last executing test programs: 5m59.126959932s ago: executing program 0 (id=7937): syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000280)='./file0\x00', 0x2800000, &(0x7f0000000140)={[{@debug}, {@delalloc}, {@journal_ioprio}, {@test_dummy_encryption}, {@nodiscard}, {@min_batch_time={'min_batch_time', 0x3d, 0x4}}, {@nodiscard}, {@abort}]}, 0x1, 0xbb4, &(0x7f00000017c0)="$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") quotactl$Q_SETINFO(0xffffffff80000601, &(0x7f0000000200)=@loop={'/dev/loop', 0x0}, 0x0, &(0x7f0000000240)={0x3, 0x4, 0x1, 0x1}) 5m58.258440844s ago: executing program 0 (id=7946): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000bc0)={&(0x7f0000000080)=ANY=[@ANYBLOB="240000001d00070f000200000000000007"], 0x24}, 0x1, 0x0, 0x0, 0x4008080}, 0x0) 5m57.899167502s ago: executing program 0 (id=7950): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000500)={0x6, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000280)='GPL\x00', 0x5, 0xe2, &(0x7f00000002c0)=""/226, 0x0, 0x0, '\x00', 0x0, 0x25, r0, 0x8, 0x0, 0x0, 0x10, &(0x7f00000004c0), 0x1, 0x0, 0x0, 0x2, 0x0, 0x0, 0x11}, 0x8f) 5m57.622749589s ago: executing program 0 (id=7954): syz_mount_image$udf(&(0x7f0000000080), &(0x7f0000000300)='./file0\x00', 0x2000004, &(0x7f0000000500)=ANY=[@ANYBLOB="00e3078fbb81fca067351e718b1742354077ee6bdefb8addaf7c0c235850b66dac0ba564a370a77264f1a57d44c84efc49fa6c64b9351ea8fd59a458a7791fedcc466b0eab6ca6dd32fcc642517fa3219450b91e3118bf2b9d3cfa562ea44c058252d29181c81c637c6ba7d179122eee61e5c9f68165b6abd469da8d90c0632f7265bb040411d5748c475bb33a7ce77afb2ea533f1653d8cb67dad989bb0a1c16881f0d91d6cbd3751c289aecf4a00"/185, @ANYBLOB="b12398658f5ec6488081d04c33b5a507b1cac8c4376c1895046a1e6e068e53d002eb4279796b4c014f4febee026f87bd0eea7d27598f7ff2687552fdd651", @ANYRESOCT=0x0, @ANYRES64], 0x1, 0x497, &(0x7f0000002480)="$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") mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x80, &(0x7f00000001c0)={[{@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 5m57.051304021s ago: executing program 0 (id=7960): io_setup(0xffe, &(0x7f0000001d00)=0x0) io_submit(r0, 0x2d9e6344, 0xfffffffffffffffe) 5m56.310459255s ago: executing program 0 (id=7969): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000000004882, 0x0) fdatasync(r0) 5m55.831033023s ago: executing program 32 (id=7969): r0 = openat$nullb(0xffffffffffffff9c, &(0x7f0000000040), 0x4000000004882, 0x0) fdatasync(r0) 3.227272193s ago: executing program 2 (id=12391): r0 = socket$kcm(0x10, 0x2, 0x0) sendmsg$inet(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000240)=[{&(0x7f0000000100)="5c00000011006bcc9e3be35c6e17aa31076b876c1d0000007ea60864160af36505001ac00800050007000c00050006c00364bc24eab556a705251e618294ff0051f60a84c9f4d4938037e786a6d0001000000e4509c5bbcd72c6c953", 0x5c}], 0x1, 0x0, 0x0, 0x1f00c00e}, 0x0) 2.856576929s ago: executing program 2 (id=12397): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000140)={&(0x7f0000000040)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@func_proto]}}, 0x0, 0x26}, 0x28) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x8, &(0x7f0000000180)=@raw=[@printk={@d, {}, {}, {}, {}, {0x7, 0x0, 0xb, 0x3, 0x0, 0x0, 0x7}}], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x13, '\x00', 0x0, 0x0, r0, 0x8, &(0x7f0000000080)={0x0, 0x1}, 0x8}, 0x94) 2.616608473s ago: executing program 6 (id=12401): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000400)={&(0x7f00000004c0)=@updpolicy={0xfc, 0x19, 0x1, 0xfffffffc, 0x10, {{@in=@multicast1, @in=@remote, 0x0, 0x40, 0xf7fb, 0x2000, 0xa, 0x80, 0x0, 0x0, 0x0, 0xffffffffffffffff}, {0x0, 0x0, 0x0, 0x9, 0x8, 0x0, 0x0, 0x20000000000000}, {0x1, 0x9, 0x80}, 0x0, 0x0, 0x1, 0x1, 0x0, 0x3}, [@tmpl={0x44, 0x5, [{{@in=@remote, 0x4d4, 0x2b}, 0x2, @in=@loopback, 0x3505, 0x1, 0x0, 0x3}]}]}, 0xfc}}, 0x4010) 2.433549651s ago: executing program 2 (id=12404): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000080)=ANY=[@ANYBLOB="380000001e0001008c3c052170537a823c1d"], 0x38}}, 0x20000000) 2.290174968s ago: executing program 6 (id=12408): syz_mount_image$erofs(&(0x7f0000000040), &(0x7f0000000b40)='./file2\x00', 0x201480a, &(0x7f00000003c0)=ANY=[], 0xdd, 0x1eb, &(0x7f0000000b80)="$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") openat(0xffffffffffffff9c, &(0x7f0000000100)='./file2\x00', 0x80000, 0x0) 2.201669238s ago: executing program 2 (id=12409): r0 = socket$key(0xf, 0x3, 0x2) sendmsg$key(r0, &(0x7f00000014c0)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000180)=ANY=[@ANYBLOB="020d00051400000000000000000000000800120000000200c06b6e000000000006000000000000000000000000000000e000000200000000000000000000000000000000000000000000000000000001050009000080"], 0xa0}}, 0x0) 2.096160425s ago: executing program 5 (id=12410): r0 = syz_open_dev$video4linux(&(0x7f00000000c0), 0x5, 0x401) ioctl$VIDIOC_QUERYMENU(r0, 0xc02c5625, &(0x7f0000000040)={0x2, 0xdc, @name="9091dc26263b31d7efbb2aebaabdd10f027f5b22dfa052c127d2e7de7a71fccf"}) 2.083914373s ago: executing program 3 (id=12411): r0 = syz_open_dev$video(&(0x7f00000010c0), 0x8, 0x0) ioctl$VIDIOC_S_SELECTION(r0, 0xc040565f, &(0x7f0000000300)={0x2, 0x100, 0x7, {0x9, 0x4, 0x0, 0x4}}) 1.812792976s ago: executing program 2 (id=12415): r0 = socket$nl_generic(0x10, 0x3, 0x10) sendmsg$nl_generic(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000240)=ANY=[@ANYBLOB="1c0000004600f100fcd2dd4081d0f36a28"], 0x1c}, 0x1, 0x0, 0x0, 0x88c4}, 0x404c000) 1.745949968s ago: executing program 3 (id=12416): r0 = openat$binder_debug(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/kernel/debug/binder/state\x00', 0x0, 0x0) lseek(r0, 0x851, 0x400000000000000) 1.701624006s ago: executing program 6 (id=12417): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000018c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f00000001c0)=@bridge_delneigh={0x1c, 0x1e, 0x1, 0x0, 0x0, {0x0, 0x0, 0x0, 0x0, 0x0, 0x2}}, 0x1c}}, 0x0) 1.700856722s ago: executing program 5 (id=12418): syz_mount_image$minix(&(0x7f0000000340), &(0x7f0000000040)='./bus\x00', 0x0, &(0x7f0000000480)=ANY=[@ANYRES16=0x0], 0x1, 0x1a9, &(0x7f00000004c0)="$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") symlink(&(0x7f00000005c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', &(0x7f00000002c0)='.\x02\x00') 1.531032677s ago: executing program 1 (id=12419): r0 = socket$inet6_icmp(0xa, 0x2, 0x3a) recvfrom$inet6(r0, 0x0, 0x0, 0x1, 0x0, 0x0) 1.53085765s ago: executing program 4 (id=12420): r0 = socket$kcm(0x2, 0x200000000000001, 0x106) setsockopt$sock_attach_bpf(r0, 0x1, 0x8, 0x0, 0x11) 1.488536163s ago: executing program 2 (id=12421): syz_mount_image$ocfs2(&(0x7f0000004740), &(0x7f0000004780)='./file0\x00', 0x100000a, &(0x7f00000002c0)={[{@journal_async_commit}, {@heartbeat_none}, {@usrquota}, {@barrier={'barrier', 0x3d, 0x7}}, {@heartbeat_none}, {@inode64}]}, 0x1, 0x4703, &(0x7f0000004800)="$eJzs212IXFcBB/BzJ6vZpMl2P9ImafoxSQQXLcumT9X6ENeqjabNh7bVVFlnN9vN6uzMujujBYPUIIiCoARBxQ+qQulLLYiBvtQiFPxAWoVSUbS+iBSq4INBG+jKzNybnXtntneyk7S0/f2gnb3n3nPumf3vPXfOPZNCrHZqYaW4sFIsVYrV2ftXbil+rlquL86FwqvktT4/vbkSOcn+tXPkfR/4yD23hPCHY1/70Orq6mpoGA5dHWj7+fy/T8+2vyYKmTqNdru31vLH+iMv/fwtr3REnhMhhB0d/WrYFEL42C9C2BxCGInLRuPXLSGEbSGEKITw6G/+9ePBfrrQ5uy9Lzx37MzhfWemHn/smQvzR9c9MArhu+XdN88vvrh/023Pv+MynR4AAF7RB48fufvo5IHwZBSGzg10fl7fGb8mn4/vfNun7np4YG3/Kr3Z9CqGCgAAABlr8//h6OUu63XJylqyJPjEAyfufipa229i+/p26K4jt79/8kC8/ht17L81Lvrnezc111Cz677Z9d+RTP3u679r53n4q8/+svLWjfc/6V9y3uEQFSZS24XCxEQIx6Za27uirYVydaX2zvur9crJjZ/3jSKdf3b1fm1Bv9f8RzPV89b/d3/i8z/bMtDPOxgL2b/axnax80+ZLtL5rz+W/+RLUU/5j2Xq5eV/x9Pbz/9qcz/vIHtGLkU6/9aFuK/9gGJrAGjk/82B/Px3ZNrPy//7U+cePbGB7/80xpnhqNHXwdQI8HJcvs5XmMhI598KIjV0xr/I9a7//2XyvybTfl7+d1b/8bu/9XH/X2/8H5/qp803j3T+rSCKqSPWrv+RQv71f22m/bz8f3vqz89+sq97dWf+jf6Pu//3JJ1/fCNOD57N32Sv4//OTPt5+e8au++hhQ30+8Nb4n4ORWGs7Vun5xq3sKG19ermlKaxe2kDJ3kTSOff+q2lLp2h1kvz+h/OH/93ZdrPy/+hPV9/z+m+vv/bffyfNP73JJ3/lmbZpeT/Uib/3Zn28/L/4em//+W+yzz+N7YPyr8n6fy3duxfe/5T6Gn+d12mft7zn32jTz3y1z7m/0n/kvMmz3+S5xDjUev5D92l879q3eN6vf/vydTLu/6/9Z/nn97fz/gfDXoC0Id0/ttahV0mgL3mf32m/bz8v3DPlz/+pw3M/5qf+AaT/Nvm/5tb5UeN/z1J57+9VZj6x1APNv/fvP9Hnbn/N5P/DZn28/K/cGhi4CuX+f7f6P94l0fZdErnP7TucY38f9/D/f/GTL28/L+496cv3tzX5/8QJs31Nyyd/9XrHte8/gfz878pUy8v/+9849dPPNhH/9/eR12y+bfu9anLKf5s3uv8v5hpPy//H42fP7v/Csz/bnX/70k6/9aq+aXkn53/7820n5f/9478YHngCjz/uUP+AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGzIavw6HqDCR2i4UJiZCGIu3d4Wt0Uzp5PRMuTr7mZUQdsTlxTAazZerM6Xy9EKlenJuulQuV2dDuCbevyMMRivlam16sbR07cW2tkSn5krLtZm5Ui2EsDMuvz5sT9qaWagtlpaaxyZ1ropKn61Xa6WJ+srccth9sXxbUj6/XK0vXXexrasL1eWlU6XK9MmF5XdPTk5Ohj0X+zwSzT1Qm6vUWr1t7W3USeoOR21vprn7hrbzfbpaX66Uys3yG9vqlKuzpXJbnZvazldbrldmS7W56XJ1Pjlfsa1u23tr7t4b7xsPI6n3l9TNOhi/3n7o+EePHz7Qsb8YpfOu1BfnJrd3/5sAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4I3rydve9e0QwkBrqxBCOJj8EMX/pZy994Xnjp05vO/M1OOPPXNh/mi3YwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4PztwIAAAAAAA5P/aCFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVXYuZ+XKro4DsBnxve+FkgpbYRcBoaI6E7Cgn4RSeU1smWb1kGtEjIoCgwjWhYEQVC7qCBoFVT+BVELl62qTS1aGERQMTqTlzvCDS90zHkeGM4Mc++ZLwzcO3M+hwMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAALB+nN2x2JW1l3ZtXtq6+0PozM/9H0IYTZb3P+/tCD0hhK9fZk6HVdpCT1P/bybnxstXTX7v7R9/eH00WXv9xXeL63aHJB1qON6ZpOnQ0Nr736juDD6bHkxCSGMXQhQLY0/O1EIIHbELIYqfH+cvZr/v/8UuhCj6P9ztyu5/LXYhRLF196e+Wv6MR/Wcr18YbPzvb/UI3sYjOuvQ25NX3qVuauW9zN//k3zzPlgNsyeOvH8euwiimZ2bOhq7BgAA4O861yL/D1uW9+9fTkJPdzn3/9aU//c29b96/r/i3vYbYzNthRDbSmOT2fHwvnb63PhODVy9/bpmvKeq5P/VJv+vNvl/tcn/q03+X23yfzKv5P+V9PjmnsUXsYsgGvk/AABUz6HjE1P14ZHs5X/Tj85yXt+Xt/U8T39wa3rgUcO4kfzw33b42MSBg8Mj+X0vDwiurP+QLp39ns/3aG4Lk03zLlqt/9D7dGH+Wmf5E/U/nL9R1Fdc1/oPAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMAvdueehkEwCsPod1sRtdGqaMLCT4IPNDAiACnMaEAHEwZgIAQUMJBzlnuTZ3kBAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACA5/tXeV18f2mM9Foj0lR22bV/jqfZz9y3w/I+e9y4FQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADZ24EAGAAAAQJi/dR7tBwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4KkAAAD//8Oayzs=") name_to_handle_at(0xffffffffffffff9c, &(0x7f0000000080)='.\x00', &(0x7f00000000c0)=ANY=[@ANYBLOB="14"], &(0x7f0000000040), 0x0) 1.412547409s ago: executing program 3 (id=12422): r0 = openat$udambuf(0xffffffffffffff9c, &(0x7f0000000040), 0x2) ioctl$UDMABUF_CREATE(r0, 0x40187542, 0x0) 1.386384444s ago: executing program 5 (id=12423): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f00000007c0)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a20000000000a01010000000000000000010000000900010073797a30000000002c000000030a010200000000000000000100000a0900010073797a30000000000900030073797a300000000064000000060a010400000000000000000100000008000b4000000000340004803000018008000100636d70002400028010000380090001002a8e27e2fa000000080002400000000008000140000000090900010073797a30"], 0xd8}}, 0x0) 1.348984549s ago: executing program 6 (id=12424): sched_setattr(0x0, &(0x7f0000000100)={0x38, 0x5}, 0x0) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000001540)='./file0\x00', 0x0, &(0x7f0000000500), 0x1, 0x485, &(0x7f0000001040)="$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") 1.255502527s ago: executing program 1 (id=12425): r0 = syz_open_procfs$namespace(0xffffffffffffffff, &(0x7f0000000080)='ns/mnt\x00') ioctl$NS_GET_USERNS(r0, 0xb701, 0x0) 1.210988953s ago: executing program 4 (id=12426): r0 = socket$netlink(0x10, 0x3, 0x0) sendmsg$nl_route_sched(r0, &(0x7f0000000300)={0x0, 0x0, &(0x7f0000000480)={&(0x7f0000000400)=@newtaction={0x78, 0x30, 0x871a15abc695f30d, 0x9, 0x25dfdbfc, {}, [{0x64, 0x1, [@m_sample={0x60, 0x1, 0x0, 0x0, {{0xb}, {0x34, 0x2, 0x0, 0x1, [@TCA_SAMPLE_PARMS={0x18, 0x2, {0x2, 0x98f7, 0x3, 0x1, 0x20}}, @TCA_SAMPLE_TRUNC_SIZE={0x8, 0x4, 0x7fff}, @TCA_SAMPLE_PSAMPLE_GROUP={0x8, 0x5, 0x400005}, @TCA_SAMPLE_RATE={0x8, 0x3, 0xf}]}, {0x4}, {0xc}, {0xc, 0x8, {0x2, 0x3}}}}]}]}, 0x78}, 0x1, 0x0, 0x0, 0x4}, 0x0) 1.042882488s ago: executing program 1 (id=12427): r0 = openat$dlm_control(0xffffffffffffff9c, &(0x7f0000000000), 0x8502, 0x0) write$sndseq(r0, &(0x7f0000001380)=[{0x6, 0x0, 0x0, 0x0, @tick, {0x7}, {}, @connect}, {0x0, 0x0, 0x0, 0x0, @tick, {}, {}, @result}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}, {0x0, 0x0, 0x0, 0x0, @time, {}, {}, @control}], 0x70) 919.358117ms ago: executing program 3 (id=12428): r0 = socket(0x2b, 0x1, 0x1) setsockopt$IP_VS_SO_SET_DEL(r0, 0x0, 0x483, &(0x7f0000000180)={0x3a, @empty, 0x1ffc, 0x200000001, 'sh\x00', 0x4, 0x821}, 0x2c) 913.309143ms ago: executing program 5 (id=12429): syz_mount_image$hfsplus(&(0x7f00000000c0), &(0x7f0000000980)='./file1\x00', 0x0, &(0x7f0000000200)=ANY=[@ANYBLOB="6e6f626172726965722c6e6f626172726965722c63726561746f723dd1b1f0fa2c6e6c733d6d6163726f6d616e69616e2c756d61736b3d30303030303030303030303030303030303030303033372c6e6f626172726965722c00"], 0x3, 0x6be, &(0x7f0000001640)="$eJzs3U9sHFcZAPBv1pu1N0iu26ZpQKBajVRBIxLbq5IgITUghHyIUASXXq3Eaaxs0sp2kVshsgYKEidOqAcORcgcekIIIZUTopyRkLhw8j0SNw5GAhbNn12Pd7f2bmN7t+3vJ43nzb55733z7eyb/ZNoAvjUWn4lzrQiieVLN7bS7d2dRnN3p3G/U46I6YioRFTzVST1iOSDiOuRL/HZ9MGiu+TDxnnp0ftJ9Z33GvlWtViy/SuHteszcM9WxEx3Yyoi5vPif4butq+/bMn6ubXf30eUdONOE3axkzgYt3af1n5l5cjmw79ugYn1ML9u9pmLOBv51TV9HxDF7HD0zDB+h85NrdOLAwAAAE7KwM/yZU/sxV5sxezphAMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACfDEl+z8CkWCqd8nwknfv/10r31K+NOdzH9PadbPWdJ8YdCAAAAAAAAAAcafuQuuf2Yi+2Yraz3U6y3/yfzzbOZX8/E2/ERqzGelyOrViJzdiM9ViMiLlSR7Wtlc3N9cX+lr+ItGW73X5YtFwa2HLpYFyt3kAH/UuDvp0AAAAAAAAA4FPrh7G8//s/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABMgiRiKl9ly7lOeS4q1YiYiYhaMt/dvTbWYI/Bn8YdAAAAAJy8erGeTf6XF9pJ9pn/fPa5fybeiAexGWuxGc1YjdvZdwH5p/7K31qN5u5O43669Hf89X+OFEfWY+TfPQweeSHb45lui+X4Vnw3LsV83Iz1WIvvxUpsxmrMxzez0kokMVd8ezG3u1OPTqz98V4/sHWzN7bnSuU0vgtZJPW4E2tZbJfjVq0TeqXY70JptD/UInpG3E6zk7xcGDJHt4t1ekQ/L9aTYS478jPdjCwUuU+z8WQ57/25H/E86R1pMSrd76DO7Y+SbvaONHzO/93ORcTZ4qE01z852ZyP+FXawUy0fpZudc6+84fnPOJLf//zzbuVB/fu3tm4NDmn0UfUe040Spl4dqhMNNNMtB4jEzOPE//xqRXZyGfR0WbL57O2s7EW347X4nasxtVYiMW4Fgvx1ViKRiyV8vrM4XnNXmuV0ea3i18sCuk16aela9OpmT64uX86pHl9spTX8kw3l9V1H9lrl7L01BBZSmoxOEv/GBhj9XNFIR3jR6Urzvj1ZCKbmzvRPX14Jn7133Sy3Wg+uLd+d+X1Icd7oVinz9PbB+fmXx/LAY2uONz0fHkqfbIiv2yUz5e07ulOXU++asUvLtWiswN1tchez3ndUa/UtKfz24N6yuueHThKI6u7UKo78C4nXotm910IABPs7Itna/VH9b/W363/uH63fmPmG9PXpj9fizN/qf5x6reV31S+lrwY78YPYnbckQIAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwCfBxptv3VtpNlfXJ7AQlWPucHtgVScV+SO1yTj2j2th+rAz6ncRcUjz2odVfaF4ho4/5iS729hEpC6qpzDW9KAc3ug+Uo+odOOJiHsTcoM74CRc2bz/+pWNN9/68tr9lVdXX119sHTt6stXG19ZfHjlzlpzdSH/O+4ogZOw/zZg3JEAAAAAAAAAAAAAwzqN/94wYNikNYZjBQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD6ell+JM61IYnHh8kK6vbvTaKZLp7y/ZzUiKhGRfD8i+SDieuRLzJW6Sw723p7qlF569P4vX3jnvcZ+X9XO/pWedr//V7s94lG0iiXmI2KqWB9teqj+bpX6a40YWC7pHmGasIudxMG4/T8AAP//kWUO3A==") openat(0xffffffffffffff9c, &(0x7f0000000040)='./file1\x00', 0x42, 0x22) 871.708938ms ago: executing program 4 (id=12430): socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000980)={'veth1_to_bridge\x00', &(0x7f0000000940)=@ethtool_rxfh_indir={0x39}}) 868.980095ms ago: executing program 1 (id=12431): r0 = openat(0xffffffffffffff9c, &(0x7f0000000280)='.\x00', 0x0, 0x304) open_by_handle_at(r0, &(0x7f0000000000)=@FILEID_INO32_GEN={0x8, 0x1, {0x8}}, 0x300) 633.992661ms ago: executing program 6 (id=12432): r0 = openat$sndseq(0xffffffffffffff9c, &(0x7f00000004c0), 0x48100) ioctl$SNDRV_SEQ_IOCTL_SET_QUEUE_INFO(r0, 0xc08c5335, &(0x7f00000001c0)={0x0, 0x80, 0x0, 'queue0\x00'}) 587.074027ms ago: executing program 1 (id=12433): r0 = openat$tcp_congestion(0xffffffffffffff9c, &(0x7f00000000c0), 0x1, 0x0) tee(r0, r0, 0x1, 0x4) 526.614246ms ago: executing program 3 (id=12434): r0 = socket$inet_sctp(0x2, 0x1, 0x84) setsockopt$inet_int(r0, 0x0, 0x21, 0x0, 0x0) 467.024997ms ago: executing program 4 (id=12435): r0 = socket$tipc(0x1e, 0x5, 0x0) getsockopt$TIPC_SRC_DROPPABLE(r0, 0x10f, 0x80, &(0x7f0000000140), &(0x7f0000000180)=0x4) 466.923556ms ago: executing program 5 (id=12436): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000100)='/proc/bus/input/devices\x00', 0x0, 0x0) preadv(r0, &(0x7f00000015c0)=[{&(0x7f0000000140)=""/4078, 0xfee}], 0x1, 0xf2, 0x207fff) 240.234515ms ago: executing program 1 (id=12437): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount$fuse(0x0, &(0x7f00000020c0)='./file0\x00', &(0x7f0000002100), 0x0, &(0x7f00000003c0)=ANY=[@ANYBLOB='fd=', @ANYRESDEC=0x0]) 230.374455ms ago: executing program 4 (id=12438): r0 = openat$procfs(0xffffffffffffff9c, &(0x7f0000000300)='/proc/consoles\x00', 0x0, 0x0) read$FUSE(r0, &(0x7f0000000340)={0x2020}, 0x2020) 204.685092ms ago: executing program 6 (id=12439): syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000640)='./file1\x00', 0x1008000, &(0x7f0000000180)=ANY=[], 0x0, 0x5e9, &(0x7f0000000c80)="$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") setxattr$security_ima(&(0x7f0000000040)='./file1\x00', &(0x7f00000000c0), &(0x7f0000000280)=@ng={0x4, 0xc}, 0x2, 0x3) 203.941746ms ago: executing program 3 (id=12440): r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000580)=@newsa={0x154, 0x10, 0x1, 0x0, 0x0, {{@in6=@local, @in6=@remote, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x2}, {@in=@empty, 0x0, 0x32}, @in=@dev={0xac, 0x14, 0x14, 0x3e}, {0x0, 0x0, 0x0, 0x0, 0xfffffffffffffffd}, {}, {}, 0x0, 0x0, 0xa, 0x0, 0x0, 0xaf}, [@algo_crypt={0x48, 0x2, {{'cbc(aes)\x00'}}}, @replay_esn_val={0x1c, 0x17, {0x342}}]}, 0x154}}, 0x0) 126.483µs ago: executing program 4 (id=12441): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f00000016c0)={0x0, 0x0, &(0x7f0000001680)={&(0x7f0000000040)=@dellink={0x34, 0x11, 0x1, 0x70bd26, 0x5dfdbff, {0x0, 0x0, 0x0, 0x0, 0x42008, 0x40000}, [@IFLA_ALT_IFNAME={0x14, 0x35, 'veth1_vlan\x00'}]}, 0x34}, 0x1, 0x200000000000000, 0x0, 0x240040c4}, 0x0) 0s ago: executing program 5 (id=12442): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000100)={[{@utf8no}, {@uni_xlateno}, {@fat=@errors_remount}, {@fat=@check_strict}, {@fat=@codepage={'codepage', 0x3d, '1255'}}, {@utf8}, {@numtail}, {@shortname_winnt}, {@shortname_lower}, {@uni_xlate}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'cp950'}}, {@uni_xlateno}, {@uni_xlate}, {@iocharset={'iocharset', 0x3d, 'iso8859-9'}}]}, 0x2a, 