] netlink: 'syz.2.2492': attribute type 8 has an invalid length.
[ 268.900678][ T5885] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 269.079040][T11226] netlink: 'syz.0.2499': attribute type 5 has an invalid length.
[ 269.148417][ T2913] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 269.190684][ T2913] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 269.293502][ T5835] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 269.710635][ T5885] usb 4-1: new low-speed USB device number 12 using dummy_hcd
[ 269.906559][T11258] mac80211_hwsim hwsim5 wlan0: entered promiscuous mode
[ 269.923796][ T5885] usb 4-1: config index 0 descriptor too short (expected 1307, got 27)
[ 269.924305][T11258] A link change request failed with some changes committed already. Interface wlan0 may have been left with an inconsistent configuration, please check.
[ 269.939557][ T5885] usb 4-1: config 0 has an invalid interface number: 0 but max is -1
[ 270.001139][ T5885] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 270.029835][ T5885] usb 4-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[ 270.061707][ T5885] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[ 270.092164][ T5885] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[ 270.094826][T11262] netlink: 404 bytes leftover after parsing attributes in process `syz.0.2517'.
[ 270.131741][ T5885] usb 4-1: string descriptor 0 read error: -22
[ 270.138126][ T5885] usb 4-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[ 270.144749][T11262] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2517'.
[ 270.164496][ T5885] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 270.167543][T11262] netlink: 28 bytes leftover after parsing attributes in process `syz.0.2517'.
[ 270.187692][ T5885] usb 4-1: config 0 descriptor??
[ 270.191025][T11262] netlink: 72 bytes leftover after parsing attributes in process `syz.0.2517'.
[ 270.201448][T11241] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 270.231493][ T5885] hub 4-1:0.0: bad descriptor, ignoring hub
[ 270.237484][ T5885] hub: probe of 4-1:0.0 failed with error -5
[ 270.280597][ T5885] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/input/input14
[ 270.371953][ C0] usb_acecad 4-1:0.0: can't resubmit intr, dummy_hcd.3-1/input0, status -1
[ 270.659369][ T5885] usb 4-1: USB disconnect, device number 12
[ 270.665691][ C0] usb_acecad 4-1:0.0: can't resubmit intr, dummy_hcd.3-1/input0, status -19
[ 270.992836][T11286] loop1: detected capacity change from 0 to 512
[ 271.018666][T11286] EXT4-fs error (device loop1): ext4_orphan_get:1399: inode #15: comm syz.1.2529: casefold flag without casefold feature
[ 271.068975][T11286] EXT4-fs error (device loop1): ext4_orphan_get:1404: comm syz.1.2529: couldn't read orphan inode 15 (err -117)
[ 271.154072][T11286] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 271.342635][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 272.606916][T11336] x_tables: unsorted underflow at hook 4
[ 273.409109][ T28] audit: type=1326 audit(1756821843.021:64): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11367 comm="syz.0.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 273.460609][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 273.501347][ T28] audit: type=1326 audit(1756821843.061:65): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11367 comm="syz.0.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 273.594490][ T28] audit: type=1326 audit(1756821843.061:66): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11367 comm="syz.0.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=264 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 273.666974][ T28] audit: type=1326 audit(1756821843.061:67): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11367 comm="syz.0.2568" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f3bbf98ebe9 code=0x7ffc0000
[ 274.912093][T11416] xt_TCPMSS: Only works on TCP SYN packets
[ 274.949225][T11418] __vm_enough_memory: pid: 11418, comm: syz.2.2593, not enough memory for the allocation
[ 275.761893][ T28] audit: type=1326 audit(1756821845.381:68): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11445 comm="syz.2.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 275.821344][ T28] audit: type=1326 audit(1756821845.381:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11445 comm="syz.2.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 275.899497][ T28] audit: type=1326 audit(1756821845.381:70): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11445 comm="syz.2.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7f405f18d550 code=0x7ffc0000
[ 275.943718][ T28] audit: type=1326 audit(1756821845.381:71): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11445 comm="syz.2.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f405f190417 code=0x7ffc0000
[ 275.979438][ T28] audit: type=1326 audit(1756821845.381:72): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11445 comm="syz.2.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f405f18ebe9 code=0x7ffc0000
[ 276.031681][ T28] audit: type=1326 audit(1756821845.381:73): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11445 comm="syz.2.2608" exe="/root/syz-executor" sig=0 arch=c000003e syscall=308 compat=0 ip=0x7f405f190417 code=0x7ffc0000
[ 276.602683][ T5102] Bluetooth: hci1: unexpected event for opcode 0x2029
[ 277.633177][T11494] loop1: detected capacity change from 0 to 4096
[ 277.699005][T11494] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 277.712315][T11499] loop2: detected capacity change from 0 to 512
[ 277.720438][T11501] netlink: 'syz.3.2633': attribute type 1 has an invalid length.
