last executing test programs:

4m57.384490006s ago: executing program 0 (id=14391):
r0 = socket$inet_tcp(0x2, 0x1, 0x0)
setsockopt$inet_tcp_int(r0, 0x6, 0x1e, &(0x7f00000000c0)=0xce7, 0x4)

4m57.168878716s ago: executing program 0 (id=14394):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f0000000400)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000180)=ANY=[@ANYBLOB="5400000010000000000000000000000002000000040001"], 0x54}, 0x1, 0x0, 0x0, 0x20008004}, 0x4)

4m56.855347651s ago: executing program 0 (id=14398):
r0 = syz_open_dev$tty1(0xc, 0x4, 0x1)
ioctl$KDFONTOP_SET_DEF(r0, 0x4b72, &(0x7f0000001440)={0x2, 0x1, 0x3, 0x19, 0x1c0, 0x0})

4m56.587893975s ago: executing program 0 (id=14402):
syz_mount_image$iso9660(&(0x7f0000002900), &(0x7f0000000040)='./file0\x00', 0x1008408, &(0x7f0000000ac0)=ANY=[@ANYBLOB='nojoliet,dmode=0x000000007fffffff,dmode=0x0000000000000009,check=relaxed,overriderockperm,utf8,mode=0x0000000000000000,nojoliet,hide,nocompress,utf8,norock,overriderockperm,mode=0xffffffffffffffff,cruft,map=off,iocharset=macinuit,fund=BPRM_CHECK,\x00', @ANYRESDEC], 0xff, 0x5ac, &(0x7f0000002940)="$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")
mount$bind(&(0x7f00000002c0)='.\x00', &(0x7f0000000200)='./file0/../file0\x00', 0x0, 0x109041, 0x0)

4m56.206210003s ago: executing program 0 (id=14405):
r0 = syz_open_dev$evdev(&(0x7f0000000000), 0xa, 0x20000)
ioctl$EVIOCGNAME(r0, 0x80404506, &(0x7f00000001c0)=""/238)

4m55.919475997s ago: executing program 0 (id=14409):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x8991, &(0x7f00000020c0)={'virt_wifi0\x00', @ifru_flags=0x400})

4m55.535174196s ago: executing program 32 (id=14409):
r0 = socket(0x400000000010, 0x3, 0x0)
ioctl$sock_ifreq(r0, 0x8991, &(0x7f00000020c0)={'virt_wifi0\x00', @ifru_flags=0x400})

2.631252172s ago: executing program 3 (id=18658):
r0 = socket$inet_icmp_raw(0x2, 0x3, 0x1)
getsockopt(r0, 0xff, 0x1, 0x0, &(0x7f0000000040)=0xfffffffffffffe85)

2.475438429s ago: executing program 3 (id=18662):
r0 = syz_open_dev$video(&(0x7f00000000c0), 0x8, 0x1)
ioctl$VIDIOC_G_FMT(r0, 0xc0d05604, &(0x7f0000000480)={0xd, @pix_mp={0xfffff721, 0x0, 0x44495658, 0x7, 0x5, [{0x7, 0xff}, {0x10001, 0x9}, {0x63, 0x6}, {0x4, 0x9}, {0x2, 0x4}, {0x5, 0x5af3}, {0x7f, 0x7ff}, {0x3, 0x40}], 0x1, 0x4, 0x3, 0x1, 0x6}})

2.292677158s ago: executing program 3 (id=18666):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_CT_NEW(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000001c0)={0xb8, 0x0, 0x1, 0x401, 0x0, 0x0, {0xa}, [@CTA_TUPLE_ORIG={0x3c, 0x1, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x14, 0x3, @empty}, {0x14, 0x4, @mcast1}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TUPLE_REPLY={0x3c, 0x2, 0x0, 0x1, [@CTA_TUPLE_IP={0x2c, 0x1, 0x0, 0x1, @ipv6={{0x4, 0x3, @local}, {0x14, 0x4, @local}}}, @CTA_TUPLE_PROTO={0xc, 0x2, 0x0, 0x1, {0x5}}]}, @CTA_TIMEOUT={0x8}, @CTA_NAT_SRC={0x24, 0x6, 0x0, 0x1, [@CTA_NAT_PROTO={0xc, 0x3, 0x0, 0x1, [@CTA_PROTONAT_PORT_MAX={0x6}]}, @CTA_NAT_V6_MINIP={0x14, 0x4, @local}]}]}, 0xb8}}, 0x804)

2.069206539s ago: executing program 3 (id=18670):
r0 = socket$inet_mptcp(0x2, 0x1, 0x106)
getsockopt$inet_tcp_buf(r0, 0x6, 0x21, 0x0, &(0x7f0000000100))

1.922608686s ago: executing program 3 (id=18672):
r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000140), 0x2000, 0x0)
ioctl$TCFLSH(r0, 0x80045439, 0x1)