0x379, &(0x7f0000000480)="$eJzs3U1oHOUbAPBns5vdTaD/BP5C0dPqTZDSRDyol4SSQjEHrSx+Hgw29SO7FrK4kByyzUXxqHgR9OStBz146Fk8iHjz4NUKUhUv9hZocWR3JruzXxWVpC3+fofy8LzPs+87O0NnwmbfvLISWxdm4+KNG9ejWi1EaeXMShwUYjFmohipyzFBaVISALgXHCRJ/J6khkcqE6o/mD+MytOeCwCAu17v/v/aiUFi6LafJEnnDiwKADhS03/+H/L0xOylI1sWAHCEDmLk/v/Q0HB5uLrU/50AAODe9ewLLz61uh5xvlarRjTfbdfb9XhiML56Md6IRmzG6ViIW71PBJIk0qeF7r9nz62vna51/bwY9W5Hux7R7LTr6ZPCarHXX4mlWIjFrD/p9xfPVtfXlnr9tYi43OnNH81Cuz4b89n8P8zHZizHQtw31h9xbn1tuZa9QL152N+J2I/q4UF0138qFuK7V+NSNOJC75ONwfr3lmq1M8n6UH/7SqVXBwAAAAAAAAAAAAAAAAAAAAAAR+FUrW+xv/9N0uy03zk/WrAY9Znc/j7pcLY/0H66P1BSOdyd573i6P5AtVrU57JZu/2lmLljRw0AAAAAAAAAAAAAAAAAAAB3l9ZOOTYajc3t1s7uVj7o5DJvffPZV3MxWvNmcZCJ0mzv5YZqStkcua5i9NuTfntSHKrJgmLEoPjK1f6K8zWV/lHsHm4mkH+dSjqUyxSyNW00Gice/OnjsUl3drf+GGSKMfa2DAeF8Umb/0tTt+maHiz/Rc21JEmmte99tLO7NRtDs0chojR24v5NUM6Cr6+/fv+jrZOP9Ya+zDZ9ePiRheeuffjpr1sbjcjemkajvN26lfyTuSI9BYNro5C9z4UJV8LkYH+Q2d9u7WwUv//t+Qfe/3akuBgT25N85u3pc30+mimnQXeZ2/9PL7bbLXV2wsU/IXjyi42Xbvav3r9/Bk9+shJX9378pZd5efIh54PcfxI26gAAAAAAAAAAAAAAAAAAgGOR+7p1TnVqffrd68efOfqVAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDxGfz9/1ywP5QpR8R4zXhwsxPjQ5XN7VZEUpk4+dyxHy4AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAP9RfwYAAP//CzNscw==") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00', 0x183341, 0x0) kernel console output (not intermixed with test programs): ations [ 1218.541560][T31544] BTRFS info (device loop6): turning on async discard [ 1218.604471][T31544] BTRFS info (device loop6): enabling free space tree [ 1218.677543][ T30] audit: type=1326 audit(2000001565.580:169): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1218.726924][T20972] hub 4-1:0.0: 27 ports detected [ 1218.748354][T20972] hub 4-1:0.0: insufficient power available to use all downstream ports [ 1218.815592][ T30] audit: type=1326 audit(2000001565.609:170): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1218.903057][ T30] audit: type=1326 audit(2000001565.609:171): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1218.911782][ T1211] gspca_zc3xx: reg_r err -71 [ 1218.962043][T20972] hub 4-1:0.0: hub_hub_status failed (err = -71) [ 1218.968450][T20972] hub 4-1:0.0: config failed, can't get hub status (err -71) [ 1218.986632][T24921] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1219.002189][ T30] audit: type=1326 audit(2000001565.609:172): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1219.027233][ T1211] gspca_zc3xx 2-1:0.0: probe with driver gspca_zc3xx failed with error -71 [ 1219.043416][T20972] usbhid 4-1:0.0: can't add hid device: -71 [ 1219.060186][ T1211] usb 2-1: USB disconnect, device number 25 [ 1219.068008][T20972] usbhid 4-1:0.0: probe with driver usbhid failed with error -71 [ 1219.103932][ T30] audit: type=1326 audit(2000001565.609:173): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=204 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1219.141928][ T6025] udevd[6025]: setting mode of /dev/bus/usb/002/025 to 020664 failed: No such file or directory [ 1219.163144][T20972] usb 4-1: USB disconnect, device number 32 [ 1219.181093][ T6025] udevd[6025]: setting owner of /dev/bus/usb/002/025 to uid=0, gid=0 failed: No such file or directory [ 1219.230251][ T30] audit: type=1326 audit(2000001565.609:174): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1219.282918][ T30] audit: type=1326 audit(2000001565.609:175): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1219.347553][ T30] audit: type=1326 audit(2000001565.609:176): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1219.393815][ T30] audit: type=1326 audit(2000001565.609:177): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=31589 comm="syz.2.10842" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1219.727717][T31607] netlink: 'syz.4.10850': attribute type 2 has an invalid length. [ 1219.843686][T31614] usb usb8: usbfs: interface 0 claimed by hub while 'syz.6.10853' sets config #2 [ 1219.885139][T31613] openvswitch: netlink: ct_state flags 010000e0 unsupported [ 1220.232255][T31622] team0: entered promiscuous mode [ 1220.259246][T31622] team_slave_0: entered promiscuous mode [ 1220.279978][T31622] team_slave_1: entered promiscuous mode [ 1220.308711][T31622] netdevsim netdevsim3 : entered promiscuous mode [ 1220.342258][T31622] 8021q: adding VLAN 0 to HW filter on device team0 [ 1221.092828][T31650] openvswitch: netlink: Missing key (keys=40, expected=2000) [ 1221.129520][T31615] loop5: detected capacity change from 0 to 32768 [ 1221.224424][T31615] JBD2: Ignoring recovery information on journal [ 1221.401284][T31615] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1221.506877][T31662] loop2: detected capacity change from 0 to 2048 [ 1221.517872][T31664] netlink: 12 bytes leftover after parsing attributes in process `syz.6.10877'. [ 1221.548545][T31662] NILFS (loop2): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1221.689564][T31665] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1221.786411][T31669] loop1: detected capacity change from 0 to 128 [ 1221.859866][T31669] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1221.907688][ T6055] ocfs2: Unmounting device (7,5) on (node local) [ 1221.922220][T31669] hpfs: filesystem error: improperly stopped [ 1221.928301][T31669] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1222.013951][T31669] hpfs: You really don't want any checks? You are crazy... [ 1222.053767][T31669] hpfs: hpfs_map_sector(): read error [ 1222.061531][T31669] hpfs: code page support is disabled [ 1222.067325][T31669] hpfs: hpfs_map_4sectors(): unaligned read [ 1222.146700][T31669] hpfs: hpfs_map_4sectors(): unaligned read [ 1222.163285][T31669] hpfs: filesystem error: unable to find root dir [ 1222.256937][T31677] netlink: 36 bytes leftover after parsing attributes in process `syz.2.10882'. [ 1222.481810][T31679] loop6: detected capacity change from 0 to 2048 [ 1222.537246][T31679] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1222.571979][T31646] loop3: detected capacity change from 0 to 32768 [ 1222.810728][T31689] loop4: detected capacity change from 0 to 64 [ 1223.354307][T31703] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1223.646239][T31714] loop5: detected capacity change from 0 to 128 [ 1223.715423][T31714] UDF-fs: error (device loop5): udf_read_tagged: read failed, block=256, location=256 [ 1223.805233][T31714] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1224.530004][T31745] xt_recent: Unsupported userspace flags (000000de) [ 1224.919029][T31762] netlink: 'syz.1.10924': attribute type 12 has an invalid length. [ 1224.970537][T31764] netlink: 'syz.2.10926': attribute type 2 has an invalid length. [ 1225.047918][T31764] hmaÓË224): entered promiscuous mode [ 1225.410707][T31782] netlink: 28 bytes leftover after parsing attributes in process `syz.4.10934'. [ 1226.260028][T31808] loop3: detected capacity change from 0 to 2048 [ 1226.343784][T31808] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found! [ 1226.423432][T31808] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1226.860627][T31827] netlink: 'syz.3.10956': attribute type 4 has an invalid length. [ 1226.868520][T31827] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.10956'. [ 1227.735383][T31861] netlink: 16 bytes leftover after parsing attributes in process `syz.3.10973'. [ 1227.744534][T31861] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10973'. [ 1228.495262][T31888] loop6: detected capacity change from 0 to 2048 [ 1228.549752][T31888] EXT4-fs: Ignoring removed oldalloc option [ 1228.664076][T31888] [EXT4 FS bs=2048, gc=1, bpg=262144, ipg=32, mo=a802c028, mo2=0002] [ 1228.668162][T31896] netlink: 12 bytes leftover after parsing attributes in process `syz.3.10990'. [ 1228.681794][T31888] System zones: 0-7 [ 1228.684978][T31888] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1228.996722][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1229.220849][ T6211] usb 5-1: new high-speed USB device number 9 using dummy_hcd [ 1229.404800][ T6211] usb 5-1: Using ep0 maxpacket: 16 [ 1229.438812][ T6211] usb 5-1: New USB device found, idVendor=054c, idProduct=0038, bcdDevice=16.f5 [ 1229.466802][ T6211] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1229.495163][ T6211] usb 5-1: Product: syz [ 1229.511997][ T6211] usb 5-1: Manufacturer: syz [ 1229.516658][T31927] loop6: detected capacity change from 0 to 256 [ 1229.574037][ T6211] usb 5-1: SerialNumber: syz [ 1229.577360][T31927] FAT-fs (loop6): Directory bread(block 64) failed [ 1229.602503][ T6211] usb 5-1: config 0 descriptor?? [ 1229.616534][T31927] FAT-fs (loop6): Directory bread(block 65) failed [ 1229.623590][T31927] FAT-fs (loop6): Directory bread(block 66) failed [ 1229.645554][ T6211] visor 5-1:0.0: Sony Clie 3.5 converter detected [ 1229.690888][T31927] FAT-fs (loop6): Directory bread(block 67) failed [ 1229.697551][T31927] FAT-fs (loop6): Directory bread(block 68) failed [ 1229.744580][T31927] FAT-fs (loop6): Directory bread(block 69) failed [ 1229.751251][T31927] FAT-fs (loop6): Directory bread(block 70) failed [ 1229.840361][T31927] FAT-fs (loop6): Directory bread(block 71) failed [ 1229.847289][T31927] FAT-fs (loop6): Directory bread(block 72) failed [ 1229.854381][ T6211] usb 5-1: clie_3_5_startup: get config number bad return length: 0 [ 1229.883491][ T6211] visor 5-1:0.0: probe with driver visor failed with error -5 [ 1229.901220][T31927] FAT-fs (loop6): Directory bread(block 73) failed [ 1230.078628][T31943] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11012'. [ 1230.107545][ T6211] usb 5-1: USB disconnect, device number 9 [ 1230.192832][T31946] loop5: detected capacity change from 0 to 1024 [ 1230.281301][T31946] hfsplus: failed to load extents file [ 1230.445310][T31949] loop3: detected capacity change from 0 to 4096 [ 1230.475377][T31955] loop6: detected capacity change from 0 to 128 [ 1230.491837][T31949] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1230.531836][T31955] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 1230.602215][T31955] hpfs: filesystem error: improperly stopped [ 1230.622430][T31955] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 1230.638947][T31955] hpfs: You really don't want any checks? You are crazy... [ 1230.676813][T31955] hpfs: hpfs_map_sector(): read error [ 1230.698042][T31955] hpfs: code page support is disabled [ 1230.724154][T31955] hpfs: hpfs_map_4sectors(): unaligned read [ 1230.731364][T31949] ntfs3(loop3): ino=19, mi_enum_attr [ 1230.742442][T31949] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1230.760761][T31955] hpfs: hpfs_map_4sectors(): unaligned read [ 1230.782713][T31955] hpfs: filesystem error: unable to find root dir [ 1230.843154][T31949] ntfs3(loop3): failed to convert "c46c" to koi8-r [ 1230.877054][T31949] ntfs3(loop3): ino=20, mi_enum_attr [ 1231.274830][T31978] netlink: 'syz.1.11028': attribute type 1 has an invalid length. [ 1231.304580][T31978] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1231.529410][ T1211] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 1231.692289][T31988] loop2: detected capacity change from 0 to 16 [ 1231.706538][ T1211] usb 6-1: unable to get BOS descriptor or descriptor too short [ 1231.742661][ T1211] usb 6-1: config 63 has an invalid interface number: 66 but max is 0 [ 1231.750995][ T1211] usb 6-1: config 63 has an invalid descriptor of length 0, skipping remainder of the config [ 1231.769095][T31988] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 1231.817436][ T1211] usb 6-1: config 63 has no interface number 0 [ 1231.823776][ T1211] usb 6-1: config 63 interface 66 has no altsetting 0 [ 1231.863279][ T1211] usb 6-1: New USB device found, idVendor=174f, idProduct=8acf, bcdDevice=39.f4 [ 1231.881499][ T1211] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1231.892875][ T1211] usb 6-1: Product: syz [ 1231.897095][ T1211] usb 6-1: Manufacturer: syz [ 1231.934285][ T1211] usb 6-1: SerialNumber: syz [ 1231.988318][ T6211] usb 4-1: new high-speed USB device number 33 using dummy_hcd [ 1232.170136][ T6211] usb 4-1: Using ep0 maxpacket: 32 [ 1232.184176][ T6211] usb 4-1: config 0 has an invalid interface number: 37 but max is 1 [ 1232.207257][ T6211] usb 4-1: config 0 has no interface number 1 [ 1232.231527][ T6211] usb 4-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=20.a3 [ 1232.234496][ T1211] uvcvideo 6-1:63.66: Found UVC 0.07 device syz (174f:8acf) [ 1232.266469][ T6211] usb 4-1: New USB device strings: Mfr=1, Product=34, SerialNumber=3 [ 1232.275886][ T1211] uvcvideo 6-1:63.66: Failed to query (GET_INFO) UVC control 6 on unit 1: -71 (exp. 1). [ 1232.299295][ T6211] usb 4-1: Product: syz [ 1232.302618][ T1211] uvcvideo 6-1:63.66: Failed to query (GET_INFO) UVC control 9 on unit 1: -71 (exp. 1). [ 1232.303543][ T6211] usb 4-1: Manufacturer: syz [ 1232.319905][ T1211] uvcvideo 6-1:63.66: Failed to query (GET_INFO) UVC control 1 on unit 1: -71 (exp. 1). [ 1232.320901][ T1211] uvcvideo 6-1:63.66: Failed to query (GET_INFO) UVC control 4 on unit 1: -71 (exp. 1). [ 1232.367238][ T1211] uvcvideo 6-1:63.66: Failed to query (GET_INFO) UVC control 17 on unit 1: -71 (exp. 1). [ 1232.385881][ T1211] uvcvideo 6-1:63.66: No streaming interface found for terminal 29. [ 1232.411057][ T6211] usb 4-1: SerialNumber: syz [ 1232.437467][ T1211] uvcvideo 6-1:63.66: Entity type for entity Output 32773 was not initialized! [ 1232.459780][ T6211] usb 4-1: config 0 descriptor?? [ 1232.501563][ T1211] usb 6-1: USB disconnect, device number 19 [ 1232.592159][T32012] loop1: detected capacity change from 0 to 1764 [ 1232.698349][ T6211] qcserial 4-1:0.37: Qualcomm USB modem converter detected [ 1232.863359][T32016] openvswitch: netlink: Flow key attr not present in new flow. [ 1233.009793][T20972] usb 4-1: USB disconnect, device number 33 [ 1233.040440][T20972] qcserial 4-1:0.37: device disconnected [ 1233.943566][T32049] netlink: 'syz.1.11060': attribute type 9 has an invalid length. [ 1233.976947][T32049] netlink: 'syz.1.11060': attribute type 7 has an invalid length. [ 1233.985548][T32049] netlink: 'syz.1.11060': attribute type 8 has an invalid length. [ 1234.424875][T32061] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11068'. [ 1234.489440][T32065] netlink: 'syz.3.11070': attribute type 7 has an invalid length. [ 1234.672994][T32033] loop5: detected capacity change from 0 to 32768 [ 1234.714180][T32033] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.11054 (32033) [ 1234.790462][T32033] BTRFS info (device loop5): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1234.830766][T32033] BTRFS info (device loop5): using sha256 checksum algorithm [ 1234.963761][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 1234.970520][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 1235.030118][T32093] loop1: detected capacity change from 0 to 8 [ 1235.062893][T32033] BTRFS info (device loop5): enabling ssd optimizations [ 1235.153227][T32033] BTRFS info (device loop5): turning on async discard [ 1235.160086][T32033] BTRFS info (device loop5): enabling free space tree [ 1235.285498][T32103] loop3: detected capacity change from 0 to 512 [ 1235.443802][T32103] EXT4-fs error (device loop3): ext4_xattr_inode_iget:441: inode #12: comm syz.3.11081: missing EA_INODE flag [ 1235.558805][T32103] loop3: lost file I/O error report for ino 12 type 5 pos 0x0 len 0x0 error -117 [ 1235.568001][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 1235.583712][ C0] EXT4-fs (loop3): initial error at time 2000001581: ext4_xattr_inode_iget:441: inode 12 [ 1235.593640][ C0] EXT4-fs (loop3): last error at time 2000001581: ext4_xattr_inode_iget:441: inode 12 [ 1235.607246][ T6055] BTRFS info (device loop5): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1235.608950][T32103] EXT4-fs error (device loop3): ext4_xattr_inode_iget:444: comm syz.3.11081: error while reading EA inode 12 err=-117 [ 1235.732052][T32103] loop3: lost filesystem error report for type 5 error -117 [ 1235.732504][T32103] EXT4-fs (loop3): 1 orphan inode deleted [ 1235.733123][T32116] loop1: detected capacity change from 0 to 24 [ 1235.756342][T32103] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1235.857213][T32116] romfs: read error for inode 0x8000 [ 1236.086494][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1236.097771][ T1211] usb 7-1: new high-speed USB device number 12 using dummy_hcd [ 1236.316487][ T1211] usb 7-1: Using ep0 maxpacket: 8 [ 1236.355069][ T1211] usb 7-1: config 0 has an invalid interface number: 55 but max is 0 [ 1236.371914][ T1211] usb 7-1: config 0 has no interface number 0 [ 1236.404563][ T1211] usb 7-1: config 0 interface 55 altsetting 0 has an invalid descriptor for endpoint zero, skipping [ 1236.455293][ T1211] usb 7-1: config 0 interface 55 altsetting 0 has an endpoint descriptor with address 0xAB, changing to 0x8B [ 1236.492735][ T1211] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has an invalid bInterval 0, changing to 7 [ 1236.553748][ T1211] usb 7-1: config 0 interface 55 altsetting 0 endpoint 0x8B has invalid wMaxPacketSize 0 [ 1236.587458][ T1211] usb 7-1: config 0 interface 55 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 2 [ 1236.631272][ T1211] usb 7-1: New USB device found, idVendor=0f11, idProduct=1080, bcdDevice=fc.6a [ 1236.668299][ T1211] usb 7-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1236.703697][ T1211] usb 7-1: config 0 descriptor?? [ 1236.792323][ T1211] ldusb 7-1:0.55: LD USB Device #0 now attached to major 180 minor 0 [ 1236.987078][T32120] ldusb 7-1:0.55: Couldn't submit interrupt_in_urb -90 [ 1237.031165][T20970] usb 7-1: USB disconnect, device number 12 [ 1237.081223][T20970] ldusb 7-1:0.55: LD USB Device #0 now disconnected [ 1237.259861][T32155] netlink: 12 bytes leftover after parsing attributes in process `syz.4.11106'. [ 1237.468508][T32160] i2c i2c-0: Invalid block write size 128 [ 1237.550391][T32164] loop2: detected capacity change from 0 to 256 [ 1237.556260][T32130] loop3: detected capacity change from 0 to 32768 [ 1237.616724][T32164] exfat: Deprecated parameter 'utf8' [ 1237.698053][T32164] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 1238.402523][T32185] loop5: detected capacity change from 0 to 128 [ 1239.347963][T32178] loop4: detected capacity change from 0 to 32768 [ 