[ 277.751815][T11499] EXT4-fs (loop2): revision level too high, forcing read-only mode
[ 277.778376][T11499] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8802c01c, mo2=0002]
[ 277.787106][T11499] EXT4-fs (loop2): orphan cleanup on readonly fs
[ 277.794803][T11499] EXT4-fs error (device loop2): ext4_orphan_get:1399: inode #13: comm syz.2.2632: iget: bad i_size value: 12154761577498
[ 277.808395][T11499] EXT4-fs error (device loop2): ext4_orphan_get:1404: comm syz.2.2632: couldn't read orphan inode 13 (err -117)
[ 277.833074][T11499] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 277.934798][T11494] ntfs3: loop1: Failed to initialize $Secure (-22).
[ 278.001675][T11499] EXT4-fs warning (device loop2): dx_probe:893: inode #2: comm syz.2.2632: dx entry: limit 65535 != root limit 120
[ 278.030780][T11499] EXT4-fs warning (device loop2): dx_probe:966: inode #2: comm syz.2.2632: Corrupt directory, running e2fsck is recommended
[ 278.144258][ T5792] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 279.527528][T11556] netlink: 52 bytes leftover after parsing attributes in process `syz.0.2660'.
[ 280.159609][T11580] netlink: 'syz.2.2672': attribute type 3 has an invalid length.
[ 280.662902][ T5102] Bluetooth: hci1: Controller not accepting commands anymore: ncmd = 0
[ 280.673001][ T5102] Bluetooth: hci1: Injecting HCI hardware error event
[ 280.682643][ T50] Bluetooth: hci1: hardware error 0x00
[ 280.867425][T11600] netlink: 44 bytes leftover after parsing attributes in process `syz.1.2682'.
[ 280.888388][T11600] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 281.660489][ T786] usb 2-1: new high-speed USB device number 12 using dummy_hcd
[ 281.851078][ T786] usb 2-1: Using ep0 maxpacket: 32
[ 281.858593][ T786] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 281.884185][ T786] usb 2-1: New USB device found, idVendor=093a, idProduct=2603, bcdDevice=cc.40
[ 281.893712][ T786] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 281.911068][ T786] usb 2-1: Product: syz
[ 281.921311][ T786] usb 2-1: Manufacturer: syz
[ 281.936250][ T786] usb 2-1: SerialNumber: syz
[ 281.949567][ T786] usb 2-1: config 0 descriptor??
[ 281.966983][ T786] gspca_main: pac7311-2.14.0 probing 093a:2603
[ 282.060537][ T5835] usb 4-1: new high-speed USB device number 13 using dummy_hcd
[ 282.260685][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 282.277601][ T5835] usb 4-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 282.291963][ T5835] usb 4-1: New USB device strings: Mfr=13, Product=2, SerialNumber=3
[ 282.310447][ T5835] usb 4-1: Product: syz
[ 282.322287][ T5835] usb 4-1: Manufacturer: syz
[ 282.328915][ T5835] usb 4-1: SerialNumber: syz
[ 282.342852][ T5835] r8152-cfgselector 4-1: config 0 descriptor??
[ 282.380081][ T786] gspca_pac7311: reg_w() failed index 0x78, value 0x40, error -71
[ 282.401108][ T786] pac7311: probe of 2-1:0.0 failed with error -71
[ 282.433825][ T786] usb 2-1: USB disconnect, device number 12
[ 282.573845][ T5835] usbip-host 4-1: 4-1 is not in match_busid table... skip!