1.747921345s ago: executing program 3 (id=18676):
syz_mount_image$f2fs(&(0x7f0000000040), &(0x7f0000000280)='./file0\x00', 0x200841a, &(0x7f0000000f40)=ANY=[@ANYBLOB="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", @ANYRESOCT], 0x1, 0x553b, &(0x7f00000024c0)="$eJzs3EtvG1UUAOA7TtPSJxFiwa4jVUiJVFt12lSwC9CKh0gV8ViwAsd2LLe2J4odJ2SFBEvEgn+CQGLFkt/AgjU7xALEDgnkuWNKKI9WduKk/T5pfGbujM+cO7ISnRnLAXhiLaS//pyES+FsCGEuhHAhCfl6Uiy51RieCyFcDiGU/rIkxfifA6dDCOdCCJdGyWPOpNj1+dXhlZWf3vjlm+/OnDr/xdffz27WwKw9H0LobsX13W6MWSvGu8V4bdjOY/fGsIhxR/desZ3FuNvcyDPs1sbH1fJ4vRWPz7Z2+qO42anVR7HV3szHt3rxhP1ha5wnf8Pd2na+3Whu5LHdz/LY2o917e3Hv237/UHM0yjyfZinD4PBOMbx5l4zzmfrXh7rvUExHvNmjebeKA6LWJwu1LNOI69jY5Irfby92e7t7KXD5na/nfXSlUr1hUr1Zrm6nTWag+aNcq3buHkjXWx1RoeVB81ad7WVZa1Os1LPukvpYqteL1er6eKt5ka71kur1cr1yrXyylKxdjV99c67aaeRLo7iy+3ezul2p59uZttpfMdSuly5/uJSeqWavr22nq6/dfv22vo77996785La6+/Uhz0QFnp4vK15eVy9Vp5ubp0DOY/+r/7kPMfTDL/T4qiH2H+yWSXB/6bDxjAI3ug/w/6f+DwnfT+P0yz/x+1VPr//+9/S5P3/xP1v8e1/z/B84eJ6P8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAJ5YP8x/+Vq+shC3zxfjF4uhZ4rtJIRQCiH8/g/mwukDOeeKPPP/cvz832r4Ngl5htE5zhTLuRDCarH89vRhXwUAAAB4fH310eXPYrceXxZmXRBHKd60KV34YEr5khDC/MKPU8pWGr08O6Vk+ef7VNibUrb8BtZTU0oWb7mdmla2hzI3Dh9fvD+YTyiJoXSk5QAAAEdi7kA42i4EAACAo/TprAtgNpIwfpQ5fhacf/P+/qPNswf2AQAAACdQMusCAAAAgEOX9/9+/w8AAAAeb/H3/wAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAD4g537uU0ciOIA/GwwsP+0aLX3bWVvUEZKyDHHQAFpghJIC2mAGsgtJUQQYY+QHIEUiXGsoO+TPM7Y0W9mgMsbSwYAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6NJztZ4/3v97uDRnt79MntUAAAAAp2yr9bz+Y9r0f6Trv9KlP6lfREQZEadq90GMWpmDlFOd+f/q3RyeIuqEwxjjdHyPiP/peP3d9acAAAAA12uzXM2aar1ppn1PiM/UbNqUP28y5RURUU1fMqWVh+ZvprD69z2Mu0xp9QbWJFNYs+U2PH1vlGuQtkHrlFYyWdRfYt0ruxkXAADoU7sSOFOFAAAAcAVu+54A/SiOzfE547g5pQeC31o9AAAA4Asq+p4AAAAA0Lm6/vf+PwAAALhuzfv/AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6NK2Ws83y9Xs3P3FB3N2+8vkWxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwBv7844CIRAGYbB3fWcy9z+sNGhobFIFwsffGAwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADAm9/95f/E1DiTzL02lp5HkrVTY+vU2Ds3jv4wvn4NAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXOzPSwqEQBBEwZzxv5O+/2ElQc8gQgQ0PKqoRQMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPBFv/vl/8TUOJPMnTaWjkeStavG1lVj70Hj6MF4+zcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXOzcP28cRRQA8Hd7t5c/gDAGuTCgIFFAQ+xLSEgJBcii4CMgWc45GC4EEhckskBuoEKu0yAoEUICmS7fIXUspQldChdGogbt3u5lkxhyiszuEv9+0uy8Pa9m3uydLD/P2gAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABAafedeCkp4m52mBnH5Wu39jZWsn7ngT5zY+v2fNayuPOoib55++CTb7eXqycn5ionX9WfDAAAAIdDt6zvI+JOur2U9clMXv+n5TVZzf/9M+O4rOcfrPt39jaOFl+aL+v/3369+8JkopnxPNmgq2uj4eLDqfT+oyW23rOPvKKX3/n8dy/d/A1J3t98fjfN72fn25s33+3n4ZE6sgUAHsfJsi+C8uehrB80mRgAh0avUniX9X93ptmcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAOqwuxlPlXEnIuZ79+LMzt7Gyn79ja3b82U7e/36VnXMbIg0IlbXRsO0xrW03ZWr1z5ZHo2Gl+sPTkREc7MXwYdTXBPx79cUH89obhX/HHTakUajQVK8P23J5yCD8rN38CM39A0JAIAnVlq0rK6/k24vZa91ZiP++uH++v+1ShxT1v93Pzp7qzpXtf4f1LbC9ltYv/jZwpWr195Yu7h8YXhh+OmbpwZvDU6fO3Pm3EJ2rxYXViMZLjadJgAAAP9j/aJV6/9k9uH9/+OVOKas/z//bvBlda6u+n9f9zb9ms4EAADgMOpPoude+fOPzj5XdPr9+GJ5ff3yYHycnJ8aH2tN9zEdKVq1/u/ONp0VAAAAUIfdzc59+//nK3FMuf//9I8v/lwdsxsRxyIuRcTw5Mql0fn6ltNqdfyhcj5Rv+mVAgAA0JRjRavu/6f58//J5JGHJCJef3Ucl//rapr6v/ve1z9V56o+/3+6viW2UjI3vh95PxfRm2s6IwAAAJ5kR4uWFfu/p9tLH/9y/IO+5/8BAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA6vZ3AAAA//+pzDYD")
mknodat(0xffffffffffffff9c, &(0x7f0000000040)='./file0\x00', 0x1000, 0x0)