1239.432073][T32178] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1239.608362][T32178] XFS (loop4): Ending clean mount [ 1239.744237][T32188] loop2: detected capacity change from 0 to 32768 [ 1239.845225][ T6061] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1239.929128][T32190] loop6: detected capacity change from 0 to 32768 [ 1239.993601][T32190] JBD2: Ignoring recovery information on journal [ 1240.143672][T32190] ocfs2: Mounting device (7,6) on (node local, slot 0) with ordered data mode. [ 1240.486226][T32236] netlink: 36 bytes leftover after parsing attributes in process `syz.2.11142'. [ 1240.708888][T24921] ocfs2: Unmounting device (7,6) on (node local) [ 1241.372558][T32262] loop4: detected capacity change from 0 to 8 [ 1241.446284][T32262] SQUASHFS error: Unable to read directory block [629:26] [ 1242.113485][T32282] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11164'. [ 1242.153265][T32284] openvswitch: netlink: IP tunnel dst address not specified [ 1242.227916][T32252] loop1: detected capacity change from 0 to 32768 [ 1242.324829][T32252] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1242.444792][T32252] XFS (loop1): Ending clean mount [ 1242.477695][T32304] loop6: detected capacity change from 0 to 16 [ 1242.481447][T32252] XFS (loop1): Quotacheck needed: Please wait. [ 1242.506154][T32303] netlink: 'syz.4.11170': attribute type 1 has an invalid length. [ 1242.514947][T32304] erofs (device loop6): mounted with root inode @ nid 36. [ 1242.568658][T32303] netlink: 'syz.4.11170': attribute type 3 has an invalid length. [ 1242.592521][T32306] loop2: detected capacity change from 0 to 4096 [ 1242.599813][T32304] erofs (device loop6): xattr_isize 12 of nid 86 is not supported yet [ 1242.695700][T32252] XFS (loop1): Quotacheck: Done. [ 1242.833352][ T6049] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1242.938734][T32309] bond0: entered promiscuous mode [ 1243.028971][T32309] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1243.121348][T32315] team0: entered allmulticast mode [ 1243.150534][T32315] team_slave_0: entered allmulticast mode [ 1243.198713][T32315] team_slave_1: entered allmulticast mode [ 1243.684196][T32321] netlink: 10 bytes leftover after parsing attributes in process `syz.6.11179'. [ 1244.391628][T32314] loop4: detected capacity change from 0 to 32768 [ 1244.457210][T32314] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.11174 (32314) [ 1244.519459][T32314] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1244.547051][T32314] BTRFS info (device loop4): using sha256 checksum algorithm [ 1244.656133][T32348] loop2: detected capacity change from 0 to 16 [ 1244.674114][T32359] overlayfs: unescaped trailing colons in lowerdir mount option. [ 1244.708775][T32314] BTRFS info (device loop4): enabling ssd optimizations [ 1244.726734][T32348] erofs (device loop2): mounted with root inode @ nid 36. [ 1244.759006][T32364] i2c i2c-0: Invalid block write size 34 [ 1244.769418][T32314] BTRFS info (device loop4): turning on async discard [ 1244.886486][T32314] BTRFS info (device loop4): enabling free space tree [ 1245.092019][ T30] audit: type=1326 audit(2000001590.295:178): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32370 comm="syz.6.11195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e0619c819 code=0x7ffc0000 [ 1245.170825][T32373] netlink: 'syz.5.11197': attribute type 1 has an invalid length. [ 1245.198712][ T6061] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1245.233713][ T30] audit: type=1326 audit(2000001590.295:179): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32370 comm="syz.6.11195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e0619c819 code=0x7ffc0000 [ 1245.284511][T32379] tipc: Can't bind to reserved service type 0 [ 1245.373395][ T30] audit: type=1326 audit(2000001590.360:180): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32370 comm="syz.6.11195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=119 compat=0 ip=0x7f6e0619c819 code=0x7ffc0000 [ 1245.427869][ T30] audit: type=1326 audit(2000001590.360:181): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32370 comm="syz.6.11195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e0619c819 code=0x7ffc0000 [ 1245.455699][ T30] audit: type=1326 audit(2000001590.360:182): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32370 comm="syz.6.11195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f6e0619c819 code=0x7ffc0000 [ 1245.741208][ T30] audit: type=1326 audit(2000001590.894:183): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32388 comm="syz.4.11200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dd019c819 code=0x7ffc0000 [ 1245.844489][ T30] audit: type=1326 audit(2000001590.894:184): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32388 comm="syz.4.11200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dd019c819 code=0x7ffc0000 [ 1245.978615][ T30] audit: type=1326 audit(2000001590.894:185): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32388 comm="syz.4.11200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dd019c819 code=0x7ffc0000 [ 1246.115403][ T30] audit: type=1326 audit(2000001590.903:186): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32388 comm="syz.4.11200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8dd019c819 code=0x7ffc0000 [ 1246.258135][ T30] audit: type=1326 audit(2000001590.903:187): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=32388 comm="syz.4.11200" exe="/root/syz-executor" sig=0 arch=c000003e syscall=172 compat=0 ip=0x7f8dd019c819 code=0x7ffc0000 [ 1247.355609][T32438] loop5: detected capacity change from 0 to 512 [ 1247.439058][T32438] EXT4-fs (loop5): external journal device major/minor numbers have changed [ 1247.504405][T32438] EXT4-fs (loop5): failed to open journal device unknown-block(8,3) -6 [ 1247.878592][ T24] usb 4-1: new full-speed USB device number 34 using dummy_hcd [ 1248.058949][ T24] usb 4-1: unable to get BOS descriptor or descriptor too short [ 1248.068068][ T24] usb 4-1: not running at top speed; connect to a high speed hub [ 1248.127932][ T24] usb 4-1: New USB device found, idVendor=0ccd, idProduct=0014, bcdDevice= 0.40 [ 1248.137642][ T24] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1248.170307][ T24] usb 4-1: Product: syz [ 1248.188512][ T24] usb 4-1: Manufacturer: syz [ 1248.205409][ T24] usb 4-1: SerialNumber: syz [ 1248.404195][T32470] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1248.555693][ T24] usb 4-1: 1:1 : sample bitwidth 41 in over sample bytes 2 [ 1248.587095][T32472] new mount options do not match the existing superblock, will be ignored [ 1248.594980][ T24] usb 4-1: 1:1: All rates were zero [ 1248.601105][ T24] usb 4-1: 1:1 : invalid channels 0 [ 1248.617396][ T24] usb 4-1: 2:1 : UAC_AS_GENERAL descriptor not found [ 1248.710112][T32448] loop4: detected capacity change from 0 to 32768 [ 1248.762002][T32448] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.11233 (32448) [ 1248.791334][ T24] usb 4-1: USB disconnect, device number 34 [ 1248.848911][T32448] BTRFS info (device loop4): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1248.893612][T32448] BTRFS info (device loop4): using sha256 checksum algorithm [ 1248.916611][T32478] loop2: detected capacity change from 0 to 512 [ 1249.080998][T32478] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 1249.154453][ T5824] udevd[5824]: error opening ATTR{/sys/devices/platform/dummy_hcd.3/usb4/4-1/4-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 1249.167529][T32500] netlink: zone id is out of range [ 1249.175670][T32478] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8842c01c, mo2=0002] [ 1249.186242][T32478] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1249.193869][T32478] EXT4-fs error (device loop2): ext4_orphan_get:1397: inode #13: comm syz.2.11248: iget: bad i_size value: 12154761577498 [ 1249.205212][T32448] BTRFS info (device loop4): enabling ssd optimizations [ 1249.206804][T32478] loop2: lost file I/O error report for ino 13 type 5 pos 0x0 len 0x0 error -117 [ 1249.214369][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 1249.230043][ C0] EXT4-fs (loop2): initial error at time 2000001594: ext4_orphan_get:1397: inode 13 [ 1249.239541][ C0] EXT4-fs (loop2): last error at time 2000001594: ext4_orphan_get:1397: inode 13 [ 1249.259518][T32478] EXT4-fs error (device loop2): ext4_orphan_get:1400: comm syz.2.11248: couldn't read orphan inode 13 (err -117) [ 1249.271668][T32478] loop2: lost filesystem error report for type 5 error -117 [ 1249.271686][T32500] netlink: zone id is out of range [ 1249.271723][T32500] netlink: zone id is out of range [ 1249.289847][T32448] BTRFS info (device loop4): turning on async discard [ 1249.296756][T32448] BTRFS info (device loop4): enabling free space tree [ 1249.340464][T32478] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1249.343122][T32500] netlink: zone id is out of range [ 1249.428287][T32500] netlink: zone id is out of range [ 1249.438555][T32500] netlink: zone id is out of range [ 1249.473494][T32500] netlink: zone id is out of range [ 1249.481423][T32500] netlink: zone id is out of range [ 1249.517629][T32500] netlink: zone id is out of range [ 1249.617308][T32478] EXT4-fs warning (device loop2): dx_probe:859: inode #2: comm syz.2.11248: dx entry: limit 65535 != root limit 120 [ 1249.687558][ T6061] BTRFS info (device loop4): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1249.747685][T32478] EXT4-fs warning (device loop2): dx_probe:933: inode #2: comm syz.2.11248: Corrupt directory, running e2fsck is recommended [ 1249.843781][ T1211] usb 7-1: new high-speed USB device number 13 using dummy_hcd [ 1250.058369][ T1211] usb 7-1: Using ep0 maxpacket: 32 [ 1250.075939][ T1211] usb 7-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1250.138514][ T1211] usb 7-1: New USB device found, idVendor=8086, idProduct=0b63, bcdDevice=6a.32 [ 1250.168113][ T1211] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1250.198699][ T1211] usb 7-1: Product: syz [ 1250.208156][ T1211] usb 7-1: Manufacturer: syz [ 1250.212836][ T1211] usb 7-1: SerialNumber: syz [ 1250.255085][ T6051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1250.298118][ T1211] usb 7-1: config 0 descriptor?? [ 1250.531113][ T1211] ljca 7-1:0.0: bulk endpoints not found [ 1250.599370][ T1211] usb 7-1: USB disconnect, device number 13 [ 1250.854323][T32532] netlink: 'syz.2.11263': attribute type 1 has an invalid length. [ 1250.911188][T32532] netlink: 4 bytes leftover after parsing attributes in process `syz.2.11263'. [ 1251.765853][T32567] netlink: 'syz.6.11284': attribute type 10 has an invalid length. [ 1252.004449][T32572] loop4: detected capacity change from 0 to 164 [ 1252.016237][T32574] loop3: detected capacity change from 0 to 256 [ 1252.081627][T32572] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1252.425115][T32588] loop5: detected capacity change from 0 to 64 [ 1253.809706][T32617] net_ratelimit: 2 callbacks suppressed [ 1253.809736][T32617] openvswitch: netlink: Multiple metadata blocks provided [ 1253.931332][T32597] loop1: detected capacity change from 0 to 32768 [ 1253.946057][T32585] loop6: detected capacity change from 0 to 40427 [ 1253.974926][T32597] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 (7:1) scanned by syz.1.11299 (32597) [ 1254.004981][T32585] F2FS-fs (loop6): Invalid SB checksum offset: 0 [ 1254.044250][T32585] F2FS-fs (loop6): Can't find valid F2FS filesystem in 2th superblock [ 1254.077666][T32585] F2FS-fs (loop6): invalid crc value [ 1254.084925][T32597] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1254.128126][T32597] BTRFS info (device loop1): using sha256 checksum algorithm [ 1254.259357][T32597] BTRFS info (device loop1): enabling ssd optimizations [ 1254.280625][T32597] BTRFS info (device loop1): turning on async discard [ 1254.300922][T32597] BTRFS info (device loop1): enabling free space tree [ 1254.461534][T32644] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1254.522786][T32585] F2FS-fs (loop6): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1254.608197][T32585] F2FS-fs (loop6): Try to recover 2th superblock, ret: 0 [ 1254.643004][ T6049] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1254.674658][T32585] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 1254.838099][T32654] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined [ 1254.909881][T32585] F2FS-fs (loop6): inconsistent node block, node_type:2, nid:6, node_footer[nid:6,ino:6,ofs:0,cpver:1219692001,blkaddr:4610] [ 1255.089928][T32591] loop2: detected capacity change from 0 to 32768 [ 1255.189345][T32591] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1255.264340][T24921] syz-executor: attempt to access beyond end of device [ 1255.264340][T24921] loop6: rw=2049, sector=40960, nr_sectors = 32 limit=40427 [ 1255.333352][T32591] XFS (loop2): Ending clean mount [ 1255.378166][T24921] CPU: 0 UID: 0 PID: 24921 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 1255.378220][T24921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1255.378244][T24921] Call Trace: [ 1255.378257][T24921] [ 1255.378272][T24921] dump_stack_lvl+0x100/0x190 [ 1255.378343][T24921] f2fs_handle_critical_error+0x5d7/0x970 [ 1255.378405][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.378454][T24921] ? f2fs_build_fault_attr+0x53/0x280 [ 1255.378515][T24921] f2fs_write_end_io+0xc3f/0xf30 [ 1255.378581][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1255.378650][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.378708][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1255.378769][T24921] bio_endio+0x7a3/0x910 [ 1255.378827][T24921] submit_bio_noacct+0x64c/0x2010 [ 1255.378886][T24921] f2fs_submit_write_bio+0x133/0x350 [ 1255.378947][T24921] __submit_merged_bio+0x331/0x7b0 [ 1255.379018][T24921] __submit_merged_write_cond+0x3fe/0x510 [ 1255.379093][T24921] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 1255.379170][T24921] ? __pfx___might_resched+0x10/0x10 [ 1255.379216][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.379263][T24921] ? folio_clear_dirty_for_io+0x178/0x820 [ 1255.379330][T24921] f2fs_sync_node_pages+0x1620/0x19b0 [ 1255.379408][T24921] ? __pfx_f2fs_sync_node_pages+0x10/0x10 [ 1255.379463][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.379511][T24921] ? __lock_acquire+0x4a5/0x2630 [ 1255.379614][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.379665][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.379714][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.379762][T24921] ? up_write+0x290/0x4f0 [ 1255.379808][T24921] block_operations+0x932/0xfc0 [ 1255.379866][T24921] ? __pfx_block_operations+0x10/0x10 [ 1255.379969][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380020][T24921] ? ktime_get+0x200/0x300 [ 1255.380072][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380120][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380168][T24921] ? rcu_is_watching+0x12/0xc0 [ 1255.380222][T24921] f2fs_write_checkpoint+0x582/0x5550 [ 1255.380277][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380325][T24921] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1255.380386][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380434][T24921] ? __wait_for_common+0x1f3/0x4c0 [ 1255.380472][T24921] ? __pfx_schedule_timeout+0x10/0x10 [ 1255.380534][T24921] ? __pfx___wait_for_common+0x10/0x10 [ 1255.380570][T24921] ? kasan_quarantine_put+0x104/0x240 [ 1255.380622][T24921] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1255.380667][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380726][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380774][T24921] ? rcu_is_watching+0x12/0xc0 [ 1255.380816][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.380863][T24921] ? kthread_stop+0x280/0x680 [ 1255.380934][T24921] kill_f2fs_super+0x3e5/0x490 [ 1255.380979][T24921] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1255.381046][T24921] ? lockdep_hardirqs_on+0x78/0x100 [ 1255.381084][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.381133][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.381198][T24921] deactivate_locked_super+0xc1/0x1b0 [ 1255.381251][T24921] deactivate_super+0xe7/0x110 [ 1255.381305][T24921] cleanup_mnt+0x21f/0x450 [ 1255.381366][T24921] task_work_run+0x150/0x240 [ 1255.381408][T24921] ? __pfx_task_work_run+0x10/0x10 [ 1255.381449][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.381498][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.381555][T24921] exit_to_user_mode_loop+0x100/0x4a0 [ 1255.381623][T24921] do_syscall_64+0x706/0xf80 [ 1255.381659][T24921] ? irqentry_exit+0x133/0x650 [ 1255.381701][T24921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1255.381741][T24921] RIP: 0033:0x7f6e0619da57 [ 1255.381772][T24921] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1255.381810][T24921] RSP: 002b:00007ffd80a74658 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1255.381847][T24921] RAX: 0000000000000000 RBX: 00007f6e06232048 RCX: 00007f6e0619da57 [ 1255.381872][T24921] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd80a74710 [ 1255.381903][T24921] RBP: 00007ffd80a74710 R08: 00007ffd80a75710 R09: 00000000ffffffff [ 1255.381929][T24921] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd80a757a0 [ 1255.381954][T24921] R13: 00007f6e06232048 R14: 00000000001246c5 R15: 00007ffd80a757e0 [ 1255.382007][T24921] [ 1255.861801][T24921] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 1255.888228][T32591] XFS (loop2): Quotacheck needed: Please wait. [ 1255.918239][T24921] CPU: 1 UID: 0 PID: 24921 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 1255.918289][T24921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1255.918314][T24921] Call Trace: [ 1255.918326][T24921] [ 1255.918341][T24921] dump_stack_lvl+0x100/0x190 [ 1255.918411][T24921] f2fs_handle_critical_error+0x5d7/0x970 [ 1255.918472][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.918520][T24921] ? f2fs_build_fault_attr+0x53/0x280 [ 1255.918579][T24921] f2fs_write_end_io+0xc3f/0xf30 [ 1255.918653][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1255.918721][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.918779][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1255.918840][T24921] bio_endio+0x7a3/0x910 [ 1255.918896][T24921] submit_bio_noacct+0x64c/0x2010 [ 1255.918950][T24921] f2fs_submit_write_bio+0x133/0x350 [ 1255.919010][T24921] __submit_merged_bio+0x331/0x7b0 [ 1255.919077][T24921] __submit_merged_write_cond+0x3fe/0x510 [ 1255.919149][T24921] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 1255.919223][T24921] ? __pfx___might_resched+0x10/0x10 [ 1255.919266][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.919312][T24921] ? folio_clear_dirty_for_io+0x178/0x820 [ 1255.919379][T24921] f2fs_sync_node_pages+0x1620/0x19b0 [ 1255.919457][T24921] ? __pfx_f2fs_sync_node_pages+0x10/0x10 [ 1255.919513][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.919560][T24921] ? __lock_acquire+0x4a5/0x2630 [ 1255.919668][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.919719][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.919769][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.919816][T24921] ? up_write+0x290/0x4f0 [ 1255.919863][T24921] block_operations+0x932/0xfc0 [ 1255.919919][T24921] ? __pfx_block_operations+0x10/0x10 [ 1255.920016][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920067][T24921] ? ktime_get+0x200/0x300 [ 1255.920116][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920166][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920212][T24921] ? rcu_is_watching+0x12/0xc0 [ 1255.920264][T24921] f2fs_write_checkpoint+0x582/0x5550 [ 1255.920318][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920365][T24921] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1255.920424][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920470][T24921] ? __wait_for_common+0x1f3/0x4c0 [ 1255.920507][T24921] ? __pfx_schedule_timeout+0x10/0x10 [ 1255.920569][T24921] ? __pfx___wait_for_common+0x10/0x10 [ 1255.920606][T24921] ? kasan_quarantine_put+0x104/0x240 [ 1255.920662][T24921] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1255.920708][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920767][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920814][T24921] ? rcu_is_watching+0x12/0xc0 [ 1255.920857][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.920904][T24921] ? kthread_stop+0x280/0x680 [ 1255.920968][T24921] kill_f2fs_super+0x3e5/0x490 [ 1255.921013][T24921] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1255.921079][T24921] ? lockdep_hardirqs_on+0x78/0x100 [ 1255.921116][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.921164][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.921226][T24921] deactivate_locked_super+0xc1/0x1b0 [ 1255.921279][T24921] deactivate_super+0xe7/0x110 [ 1255.921331][T24921] cleanup_mnt+0x21f/0x450 [ 1255.921392][T24921] task_work_run+0x150/0x240 [ 1255.921434][T24921] ? __pfx_task_work_run+0x10/0x10 [ 1255.921475][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.921524][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1255.921581][T24921] exit_to_user_mode_loop+0x100/0x4a0 [ 1255.921657][T24921] do_syscall_64+0x706/0xf80 [ 1255.921693][T24921] ? irqentry_exit+0x133/0x650 [ 1255.921736][T24921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1255.921777][T24921] RIP: 0033:0x7f6e0619da57 [ 1255.921808][T24921] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1255.921846][T24921] RSP: 002b:00007ffd80a74658 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1255.921883][T24921] RAX: 0000000000000000 RBX: 00007f6e06232048 RCX: 00007f6e0619da57 [ 1255.921908][T24921] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd80a74710 [ 1255.921933][T24921] RBP: 00007ffd80a74710 R08: 00007ffd80a75710 R09: 00000000ffffffff [ 1255.921959][T24921] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd80a757a0 [ 1255.921983][T24921] R13: 00007f6e06232048 R14: 00000000001246c5 R15: 00007ffd80a757e0 [ 1255.922034][T24921] [ 1255.922050][T24921] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 1256.320414][T20970] usb 2-1: new full-speed USB device number 26 using dummy_hcd [ 1256.397082][T32591] XFS (loop2): Quotacheck: Done. [ 1256.423020][T24921] CPU: 0 UID: 0 PID: 24921 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 1256.423072][T24921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1256.423096][T24921] Call Trace: [ 1256.423109][T24921] [ 1256.423124][T24921] dump_stack_lvl+0x100/0x190 [ 1256.423193][T24921] f2fs_handle_critical_error+0x5d7/0x970 [ 1256.423254][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.423302][T24921] ? f2fs_build_fault_attr+0x53/0x280 [ 1256.423362][T24921] f2fs_write_end_io+0xc3f/0xf30 [ 1256.423432][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1256.423501][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.423558][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1256.423620][T24921] bio_endio+0x7a3/0x910 [ 1256.423686][T24921] submit_bio_noacct+0x64c/0x2010 [ 1256.423739][T24921] f2fs_submit_write_bio+0x133/0x350 [ 1256.423799][T24921] __submit_merged_bio+0x331/0x7b0 [ 1256.423867][T24921] __submit_merged_write_cond+0x3fe/0x510 [ 1256.423940][T24921] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 1256.424015][T24921] ? __pfx___might_resched+0x10/0x10 [ 1256.424058][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.424106][T24921] ? folio_clear_dirty_for_io+0x178/0x820 [ 1256.424173][T24921] f2fs_sync_node_pages+0x1620/0x19b0 [ 1256.424252][T24921] ? __pfx_f2fs_sync_node_pages+0x10/0x10 [ 1256.424308][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.424355][T24921] ? __lock_acquire+0x4a5/0x2630 [ 1256.424458][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.424509][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.424559][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.424605][T24921] ? up_write+0x290/0x4f0 [ 1256.424702][T24921] block_operations+0x932/0xfc0 [ 1256.424758][T24921] ? __pfx_block_operations+0x10/0x10 [ 1256.424856][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.424905][T24921] ? ktime_get+0x200/0x300 [ 1256.424957][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425005][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425052][T24921] ? rcu_is_watching+0x12/0xc0 [ 1256.425104][T24921] f2fs_write_checkpoint+0x582/0x5550 [ 1256.425158][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425205][T24921] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1256.425265][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425312][T24921] ? __wait_for_common+0x1f3/0x4c0 [ 1256.425350][T24921] ? __pfx_schedule_timeout+0x10/0x10 [ 1256.425412][T24921] ? __pfx___wait_for_common+0x10/0x10 [ 1256.425448][T24921] ? kasan_quarantine_put+0x104/0x240 [ 1256.425498][T24921] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1256.425544][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425601][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425653][T24921] ? rcu_is_watching+0x12/0xc0 [ 1256.425696][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425742][T24921] ? kthread_stop+0x280/0x680 [ 1256.425808][T24921] kill_f2fs_super+0x3e5/0x490 [ 1256.425851][T24921] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1256.425911][T24921] ? lockdep_hardirqs_on+0x78/0x100 [ 1256.425948][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.425996][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.426059][T24921] deactivate_locked_super+0xc1/0x1b0 [ 1256.426112][T24921] deactivate_super+0xe7/0x110 [ 1256.426164][T24921] cleanup_mnt+0x21f/0x450 [ 1256.426224][T24921] task_work_run+0x150/0x240 [ 1256.426265][T24921] ? __pfx_task_work_run+0x10/0x10 [ 1256.426305][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.426354][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.426413][T24921] exit_to_user_mode_loop+0x100/0x4a0 [ 1256.426481][T24921] do_syscall_64+0x706/0xf80 [ 1256.426517][T24921] ? irqentry_exit+0x133/0x650 [ 1256.426559][T24921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1256.426599][T24921] RIP: 0033:0x7f6e0619da57 [ 1256.426637][T24921] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1256.426674][T24921] RSP: 002b:00007ffd80a74658 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1256.426711][T24921] RAX: 0000000000000000 RBX: 00007f6e06232048 RCX: 00007f6e0619da57 [ 1256.426736][T24921] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd80a74710 [ 1256.426760][T24921] RBP: 00007ffd80a74710 R08: 00007ffd80a75710 R09: 00000000ffffffff [ 1256.426786][T24921] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd80a757a0 [ 1256.426811][T24921] R13: 00007f6e06232048 R14: 00000000001246c5 R15: 00007ffd80a757e0 [ 1256.426861][T24921] [ 1256.426891][T24921] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 1256.910834][T24921] CPU: 0 UID: 0 PID: 24921 Comm: syz-executor Not tainted syzkaller #0 PREEMPT(full) [ 1256.910895][T24921] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1256.910920][T24921] Call Trace: [ 1256.910932][T24921] [ 1256.910947][T24921] dump_stack_lvl+0x100/0x190 [ 1256.911017][T24921] f2fs_handle_critical_error+0x5d7/0x970 [ 1256.911077][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.911125][T24921] ? f2fs_build_fault_attr+0x53/0x280 [ 1256.911185][T24921] f2fs_write_end_io+0xc3f/0xf30 [ 1256.911251][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1256.911319][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.911376][T24921] ? __pfx_f2fs_write_end_io+0x10/0x10 [ 1256.911437][T24921] bio_endio+0x7a3/0x910 [ 1256.911493][T24921] submit_bio_noacct+0x64c/0x2010 [ 1256.911547][T24921] f2fs_submit_write_bio+0x133/0x350 [ 1256.911607][T24921] __submit_merged_bio+0x331/0x7b0 [ 1256.911675][T24921] __submit_merged_write_cond+0x3fe/0x510 [ 1256.911748][T24921] ? __pfx___submit_merged_write_cond+0x10/0x10 [ 1256.911823][T24921] ? __pfx___might_resched+0x10/0x10 [ 1256.911864][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.911918][T24921] ? folio_clear_dirty_for_io+0x178/0x820 [ 1256.911983][T24921] f2fs_sync_node_pages+0x1620/0x19b0 [ 1256.912060][T24921] ? __pfx_f2fs_sync_node_pages+0x10/0x10 [ 1256.912114][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912162][T24921] ? __lock_acquire+0x4a5/0x2630 [ 1256.912271][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912322][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912371][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912420][T24921] ? up_write+0x290/0x4f0 [ 1256.912465][T24921] block_operations+0x932/0xfc0 [ 1256.912520][T24921] ? __pfx_block_operations+0x10/0x10 [ 1256.912618][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912671][T24921] ? ktime_get+0x200/0x300 [ 1256.912722][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912770][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912815][T24921] ? rcu_is_watching+0x12/0xc0 [ 1256.912864][T24921] f2fs_write_checkpoint+0x582/0x5550 [ 1256.912923][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.912967][T24921] ? _raw_spin_unlock_irq+0x2e/0x50 [ 1256.913021][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.913065][T24921] ? __wait_for_common+0x1f3/0x4c0 [ 1256.913099][T24921] ? __pfx_schedule_timeout+0x10/0x10 [ 1256.913156][T24921] ? __pfx___wait_for_common+0x10/0x10 [ 1256.913190][T24921] ? kasan_quarantine_put+0x104/0x240 [ 1256.913239][T24921] ? __pfx_f2fs_write_checkpoint+0x10/0x10 [ 1256.913281][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.913339][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.913386][T24921] ? rcu_is_watching+0x12/0xc0 [ 1256.913427][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.913473][T24921] ? kthread_stop+0x280/0x680 [ 1256.913535][T24921] kill_f2fs_super+0x3e5/0x490 [ 1256.913581][T24921] ? __pfx_kill_f2fs_super+0x10/0x10 [ 1256.913644][T24921] ? lockdep_hardirqs_on+0x78/0x100 [ 1256.913682][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.913731][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.913794][T24921] deactivate_locked_super+0xc1/0x1b0 [ 1256.913848][T24921] deactivate_super+0xe7/0x110 [ 1256.913906][T24921] cleanup_mnt+0x21f/0x450 [ 1256.913968][T24921] task_work_run+0x150/0x240 [ 1256.914011][T24921] ? __pfx_task_work_run+0x10/0x10 [ 1256.914052][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.914100][T24921] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1256.914157][T24921] exit_to_user_mode_loop+0x100/0x4a0 [ 1256.914226][T24921] do_syscall_64+0x706/0xf80 [ 1256.914263][T24921] ? irqentry_exit+0x133/0x650 [ 1256.914304][T24921] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1256.914344][T24921] RIP: 0033:0x7f6e0619da57 [ 1256.914376][T24921] Code: a2 c7 05 9c fc 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 1256.914415][T24921] RSP: 002b:00007ffd80a74658 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 1256.914453][T24921] RAX: 0000000000000000 RBX: 00007f6e06232048 RCX: 00007f6e0619da57 [ 1256.914478][T24921] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffd80a74710 [ 1256.914502][T24921] RBP: 00007ffd80a74710 R08: 00007ffd80a75710 R09: 00000000ffffffff [ 1256.914528][T24921] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffd80a757a0 [ 1256.914553][T24921] R13: 00007f6e06232048 R14: 00000000001246c5 R15: 00007ffd80a757e0 [ 1256.914605][T24921] [ 1256.917300][T24921] F2FS-fs (loop6): Stopped filesystem due to reason: 3 [ 1256.935872][ T6051] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 1257.241286][T20970] usb 2-1: New USB device found, idVendor=0c45, idProduct=6280, bcdDevice=d5.fc [ 1257.624567][T20970] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1257.689595][T20970] gspca_main: gspca_sn9c20x-2.14.0 probing 0c45:6280 [ 1258.081720][T20970] gspca_sn9c20x: Write register 1001 failed -71 [ 1258.102321][T20970] gspca_sn9c20x: Device initialization failed [ 1258.105090][T32707] usb usb9: check_ctrlrecip: process 32707 (syz.3.11341) requesting ep 01 but needs 81 [ 1258.137007][T20970] gspca_sn9c20x 2-1:252.0: probe with driver gspca_sn9c20x failed with error -71 [ 1258.221736][T20970] usb 2-1: USB disconnect, device number 26 [ 1258.224431][T32707] usb usb9: usbfs: process 32707 (syz.3.11341) did not claim interface 0 before use [ 1258.985922][T32736] netlink: 'syz.3.11352': attribute type 5 has an invalid length. [ 1259.654567][T32764] netlink: 212 bytes leftover after parsing attributes in process `syz.1.11367'. [ 1259.698193][T32759] loop3: detected capacity change from 0 to 2048 [ 1259.738161][T32759] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024) [ 1259.857678][ T302] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 1260.114038][ T312] openvswitch: netlink: IPv6 tunnel dst address is zero [ 1260.745685][ T337] x_tables: unsorted entry at hook 2 [ 1261.017218][ T348] netlink: 'syz.2.11390': attribute type 7 has an invalid length. [ 1261.038059][ T348] netlink: 'syz.2.11390': attribute type 8 has an invalid length. [ 1261.386895][ T360] loop2: detected capacity change from 0 to 1764 [ 1261.812820][ T369] bond3: option arp_validate: invalid value (2048) [ 1261.827004][ T24] usb 7-1: new high-speed USB device number 14 using dummy_hcd [ 1261.874388][ T369] bond3 (unregistering): Released all slaves [ 1262.030990][ T24] usb 7-1: config 1 contains an unexpected descriptor of type 0x1, skipping [ 1262.065602][ T24] usb 7-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1262.101512][ T24] usb 7-1: config 1 has 1 interface, different from the descriptor's value: 2 [ 1262.143217][ T24] usb 7-1: config 1 has no interface number 0 [ 1262.156845][ T24] usb 7-1: too many endpoints for config 1 interface 1 altsetting 1: 32, using maximum allowed: 30 [ 1262.208418][ T24] usb 7-1: config 1 interface 1 altsetting 1 has 0 endpoint descriptors, different from the interface descriptor's value: 32 [ 1262.272887][ T24] usb 7-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 1262.293529][ T24] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1262.331729][ T24] usb 7-1: Product: syz [ 1262.335979][ T24] usb 7-1: Manufacturer: syz [ 1262.379482][ T24] usb 7-1: SerialNumber: syz [ 1262.510770][ T361] loop1: detected capacity change from 0 to 32768 [ 1262.629400][ T361] jfs_lookup: iget failed on inum 4 [ 1262.661380][ T376] loop5: detected capacity change from 0 to 32768 [ 1262.779427][ T376] JBD2: Ignoring recovery information on journal [ 1262.812818][ T392] loop4: detected capacity change from 0 to 1764 [ 1262.897426][ T376] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1262.966158][ T392] iso9660: Corrupted directory entry in block 0 of inode 1792 [ 1263.046283][ T24] usb 7-1: USB disconnect, device number 14 [ 1263.419462][ T6055] ocfs2: Unmounting device (7,5) on (node local) [ 1264.183905][ T427] xt_socket: unknown flags 0x48 [ 1264.442764][ T436] loop2: detected capacity change from 0 to 64 [ 1264.687626][T20970] usb 5-1: new full-speed USB device number 10 using dummy_hcd [ 1264.925548][T20970] usb 5-1: config 0 has an invalid interface number: 20 but max is 0 [ 1264.956639][T20970] usb 5-1: config 0 has no interface number 0 [ 1264.956974][ T458] netlink: 'syz.6.11443': attribute type 14 has an invalid length. [ 1264.971193][T20970] usb 5-1: config 0 interface 20 altsetting 0 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 1264.971253][T20970] usb 5-1: config 0 interface 20 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 1264.974521][T20970] usb 5-1: New USB device found, idVendor=04e6, idProduct=000b, bcdDevice= 1.00 [ 1265.006901][ T459] loop3: detected capacity change from 0 to 512 [ 1265.035708][ T458] netlink: 164 bytes leftover after parsing attributes in process `syz.6.11443'. [ 1265.057870][ T459] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 1265.079213][T20970] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1265.088549][T20970] usb 5-1: Product: syz [ 1265.093113][T20970] usb 5-1: Manufacturer: syz [ 1265.097831][T20970] usb 5-1: SerialNumber: syz [ 1265.105260][ T462] : entered promiscuous mode [ 1265.118734][T20970] usb 5-1: config 0 descriptor?? [ 1265.129263][ T437] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 1265.172359][ T459] EXT4-fs error (device loop3): ext4_iget_extra_inode:5041: inode #15: comm syz.3.11445: corrupted in-inode xattr: e_value out of bounds [ 