[ 282.588017][ T12] usb 4-1: config 0 descriptor??
[ 282.778337][T11644] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2704'.
[ 282.807276][T11646] loop2: detected capacity change from 0 to 2048
[ 282.816618][ T5835] usb 4-1: USB disconnect, device number 13
[ 282.822681][ T50] Bluetooth: hci1: Opcode 0x0c03 failed: -110
[ 282.831057][ T12] usb 4-1: can't set config #0, error -71
[ 282.844685][T11646] UDF-fs: warning (device loop2): udf_load_vrs: No anchor found
[ 282.869993][T11646] UDF-fs: Scanning with blocksize 512 failed
[ 282.886896][T11646] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 283.215784][T11654] netlink: 32 bytes leftover after parsing attributes in process `syz.2.2708'.
[ 283.677147][T11671] netlink: 256 bytes leftover after parsing attributes in process `syz.0.2716'.
[ 283.701647][T11666] 8021q: adding VLAN 0 to HW filter on device bond3
[ 284.125541][T11683] syz.2.2723 uses obsolete (PF_INET,SOCK_PACKET)
[ 284.711785][T11701] tmpfs: Bad value for 'huge'
[ 285.171100][ T23] usb 3-1: new low-speed USB device number 10 using dummy_hcd
[ 285.382832][ T23] usb 3-1: config index 0 descriptor too short (expected 1307, got 27)
[ 285.401018][ T23] usb 3-1: config 0 has an invalid interface number: 0 but max is -1
[ 285.415757][ T23] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 0
[ 285.447805][ T23] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 246, using maximum allowed: 30
[ 285.469270][ T23] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x84 is Bulk; changing to Interrupt
[ 285.490756][ T23] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 246
[ 285.563941][ T23] usb 3-1: string descriptor 0 read error: -22
[ 285.570317][ T23] usb 3-1: New USB device found, idVendor=0460, idProduct=0008, bcdDevice=e2.de
[ 285.580069][ T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 285.617949][ T23] usb 3-1: config 0 descriptor??
[ 285.632428][T11705] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 285.645747][ T23] hub 3-1:0.0: bad descriptor, ignoring hub
[ 285.656567][ T23] hub: probe of 3-1:0.0 failed with error -5
[ 285.681856][ T23] input: USB Acecad 302 Tablet 0460:0008 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/input/input16
[ 286.022404][ T23] usb 3-1: USB disconnect, device number 10
[ 286.244395][T11735] loop3: detected capacity change from 0 to 4096
[ 286.282100][T11735] ntfs3: loop3: Different NTFS sector size (4096) and media sector size (512).
[ 286.403091][T11735] ntfs3: loop3: Failed to initialize $Secure (-22).
[ 286.968149][T11753] loop3: detected capacity change from 0 to 2048
[ 287.160673][T11753] NILFS error (device loop3): nilfs_check_page: bad entry in directory #2: unaligned directory entry - offset=0, inode=2, rec_len=59, name_len=1
[ 287.433453][T11768] loop1: detected capacity change from 0 to 512
[ 287.471239][T11768] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled
[ 287.518168][T11768] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 287.554136][T11768] ext4 filesystem being mounted at /652/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 288.222301][ T5783] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 288.310777][ T786] usb 3-1: new high-speed USB device number 11 using dummy_hcd
[ 288.537511][ T786] usb 3-1: Using ep0 maxpacket: 8
[ 288.555143][ T786] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 288.579210][ T786] usb 3-1: New USB device found, idVendor=0421, idProduct=798f, bcdDevice=86.54
[ 288.600464][ T786] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 288.608535][ T786] usb 3-1: Product: syz
[ 288.622105][ T786] usb 3-1: Manufacturer: syz
[ 288.627974][ T786] usb 3-1: SerialNumber: syz
[ 288.658718][ T786] usb 3-1: config 0 descriptor??