1.147429214s ago: executing program 2 (id=18686):
r0 = fsopen(&(0x7f0000000280)='ceph\x00', 0x0)
fsconfig$FSCONFIG_SET_STRING(r0, 0x1, &(0x7f0000000040)='source', &(0x7f0000002280)='//\xf2b\x06\b\xba\xdf/o\xdc\xea\x95\x9a\x82\x10\x97W\x8f7\x98\x9b///\x00\rmD\x94)U\xdb\x15X.I\n}\xf3\x9d\xe4_\x05\x9cqf4I^#b?9\xde\xafu\'\x83L\xe0\x97\xe1n_\xa4%\xb1\x97\x93\xafv\xce/\\\xb4L\xf2_\xa7\xfb\xf4\x84\x1fA\xeas^\xef\xa2\x85\xa3!\xfb\x97\xd7R\xab2\x1eW\xe9h\x9b\xf7ul\xf9D\xd4\x82X5\x13\xaa\x87\xf9\xba\xa9m\x14\x14R_\x9a\\>4\xce\x8e_#\xf8DD\x9bp\x01\xcc:\xa6\xc5n\x9f\xfb\x81 \x10\x0fQ\x90}Zd\xeb\xab\xf70\x99\xef\x8b<M\n\xc0`[\x82\xf6$\xa4\xbe\x1e\xd3\xe4\xd9L\x14\xed\xcfK\xcc\xeb,\x1a1\xa6\xf3e\xc2F\xc3V\x9c\x8c\xf8\xf7\xe2\xd5\x8bE\xee5\x00\xaa\xd5\xfc\x1b$\x06\x1a\xb0W#\xf4\xde6\x04c\xc0\xeec\xa0l\xd5d\xe5\xcd\xb2\xc10\x97w\x87\xe5\x06\x91W\rr\xf5\x97%\xe8pO\xeb]\xc2\x98C\xffK\xa0\xb3\\\x99{\xcdR\x92\x94\xf7\x1d\x01Q\x1a\xbd\x15b\x15h\xe2!\x00\xb9z)\x19\x00\xee\xd2)[p`\xb3\x03\xa7p\'X\xec\xcdoX\x05\xff\xff/o\xb2\xad\xb8\x89i@\f\xffS&\x8a\xc9\xfez\xc2\x90\xe7F\xa6\xdb\r\x03j,N\xe1lw\xec\xac\xe8\xf0\xbd\xa1\x98\xce\xf9\x1eR\x9cc\xc5ke_\xa7\x11\"\x04\xd8.\xa0\x15\x83\xf1\x92\xdby\xe9\xdc@.\xc1g\xc6\fc\xa26\xd8\xdf\xec\x9es\xee\xcc\x8am\x8b7\xcf\xc5\xa6\xf4\f\xabj%Y\xa9\xdd\x0e9e\xb5\xec\x99@\xd2\t\n\xb1o\x00\x00\x00\x00\x00\x00\x00\x00_\tN\xfd\xa2\xc2SPu\xe7\xc0+SL\xa1', 0x0)

1.117989796s ago: executing program 4 (id=18687):
r0 = openat$full(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0)
preadv2(r0, &(0x7f0000000040)=[{0x0}, {&(0x7f0000001380)=""/129, 0x81}], 0x2, 0x0, 0x0, 0x0)

930.630315ms ago: executing program 4 (id=18689):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0xffffff9e, &(0x7f0000000000)={&(0x7f00000009c0)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x101, 0x0, 0x0, {0x1}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWSET={0x3c, 0x9, 0xa, 0x401, 0x0, 0x18000000, {0x1}, [@NFTA_SET_ID={0x8}, @NFTA_SET_NAME={0x9, 0x2, 'syz2\x00'}, @NFTA_SET_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_KEY_LEN={0x8, 0x5, 0x1, 0x0, 0x8}]}, @NFT_MSG_NEWSETELEM={0x74, 0xc, 0xa, 0x301, 0x0, 0x0, {0x1}, [@NFTA_SET_ELEM_LIST_SET_ID={0x8}, @NFTA_SET_ELEM_LIST_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_SET_ELEM_LIST_ELEMENTS={0x38, 0x3, 0x0, 0x1, [{0x34, 0x0, 0x0, 0x1, [@NFTA_SET_ELEM_KEY={0x4}, @NFTA_SET_ELEM_EXPRESSIONS={0x4, 0x6, 0x0, 0x1, [{0x14, 0x7, 0x0, 0x1, @counter={{0xc}, @val={0x4}}}, {0x14, 0x1, 0x0, 0x1, @counter={{0xc}, @val={0x480}}}]}]}]}]}], {0x14, 0x10}}, 0xe4}}, 0x0)

904.039356ms ago: executing program 2 (id=18690):
r0 = syz_open_dev$vim2m(&(0x7f0000000080), 0x40003, 0x2)
ioctl$vim2m_VIDIOC_ENUM_FMT(r0, 0xc0405602, &(0x7f0000000140)={0x33, 0x1, 0x80, "1c1e00000140f3ac6c8d00001e84b61c10000000000400000000000000f300", 0x34524742})