1265.176917][T20970] usb-storage 5-1:0.20: USB Mass Storage device detected [ 1265.206585][ T459] loop3: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1265.211044][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 1265.227130][ C1] EXT4-fs (loop3): initial error at time 2000001609: ext4_iget_extra_inode:5041: inode 15 [ 1265.237323][ C1] EXT4-fs (loop3): last error at time 2000001609: ext4_iget_extra_inode:5041: inode 15 [ 1265.250837][ T459] EXT4-fs (loop3): Remounting filesystem read-only [ 1265.258853][T20970] usb-storage 5-1:0.20: Quirks match for vid 04e6 pid 000b: 4 [ 1265.299882][ T459] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1265.444115][T20970] scsi host1: usb-storage 5-1:0.20 [ 1265.578604][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1265.797167][ T24] usb 5-1: USB disconnect, device number 10 [ 1265.878642][ T484] loop3: detected capacity change from 0 to 512 [ 1265.921913][ T488] loop6: detected capacity change from 0 to 512 [ 1265.942620][ T484] EXT4-fs error (device loop3): ext4_map_blocks:791: inode #11: block 10: comm syz.3.11453: lblock 0 mapped to illegal pblock 10 (length 1) [ 1265.987035][ T484] loop3: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1265.987951][ T484] EXT4-fs (loop3): Remounting filesystem read-only [ 1265.997224][ C1] EXT4-fs (loop3): error count since last fsck: 1 [ 1265.997260][ C1] EXT4-fs (loop3): initial error at time 2000001609: ext4_map_blocks:791: inode 11: block 10 [ 1265.997328][ C1] EXT4-fs (loop3): last error at time 2000001609: ext4_map_blocks:791: inode 11: block 10 [ 1266.074948][ T488] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1266.099383][ T484] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 1266.127093][ T488] ext4 filesystem being mounted at /551/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1266.164402][ T494] loop1: detected capacity change from 0 to 4096 [ 1266.173550][ T484] EXT4-fs warning (device loop3): ext4_evict_inode:269: couldn't mark inode dirty (err -30) [ 1266.174543][ T494] ntfs3(loop1): Different NTFS sector size (2048) and media sector size (512). [ 1266.188025][ T484] EXT4-fs (loop3): 1 orphan inode deleted [ 1266.201778][ T484] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1266.230614][ T488] EXT4-fs error (device loop6): ext4_xattr_block_list:766: inode #15: comm syz.6.11456: corrupted xattr block 13: invalid checksum [ 1266.405899][ T494] ntfs3(loop1): Failed to initialize $Extend/$ObjId. [ 1266.436911][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1266.496117][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1266.542472][ T500] ÿ1Ie5nè‹Ò: entered promiscuous mode [ 1267.163959][ T519] loop3: detected capacity change from 0 to 256 [ 1267.458752][ T519] FAT-fs (loop3): Directory bread(block 64) failed [ 1267.498708][ T519] FAT-fs (loop3): Directory bread(block 65) failed [ 1267.505376][ T519] FAT-fs (loop3): Directory bread(block 66) failed [ 1267.535155][ T519] FAT-fs (loop3): Directory bread(block 67) failed [ 1267.562208][ T519] FAT-fs (loop3): Directory bread(block 68) failed [ 1267.605166][ T519] FAT-fs (loop3): Directory bread(block 69) failed [ 1267.628993][ T519] FAT-fs (loop3): Directory bread(block 70) failed [ 1267.635672][ T519] FAT-fs (loop3): Directory bread(block 71) failed [ 1267.707073][ T519] FAT-fs (loop3): Directory bread(block 72) failed [ 1267.738149][ T519] FAT-fs (loop3): Directory bread(block 73) failed [ 1267.925886][ T547] netlink: 'syz.4.11484': attribute type 23 has an invalid length. [ 1268.314339][ T558] netlink: 8 bytes leftover after parsing attributes in process `syz.3.11488'. [ 1268.828461][ T577] loop3: detected capacity change from 0 to 64 [ 1268.865822][T20970] usb 3-1: new high-speed USB device number 26 using dummy_hcd [ 1269.068998][T20970] usb 3-1: Using ep0 maxpacket: 8 [ 1269.084596][T20970] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1269.103510][ T546] loop6: detected capacity change from 0 to 32768 [ 1269.110131][T20970] usb 3-1: config 0 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 1269.138074][T20970] usb 3-1: New USB device found, idVendor=16d0, idProduct=10a9, bcdDevice=30.52 [ 1269.148040][ T546] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.11483 (546) [ 1269.173308][T20970] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1269.198404][T20970] usb 3-1: Product: syz [ 1269.202802][T20970] usb 3-1: Manufacturer: syz [ 1269.239871][T20970] usb 3-1: SerialNumber: syz [ 1269.247268][ T546] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1269.292798][T20970] usb 3-1: config 0 descriptor?? [ 1269.322330][ T546] BTRFS info (device loop6): using sha256 checksum algorithm [ 1269.406157][ T589] loop5: detected capacity change from 0 to 1024 [ 1269.502249][ T589] hfsplus: failed to load extents file [ 1269.513093][ T546] BTRFS info (device loop6): enabling ssd optimizations [ 1269.560906][T20972] usb 5-1: new high-speed USB device number 11 using dummy_hcd [ 1269.569582][ T546] BTRFS info (device loop6): turning on async discard [ 1269.593989][ T546] BTRFS info (device loop6): enabling free space tree [ 1269.698245][ T608] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11507'. [ 1269.742195][T20972] usb 5-1: Using ep0 maxpacket: 16 [ 1269.798614][T20972] usb 5-1: New USB device found, idVendor=061d, idProduct=c020, bcdDevice=9c.15 [ 1269.832449][T20972] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1269.843587][T20970] usb 3-1: USB disconnect, device number 26 [ 1269.850540][T24921] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1269.871420][T20972] usb 5-1: Product: syz [ 1269.897413][T20972] usb 5-1: Manufacturer: syz [ 1269.902099][T20972] usb 5-1: SerialNumber: syz [ 1269.957326][T20972] usb 5-1: config 0 descriptor?? [ 1269.984929][T20972] ssu100 5-1:0.0: Quatech SSU-100 USB to Serial Driver converter detected [ 1270.432747][T20972] ssu100 5-1:0.0: probe with driver ssu100 failed with error -71 [ 1270.469018][T20972] usb 5-1: USB disconnect, device number 11 [ 1270.511953][ T6211] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 1270.703895][ T6211] usb 4-1: Using ep0 maxpacket: 32 [ 1270.721544][ T6211] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1270.754409][ T6211] usb 4-1: New USB device found, idVendor=8086, idProduct=0b63, bcdDevice=6a.32 [ 1270.780691][ T6211] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1270.800200][ T6211] usb 4-1: Product: syz [ 1270.804444][ T6211] usb 4-1: Manufacturer: syz [ 1270.809075][ T6211] usb 4-1: SerialNumber: syz [ 1270.828458][ T6211] usb 4-1: config 0 descriptor?? [ 1270.907164][ T606] loop1: detected capacity change from 0 to 32768 [ 1270.952508][ T606] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1271.015678][ T606] XFS (loop1): Ending clean mount [ 1271.089830][ T6211] ljca 4-1:0.0: bulk endpoints not found [ 1271.104587][ T6211] usb 4-1: USB disconnect, device number 35 [ 1271.337687][ T6049] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1271.659347][ T655] QAT: Device 7 not found [ 1272.080448][ T667] netlink: 1372 bytes leftover after parsing attributes in process `syz.4.11534'. [ 1272.573077][ T686] openvswitch: netlink: Flow actions attr not present in new flow. [ 1272.584735][ T688] openvswitch: netlink: IPv4 tun info is not correct [ 1272.997131][ T702] loop5: detected capacity change from 0 to 512 [ 1273.085211][ T702] EXT4-fs warning (device loop5): dx_probe:843: Directory (ino: 2) htree depth 0x0002 exceedsupported value [ 1273.117408][ T702] EXT4-fs warning (device loop5): dx_probe:848: Enable large directory feature to access it [ 1273.198608][ T702] EXT4-fs warning (device loop5): dx_probe:933: inode #2: comm syz.5.11548: Corrupt directory, running e2fsck is recommended [ 1273.289879][ T702] EXT4-fs (loop5): Cannot turn on journaled quota: type 1: error -117 [ 1273.331641][ T702] EXT4-fs error (device loop5): ext4_iget_extra_inode:5041: inode #15: comm syz.5.11548: corrupted in-inode xattr: invalid ea_ino [ 1273.373414][ T702] loop5: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1273.385906][ C1] EXT4-fs (loop5): error count since last fsck: 1 [ 1273.401611][ C1] EXT4-fs (loop5): initial error at time 2000001616: ext4_iget_extra_inode:5041: inode 15 [ 1273.411609][ C1] EXT4-fs (loop5): last error at time 2000001616: ext4_iget_extra_inode:5041: inode 15 [ 1273.418237][ T714] netlink: 56 bytes leftover after parsing attributes in process `syz.2.11554'. [ 1273.423839][ T712] tmpfs: Bad value for 'mpol' [ 1273.443404][ T702] EXT4-fs error (device loop5): ext4_orphan_get:1400: comm syz.5.11548: couldn't read orphan inode 15 (err -117) [ 1273.482259][ T702] loop5: lost filesystem error report for type 5 error -117 [ 1273.491157][ T674] loop6: detected capacity change from 0 to 32768 [ 1273.491609][ T702] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1273.716274][ T702] EXT4-fs error (device loop5): ext4_xattr_set_entry:1670: inode #2: comm syz.5.11548: corrupted xattr entries [ 1274.003536][ T725] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11560'. [ 1274.096562][ T704] loop4: detected capacity change from 0 to 32768 [ 1274.108557][ T6055] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1274.327378][ T730] loop1: detected capacity change from 0 to 2048 [ 1274.379144][ T730] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1275.014458][ T752] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11568'. [ 1275.034489][ T752] netlink: 16 bytes leftover after parsing attributes in process `syz.4.11568'. [ 1275.278854][ T763] Unsupported ieee802154 address type: 0 [ 1275.610331][ T774] netlink: 'syz.6.11582': attribute type 11 has an invalid length. [ 1275.656604][ T774] netlink: 224 bytes leftover after parsing attributes in process `syz.6.11582'. [ 1275.886922][ T6211] usb 5-1: new high-speed USB device number 12 using dummy_hcd [ 1275.915300][ T787] loop6: detected capacity change from 0 to 512 [ 1275.941245][ T787] EXT4-fs error (device loop6): ext4_orphan_get:1423: comm syz.6.11589: bad orphan inode 13 [ 1275.972929][ T787] loop6: lost filesystem error report for type 5 error -117 [ 1275.974400][ T787] ext4_test_bit(bit=12, block=4) = 1 [ 1275.987169][ C1] EXT4-fs (loop6): error count since last fsck: 1 [ 1275.987212][ C1] EXT4-fs (loop6): initial error at time 2000001619: ext4_orphan_get:1423 [ 1275.987256][ C1] EXT4-fs (loop6): last error at time 2000001619: ext4_orphan_get:1423 [ 1276.104803][ T787] is_bad_inode(inode)=0 [ 1276.109270][ T787] NEXT_ORPHAN(inode)=0 [ 1276.129521][ T6211] usb 5-1: config 0 has an invalid interface number: 237 but max is 0 [ 1276.143422][ T787] max_ino=32 [ 1276.146777][ T787] i_nlink=1 [ 1276.161527][ T6211] usb 5-1: config 0 has no interface number 0 [ 1276.173671][ T794] netlink: 'syz.5.11592': attribute type 5 has an invalid length. [ 1276.176442][ T787] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1276.197130][ T6211] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7 [ 1276.239386][ T6211] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 1276.249396][ T6211] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x8A has an invalid bInterval 0, changing to 7 [ 1276.288829][ T787] EXT4-fs warning (device loop6): dx_probe:812: inode #2: comm syz.6.11589: Hash code is SIPHASH, but hash not in dirent [ 1276.319983][ T6211] usb 5-1: config 0 interface 237 altsetting 0 endpoint 0x8A has invalid wMaxPacketSize 0 [ 1276.335816][ T787] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.11589: Corrupt directory, running e2fsck is recommended [ 1276.356383][ T787] EXT4-fs warning (device loop6): dx_probe:812: inode #2: comm syz.6.11589: Hash code is SIPHASH, but hash not in dirent [ 1276.370526][ T787] EXT4-fs warning (device loop6): dx_probe:933: inode #2: comm syz.6.11589: Corrupt directory, running e2fsck is recommended [ 1276.395701][ T6211] usb 5-1: New USB device found, idVendor=045e, idProduct=84bd, bcdDevice=89.b6 [ 1276.421303][ T6211] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1276.429396][ T6211] usb 5-1: Product: syz [ 1276.441947][ T6211] usb 5-1: Manufacturer: syz [ 1276.447482][ T787] EXT4-fs error (device loop6): ext4_find_dest_de:2049: inode #2: block 13: comm syz.6.11589: bad entry in directory: directory entry overrun - offset=24, inode=0, rec_len=131076, size=1024 fake=0 [ 1276.484232][ T6211] usb 5-1: SerialNumber: syz [ 1276.504021][ T6211] usb 5-1: config 0 descriptor?? [ 1276.535562][ T6211] xpad 5-1:0.237: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -90 [ 1276.573061][ T6211] input: Generic X-Box pad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.237/input/input80 [ 1276.605678][ T802] loop2: detected capacity change from 0 to 512 [ 1276.651398][ T802] EXT4-fs (loop2): 1 truncate cleaned up [ 1276.671886][ T802] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1276.691187][ T802] EXT4-fs error (device loop2): ext4_validate_block_bitmap:440: comm syz.2.11596: bg 0: block 465: padding at end of block bitmap is not set [ 1276.712058][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1276.731931][ T802] EXT4-fs error (device loop2) in ext4_setattr:6030: error 28 [ 1276.759336][ T6211] usb 5-1: USB disconnect, device number 12 [ 1277.044796][ T784] loop1: detected capacity change from 0 to 32768 [ 1277.067164][ T6051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1277.133011][ T784] (syz.1.11588,784,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1277.163532][ T784] (syz.1.11588,784,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1277.247261][ T784] JBD2: Ignoring recovery information on journal [ 1277.360200][ T822] ip6gre1: entered promiscuous mode [ 1277.511797][ T784] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 1277.939202][ T842] loop4: detected capacity change from 0 to 256 [ 1278.056910][ T6049] ocfs2: Unmounting device (7,1) on (node local) [ 1278.667601][ T863] loop6: detected capacity change from 0 to 16 [ 1278.714858][ T863] erofs (device loop6): mounted with root inode @ nid 36. [ 1278.770012][ T863] erofs (device loop6): not enough plain data on disk @ la 1024 of nid 36 [ 1278.814805][ T863] erofs (device loop6): read error -117 @ 0 of nid 36 [ 1279.135718][ T6211] usb 5-1: new high-speed USB device number 13 using dummy_hcd [ 1279.315304][ T6211] usb 5-1: New USB device found, idVendor=0497, idProduct=c001, bcdDevice=67.7a [ 1279.343458][ T6211] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1279.357649][ T6211] usb 5-1: Product: syz [ 1279.362653][ T6211] usb 5-1: Manufacturer: syz [ 1279.406000][ T6211] usb 5-1: SerialNumber: syz [ 1279.419817][ T845] loop2: detected capacity change from 0 to 32768 [ 1279.440784][ T6211] gspca_main: spca501-2.14.0 probing 0497:c001 [ 1279.856126][ T857] loop3: detected capacity change from 0 to 40427 [ 1279.873898][ T6211] gspca_spca501: reg write: error -71 [ 1279.879330][ T6211] spca501 5-1:68.0: Reg write failed for 0x02,0xa048,0x00 [ 1279.911197][ T857] F2FS-fs (loop3): Wrong MAIN_AREA boundary, start(4096) end(12800) block(12288) [ 1279.921715][ T6211] spca501 5-1:68.0: probe with driver spca501 failed with error -22 [ 1279.960541][ T857] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 1279.971422][ T6211] usb 5-1: USB disconnect, device number 13 [ 1280.014381][ T857] F2FS-fs (loop3): Image doesn't support compression [ 1280.040567][ T857] F2FS-fs (loop3): build fault injection rate: 690 [ 1280.077183][ T857] F2FS-fs (loop3): build fault injection type: 0x35f7 [ 1280.108461][ T857] F2FS-fs (loop3): invalid crc value [ 1280.192976][ T6322] usb 2-1: new low-speed USB device number 27 using dummy_hcd [ 1280.427458][ T6322] usb 2-1: unable to get BOS descriptor or descriptor too short [ 1280.433928][ T857] F2FS-fs (loop3): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1280.484114][ T6322] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 1280.509854][ T857] F2FS-fs (loop3): Start checkpoint disabled! [ 1280.563308][ T6322] usb 2-1: string descriptor 0 read error: -22 [ 1280.573149][ T6322] usb 2-1: New USB device found, idVendor=054c, idProduct=0095, bcdDevice=a5.6a [ 1280.582907][ T857] F2FS-fs (loop3): f2fs_disable_checkpoint() finish, err:0 [ 1280.600586][ T911] netlink: 20 bytes leftover after parsing attributes in process `syz.5.11645'. [ 1280.621981][ T857] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 1280.623540][ T6322] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1280.638077][ T911] netlink: 8 bytes leftover after parsing attributes in process `syz.5.11645'. [ 1280.674130][ T857] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 1280.943386][ T6322] visor 2-1:1.0: Handspring Visor / Palm OS converter detected [ 1280.988114][ T6322] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0 [ 1281.072169][ T6322] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1 [ 1281.254293][ T6211] usb 2-1: USB disconnect, device number 27 [ 1281.275323][ T6211] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0 [ 1281.321624][ T939] loop6: detected capacity change from 0 to 1024 [ 1281.341403][ T6211] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1 [ 1281.362972][ T939] EXT4-fs: Ignoring removed oldalloc option [ 1281.374361][ T6211] visor 2-1:1.0: device disconnected [ 1281.382808][ T939] EXT4-fs: Ignoring removed bh option [ 1281.417584][ T939] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 1281.621188][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1282.221124][ T970] kAFS: unparsable volume name [ 1282.681510][ T986] mac80211_hwsim hwsim9 : renamed from wlan1 [ 1283.515246][ T1022] Device name not specified. [ 1283.515246][ T1022] [ 1283.937665][ T1048] lo: left allmulticast mode [ 1283.960559][ T1048] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1284.047174][ T1052] ip6gre1: entered promiscuous mode [ 1284.085888][ T1052] ip6gre1: entered allmulticast mode [ 1284.185616][ T1061] netlink: 'syz.3.11702': attribute type 1 has an invalid length. [ 1284.217535][ T1061] netlink: 'syz.3.11702': attribute type 1 has an invalid length. [ 1284.264339][ T1061] netlink: 9172 bytes leftover after parsing attributes in process `syz.3.11702'. [ 1284.630366][ T1075] dvmrp0: entered allmulticast mode [ 1284.675976][ T1083] comedi