[ 288.674181][ T786] cdc_phonet 3-1:0.0: skipping garbage
[ 288.689592][ T786] cdc_phonet 3-1:0.0: invalid descriptor buffer length
[ 288.696965][ T786] cdc_phonet: probe of 3-1:0.0 failed with error -22
[ 288.940084][ T786] usb 3-1: USB disconnect, device number 11
[ 288.995118][T11825] loop1: detected capacity change from 0 to 512
[ 289.073073][ T6090] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 289.186432][T11830] ax25_connect(): syz.0.2778 uses autobind, please contact jreuter@yaina.de
[ 289.353783][T11833] loop1: detected capacity change from 0 to 1024
[ 291.141748][T11900] netlink: 180 bytes leftover after parsing attributes in process `syz.2.2813'.
[ 291.530854][T11880] loop1: detected capacity change from 0 to 32768
[ 291.603125][T11880]
[ 291.603125][T11880] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 291.603125][T11880]
[ 291.743524][T11917] mmap: syz.2.2821 (11917): VmData 37466112 exceed data ulimit 10. Update limits or use boot option ignore_rlimit_data.
[ 291.748980][ T5783]
[ 291.748980][ T5783] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 291.748980][ T5783]
[ 291.808354][ T5783]
[ 291.808354][ T5783] ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 291.808354][ T5783]
[ 291.937168][T11920] random: crng reseeded on system resumption
[ 292.160729][T11929] netlink: 'syz.0.2826': attribute type 1 has an invalid length.
[ 292.549050][T11939] ip6gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue
[ 292.743272][T11943] i2c i2c-0: Invalid block write size 252
[ 292.880883][ T23] usb 3-1: new high-speed USB device number 12 using dummy_hcd
[ 293.080606][ T23] usb 3-1: Using ep0 maxpacket: 32
[ 293.099781][ T23] usb 3-1: New USB device found, idVendor=0ac8, idProduct=0321, bcdDevice=6f.be
[ 293.119295][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 293.147091][ T23] usb 3-1: config 0 descriptor??
[ 293.169046][ T23] gspca_main: vc032x-2.14.0 probing 0ac8:0321
[ 293.269435][T11957] netlink: 12 bytes leftover after parsing attributes in process `syz.1.2840'.
[ 293.614619][ T23] gspca_vc032x: reg_w err -71
[ 293.619391][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.630596][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.636053][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.661398][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.670612][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.675967][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.701429][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.720598][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.726065][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.740933][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.750589][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.755951][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.788357][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.810501][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.815874][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.841618][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.855169][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.864855][ T23] gspca_vc032x: I2c Bus Busy Wait 00
[ 293.882682][ T23] gspca_vc032x: Unknown sensor...
[ 293.887874][ T23] vc032x: probe of 3-1:0.0 failed with error -22
[ 293.912615][ T23] usb 3-1: USB disconnect, device number 12
[ 294.111644][T11977] tmpfs: Bad value for 'mpol'
[ 294.450047][T11988] IPv6: NLM_F_CREATE should be specified when creating new route
[ 294.530857][T11991] netlink: 'syz.0.2857': attribute type 1 has an invalid length.
[ 294.791757][T12002] netlink: 209852 bytes leftover after parsing attributes in process `syz.3.2863'.
[ 295.355023][T12021] netlink: 4 bytes leftover after parsing attributes in process `syz.0.2872'.
[ 295.369163][T12021] netlink: zone id is out of range
[ 295.379683][T12021] netlink: del zone limit has 4 unknown bytes
[ 295.480547][ T23] usb 2-1: new high-speed USB device number 13 using dummy_hcd
[ 295.606743][T12029] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2876'.
[ 295.620895][T12029] netlink: 56 bytes leftover after parsing attributes in process `syz.0.2876'.
[ 295.688979][ T23] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 295.716844][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 295.741637][ T23] usb 2-1: Product: syz
[ 295.755863][ T23] usb 2-1: Manufacturer: syz
[ 295.770778][ T23] usb 2-1: SerialNumber: syz
[ 295.782761][ T23] r8152-cfgselector 2-1: config 0 descriptor??
[ 295.950602][T12039] netlink: 'syz.2.2881': attribute type 1 has an invalid length.
[ 295.971745][T12039] netlink: 224 bytes leftover after parsing attributes in process `syz.2.2881'.