898.076176ms ago: executing program 1 (id=18691):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f0000000000)=@newlink={0x54, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x34, 0x12, 0x0, 0x1, @gretap={{0xb}, {0x24, 0x2, 0x0, 0x1, [@IFLA_GRE_ERSPAN_VER={0x5, 0x16, 0x1}, @IFLA_GRE_LINK={0x8}, @IFLA_GRE_REMOTE={0x8, 0x7, @private=0xa010101}, @IFLA_GRE_TOS={0x5, 0x9, 0x5}]}}}]}, 0x54}, 0x1, 0x0, 0x0, 0x4801}, 0x20000010)

783.472022ms ago: executing program 4 (id=18692):
openat$sysfs(0xffffffffffffff9c, &(0x7f0000000040)='/sys/kernel/fscaps', 0x149a82, 0x0)
syz_emit_vhci(&(0x7f0000000040)=ANY=[@ANYBLOB="040e04e22820"], 0x7)

704.825306ms ago: executing program 2 (id=18693):
r0 = socket$packet(0x11, 0x2, 0x300)
getsockopt$packet_int(r0, 0x107, 0x8, 0x0, &(0x7f00000002c0))

686.484417ms ago: executing program 1 (id=18694):
r0 = syz_open_dev$vbi(&(0x7f0000000080), 0x0, 0x2)
ioctl$VIDIOC_G_AUDIO(r0, 0x80345621, 0x0)

557.966483ms ago: executing program 4 (id=18695):
r0 = socket$can_raw(0x1d, 0x3, 0x1)
setsockopt$CAN_RAW_FD_FRAMES(r0, 0x65, 0x5, &(0x7f0000000040)=0x1, 0x4)

552.680113ms ago: executing program 1 (id=18696):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPSET_CMD_CREATE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f0000000080)={&(0x7f0000000300)=ANY=[@ANYBLOB="6c000000020601000000000600000000000000000e0003006269746d61703a697000000005000400000000000900020073797a3000000000240007800c00028008000140ffffffff0c000180080001000000ffff050014000200000005000500020000000500010006"], 0x6c}}, 0x0)

487.422426ms ago: executing program 2 (id=18697):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$IPCTNL_MSG_EXP_NEW(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000100)=ANY=[@ANYBLOB="88000000000201040000000000000000020000052400028014000180080001000000000008000200ac1e00010c00028005000100000000002400038014000180080001000000000008000200ac1414000c00028005000100000000002c00018006000340000100000c00028004e601008800000014000180080001"], 0x88}}, 0x0)

423.080569ms ago: executing program 1 (id=18698):
r0 = openat$fb0(0xffffffffffffff9c, &(0x7f0000000300), 0x1, 0x0)
ioctl$FBIOGET_CON2FBMAP(r0, 0x460f, 0x0)

330.225024ms ago: executing program 4 (id=18699):
syz_mount_image$hfs(&(0x7f00000007c0), &(0x7f0000000000)='./file1\x00', 0x30008c0, &(0x7f0000000980)=ANY=[@ANYBLOB="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", @ANYBLOB="11f4579be01e435c584a33c63f8173f96bc4546035804d47be19163bd9e589bfdd0a9e6804495a4e4d83804e78ac5a72446295afd79de3fd6a02932a26ab4045133c371e56b0d48544db3c7db23a432f837b93f89b6f223cd1f6731d407ffdb1dd9467f5cd2d6c4e8b9d4f50d338ac91501a4bb780c4723929e22f55254546facc4f0284e644e6", @ANYRES8, @ANYRESHEX=0x0], 0x11, 0x314, &(0x7f0000000b80)="$eJzs3U1rE08cB/Dv7KZN+m/pf7UVwYNINWAvovUiXiIlL8KTqE0KxSWitviAYBVPIvbu3aNXX4N4UQTP9eRJPHiqBxmZh2SfN6lmd1P9fsCy2dmZ/e3OzlPALIjon7Xa3n11/ov6JwAXLvDsIuAAaAA1AEdwtLHV29zY9LudvIJcHK+bXAImp0gcs9brpmVtwOawPPWphrnwPiqGlPLS56qDoMrp1i/d6M4Tuieo29apExsVxZfl8f6zfJsBsF1EMBMlv6bEHvZwD/OlhUNERBNJmPHdseP8nJ2/Ow7QtIOJSpu48f937VUdQOFkbmpo/NerLClUvf+vk4L1nl7CqXSnv0pMK+t17PNU7PM0zNMTmV2KYatKHYszs77hd8+s3fQ7Dp6gZYUOW9R/O/bxtCLR1hNFL6WsTXMMSpvJPESkzyhn9TVMqWtYMfHfBRCJfyH3jAUQ78QHcUV4eInOYP5Xk0JVk64pL1ZTJv6z2SXqq/TUUbDdRqvVciKHHNInOWbPYA25ygbcrDNO2zIjXxB4w+LUuQ7HcpmrOzck10JqrhW9vQwnI9diJJe6mvUN/232qUohXojLYglf8Qbt0PzfUfE1kWyZoYc+aDWiaYYCfcdV64zWbEitaXsiPXJsfdp9aPYnm8vgLiYbrPUjv0+jfXiO67iA+Tv3H9xwfb97W21c89XjqjcGe27N2Q2/O/UUCCdNyga2gz11SC1xcH9QKjOw5bEWqPqPlCTVsHrf+3tUKxtW4KM/jUf1A4XeutkRrmJ/G/2uazwFtt+P50HqTxsiST+llCU2oh17Z+JJ1XRLVK6g0kc7PmWqQwebqlJh1n/BeqVmJnvqj5c6Tx/xiwBbolRz7MEKLsgrzYwcwH85K7i0YjNXcMk1V2LNqNdcJ08Dp0Y/o2fj/EuINj7iKr//JyIiIiIiIiIiIiIiIiIiIiIiIiI6aMr4zzBVXyMRERERERERERERERERERERERERERER0UG32oD53Wv03/+L0d7/G38Vi2t+Enws7//d6YHv/yUq3q8AAAD///B/c8c=")
openat(0xffffffffffffff9c, &(0x7f0000000280)='./bus\x00', 0x4040, 0x0)