comedi0: rti802: I/O port conflict (0x1,4) [ 1285.862074][ T1130] binder: 1125:1130 ioctl c0306201 200000000580 returned -14 [ 1286.722201][ T6211] usb 3-1: new high-speed USB device number 27 using dummy_hcd [ 1286.754671][ T1163] RDS: rds_bind could not find a transport for fe80::bb, load rds_tcp or rds_rdma? [ 1286.798861][ T1157] loop5: detected capacity change from 0 to 4096 [ 1286.827758][ T1157] ntfs3(loop5): Different NTFS sector size (4096) and media sector size (512). [ 1286.916838][ T6211] usb 3-1: config 0 has an invalid interface number: 69 but max is 0 [ 1286.931603][ T6211] usb 3-1: config 0 has no interface number 0 [ 1286.957269][ T6211] usb 3-1: config 0 interface 69 altsetting 0 bulk endpoint 0x8 has invalid maxpacket 1023 [ 1286.983024][ T1157] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 1286.996380][ T1157] ntfs3(loop5): Failed to initialize $Extend/$Reparse. [ 1287.012888][ T6211] usb 3-1: config 0 interface 69 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 1287.082474][ T6211] usb 3-1: New USB device found, idVendor=0c4b, idProduct=0100, bcdDevice=d7.ca [ 1287.138383][ T6211] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1287.192276][ T6211] usb 3-1: Product: syz [ 1287.196880][ T6211] usb 3-1: Manufacturer: syz [ 1287.227516][ T6211] usb 3-1: SerialNumber: syz [ 1287.303121][T30955] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22. [ 1287.320044][ T6211] usb 3-1: config 0 descriptor?? [ 1287.333076][ T1132] loop6: detected capacity change from 0 to 32768 [ 1287.340390][ T6055] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 1287.364096][ T1152] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 1287.372310][ T6055] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1287.375576][ T6211] cyberjack 3-1:0.69: Reiner SCT Cyberjack USB card reader converter detected [ 1287.411830][ T6055] ntfs3(loop5): ino=3, ntfs_set_state failed, -22. [ 1287.438777][ T6211] usb 3-1: Reiner SCT Cyberjack USB card reader converter now attached to ttyUSB0 [ 1287.489069][T30955] ntfs3(loop5): ino=3, ntfs3_write_inode failed, -22. [ 1288.031852][ T6211] usb 3-1: USB disconnect, device number 27 [ 1288.072875][ T6211] cyberjack ttyUSB0: Reiner SCT Cyberjack USB card reader converter now disconnected from ttyUSB0 [ 1288.110224][ T6211] cyberjack 3-1:0.69: device disconnected [ 1288.536580][ T1207] loop6: detected capacity change from 0 to 16 [ 1288.589880][ T1207] erofs (device loop6): mounted with root inode @ nid 36. [ 1288.695365][ T1207] erofs (device loop6): readahead error at folio 2 @ nid 89 [ 1288.733455][ T1209] loop1: detected capacity change from 0 to 1764 [ 1288.757291][ T1207] erofs (device loop6): readahead error at folio 1 @ nid 89 [ 1288.801697][ T1207] erofs (device loop6): readahead error at folio 0 @ nid 89 [ 1288.862078][ T1207] erofs (device loop6): read error -117 @ 0 of nid 89 [ 1288.869232][ T30] kauditd_printk_skb: 15 callbacks suppressed [ 1288.869256][ T30] audit: type=1800 audit(2000001631.264:203): pid=1207 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.11771" name="file3" dev="loop6" ino=89 res=0 errno=0 [ 1288.919025][ T1219] netlink: 'syz.2.11776': attribute type 3 has an invalid length. [ 1288.991031][ T1213] loop3: detected capacity change from 0 to 4096 [ 1288.998336][ T1219] netlink: 224 bytes leftover after parsing attributes in process `syz.2.11776'. [ 1289.030921][ T1213] ntfs3(loop3): Different NTFS sector size (2048) and media sector size (512). [ 1289.330354][ T1230] random: crng reseeded on system resumption [ 1290.667313][ T1271] netlink: 424 bytes leftover after parsing attributes in process `syz.3.11800'. [ 1290.708057][ T6211] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 1290.767658][ T1234] loop1: detected capacity change from 0 to 40427 [ 1290.776660][ T1273] netlink: 'syz.6.11801': attribute type 10 has an invalid length. [ 1290.797157][ T1273] netlink: 40 bytes leftover after parsing attributes in process `syz.6.11801'. [ 1290.807995][ T1234] F2FS-fs: heap/no_heap options were deprecated [ 1290.819257][ T1273] virt_wifi0: entered promiscuous mode [ 1290.824796][ T1273] virt_wifi0: entered allmulticast mode [ 1290.837484][ T1234] F2FS-fs (loop1): build fault injection rate: 16 [ 1290.856003][ T1273] A link change request failed with some changes committed already. Interface virt_wifi0 may have been left with an inconsistent configuration, please check. [ 1290.872661][ T1234] F2FS-fs (loop1): build fault injection type: 0x3bfe8c [ 1290.900085][ T1234] F2FS-fs (loop1): invalid crc value [ 1290.925550][ T6211] usb 6-1: New USB device found, idVendor=0c45, idProduct=6005, bcdDevice=b5.55 [ 1290.944572][ T1234] F2FS-fs (loop1): inject page alloc in f2fs_grab_cache_folio of f2fs_build_segment_manager+0x362f/0x9fe0 [ 1290.959199][ T1247] loop4: detected capacity change from 0 to 32768 [ 1290.969330][ T6211] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1290.985500][ T1275] loop3: detected capacity change from 0 to 764 [ 1290.997048][ T6211] usb 6-1: Product: syz [ 1291.001329][ T6211] usb 6-1: Manufacturer: syz [ 1291.016438][ C0] F2FS-fs (loop1): inject read IO error in f2fs_read_end_io of bio_endio+0x7a3/0x910 [ 1291.027255][ T6211] usb 6-1: SerialNumber: syz [ 1291.057026][ T1247] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop4 (7:4) scanned by syz.4.11788 (1247) [ 1291.072483][ T6211] usb 6-1: config 0 descriptor?? [ 1291.107543][ T1275] Symlink component flag not implemented [ 1291.113808][ T1275] Symlink component flag not implemented (122) [ 1291.139839][ T6211] gspca_main: sonixb-2.14.0 probing 0c45:6005 [ 1291.146128][ T1247] BTRFS info (device loop4): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1291.146183][ T1247] BTRFS info (device loop4): using crc32c checksum algorithm [ 1291.384701][ T1247] BTRFS info (device loop4): setting nodatasum [ 1291.402253][ T1247] BTRFS info (device loop4): setting nodatacow [ 1291.413082][ T1247] BTRFS info (device loop4): turning on async discard [ 1291.434951][ T1247] BTRFS info (device loop4): enabling free space tree [ 1291.441894][ T1247] BTRFS info (device loop4): enabling auto defrag [ 1291.482289][ T1234] F2FS-fs (loop1): f2fs_recover_fsync_data: recovery fsync data, check_only: 0 [ 1291.541571][ T1247] BTRFS info (device loop4): max_inline set to 0 [ 1291.568200][ T1234] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 1291.600213][ T6211] sonixb 6-1:0.0: Error writing register 01: -71 [ 1291.628793][ T6211] sonixb 6-1:0.0: probe with driver sonixb failed with error -71 [ 1291.707704][ T6211] usb 6-1: USB disconnect, device number 20 [ 1291.858101][ T1234] F2FS-fs (loop1): inject dquot initialize in f2fs_dquot_initialize of f2fs_create+0x1a8/0x6a0 [ 1292.013967][ T6061] BTRFS info (device loop4): last unmount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 1292.233983][ T1314] loop3: detected capacity change from 0 to 512 [ 1292.365933][ T1314] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1292.454825][ T1314] ext4 filesystem being mounted at /1936/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 1292.465890][ T1321] loop6: detected capacity change from 0 to 512 [ 1292.538686][ T1321] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 1292.554209][ T30] audit: type=1326 audit(2000001634.699:204): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1292.717697][ T30] audit: type=1326 audit(2000001634.699:205): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1292.809864][ T30] audit: type=1326 audit(2000001634.699:206): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1292.842643][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1292.879044][ T30] audit: type=1326 audit(2000001634.699:207): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1293.060105][ T30] audit: type=1326 audit(2000001634.708:208): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1293.117432][ T30] audit: type=1326 audit(2000001634.708:209): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1293.157570][ T30] audit: type=1326 audit(2000001634.708:210): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1293.252218][ T30] audit: type=1326 audit(2000001634.708:211): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1293.342567][ T30] audit: type=1326 audit(2000001634.708:212): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1324 comm="syz.2.11815" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ff00000 [ 1294.576392][ T6211] usb 5-1: new high-speed USB device number 14 using dummy_hcd [ 1294.622243][ T1342] loop5: detected capacity change from 0 to 32768 [ 1294.657509][ T1342] (syz.5.11822,1342,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1294.698963][ T1342] (syz.5.11822,1342,0):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1294.736696][ T6211] usb 5-1: Using ep0 maxpacket: 32 [ 1294.756528][ T6211] usb 5-1: config 0 has an invalid interface number: 119 but max is 0 [ 1294.793353][ T1342] JBD2: Ignoring recovery information on journal [ 1294.812112][ T6211] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 1294.897316][ T6211] usb 5-1: config 0 has no interface number 0 [ 1294.936020][ T6211] usb 5-1: config 0 interface 119 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 1294.998668][ T6211] usb 5-1: New USB device found, idVendor=05ac, idProduct=0292, bcdDevice=88.73 [ 1295.037320][ T6211] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1295.047571][ T1342] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 1295.076668][ T6211] usb 5-1: Product: syz [ 1295.085251][ T6211] usb 5-1: Manufacturer: syz [ 1295.090304][ T6211] usb 5-1: SerialNumber: syz [ 1295.131536][ T6211] usb 5-1: config 0 descriptor?? [ 1295.187193][ T6211] input: bcm5974 as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.119/input/input82 [ 1295.445089][ T6055] ocfs2: Unmounting device (7,5) on (node local) [ 1295.520711][ T6211] usb 5-1: USB disconnect, device number 14 [ 1295.665977][ T1404] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11852'. [ 1296.548833][ T1433] 8021q: VLANs not supported on lo [ 1296.605120][ T1436] loop2: detected capacity change from 0 to 16 [ 1296.726375][ T1436] erofs (device loop2): mounted with root inode @ nid 36. [ 1296.757868][ T1436] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1296.766026][ T1436] erofs (device loop2): readahead error at folio 0 @ nid 89 [ 1296.895494][ T1436] syz.2.11867: attempt to access beyond end of device [ 1296.895494][ T1436] loop2: rw=524288, sector=1056, nr_sectors = 16 limit=16 [ 1296.961940][ T1436] erofs (device loop2): bogus lookback distance 1 @ lcn 0 of nid 89 [ 1296.984226][ T1447] netlink: 'syz.1.11872': attribute type 1 has an invalid length. [ 1297.015017][ T1436] erofs (device loop2): read error -117 @ 0 of nid 89 [ 1297.053829][ T30] kauditd_printk_skb: 58 callbacks suppressed [ 1297.053857][ T30] audit: type=1800 audit(2000001638.919:271): pid=1436 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.2.11867" name="file2" dev="loop2" ino=89 res=0 errno=0 [ 1297.183730][ T1450] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1297.440471][ T1460] netlink: 'syz.4.11880': attribute type 10 has an invalid length. [ 1297.469341][ T1462] loop6: detected capacity change from 0 to 256 [ 1297.489477][ T1460] team0: Port device dummy0 added [ 1298.093534][ T1442] loop3: detected capacity change from 0 to 32768 [ 1298.120585][ T1442] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.11869 (1442) [ 1298.204337][ T1442] BTRFS info (device loop3): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 1298.253246][ T1484] openvswitch: netlink: ufid size 24 bytes exceeds the range (1, 16) [ 1298.274053][ T1442] BTRFS info (device loop3): using blake2b checksum algorithm [ 1298.482807][ T1442] BTRFS info (device loop3): enabling ssd optimizations [ 1298.574657][ T1442] BTRFS info (device loop3): turning on async discard [ 1298.581974][ T1442] BTRFS info (device loop3): enabling free space tree [ 1298.681785][ T1507] loop6: detected capacity change from 0 to 256 [ 1298.731844][ T1509] loop2: detected capacity change from 0 to 1024 [ 1298.774253][ T1509] hfsplus: failed to load extents file [ 1298.903623][ T6058] BTRFS info (device loop3): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 1299.258360][ T1521] A link change request failed with some changes committed already. Interface C may have been left with an inconsistent configuration, please check. [ 1299.291784][ T1519] loop1: detected capacity change from 0 to 1764 [ 1299.417090][ T1519] iso9660: Corrupted directory entry in block 2 of inode 1920 [ 1299.800342][ T1480] loop4: detected capacity change from 0 to 32768 [ 1299.866455][ T1535] ubi: mtd0 is already attached to ubi31 [ 1299.984783][ T1541] netlink: 4 bytes leftover after parsing attributes in process `syz.1.11909'. [ 1299.993817][ T1541] openvswitch: netlink: Missing key (keys=200040, expected=100) [ 1300.006749][ T1480] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1300.161378][ T1480] XFS (loop4): Ending clean mount [ 1300.241848][ T1550] loop6: detected capacity change from 0 to 512 [ 1300.249318][ T1550] EXT4-fs: Ignoring removed orlov option [ 1300.336662][ T1550] EXT4-fs (loop6): Test dummy encryption mode enabled [ 1300.381582][ T1555] netlink: 'syz.1.11913': attribute type 21 has an invalid length. [ 1300.402217][ T1550] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 1300.432900][ T1555] netlink: 132 bytes leftover after parsing attributes in process `syz.1.11913'. [ 1300.487020][ T6061] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1300.498962][ T1550] EXT4-fs (loop6): 1 truncate cleaned up [ 1300.579691][ T1561] netlink: 256 bytes leftover after parsing attributes in process `syz.5.11917'. [ 1300.600506][ T1295] ieee802154 phy0 wpan0: encryption failed: -22 [ 1300.606953][ T1295] ieee802154 phy1 wpan1: encryption failed: -22 [ 1300.625944][ T1550] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1300.987800][ T1567] loop3: detected capacity change from 0 to 512 [ 1301.006294][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1301.045111][ T1567] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (57259!=33349) [ 1301.090559][ T1567] EXT4-fs (loop3): orphan cleanup on readonly fs [ 1301.148553][ T1567] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:516: comm syz.3.11919: Block bitmap for bg 0 marked uninitialized [ 1301.161965][ T1567] loop3: lost filesystem error report for type 5 error -117 [ 1301.169573][ C0] EXT4-fs (loop3): error count since last fsck: 1 [ 1301.182857][ T1567] EXT4-fs (loop3): Remounting filesystem read-only [ 1301.183381][ C0] EXT4-fs (loop3): initial error at time 2000001642: ext4_read_block_bitmap_nowait:516 [ 1301.199571][ C0] EXT4-fs (loop3): last error at time 2000001642: ext4_read_block_bitmap_nowait:516 [ 1301.235986][ T1567] EXT4-fs (loop3): 1 orphan inode deleted [ 1301.295361][ T1567] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1301.399509][ T1580] loop6: detected capacity change from 0 to 512 [ 1301.483373][ T1580] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 1301.525548][ T1580] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 1301.566067][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1301.639992][ T1580] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 1301.727711][ T1580] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 1301.752393][ T1589] loop2: detected capacity change from 0 to 1024 [ 1301.776419][ T1589] EXT4-fs (loop2): ext4_check_descriptors: Checksum for group 0 failed (51269!