[ 296.255107][ T23] r8152-cfgselector 2-1: Unknown version 0x0000
[ 296.290783][ T23] r8152-cfgselector 2-1: USB disconnect, device number 13
[ 296.778316][ T28] kauditd_printk_skb: 3 callbacks suppressed
[ 296.778334][ T28] audit: type=1326 audit(1756821866.391:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12067 comm="syz.3.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 296.853776][ T28] audit: type=1326 audit(1756821866.391:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12067 comm="syz.3.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 296.928417][ T28] audit: type=1326 audit(1756821866.391:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12067 comm="syz.3.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 296.999599][ T28] audit: type=1326 audit(1756821866.391:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12067 comm="syz.3.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 297.091902][ T28] audit: type=1326 audit(1756821866.391:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12067 comm="syz.3.2896" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8b2c98ebe9 code=0x7ffc0000
[ 297.373214][T12085] IPv6: Can't replace route, no match found
[ 297.830912][T12104] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2913'.
[ 298.515783][T12093] loop3: detected capacity change from 0 to 32768
[ 298.732857][ T5835] usb 2-1: new high-speed USB device number 14 using dummy_hcd
[ 298.900643][ C0] ip6_tunnel: ip6gretap1 xmit: Local address not yet configured!
[ 298.940735][ T5835] usb 2-1: Using ep0 maxpacket: 8
[ 298.955685][ T5835] usb 2-1: config 179 has an invalid interface number: 65 but max is 0
[ 298.970158][ T5835] usb 2-1: config 179 has no interface number 0
[ 299.002831][ T5835] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 299.024740][ T5835] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 299.046657][ T5835] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 299.070646][ T5835] usb 2-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 299.097802][ T5835] usb 2-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 299.140956][ T5835] usb 2-1: config 179 interface 65 has no altsetting 0
[ 299.158563][ T5835] usb 2-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 299.178079][ T5835] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 299.269650][ T5835] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:179.65/input/input17
[ 299.482104][T12140] loop3: detected capacity change from 0 to 1024
[ 299.622397][ T5887] usb 2-1: USB disconnect, device number 14
[ 299.630339][ T5887] xpad 2-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 300.630124][T12174] ==================================================================
[ 300.638262][T12174] BUG: KASAN: slab-use-after-free in __xfrm_state_lookup+0x6b2/0x8d0
[ 300.646375][T12174] Read of size 2 at addr ffff88805eafc922 by task syz.2.2948/12174
[ 300.654302][T12174]
[ 300.656665][T12174] CPU: 1 PID: 12174 Comm: syz.2.2948 Not tainted syzkaller #0
[ 300.664161][T12174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 300.674281][T12174] Call Trace:
[ 300.677602][T12174]
[ 300.680569][T12174] dump_stack_lvl+0x16c/0x230
[ 300.685288][T12174] ? __lock_acquire+0x7c80/0x7c80
[ 300.690341][T12174] ? show_regs_print_info+0x20/0x20
[ 300.695565][T12174] ? load_image+0x3b0/0x3b0
[ 300.700084][T12174] ? __virt_addr_valid+0x469/0x540
[ 300.705230][T12174] print_report+0xac/0x220
[ 300.709674][T12174] ? __xfrm_state_lookup+0x6b2/0x8d0