222.462249ms ago: executing program 1 (id=18700):
r0 = socket$nl_netfilter(0x10, 0x3, 0xc)
sendmsg$NFT_BATCH(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000440)={{0x14}, [@NFT_MSG_NEWTABLE={0x20, 0x0, 0xa, 0x5, 0x0, 0x0, {0x5}, [@NFTA_TABLE_NAME={0x9, 0x1, 'syz0\x00'}]}, @NFT_MSG_NEWCHAIN={0x2c, 0x3, 0xa, 0x101, 0x0, 0x0, {0x5}, [@NFTA_CHAIN_TABLE={0x9, 0x1, 'syz0\x00'}, @NFTA_CHAIN_NAME={0x9, 0x3, 'syz0\x00'}]}, @NFT_MSG_NEWRULE={0x58, 0x6, 0xa, 0x401, 0x0, 0x0, {0x5, 0x0, 0x4}, [@NFTA_RULE_CHAIN_ID={0x8}, @NFTA_RULE_EXPRESSIONS={0x30, 0x4, 0x0, 0x1, [{0x2c, 0x1, 0x0, 0x1, @xfrm={{0x9}, @val={0x1c, 0x2, 0x0, 0x1, [@NFTA_XFRM_DREG={0x8, 0x1, 0x1, 0x0, 0x8}, @NFTA_XFRM_KEY={0x8}, @NFTA_XFRM_DIR={0x5, 0x3, 0x1}]}}}]}, @NFTA_RULE_TABLE={0x9, 0x1, 'syz0\x00'}]}], {0x14}}, 0xcc}}, 0x0)

222.007919ms ago: executing program 2 (id=18701):
r0 = socket$nl_route(0x10, 0x3, 0x0)
sendmsg$nl_route(r0, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000940)=@newlink={0x44, 0x10, 0x403, 0xfffffffd, 0x0, {}, [@IFLA_LINKINFO={0x24, 0x12, 0x0, 0x1, @bond={{0x9}, {0x14, 0x2, 0x0, 0x1, [@IFLA_BOND_AD_USER_PORT_KEY={0x6, 0x19, 0x88}, @IFLA_BOND_MODE={0x5, 0x1, 0x1}]}}}]}, 0x44}}, 0x20000000)

51.789257ms ago: executing program 1 (id=18702):
r0 = io_uring_setup(0x64e6, &(0x7f0000003580)={0x0, 0x0, 0x40})
io_uring_register$IORING_REGISTER_RESTRICTIONS(r0, 0xb, &(0x7f0000003600)=[@ioring_restriction_sqe_flags_required, @ioring_restriction_sqe_op={0x1, 0x6cb2a2212b00958}], 0x2)

33.167058ms ago: executing program 4 (id=18703):
r0 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000001c0)='/sys/power/pm_test', 0x101a02, 0x0)
copy_file_range(r0, &(0x7f0000000000)=0x8, r0, 0x0, 0x4, 0x0)

0s ago: executing program 2 (id=18704):
r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000600)={0x20, 0x3, &(0x7f0000000200)=@framed, &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @netfilter=0x2d, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x99ee}, 0x94)
bpf$BPF_LINK_CREATE_XDP(0x1c, &(0x7f0000000140)={r0, 0x0, 0x2d, 0x0, @val=@netfilter={0x2, 0x1, 0xffffff6a}}, 0x20)

kernel console output (not intermixed with test programs):