=20869) [ 1301.806124][ T1580] System zones: 0-2, 18-18, 34-35 [ 1301.866968][ T1580] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 1301.922365][ T1589] EXT4-fs (loop2): stripe (65535) is not aligned with cluster size (16), stripe is disabled [ 1301.977054][ T1580] fscrypt (loop6, inode 12): Error -61 getting encryption context [ 1302.009052][ T1589] EXT4-fs error (device loop2): ext4_get_journal_inode:5890: inode #32: comm syz.2.11928: iget: special inode unallocated [ 1302.066833][ T1589] loop2: lost file I/O error report for ino 32 type 5 pos 0x0 len 0x0 error -117 [ 1302.067287][ C1] EXT4-fs (loop2): error count since last fsck: 1 [ 1302.083079][ C1] EXT4-fs (loop2): initial error at time 2000001643: ext4_get_journal_inode:5890: inode 32 [ 1302.093537][ C1] EXT4-fs (loop2): last error at time 2000001643: ext4_get_journal_inode:5890: inode 32 [ 1302.107786][ T1589] EXT4-fs (loop2): Remounting filesystem read-only [ 1302.137214][ T1589] EXT4-fs (loop2): no journal found [ 1302.154831][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1302.163691][ T1589] EXT4-fs (loop2): can't get journal size [ 1302.228222][ T1589] EXT4-fs (loop2): filesystem is read-only [ 1302.236377][ T1589] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1302.424024][ T6051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1303.287884][ T1644] loop3: detected capacity change from 0 to 256 [ 1303.406851][ T1644] FAT-fs (loop3): Directory bread(block 64) failed [ 1303.413514][ T1644] FAT-fs (loop3): Directory bread(block 65) failed [ 1303.442486][ T1644] FAT-fs (loop3): Directory bread(block 66) failed [ 1303.463897][ T1644] FAT-fs (loop3): Directory bread(block 67) failed [ 1303.496512][ T1644] FAT-fs (loop3): Directory bread(block 68) failed [ 1303.543826][ T1644] FAT-fs (loop3): Directory bread(block 69) failed [ 1303.550531][ T1644] FAT-fs (loop3): Directory bread(block 70) failed [ 1303.589866][ T1644] FAT-fs (loop3): Directory bread(block 71) failed [ 1303.616980][ T1644] FAT-fs (loop3): Directory bread(block 72) failed [ 1303.639319][ T1644] FAT-fs (loop3): Directory bread(block 73) failed [ 1303.691761][ T1660] netlink: 'syz.6.11963': attribute type 1 has an invalid length. [ 1303.725729][ T1660] netlink: 96 bytes leftover after parsing attributes in process `syz.6.11963'. [ 1303.762079][ T1660] netlink: 658 bytes leftover after parsing attributes in process `syz.6.11963'. [ 1303.795248][ T1660] netlink: 1 bytes leftover after parsing attributes in process `syz.6.11963'. [ 1304.250989][ T1676] loop2: detected capacity change from 0 to 256 [ 1304.291266][ T1680] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11974'. [ 1304.377219][ T1676] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x1561949b, utbl_chksum : 0xe619d30d) [ 1305.085673][ T1705] netlink: 16 bytes leftover after parsing attributes in process `syz.5.11987'. [ 1305.260564][ T1708] loop3: detected capacity change from 0 to 4096 [ 1305.310825][ T1708] ntfs3(loop3): Different NTFS sector size (4096) and media sector size (512). [ 1305.455135][ T1708] ntfs3(loop3): ino=19, mi_enum_attr [ 1305.460603][ T1708] ntfs3(loop3): Mark volume as dirty due to NTFS errors [ 1305.509441][ T1719] loop5: detected capacity change from 0 to 256 [ 1305.638866][ T1719] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x1561949b, utbl_chksum : 0xe619d30d) [ 1306.105953][ T1736] bridge1: entered promiscuous mode [ 1306.488100][ T1749] netlink: 'syz.3.12008': attribute type 1 has an invalid length. [ 1306.522403][ T1749] netlink: 'syz.3.12008': attribute type 2 has an invalid length. [ 1306.724886][ T1757] netlink: 132 bytes leftover after parsing attributes in process `syz.6.12010'. [ 1306.730270][ T1759] loop1: detected capacity change from 0 to 256 [ 1306.871307][ T1759] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 1307.042641][ T1771] loop4: detected capacity change from 0 to 8 [ 1307.134424][ T1771] SQUASHFS error: Failed to read block 0x2d7: -5 [ 1307.140830][ T1771] SQUASHFS error: Unable to read metadata cache entry [2d5] [ 1307.202513][ T1775] netlink: 4456 bytes leftover after parsing attributes in process `syz.3.12020'. [ 1307.921907][ T1799] binder: 1797:1799 ioctl c0306201 2000000001c0 returned -14 [ 1308.256792][T30959] netdevsim netdevsim2 netdevsim0: unset [1, 0] type 2 family 0 port 6081 - 0 [ 1308.496272][ T30] audit: type=1326 audit(2000001649.625:272): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1815 comm="syz.2.12041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1308.515151][ T1773] loop5: detected capacity change from 0 to 32768 [ 1308.609428][ T30] audit: type=1326 audit(2000001649.634:273): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1815 comm="syz.2.12041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1308.656024][ T1773] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1308.712229][ T30] audit: type=1326 audit(2000001649.634:274): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1815 comm="syz.2.12041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=100 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1308.712316][ T30] audit: type=1326 audit(2000001649.634:275): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1815 comm="syz.2.12041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1308.712393][ T30] audit: type=1326 audit(2000001649.634:276): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=1815 comm="syz.2.12041" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f9052d9c819 code=0x7ffc0000 [ 1308.938426][ T1773] XFS (loop5): Ending clean mount [ 1309.159805][ T6055] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1309.872111][ T1858] 8021q: adding VLAN 0 to HW filter on device bond7 [ 1309.985051][ T1869] misc userio: The device must be registered before sending interrupts [ 1310.139273][ T1871] loop3: detected capacity change from 0 to 2048 [ 1310.213100][ T1871] UDF-fs: error (device loop3): udf_read_tagged: tag checksum failed, block 99: 0x27 != 0x4d [ 1310.245029][ T1877] netlink: 8 bytes leftover after parsing attributes in process `syz.2.12063'. [ 1310.287945][ T1871] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 1310.781792][ T1852] loop4: detected capacity change from 0 to 32768 [ 1310.789124][ T1889] ALSA: mixer_oss: invalid OSS volume '' [ 1310.808595][ T1895] IPv6: NLM_F_CREATE should be specified when creating new route [ 1310.823917][ T1885] bond2 (unregistering): Released all slaves [ 1310.877706][ T1852] XFS (loop4): Mounting V5 Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 1310.973486][ T1909] netlink: 20 bytes leftover after parsing attributes in process `syz.2.12076'. [ 1311.057955][ T1852] XFS (loop4): Ending clean mount [ 1311.336200][ T6061] XFS (loop4): Unmounting Filesystem 9f1cad42-11bd-4e12-8f0b-f07876b81d9a [ 1311.705900][ T1932] netlink: 'syz.4.12081': attribute type 11 has an invalid length. [ 1311.719297][ T1932] netlink: 199828 bytes leftover after parsing attributes in process `syz.4.12081'. [ 1312.021098][ T1942] netlink: 'syz.5.12091': attribute type 32 has an invalid length. [ 1312.328667][ T1944] loop4: detected capacity change from 0 to 256 [ 1312.582631][ T6322] usb 7-1: new high-speed USB device number 15 using dummy_hcd [ 1312.764398][ T6322] usb 7-1: Using ep0 maxpacket: 8 [ 1312.793747][ T6322] usb 7-1: New USB device found, idVendor=110a, idProduct=1450, bcdDevice=62.cb [ 1312.825137][ T6322] usb 7-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1312.879759][ T6322] usb 7-1: Product: syz [ 1312.884473][ T6322] usb 7-1: Manufacturer: syz [ 1312.889097][ T6322] usb 7-1: SerialNumber: syz [ 1313.326564][ T1978] comedi comedi0: dac02: I/O port conflict (0x9,8) [ 1313.382546][ T6322] mxuport 7-1:254.0: mxuport_recv_ctrl_urb - usb_control_msg failed (-71) [ 1313.431531][ T6322] mxuport 7-1:254.0: probe with driver mxuport failed with error -5 [ 1313.477719][ T6322] usb 7-1: USB disconnect, device number 15 [ 1313.884255][ T1960] loop1: detected capacity change from 0 to 32768 [ 1313.983507][ T1960] [ 1313.983507][ T1960] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1313.983507][ T1960] [ 1314.048218][ T1973] loop5: detected capacity change from 0 to 32768 [ 1314.057638][ T1960] ERROR: (device loop1): xtTruncate_pmap: xt_getpage: xtree page corrupt [ 1314.057638][ T1960] [ 1314.076909][ T1970] loop4: detected capacity change from 0 to 32768 [ 1314.088512][ T1973] BTRFS: device fsid 5e4b7888-5e56-43f0-8345-635ad0fd87c6 devid 1 transid 8 /dev/loop5 (7:5) scanned by syz.5.12103 (1973) [ 1314.114257][ T1960] ERROR: (device loop1): txAbort: [ 1314.114257][ T1960] [ 1314.207895][ T1973] BTRFS info (device loop5): first mount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 1314.237271][ T1970] ERROR: (device loop4): dbAllocNext: Corrupt dmap page [ 1314.237271][ T1970] [ 1314.271418][ T1973] BTRFS info (device loop5): using blake2b checksum algorithm [ 1314.289094][ T1970] ERROR: (device loop4): remounting filesystem as read-only [ 1314.303644][ T1995] autofs4:pid:1995:validate_dev_ioctl: invalid path supplied for cmd(0xc018937a) [ 1314.325730][ T1970] ialloc: diAlloc returned -5! [ 1314.338913][ T6049] ERROR: (device loop1): xtTruncate: xt_getpage: xtree page corrupt [ 1314.338913][ T6049] [ 1314.392226][T30959] ERROR: (device loop1): diWrite: ixpxd invalid [ 1314.392226][T30959] [ 1314.442272][T30959] ERROR: (device loop1): txAbort: [ 1314.442272][T30959] [ 1314.503040][T30959] jfs_write_inode: jfs_commit_inode failed! [ 1314.525825][ T1973] BTRFS info (device loop5): enabling ssd optimizations [ 1314.538792][ T6049] [ 1314.538792][ T6049] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1314.538792][ T6049] [ 1314.559899][ T1973] BTRFS info (device loop5): turning on async discard [ 1314.566907][ T1973] BTRFS info (device loop5): enabling free space tree [ 1314.593495][ T6049] [ 1314.593495][ T6049] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 1314.593495][ T6049] [ 1314.816030][ T2019] netlink: 4 bytes leftover after parsing attributes in process `syz.4.12122'. [ 1314.886042][ T6055] BTRFS info (device loop5): last unmount of filesystem 5e4b7888-5e56-43f0-8345-635ad0fd87c6 [ 1315.692547][ T2039] loop2: detected capacity change from 0 to 512 [ 1315.737095][ T2039] EXT4-fs: Ignoring removed bh option [ 1315.807962][ T2039] EXT4-fs (loop2): orphan cleanup on readonly fs [ 1315.847834][ T2039] EXT4-fs error (device loop2): ext4_map_blocks:791: inode #11: block 1: comm syz.2.12130: lblock 0 mapped to illegal pblock 1 (length 1) [ 1315.886439][ T2039] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1315.897130][ T2039] EXT4-fs warning (device loop2): ext4_expand_extra_isize_ea:2857: Unable to expand inode 15. Delete some EAs or run e2fsck. [ 1315.906972][ C0] EXT4-fs (loop2): error count since last fsck: 1 [ 1315.907020][ C0] EXT4-fs (loop2): initial error at time 2000001656: ext4_map_blocks:791: inode 11: block 1 [ 1315.907096][ C0] EXT4-fs (loop2): last error at time 2000001656: ext4_map_blocks:791: inode 11: block 1 [ 1316.130286][ T2039] EXT4-fs error (device loop2): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.2.12130: EA inode 11 ref wraparound: ref_count=0 ref_change=-1 [ 1316.192555][ T2046] loop5: detected capacity change from 0 to 4096 [ 1316.219427][ T2039] loop2: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1316.227833][ T2039] EXT4-fs warning (device loop2): ext4_xattr_inode_dec_ref_all:1230: inode #11: comm syz.2.12130: ea_inode dec ref err=-117 [ 1316.280516][ T2046] ntfs3(loop5): Different NTFS sector size (1024) and media sector size (512). [ 1316.311783][ T2046] ntfs3(loop5): ino=3, mi_enum_attr [ 1316.334327][ T2039] EXT4-fs (loop2): 1 orphan inode deleted [ 1316.342573][ T2039] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 1316.440158][ T2056] loop1: detected capacity change from 0 to 1764 [ 1316.499441][ T2055] 8021q: adding VLAN 0 to HW filter on device bond3 [ 1316.508512][ T2024] loop3: detected capacity change from 0 to 32768 [ 1316.531547][ T2046] ntfs3(loop5): ino=5, "/" indx_read_ra [ 1316.537467][ T2046] ntfs3(loop5): Mark volume as dirty due to NTFS errors [ 1316.574224][ T2024] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 (7:3) scanned by syz.3.12126 (2024) [ 1316.668524][ T2024] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1316.681849][ T6051] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1316.719573][ T2024] BTRFS info (device loop3): using sha256 checksum algorithm [ 1316.849492][ T2062] loop4: detected capacity change from 0 to 1764 [ 1316.987076][ T2062] iso9660: Corrupted directory entry in block 14 of inode 1920 [ 1317.045729][ T2024] BTRFS info (device loop3): rebuilding free space tree [ 1317.608526][ T2024] BTRFS info (device loop3): enabling ssd optimizations [ 1317.630074][ T2024] BTRFS info (device loop3): using spread ssd allocation scheme [ 1317.726452][ T2024] BTRFS info (device loop3): turning on async discard [ 1317.809260][ T2087] xt_nat: multiple ranges no longer supported [ 1317.834187][ T2024] BTRFS info (device loop3): enabling free space tree [ 1317.871999][ T2024] BTRFS info (device loop3): force clearing of disk cache [ 1318.263766][ T6058] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1318.564979][ T2106] ksmbd: Daemon and kernel module version mismatch. ksmbd: 0, kernel module: 1. User-space ksmbd should terminate. [ 1318.591636][ T2108] loop5: detected capacity change from 0 to 256 [ 1318.636167][ T2109] loop6: detected capacity change from 0 to 64 [ 1318.795509][ T2108] FAT-fs (loop5): Directory bread(block 64) failed [ 1318.818810][ T2108] FAT-fs (loop5): Directory bread(block 65) failed [ 1318.868502][ T2108] FAT-fs (loop5): Directory bread(block 66) failed [ 1318.875328][ T2108] FAT-fs (loop5): Directory bread(block 67) failed [ 1318.929969][ T2108] FAT-fs (loop5): Directory bread(block 68) failed [ 1318.954385][ T2113] vti0: entered promiscuous mode [ 1318.959608][ T2108] FAT-fs (loop5): Directory bread(block 69) failed [ 1318.988323][ T2108] FAT-fs (loop5): Directory bread(block 70) failed [ 1319.017674][ T2113] vti0: entered allmulticast mode [ 1319.050089][ T2108] FAT-fs (loop5): Directory bread(block 71) failed [ 1319.056782][ T2108] FAT-fs (loop5): Directory bread(block 72) failed [ 1319.095868][ T2108] FAT-fs (loop5): Directory bread(block 73) failed [ 1319.190166][ T2118] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1319.303915][ T30] audit: type=1800 audit(2000001659.731:277): pid=2108 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.12155" name="file2" dev="loop5" ino=1048757 res=0 errno=0 [ 1320.474976][ T2146] netlink: 2056 bytes leftover after parsing attributes in process `syz.5.12175'. [ 1320.493304][ T2125] loop2: detected capacity change from 0 to 32768 [ 1320.526954][ T2125] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 (7:2) scanned by syz.2.12165 (2125) [ 1320.610697][ T2125] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1320.671896][ T2125] BTRFS info (device loop2): using sha256 checksum algorithm [ 1320.710615][ T2132] loop4: detected capacity change from 0 to 32768 [ 1320.813385][ T2132] XFS (loop4): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1320.850289][ T2170] loop3: detected capacity change from 0 to 256 [ 1320.880070][ T2125] BTRFS info (device loop2): enabling ssd optimizations [ 1320.902184][ T2170] vfat: Deprecated parameter 'posix' [ 1320.908143][ T2125] BTRFS info (device loop2): turning on async discard [ 1320.918764][ T2125] BTRFS info (device loop2): enabling free space tree [ 1320.929855][ T2170] FAT-fs: "posix" option is obsolete, not supported now [ 1320.936715][ T2132] XFS (loop4): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x50. [ 1320.972283][ T2132] XFS (loop4): Ending clean mount [ 1321.039799][ T2183] xt_CT: You must specify a L4 protocol and not use inversions on it [ 1321.145226][ T2125] BTRFS info (device loop2): resizing devid 73709551615 [ 1321.232374][ T2125] BTRFS info (device loop2): resizer unable to find device 73709551615 [ 1321.308932][ T6061] XFS (loop4): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 1321.476059][ T6051] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1321.646970][ T2194] netlink: 200 bytes leftover after parsing attributes in process `syz.6.12189'. [ 1322.143013][ T30] audit: type=1400 audit(2000001662.398:278): apparmor="DENIED" operation="change_profile" class="file" info="label not found" error=-2 profile="unconfined" name=3A273A02 pid=2203 comm="syz.2.12188" [ 1322.702516][ T2224] netlink: 'syz.5.12202': attribute type 1 has an invalid length. [ 1322.729605][ T2224] netlink: 224 bytes leftover after parsing attributes in process `syz.5.12202'. [ 1323.991167][ T2226] loop1: detected capacity change from 0 to 32768 [ 1324.016971][ T24] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 1324.063060][ T2226] jfs_mkdir: dtInsert returned -EIO [ 1324.092845][ T2226] ERROR: (device loop1): txAbort: [ 1324.092845][ T2226] [ 1324.124122][ T2226] ERROR: (device loop1): remounting filesystem as read-only [ 1324.190835][ T24] usb 6-1: Using ep0 maxpacket: 32 [ 1324.197519][ T2259] loop4: detected capacity change from 0 to 4096 [ 1324.212391][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x9 has an invalid bInterval 128, changing to 11 [ 1324.240918][ T2259] ntfs3(loop4): Different NTFS sector size (4096) and media sector size (512). [ 1324.262481][ T24] usb 6-1: config 0 interface 0 altsetting 0 has an endpoint descriptor with address 0xB7, changing to 0x87 [ 1324.313494][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has an invalid bInterval 0, changing to 7 [ 1324.338282][ T2259] ntfs3(loop4): ino=19, mi_enum_attr [ 1324.364984][ T24] usb 6-1: config 0 interface 0 altsetting 0 endpoint 0x87 has invalid wMaxPacketSize 0 [ 1324.440385][ T24] usb 6-1: New USB device found, idVendor=0e6f, idProduct=582c, bcdDevice=31.68 [ 1324.450535][ T2259] ntfs3(loop4): failed to convert "c46c" to iso8859-6 [ 1324.451087][ T2259] ntfs3(loop4): ino=20, mi_enum_attr [ 1324.492887][ T24] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 1324.508041][ T2259] ntfs3(loop4): failed to convert "0030" to iso8859-6 [ 1324.530011][ T24] usb 6-1: Product: syz [ 1324.534435][ T24] usb 6-1: Manufacturer: syz [ 1324.561129][ T24] usb 6-1: SerialNumber: syz [ 1324.561930][ T2259] ntfs3(loop4): failed to convert "0031" to iso8859-6 [ 1324.592471][ T24] usb 6-1: config 0 descriptor?? [ 1324.613927][ T2259] ntfs3(loop4): failed to convert "0032" to iso8859-6 [ 1324.691100][ T24] input: Generic X-Box pad as /devices/platform/dummy_hcd.5/usb6/6-1/6-1:0.0/input/input83 [ 1324.908602][ T24] usb 6-1: USB disconnect, device number 21 [ 1325.601220][ T2299] openvswitch: netlink: Flow actions may not be safe on all matching packets. [ 1325.612184][ T2300] xt_l2tp: v2 doesn't support IP mode [ 1326.445592][ T2326] netlink: 'syz.1.12253': attribute type 1 has an invalid length. [ 1326.486957][ T2284] loop4: detected capacity change from 0 to 32768 [ 1326.494605][ T2326] netlink: 224 bytes leftover after parsing attributes in process `syz.1.12253'. [ 1326.509608][ T2328] usb usb8: usbfs: process 2328 (syz.3.12254) did not claim interface 0 before use [ 1326.866651][ T2339] netlink: 32 bytes leftover after parsing attributes in process `syz.1.12259'. [ 1326.893581][ T30] audit: type=1400 audit(2000001666.853:279): apparmor="DENIED" operation="setprocattr" info="current" error=-22 profile="unconfined" pid=2338 comm="syz.2.12260" [ 1326.912890][ T2339] netlink: 32 bytes leftover after parsing attributes in process `syz.1.12259'. [ 1326.970134][ T2343] netlink: 45 bytes leftover after parsing attributes in process `syz.3.12261'. [ 1327.847353][ T2370] loop3: detected capacity change from 0 to 512 [ 1327.926057][ T2378] bond0: left allmulticast mode [ 1327.931629][ T2370] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 1327.932271][ T2378] 8021q: adding VLAN 0 to HW filter on device bond0 [ 1327.974656][ T2370] EXT4-fs (loop3): 1 truncate cleaned up [ 1328.026423][ T2370] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1328.028617][ T2381] netlink: 76 bytes leftover after parsing attributes in process `syz.5.12279'. [ 1328.077182][ T6334] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 1328.145340][ T2370] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000. [ 1328.163781][ T2383] netlink: 'syz.2.12280': attribute type 39 has an invalid length. [ 1328.256881][ T2387] netlink: 45 bytes leftover after parsing attributes in process `syz.1.12282'. [ 1328.281400][ T6334] usb 5-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 1328.312381][ T6334] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 1328.342030][ T6334] usb 5-1: config 0 descriptor?? [ 1328.370993][ T6058] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1328.821317][ T6334] usb 5-1: Cannot read MAC address [ 1328.836143][ T6334] MOSCHIP usb-ethernet driver 5-1:0.0: probe with driver MOSCHIP usb-ethernet driver failed with error -71 [ 1328.902510][ T2401] loop2: detected capacity change from 0 to 1024 [ 1328.915952][ T6334] usb 5-1: USB disconnect, device number 15 [ 1328.957731][ T2401] hfsplus: failed to load extents file [ 1329.042634][ T2405] loop1: detected capacity change from 0 to 16 [ 1329.080831][ T2407] loop5: detected capacity change from 0 to 16 [ 1329.086332][ T2405] erofs (device loop1): mounted with root inode @ nid 36. [ 1329.125684][ T2407] MTD: Attempt to mount non-MTD device "/dev/loop5" [ 1329.166200][ T2407] cramfs: Error -3 while decompressing! [ 1329.191795][ T2407] cramfs: ffffffff9b2bf648(27)->ffff8880413dc000(4096) [ 1329.200659][ T6025] udevd[6025]: incorrect cramfs checksum on /dev/loop5 [ 1329.211841][ T2407] cramfs: Error -3 while decompressing! [ 1329.220037][ T2373] loop6: detected capacity change from 0 to 32768 [ 1329.230665][ T2407] cramfs: ffffffff9b2bf648(27)->ffff8880413dc000(4096) [ 1329.249114][ T30] audit: type=1800 audit(2000001669.052:280): pid=2407 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.5.12290" name="file2" dev="loop5" ino=348 res=0 errno=0 [ 1329.299282][ T2373] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.12276 (2373) [ 1329.358950][ T6025] udevd[6025]: incorrect cramfs checksum on /dev/loop5 [ 1329.375456][ T2413] trusted_key: encrypted_key: master key parameter 'trusted:' is invalid [ 1329.397122][ T2373] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1329.441357][ T2373] BTRFS info (device loop6): using sha256 checksum algorithm [ 1329.694278][ T2373] BTRFS info (device loop6): rebuilding free space tree [ 1329.735401][ T2436] netlink: 'syz.3.12296': attribute type 11 has an invalid length. [ 1329.749780][ T2436] netlink: 224 bytes leftover after parsing attributes in process `syz.3.12296'. [ 1329.798112][ T2373] BTRFS info (device loop6): enabling ssd optimizations [ 1329.826911][ T2373] BTRFS info (device loop6): using spread ssd allocation scheme [ 1329.851099][ T2446] netlink: 256 bytes leftover after parsing attributes in process `syz.2.12297'. [ 1329.872428][ T2373] BTRFS info (device loop6): turning on async discard [ 1329.879314][ T2373] BTRFS info (device loop6): enabling free space tree [ 1329.920308][ T2373] BTRFS info (device loop6): force clearing of disk cache [ 1330.125354][ T2453] loop1: detected capacity change from 0 to 8 [ 1330.188292][ T2453] MTD: Attempt to mount non-MTD device "/dev/loop1" [ 1330.210477][ T5824] udevd[5824]: incorrect cramfs checksum on /dev/loop1 [ 1330.214858][ T2455] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 1330.265434][ T2453] cramfs: Error -3 while decompressing! [ 1330.296267][T24921] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1330.342838][ T2453] cramfs: ffffffff9b2bf648(26)->ffff88806c81e000(4096) [ 1330.349789][ T2453] cramfs: Error -3 while decompressing! [ 1330.367629][ T5824] udevd[5824]: incorrect cramfs checksum on /dev/loop1 [ 1330.385622][ T2453] cramfs: ffffffff9b2bf662(26)->ffff8880752a2000(4096) [ 1330.392574][ T2453] cramfs: Error -3 while decompressing! [ 1330.413014][ T2463] loop4: detected capacity change from 0 to 512 [ 1330.439170][ T2453] cramfs: ffffffff9b2bf67c(16)->ffff88804bd98000(4096) [ 1330.492386][ T2453] cramfs: Error -3 while decompressing! [ 1330.524510][ T2463] EXT4-fs error (device loop4): ext4_free_branches:1020: inode #11: comm syz.4.12305: invalid indirect mapped block 256 (level 2) [ 1330.546058][ T2453] cramfs: ffffffff9b2bf648(26)->ffff88806c81e000(4096) [ 1330.663298][ T2463] loop4: lost file I/O error report for ino 11 type 5 pos 0x0 len 0x0 error -117 [ 1330.673733][ C1] EXT4-fs (loop4): error count since last fsck: 1 [ 1330.690475][ C1] EXT4-fs (loop4): initial error at time 2000001670: ext4_free_branches:1020: inode 11 [ 1330.701338][ C1] EXT4-fs (loop4): last error at time 2000001670: ext4_free_branches:1020: inode 11 [ 1330.727461][ T2463] EXT4-fs (loop4): 2 truncates cleaned up [ 1330.739605][ T2463] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1331.026596][ T6061] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1331.220974][ T2484] loop6: detected capacity change from 0 to 2048 [ 1331.742799][ T2512] sctp: [Deprecated]: syz.3.12321 (pid 2512) Use of int in max_burst socket option. [ 1331.742799][ T2512] Use struct sctp_assoc_value instead [ 1331.820594][ T30] audit: type=1326 audit(2000001671.466:281): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1331.956086][ T30] audit: type=1326 audit(2000001671.494:282): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1331.961750][ T2516] CIFS mount error: No usable UNC path provided in device string! [ 1331.961750][ T2516] [ 1332.029787][ T2516] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string! [ 1332.084716][ T30] audit: type=1326 audit(2000001671.494:283): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.201608][ T30] audit: type=1326 audit(2000001671.504:284): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.308861][ T30] audit: type=1326 audit(2000001671.522:285): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=313 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.417711][ T30] audit: type=1326 audit(2000001671.522:286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.511788][ T30] audit: type=1326 audit(2000001671.522:287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.613631][ T30] audit: type=1326 audit(2000001671.522:288): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.706328][ T30] audit: type=1326 audit(2000001671.532:289): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1332.812903][ T30] audit: type=1326 audit(2000001671.532:290): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=2513 comm="syz.1.12324" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7fcb95d9c819 code=0x7ffc0000 [ 1333.290186][ T2567] tmpfs: Bad value for 'mpol' [ 1333.345475][ T2576] netlink: 'syz.5.12349': attribute type 1 has an invalid length. [ 1333.382217][ T2566] loop2: detected capacity change from 0 to 4096 [ 1333.394887][ T2576] netlink: 'syz.5.12349': attribute type 2 has an invalid length. [ 1333.486436][ T2566] ntfs3(loop2): Mark volume as dirty due to NTFS errors [ 1333.554281][ T2566] ntfs3(loop2): Failed to load $Extend (-22). [ 1333.596554][ T2566] ntfs3(loop2): Failed to initialize $Extend. [ 1333.613169][ T2578] netlink: 204476 bytes leftover after parsing attributes in process `syz.3.12350'. [ 1333.687556][ T2582] netlink: 76 bytes leftover after parsing attributes in process `syz.4.12351'. [ 1333.918455][ T2548] loop6: detected capacity change from 0 to 32768 [ 1334.000660][ T2548] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop6 (7:6) scanned by syz.6.12337 (2548) [ 1334.008317][ T2593] bond0: (slave rose0): refused to change device type [ 1334.024073][ T2592] loop5: detected capacity change from 0 to 256 [ 1334.113644][ T2548] BTRFS info (device loop6): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1334.153797][ T2592] FAT-fs (loop5): Directory bread(block 64) failed [ 1334.168109][ T2548] BTRFS info (device loop6): using sha256 checksum algorithm [ 1334.183657][ T2592] FAT-fs (loop5): Directory bread(block 65) failed [ 1334.221728][ T2592] FAT-fs (loop5): Directory bread(block 66) failed [ 1334.232288][ T2592] FAT-fs (loop5): Directory bread(block 67) failed [ 1334.239193][ T2592] FAT-fs (loop5): Directory bread(block 68) failed [ 1334.264796][ T2592] FAT-fs (loop5): Directory bread(block 69) failed [ 1334.271598][ T2592] FAT-fs (loop5): Directory bread(block 70) failed [ 1334.321903][ T2592] FAT-fs (loop5): Directory bread(block 71) failed [ 1334.370705][ T2592] FAT-fs (loop5): Directory bread(block 72) failed [ 1334.371152][T20970] IPVS: starting estimator thread 0... [ 1334.431837][ T2592] FAT-fs (loop5): Directory bread(block 73) failed [ 1334.474078][ T2548] BTRFS info (device loop6): enabling ssd optimizations [ 1334.512799][ T2548] BTRFS info (device loop6): turning on async discard [ 1334.519664][ T2548] BTRFS info (device loop6): enabling free space tree [ 1334.584942][ T2615] IPVS: using max 25 ests per chain, 60000 per kthread [ 1334.925138][T24921] BTRFS info (device loop6): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 1335.795990][ T2673] loop6: detected capacity change from 0 to 1024 [ 1335.904625][ T2673] hfsplus: failed to load extents file [ 1336.346880][ T2694] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check. [ 1336.517877][ T2703] ipt_REJECT: TCP_RESET invalid for non-tcp [ 1336.873581][ T2719] netlink: 'syz.3.12398': attribute type 11 has an invalid length. [ 1337.264631][ T2737] netlink: 'syz.4.12406': attribute type 1 has an invalid length. [ 1337.303681][ T2737] netlink: 'syz.4.12406': attribute type 3 has an invalid length. [ 1337.323141][ T2737] netlink: 224 bytes leftover after parsing attributes in process `syz.4.12406'. [ 1337.346510][ T2742] loop6: detected capacity change from 0 to 16 [ 1337.387293][ T2742] erofs (device loop6): mounted with root inode @ nid 36. [ 1337.454454][ T2742] erofs (device loop6): readahead error at folio 2 @ nid 89 [ 1337.520969][ T6060] erofs (device loop6): failed to decompress (shifted) -EOPNOTSUPP @ pa 4096 size 4096 => 4868 [ 1337.540071][ T2742] erofs (device loop6): failed to decompress (shifted) -EOPNOTSUPP @ pa 4096 size 4096 => 4868 [ 1337.630657][ T2742] erofs (device loop6): read error -95 @ 1 of nid 89 [ 1337.662665][ T30] audit: type=1800 audit(2000001676.903:291): pid=2742 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.6.12408" name="file2" dev="loop6" ino=89 res=0 errno=0 [ 1337.858421][ T2765] loop5: detected capacity change from 0 to 64 [ 1338.263361][ T2779] netlink: 8 bytes leftover after parsing attributes in process `syz.5.12423'. [ 1338.305234][ T2778] loop6: detected capacity change from 0 to 512 [ 1338.353383][ T2778] EXT4-fs error (device loop6): ext4_orphan_get:1397: inode #15: comm syz.6.12424: inode has both inline data and extents flags [ 1338.378688][ T2778] loop6: lost file I/O error report for ino 15 type 5 pos 0x0 len 0x0 error -117 [ 1338.389040][ C0] EXT4-fs (loop6): error count since last fsck: 1 [ 1338.404823][ C0] EXT4-fs (loop6): initial error at time 2000001677: ext4_orphan_get:1397: inode 15 [ 1338.414529][ C0] EXT4-fs (loop6): last error at time 2000001677: ext4_orphan_get:1397: inode 15 [ 1338.426412][ T2778] EXT4-fs error (device loop6): ext4_orphan_get:1400: comm syz.6.12424: couldn't read orphan inode 15 (err -117) [ 1338.449330][ T2790] dlm: no locking on control device [ 1338.616286][ T2778] loop6: lost filesystem error report for type 5 error -117 [ 1338.618838][ T2778] EXT4-fs (loop6): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 1338.706262][ T2792] loop5: detected capacity change from 0 to 1024 [ 1338.751891][ T2795] IPVS: set_ctl: invalid protocol: 58 0.0.0.0:8188 [ 1338.795376][ T2792] hfsplus: failed to load extents file [ 1338.883892][T24921] EXT4-fs (loop6): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 1339.426231][ T2823] loop6: detected capacity change from 0 to 1024 [ 1339.522488][ T2823] Oops: general protection fault, probably for non-canonical address 0xdffffc0000000001: 0000 [#1] SMP KASAN NOPTI [ 1339.523276][ T2774] loop2: detected capacity change from 0 to 32768 [ 1339.534706][ T2823] KASAN: null-ptr-deref in range [0x0000000000000008-0x000000000000000f] [ 1339.534746][ T2823] CPU: 0 UID: 0 PID: 2823 Comm: syz.6.12439 Not tainted syzkaller #0 PREEMPT(full) [ 1339.534790][ T2823] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/18/2026 [ 1339.534815][ T2823] RIP: 0010:__hfsplus_setxattr+0x2437/0x2ab0 [ 1339.534887][ T2823] Code: 30 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 6a 02 00 00 48 8b 5b 30 b8 ff ff 37 00 48 c1 e0 2a 48 8d 7b 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 34 02 00 00 48 8b 5b 08 be 08 00 00 00 4c 89 5c [ 1339.534926][ T2823] RSP: 0018:ffffc9000f34f480 EFLAGS: 00010212 [ 1339.601544][ T2823] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9001421b000 [ 1339.609642][ T2823] RDX: 0000000000000001 RSI: ffffffff82f7efa9 RDI: 0000000000000008 [ 1339.617818][ T2823] RBP: ffff88807d70c000 R08: 0000000000000005 R09: 0000000000000000 [ 1339.625999][ T2823] R10: 0000000000000000 R11: ffff88807653a000 R12: ffff888035f7f000 [ 1339.634015][ T2823] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc9000f34f560 [ 1339.642032][ T2823] FS: 00007f6e043f66c0(0000) GS:ffff88812432c000(0000) knlGS:0000000000000000 [ 1339.651164][ T2823] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1339.657781][ T2823] CR2: 00007fdb919ad000 CR3: 00000000851ac000 CR4: 0000000000350ef0 [ 1339.666252][ T2823] Call Trace: [ 1339.669717][ T2823] [ 1339.672666][ T2823] ? __pfx___hfsplus_setxattr+0x10/0x10 [ 1339.678266][ T2823] ? preempt_schedule_thunk+0x16/0x30 [ 1339.683689][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.689390][ T2823] ? preempt_schedule_common+0x42/0xc0 [ 1339.694900][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.700576][ T2823] ? preempt_schedule_thunk+0x16/0x30 [ 1339.706172][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.711972][ T2823] hfsplus_setxattr+0x11a/0x2c0 [ 1339.716883][ T2823] ? __pfx_hfsplus_security_setxattr+0x10/0x10 [ 1339.723095][ T2823] __vfs_setxattr+0x175/0x1e0 [ 1339.728011][ T2823] ? __pfx___vfs_setxattr+0x10/0x10 [ 1339.733298][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.739259][ T2823] ? crypto_mod_put+0x82/0x180 [ 1339.744087][ T2823] __vfs_setxattr_noperm+0x127/0x660 [ 1339.749441][ T2823] __vfs_setxattr_locked+0x127/0x2b0 [ 1339.754894][ T2823] vfs_setxattr+0x14a/0x390 [ 1339.759460][ T2823] ? __pfx_vfs_setxattr+0x10/0x10 [ 1339.764532][ T2823] ? mnt_get_write_access+0x52/0x2f0 [ 1339.769843][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.775639][ T2823] ? mnt_get_write_access+0x52/0x2f0 [ 1339.781143][ T2823] do_setxattr+0x145/0x180 [ 1339.785612][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.791285][ T2823] filename_setxattr+0x167/0x1d0 [ 1339.796800][ T2823] ? __pfx_filename_setxattr+0x10/0x10 [ 1339.802318][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.808098][ T2823] ? do_getname+0x191/0x390 [ 1339.812645][ T2823] path_setxattrat+0x1ff/0x3b0 [ 1339.817475][ T2823] ? __pfx_path_setxattrat+0x10/0x10 [ 1339.822841][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.828660][ T2823] ? preempt_schedule_thunk+0x16/0x30 [ 1339.834136][ T2823] ? __x64_sys_openat+0x12d/0x210 [ 1339.839194][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.844882][ T2823] ? xfd_validate_state+0x129/0x190 [ 1339.850226][ T2823] __x64_sys_setxattr+0xc6/0x140 [ 1339.855190][ T2823] ? do_syscall_64+0x90/0xf80 [ 1339.859974][ T2823] ? srso_alias_return_thunk+0x5/0xfbef5 [ 1339.865635][ T2823] ? lockdep_hardirqs_on+0x78/0x100 [ 1339.870876][ T2823] do_syscall_64+0x10b/0xf80 [ 1339.875495][ T2823] ? irqentry_exit+0x133/0x650 [ 1339.880377][ T2823] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 1339.886291][ T2823] RIP: 0033:0x7f6e0619c819 [ 1339.890722][ T2823] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 1339.910478][ T2823] RSP: 002b:00007f6e043f6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000bc [ 1339.918923][ T2823] RAX: ffffffffffffffda RBX: 00007f6e06415fa0 RCX: 00007f6e0619c819 [ 1339.926919][ T2823] RDX: 0000200000000280 RSI: 00002000000000c0 RDI: 0000200000000040 [ 1339.934959][ T2823] RBP: 00007f6e06232c91 R08: 0000000000000003 R09: 0000000000000000 [ 1339.942957][ T2823] R10: 0000000000000002 R11: 0000000000000246 R12: 0000000000000000 [ 1339.950944][ T2823] R13: 00007f6e06416038 R14: 00007f6e06415fa0 R15: 00007ffd80a753e8 [ 1339.959038][ T2823] [ 1339.962063][ T2823] Modules linked in: [ 1339.966855][ T2823] ---[ end trace 0000000000000000 ]--- [ 1339.979319][ T2774] (syz.2.12421,2774,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1339.984493][ T2825] loop5: detected capacity change from 0 to 256 [ 1339.993477][ T2774] (syz.2.12421,2774,1):ocfs2_block_check_validate:400 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 1340.028789][ T2823] RIP: 0010:__hfsplus_setxattr+0x2437/0x2ab0 [ 1340.066234][ T2823] Code: 30 48 89 fa 48 c1 ea 03 80 3c 02 00 0f 85 6a 02 00 00 48 8b 5b 30 b8 ff ff 37 00 48 c1 e0 2a 48 8d 7b 08 48 89 fa 48 c1 ea 03 <80> 3c 02 00 0f 85 34 02 00 00 48 8b 5b 08 be 08 00 00 00 4c 89 5c [ 1340.098296][ T2825] FAT-fs (loop5): Directory bread(block 64) failed [ 1340.105385][ T2825] FAT-fs (loop5): Directory bread(block 65) failed [ 1340.112411][ T2825] FAT-fs (loop5): Directory bread(block 66) failed [ 1340.136742][ T2823] RSP: 0018:ffffc9000f34f480 EFLAGS: 00010212 [ 1340.147842][ T2774] JBD2: Ignoring recovery information on journal [ 1340.163400][ T2825] FAT-fs (loop5): Directory bread(block 67) failed [ 1340.170331][ T2825] FAT-fs (loop5): Directory bread(block 68) failed [ 1340.180308][ T2825] FAT-fs (loop5): Directory bread(block 69) failed [ 1340.180390][ T2823] RAX: dffffc0000000000 RBX: 0000000000000000 RCX: ffffc9001421b000 [ 1340.207406][ T2825] FAT-fs (loop5): Directory bread(block 70) failed [ 1340.214189][ T2825] FAT-fs (loop5): Directory bread(block 71) failed [ 1340.221007][ T2825] FAT-fs (loop5): Directory bread(block 72) failed [ 1340.224635][ T2823] RDX: 0000000000000001 RSI: ffffffff82f7efa9 RDI: 0000000000000008 [ 1340.227630][ T2825] FAT-fs (loop5): Directory bread(block 73) failed [ 1340.242978][ T2823] RBP: ffff88807d70c000 R08: 0000000000000005 R09: 0000000000000000 [ 1340.277249][ T2774] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 1340.283126][ T2823] R10: 0000000000000000 R11: ffff88807653a000 R12: ffff888035f7f000 [ 1340.300207][ T2823] R13: 0000000000000000 R14: 0000000000000000 R15: ffffc9000f34f560 [ 1340.310719][ T2823] FS: 00007f6e043f66c0(0000) GS:ffff88812442c000(0000) knlGS:0000000000000000 [ 1340.320017][ T2823] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 1340.327029][ T2823] CR2: 00007fdb923cc000 CR3: 00000000851ac000 CR4: 0000000000350ef0 [ 1340.366201][ T2823] Kernel panic - not syncing: Fatal exception [ 1340.372874][ T2823] Kernel Offset: disabled [ 1340.377212][ T2823] Rebooting in 86400 seconds..