[ 300.714982][T12174] kasan_report+0x117/0x150
[ 300.719502][T12174] ? __xfrm_state_lookup+0x6b2/0x8d0
[ 300.724805][T12174] __xfrm_state_lookup+0x6b2/0x8d0
[ 300.729939][T12174] ? xfrm_state_lookup+0x1a0/0x1a0
[ 300.735076][T12174] xfrm_state_lookup+0xef/0x1a0
[ 300.739965][T12174] ? xfrm_state_lookup+0x36/0x1a0
[ 300.745014][T12174] pfkey_get+0x2a9/0x880
[ 300.749282][T12174] pfkey_sendmsg+0xbed/0x1050
[ 300.753997][T12174] ? pfkey_release+0x320/0x320
[ 300.758799][T12174] ? aa_sock_msg_perm+0x94/0x150
[ 300.763760][T12174] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 300.769074][T12174] ? security_socket_sendmsg+0x80/0xa0
[ 300.774545][T12174] ? pfkey_release+0x320/0x320
[ 300.779381][T12174] ____sys_sendmsg+0x5bf/0x950
[ 300.784194][T12174] ? __asan_memset+0x22/0x40
[ 300.788810][T12174] ? __sys_sendmsg_sock+0x30/0x30
[ 300.793853][T12174] ? __import_iovec+0x5f2/0x860
[ 300.798812][T12174] ? import_iovec+0x73/0xa0
[ 300.803400][T12174] ___sys_sendmsg+0x220/0x290
[ 300.808114][T12174] ? __sys_sendmsg+0x270/0x270
[ 300.812912][T12174] __se_sys_sendmsg+0x1a5/0x270
[ 300.817783][T12174] ? __x64_sys_sendmsg+0x80/0x80
[ 300.822748][T12174] ? lockdep_hardirqs_on+0x98/0x150
[ 300.827967][T12174] do_syscall_64+0x55/0xb0
[ 300.832496][T12174] ? clear_bhb_loop+0x40/0x90
[ 300.837188][T12174] ? clear_bhb_loop+0x40/0x90
[ 300.841878][T12174] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 300.847800][T12174] RIP: 0033:0x7f405f18ebe9
[ 300.852234][T12174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 300.872121][T12174] RSP: 002b:00007f406005e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 300.880555][T12174] RAX: ffffffffffffffda RBX: 00007f405f3c5fa0 RCX: 00007f405f18ebe9
[ 300.888537][T12174] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 300.896870][T12174] RBP: 00007f405f211e19 R08: 0000000000000000 R09: 0000000000000000
[ 300.904876][T12174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 300.912859][T12174] R13: 00007f405f3c6038 R14: 00007f405f3c5fa0 R15: 00007fff5fdb3d58
[ 300.920854][T12174]
[ 300.923879][T12174]
[ 300.926209][T12174] Allocated by task 12136:
[ 300.930625][T12174] kasan_set_track+0x4e/0x70
[ 300.935232][T12174] __kasan_slab_alloc+0x6c/0x80
[ 300.940096][T12174] slab_post_alloc_hook+0x6e/0x4d0
[ 300.945221][T12174] kmem_cache_alloc+0x11e/0x2e0
[ 300.950086][T12174] xfrm_state_alloc+0x22/0x2a0
[ 300.954857][T12174] pfkey_add+0x6e1/0x2da0
[ 300.959252][T12174] pfkey_sendmsg+0xbed/0x1050
[ 300.963944][T12174] ____sys_sendmsg+0x5bf/0x950
[ 300.968724][T12174] ___sys_sendmsg+0x220/0x290
[ 300.973429][T12174] __se_sys_sendmsg+0x1a5/0x270
[ 300.978316][T12174] do_syscall_64+0x55/0xb0
[ 300.982755][T12174] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 300.988700][T12174]
[ 300.991036][T12174] Freed by task 786:
[ 300.994934][T12174] kasan_set_track+0x4e/0x70
[ 300.999553][T12174] kasan_save_free_info+0x2e/0x50
[ 301.004597][T12174] ____kasan_slab_free+0x126/0x1e0
[ 301.009751][T12174] slab_free_freelist_hook+0x130/0x1b0
[ 301.015233][T12174] kmem_cache_free+0xf8/0x280
[ 301.019925][T12174] xfrm_state_gc_task+0x10a/0x160
[ 301.024977][T12174] process_scheduled_works+0xa45/0x15b0
[ 301.030541][T12174] worker_thread+0xa55/0xfc0
[ 301.035139][T12174] kthread+0x2fa/0x390
[ 301.039247][T12174] ret_from_fork+0x48/0x80
[ 301.043678][T12174] ret_from_fork_asm+0x11/0x20
[ 301.048472][T12174]
[ 301.050812][T12174] The buggy address belongs to the object at ffff88805eafc800