vice=70.4b
[ 1701.630246][ T5852] usb 2-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1701.646387][ T5852] usb 2-1: Product: syz
[ 1701.651030][ T5852] usb 2-1: Manufacturer: syz
[ 1701.667737][ T5852] usb 2-1: SerialNumber: syz
[ 1701.929449][ T5852] usb 2-1: Handspring Visor / Palm OS: No valid connect info available
[ 1701.937791][ T5852] usb 2-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1701.964973][ T5852] usb 2-1: Handspring Visor / Palm OS: port 0, is for Generic use
[ 1701.986255][ T5852] usb 2-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1702.119912][ T5852] usb 2-1: palm_os_3_probe - error -71 getting bytes available request
[ 1702.143801][ T5852] visor 2-1:1.0: Handspring Visor / Palm OS converter detected
[ 1702.169178][ T5852] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1702.182307][ T5852] usb 2-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1702.199869][ T5852] usb 2-1: USB disconnect, device number 65
[ 1702.229157][ T5852] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1702.302319][ T5852] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1702.324092][ T5852] visor 2-1:1.0: device disconnected
[ 1702.692578][T10694] netlink: 766 bytes leftover after parsing attributes in process `syz.3.16620'.
[ 1703.580153][   T27] audit: type=1326 audit(1773783094.584:487): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10732 comm="syz.4.16641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1703.612018][T10733] netlink: 100 bytes leftover after parsing attributes in process `syz.3.16639'.
[ 1703.653689][   T27] audit: type=1326 audit(1773783094.584:488): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10732 comm="syz.4.16641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1703.731917][T10739] loop1: detected capacity change from 0 to 1024
[ 1703.740570][   T27] audit: type=1326 audit(1773783094.584:489): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10732 comm="syz.4.16641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=43 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1703.763555][   T27] audit: type=1326 audit(1773783094.584:490): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10732 comm="syz.4.16641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1703.787407][   T27] audit: type=1326 audit(1773783094.584:491): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10732 comm="syz.4.16641" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1703.901186][   T27] audit: type=1800 audit(1773783094.878:492): pid=10739 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.16644" name="file1" dev="loop1" ino=20 res=0 errno=0
[ 1703.976276][T21215] hfsplus: b-tree write err: -5, ino 25
[ 1703.985001][T21215] hfsplus: b-tree write err: -5, ino 4
[ 1704.001087][T21215] hfsplus: b-tree write err: -5, ino 2
[ 1704.269047][T10756] netlink: 260 bytes leftover after parsing attributes in process `syz.3.16650'.
[ 1704.929093][T10783] netlink: 36 bytes leftover after parsing attributes in process `syz.4.16663'.
[ 1705.258467][T10799] CIFS mount error: No usable UNC path provided in device string!
[ 1705.258467][T10799] 
[ 1705.301223][T10801] netlink: 'syz.4.16674': attribute type 10 has an invalid length.
[ 1705.303477][T10799] CIFS: VFS: CIFS mount error: No usable UNC path provided in device string!
[ 1705.554310][T10810] program syz.1.16679 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1705.616117][T10810] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1705.757794][T10819] netlink: 64 bytes leftover after parsing attributes in process `syz.3.16683'.
[ 1706.104030][T10833] netlink: 'syz.3.16690': attribute type 5 has an invalid length.
[ 1706.390809][T10846] loop4: detected capacity change from 0 to 256
[ 1706.982559][T10871] netlink: 4 bytes leftover after parsing attributes in process `syz.3.16708'.
[ 1707.010418][T10871] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16708'.
[ 1707.277778][T10885] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16715'.
[ 1707.290086][T10883] loop3: detected capacity change from 0 to 1024
[ 1707.312858][T10883] EXT4-fs: Ignoring removed bh option
[ 1707.388937][T10883] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1707.437970][T10883] EXT4-fs error (device loop3): ext4_validate_block_bitmap:439: comm syz.3.16716: bg 0: block 195: padding at end of block bitmap is not set
[ 1707.469719][T10883] EXT4-fs (loop3): Remounting filesystem read-only
[ 1707.498017][T10883] EXT4-fs warning (device loop3): ext4_xattr_inode_lookup_create:1607: inode #18: comm syz.3.16716: cleanup dec ref error -28
[ 1707.565557][T10894] xt_TCPMSS: Only works on TCP SYN packets
[ 1707.617265][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1707.658178][T10896] netlink: 8 bytes leftover after parsing attributes in process `syz.4.16721'.
[ 1707.887242][T10906] netlink: 'syz.4.16725': attribute type 4 has an invalid length.
[ 1708.326483][T10923] loop1: detected capacity change from 0 to 4096
[ 1708.389755][T10923] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1708.497430][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1708.570750][T10933] netlink: 'syz.2.16738': attribute type 39 has an invalid length.
[ 1709.257070][T10955] (unnamed net_device) (uninitialized): Removing last arp target with arp_interval on
[ 1709.751796][T10969] netlink: 8 bytes leftover after parsing attributes in process `syz.2.16755'.
[ 1709.771847][T10969] netlink: 24 bytes leftover after parsing attributes in process `syz.2.16755'.