[ 301.050812][T12174] which belongs to the cache xfrm_state of size 848
[ 301.064789][T12174] The buggy address is located 290 bytes inside of
[ 301.064789][T12174] freed 848-byte region [ffff88805eafc800, ffff88805eafcb50)
[ 301.078610][T12174]
[ 301.080942][T12174] The buggy address belongs to the physical page:
[ 301.087384][T12174] page:ffffea00017abf00 refcount:1 mapcount:0 mapping:0000000000000000 index:0xffff88805eafcc00 pfn:0x5eafc
[ 301.098962][T12174] head:ffffea00017abf00 order:2 entire_mapcount:0 nr_pages_mapped:0 pincount:0
[ 301.107897][T12174] flags: 0xfff00000000840(slab|head|node=0|zone=1|lastcpupid=0x7ff)
[ 301.115883][T12174] page_type: 0xffffffff()
[ 301.120218][T12174] raw: 00fff00000000840 ffff888141a68c80 dead000000000122 0000000000000000
[ 301.128816][T12174] raw: ffff88805eafcc00 000000008010000d 00000001ffffffff 0000000000000000
[ 301.137408][T12174] page dumped because: kasan: bad access detected
[ 301.143844][T12174] page_owner tracks the page as allocated
[ 301.149662][T12174] page last allocated via order 2, migratetype Unmovable, gfp_mask 0x152820(GFP_ATOMIC|__GFP_NOWARN|__GFP_NORETRY|__GFP_COMP|__GFP_HARDWALL), pid 5876, tgid 5875 (syz.1.5), ts 90469343185, free_ts 26960288825
[ 301.169911][T12174] post_alloc_hook+0x1cd/0x210
[ 301.174755][T12174] get_page_from_freelist+0x195c/0x19f0
[ 301.180342][T12174] __alloc_pages+0x1e3/0x460
[ 301.184972][T12174] alloc_slab_page+0x5d/0x170
[ 301.189678][T12174] new_slab+0x87/0x2e0
[ 301.193826][T12174] ___slab_alloc+0xc6d/0x12f0
[ 301.198521][T12174] kmem_cache_alloc+0x1b7/0x2e0
[ 301.203422][T12174] xfrm_state_alloc+0x22/0x2a0
[ 301.208257][T12174] __find_acq_core+0x7d8/0x19d0
[ 301.213212][T12174] xfrm_find_acq+0x6a/0x90
[ 301.217640][T12174] pfkey_getspi+0x64f/0xed0
[ 301.222160][T12174] pfkey_sendmsg+0xbed/0x1050
[ 301.226858][T12174] ____sys_sendmsg+0x5bf/0x950
[ 301.231724][T12174] ___sys_sendmsg+0x220/0x290
[ 301.236506][T12174] __se_sys_sendmsg+0x1a5/0x270
[ 301.241379][T12174] do_syscall_64+0x55/0xb0
[ 301.245898][T12174] page last free stack trace:
[ 301.250605][T12174] free_unref_page_prepare+0x7ce/0x8e0
[ 301.256091][T12174] free_unref_page+0x32/0x2e0
[ 301.260793][T12174] free_contig_range+0xa1/0x160
[ 301.265699][T12174] destroy_args+0x80/0x850
[ 301.270190][T12174] debug_vm_pgtable+0x3cc/0x410
[ 301.275079][T12174] do_one_initcall+0x1fd/0x750
[ 301.279869][T12174] do_initcall_level+0x137/0x1f0
[ 301.284911][T12174] do_initcalls+0x69/0xd0
[ 301.289255][T12174] kernel_init_freeable+0x3d2/0x570
[ 301.294470][T12174] kernel_init+0x1d/0x1c0
[ 301.298816][T12174] ret_from_fork+0x48/0x80
[ 301.303267][T12174] ret_from_fork_asm+0x11/0x20
[ 301.308071][T12174]
[ 301.310414][T12174] Memory state around the buggy address:
[ 301.316062][T12174] ffff88805eafc800: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 301.324144][T12174] ffff88805eafc880: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 301.332223][T12174] >ffff88805eafc900: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 301.340295][T12174] ^
[ 301.345419][T12174] ffff88805eafc980: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 301.353490][T12174] ffff88805eafca00: fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb
[ 301.361578][T12174] ==================================================================
[ 301.398181][T12171] tmpfs: Bad value for 'usrquota_inode_hardlimit'
[ 301.416049][T12174] Kernel panic - not syncing: KASAN: panic_on_warn set ...
[ 301.423311][T12174] CPU: 0 PID: 12174 Comm: syz.2.2948 Not tainted syzkaller #0
[ 301.430803][T12174] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2025
[ 301.440893][T12174] Call Trace:
[ 301.444299][T12174]
[ 301.447271][T12174] dump_stack_lvl+0x16c/0x230
[ 301.452080][T12174] ? show_regs_print_info+0x20/0x20
[ 301.457327][T12174] ? load_image+0x3b0/0x3b0
[ 301.461872][T12174] panic+0x2c0/0x710
[ 301.465822][T12174] ? bpf_jit_dump+0xd0/0xd0
[ 301.470373][T12174] ? _raw_spin_unlock_irqrestore+0xfa/0x110
[ 301.476314][T12174] ? _raw_spin_unlock+0x40/0x40
[ 301.481227][T12174] ? print_memory_metadata+0x314/0x400
[ 301.486726][T12174] ? __xfrm_state_lookup+0x6b2/0x8d0
[ 301.492051][T12174] check_panic_on_warn+0x84/0xa0
[ 301.497028][T12174] ? __xfrm_state_lookup+0x6b2/0x8d0
[ 301.502371][T12174] end_report+0x6f/0x140
[ 301.506661][T12174] kasan_report+0x128/0x150
[ 301.511279][T12174] ? __xfrm_state_lookup+0x6b2/0x8d0
[ 301.516611][T12174] __xfrm_state_lookup+0x6b2/0x8d0
[ 301.521807][T12174] ? xfrm_state_lookup+0x1a0/0x1a0
[ 301.526970][T12174] xfrm_state_lookup+0xef/0x1a0
[ 301.531857][T12174] ? xfrm_state_lookup+0x36/0x1a0
[ 301.536919][T12174] pfkey_get+0x2a9/0x880
[ 301.541266][T12174] pfkey_sendmsg+0xbed/0x1050
[ 301.545994][T12174] ? pfkey_release+0x320/0x320
[ 301.550814][T12174] ? aa_sock_msg_perm+0x94/0x150
[ 301.555800][T12174] ? bpf_lsm_socket_sendmsg+0x9/0x10
[ 301.561127][T12174] ? security_socket_sendmsg+0x80/0xa0
[ 301.566617][T12174] ? pfkey_release+0x320/0x320
[ 301.571424][T12174] ____sys_sendmsg+0x5bf/0x950
[ 301.576241][T12174] ? __asan_memset+0x22/0x40
[ 301.580868][T12174] ? __sys_sendmsg_sock+0x30/0x30
[ 301.585936][T12174] ? __import_iovec+0x5f2/0x860
[ 301.590837][T12174] ? import_iovec+0x73/0xa0
[ 301.595388][T12174] ___sys_sendmsg+0x220/0x290
[ 301.600114][T12174] ? __sys_sendmsg+0x270/0x270
[ 301.604948][T12174] __se_sys_sendmsg+0x1a5/0x270
[ 301.609851][T12174] ? __x64_sys_sendmsg+0x80/0x80
[ 301.614846][T12174] ? lockdep_hardirqs_on+0x98/0x150
[ 301.620101][T12174] do_syscall_64+0x55/0xb0
[ 301.624560][T12174] ? clear_bhb_loop+0x40/0x90
[ 301.629279][T12174] ? clear_bhb_loop+0x40/0x90
[ 301.633995][T12174] entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 301.639941][T12174] RIP: 0033:0x7f405f18ebe9
[ 301.644388][T12174] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 301.664030][T12174] RSP: 002b:00007f406005e038 EFLAGS: 00000246 ORIG_RAX: 000000000000002e
[ 301.672489][T12174] RAX: ffffffffffffffda RBX: 00007f405f3c5fa0 RCX: 00007f405f18ebe9
[ 301.680494][T12174] RDX: 0000000000000000 RSI: 0000200000000040 RDI: 0000000000000003
[ 301.688669][T12174] RBP: 00007f405f211e19 R08: 0000000000000000 R09: 0000000000000000
[ 301.696672][T12174] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 301.704667][T12174] R13: 00007f405f3c6038 R14: 00007f405f3c5fa0 R15: 00007fff5fdb3d58
[ 301.712652][T12174]
[ 301.716001][T12174] Kernel Offset: disabled
[ 301.720328][T12174] Rebooting in 86400 seconds..