[ 1709.967535][   T27] audit: type=1326 audit(1773783101.282:493): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10972 comm="syz.2.16757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1710.033955][   T27] audit: type=1326 audit(1773783101.282:494): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10972 comm="syz.2.16757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1710.101279][   T27] audit: type=1326 audit(1773783101.324:495): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10972 comm="syz.2.16757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=163 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1710.135878][   T27] audit: type=1326 audit(1773783101.324:496): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10972 comm="syz.2.16757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1710.172368][   T27] audit: type=1326 audit(1773783101.324:497): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10972 comm="syz.2.16757" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1710.272709][ T5805] usb 2-1: new high-speed USB device number 66 using dummy_hcd
[ 1710.475040][ T5805] usb 2-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config
[ 1710.491506][ T5805] usb 2-1: config 220 has 1 interface, different from the descriptor's value: 3
[ 1710.520330][ T5805] usb 2-1: config 220 interface 0 has no altsetting 0
[ 1710.541938][ T5805] usb 2-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9
[ 1710.559048][ T5805] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1710.577786][ T5805] usb 2-1: Product: syz
[ 1710.582124][ T5805] usb 2-1: Manufacturer: syz
[ 1710.586755][ T5805] usb 2-1: SerialNumber: syz
[ 1710.655121][T10987] program syz.3.16763 is using a deprecated SCSI ioctl, please convert it to SG_IO
[ 1710.701470][T10987] sd 0:0:1:0: ioctl_internal_command: ILLEGAL REQUEST asc=0x20 ascq=0x0
[ 1710.709935][T10977] loop4: detected capacity change from 0 to 32768
[ 1710.767363][T10977] ialloc: diAlloc returned -5!
[ 1710.839930][ T5805] usb 2-1: USB disconnect, device number 66
[ 1711.357811][T11003] netlink: 'syz.4.16771': attribute type 11 has an invalid length.
[ 1711.405231][T11003] netlink: 212832 bytes leftover after parsing attributes in process `syz.4.16771'.
[ 1711.577314][T11009] netlink: 4 bytes leftover after parsing attributes in process `syz.1.16774'.
[ 1711.586361][T11009] openvswitch: netlink: Flow set message rejected, Key attribute missing.
[ 1712.441487][T11041] netlink: 112 bytes leftover after parsing attributes in process `syz.3.16790'.
[ 1712.480849][T11041] netlink: 'syz.3.16790': attribute type 1 has an invalid length.
[ 1712.945379][T11060] loop4: detected capacity change from 0 to 2048
[ 1712.978432][T11060] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1713.077498][T11065] (unnamed net_device) (uninitialized): option ad_actor_sys_prio: mode dependency failed, not supported in mode balance-rr(0)
[ 1713.588063][ T5805] usb 5-1: new high-speed USB device number 16 using dummy_hcd
[ 1713.797008][ T5805] usb 5-1: Using ep0 maxpacket: 16
[ 1713.830428][ T5805] usb 5-1: config index 0 descriptor too short (expected 16456, got 72)
[ 1713.850672][ T5805] usb 5-1: config 0 has an invalid interface number: 125 but max is 1
[ 1713.865643][ T5805] usb 5-1: config 0 has an invalid interface number: 125 but max is 1
[ 1713.888326][ T5805] usb 5-1: config 0 has an invalid interface number: 125 but max is 1
[ 1713.901533][ T5805] usb 5-1: config 0 has 1 interface, different from the descriptor's value: 2
[ 1713.910473][ T5805] usb 5-1: config 0 has no interface number 0
[ 1713.919310][ T5805] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x4 has invalid maxpacket 21760, setting to 64
[ 1713.946844][ T5805] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0xB has invalid wMaxPacketSize 0
[ 1713.997264][ T5805] usb 5-1: config 0 interface 125 altsetting 4 endpoint 0x2 has invalid wMaxPacketSize 0
[ 1714.029608][ T5805] usb 5-1: too many endpoints for config 0 interface 125 altsetting 48: 120, using maximum allowed: 30
[ 1714.069963][ T5805] usb 5-1: config 0 interface 125 altsetting 48 has 0 endpoint descriptors, different from the interface descriptor's value: 120
[ 1714.109923][ T5805] usb 5-1: config 0 interface 125 has no altsetting 0
[ 1714.148399][ T5805] usb 5-1: config 0 interface 125 has no altsetting 1
[ 1714.185382][ T5805] usb 5-1: New USB device found, idVendor=050d, idProduct=0002, bcdDevice=23.27
[ 1714.199867][ T5805] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1714.223048][ T5805] usb 5-1: Product: syz
[ 1714.244593][ T5805] usb 5-1: Manufacturer: syz
[ 1714.249272][ T5805] usb 5-1: SerialNumber: syz
[ 1714.274563][ T5805] usb 5-1: config 0 descriptor??
[ 1714.612387][T11114] netlink: 16 bytes leftover after parsing attributes in process `syz.2.16825'.
[ 1714.644706][T11114] netlink: 108 bytes leftover after parsing attributes in process `syz.2.16825'.
[ 1714.670241][T11114] netlink: 16 bytes leftover after parsing attributes in process `syz.2.16825'.
[ 1714.789098][T13900] usb 5-1: USB disconnect, device number 16
[ 1714.996586][ T5805] usb 2-1: new high-speed USB device number 67 using dummy_hcd
[ 1715.189237][ T5805] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1715.204881][T11118] loop3: detected capacity change from 0 to 32768
[ 1715.211840][ T5805] usb 2-1: config 0 has 1 interface, different from the descriptor's value: 3
[ 1715.239828][ T5805] usb 2-1: New USB device found, idVendor=0489, idProduct=e057, bcdDevice= 0.00
[ 1715.282632][ T5805] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1715.306564][ T5805] usb 2-1: config 0 descriptor??
[ 1715.487039][T11135] netlink: 'syz.2.16838': attribute type 1 has an invalid length.
[ 1715.734107][ T5805] Bluetooth: Can't get state to change to load configuration err
[ 1715.749311][ T5805] Bluetooth: Loading sysconfig file failed
[ 1715.759091][ T5805] ath3k: probe of 2-1:0.0 failed with error -16
[ 1715.785684][ T5805] usb 2-1: USB disconnect, device number 67
[ 1715.898597][T11144] netlink: 28 bytes leftover after parsing attributes in process `syz.2.16842'.
[ 1715.930547][T11144] netlink: 28 bytes leftover after parsing attributes in process `syz.2.16842'.
[ 1716.065616][T11150] netlink: 72 bytes leftover after parsing attributes in process `syz.4.16844'.
[ 1716.089319][T11150] netlink: 'syz.4.16844': attribute type 1 has an invalid length.
[ 1716.105087][T11150] netlink: 'syz.4.16844': attribute type 2 has an invalid length.
[ 1716.120169][T11150] netlink: 116 bytes leftover after parsing attributes in process `syz.4.16844'.
[ 1716.523580][T11168] netlink: 28 bytes leftover after parsing attributes in process `syz.3.16853'.
[ 1716.539588][T11168] netlink: 108 bytes leftover after parsing attributes in process `syz.3.16853'.
[ 1716.838140][T11180] loop4: detected capacity change from 0 to 64
[ 1717.593764][T11200] (unnamed net_device) (uninitialized): option lp_interval: invalid value (0)
[ 1717.635874][T11200] (unnamed net_device) (uninitialized): option lp_interval: allowed values 1 - 2147483647
[ 1717.871052][T11206] __nla_validate_parse: 4 callbacks suppressed
[ 1717.871072][T11206] netlink: 16 bytes leftover after parsing attributes in process `syz.1.16872'.
[ 1717.897709][T11208] A link change request failed with some changes committed already. Interface netdevsim0 may have been left with an inconsistent configuration, please check.
[ 1718.390804][T11222] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16880'.
[ 1718.399075][T11202] loop4: detected capacity change from 0 to 32768
[ 1718.486509][T11202] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1718.613686][T11202] XFS (loop4): Ending clean mount
[ 1718.644177][T11202] XFS (loop4): Quotacheck needed: Please wait.
[ 1718.718330][T11202] XFS (loop4): Quotacheck: Done.
[ 1718.919021][ T5644] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1719.400355][T11260] loop4: detected capacity change from 0 to 64
[ 1719.442824][T11262] netlink: 224 bytes leftover after parsing attributes in process `syz.3.16896'.
[ 1719.578621][T13900] usb 3-1: new high-speed USB device number 47 using dummy_hcd
[ 1719.768664][T13900] usb 3-1: Using ep0 maxpacket: 16
[ 1719.812907][T13900] usb 3-1: New USB device found, idVendor=041e, idProduct=4018, bcdDevice=ed.b4
[ 1719.839734][T13900] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1719.871934][T13900] usb 3-1: Product: syz
[ 1719.889760][T13900] usb 3-1: Manufacturer: syz
[ 1719.897794][T13900] usb 3-1: SerialNumber: syz
[ 1719.916167][T13900] usb 3-1: config 0 descriptor??
[ 1719.931773][T13900] gspca_main: spca508-2.14.0 probing 041e:4018
[ 1720.379345][T13900] gspca_spca508: reg_read err -71
[ 1720.394655][T13900] gspca_spca508: reg_read err -71
[ 1720.404349][   T27] audit: type=1326 audit(1773783112.254:498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11292 comm="syz.3.16911" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x0
[ 1720.406729][T13900] gspca_spca508: reg_read err -71
[ 1720.426409][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1720.470765][T13900] gspca_spca508: reg_read err -71
[ 1720.479255][T13900] gspca_spca508: reg write: error -71
[ 1720.487714][T13900] spca508: probe of 3-1:0.0 failed with error -71
[ 1720.536189][T13900] usb 3-1: USB disconnect, device number 47
[ 1721.085087][   T27] audit: type=1326 audit(1773783112.967:499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11317 comm="syz.1.16923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1721.159469][   T27] audit: type=1326 audit(1773783112.967:500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11317 comm="syz.1.16923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1721.230192][   T27] audit: type=1326 audit(1773783112.967:501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11317 comm="syz.1.16923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=4 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1721.287024][   T27] audit: type=1326 audit(1773783112.967:502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11317 comm="syz.1.16923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1721.315941][T11324] netlink: 'syz.2.16926': attribute type 1 has an invalid length.
[ 1721.352266][T11324] netlink: 168864 bytes leftover after parsing attributes in process `syz.2.16926'.
[ 1721.373714][   T27] audit: type=1326 audit(1773783112.967:503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11317 comm="syz.1.16923" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1721.396313][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1721.824020][T11344] netlink: 16 bytes leftover after parsing attributes in process `syz.3.16936'.
[ 1722.023311][T11355] loop3: detected capacity change from 0 to 512
[ 1722.064333][T11355] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2
[ 1722.075616][T11355] EXT4-fs (loop3): Cannot turn on journaled quota: type 1: error -2
[ 1722.102578][ T5806] usb 2-1: new high-speed USB device number 68 using dummy_hcd
[ 1722.135005][T11355] EXT4-fs (loop3): 1 truncate cleaned up
[ 1722.156199][T11355] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1722.257895][T11367] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1722.302626][ T5806] usb 2-1: Using ep0 maxpacket: 32
[ 1722.321476][T11355] EXT4-fs (loop3): re-mounted 00000000-0000-0000-0000-000000000000 ro.
[ 1722.329522][ T5806] usb 2-1: config 0 has an invalid interface number: 51 but max is 0
[ 1722.351104][ T5806] usb 2-1: config 0 has no interface number 0
[ 1722.357306][ T5806] usb 2-1: config 0 interface 51 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1722.380847][ T5806] usb 2-1: config 0 interface 51 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0
[ 1722.407380][ T5806] usb 2-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f
[ 1722.426174][ T5806] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1722.436900][ T5806] usb 2-1: Product: syz
[ 1722.441122][ T5806] usb 2-1: Manufacturer: syz
[ 1722.468298][ T5806] usb 2-1: SerialNumber: syz
[ 1722.483711][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1722.494997][ T5806] usb 2-1: config 0 descriptor??
[ 1722.533107][ T5806] quatech2 2-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected
[ 1722.563401][T11375] netlink: 16186 bytes leftover after parsing attributes in process `syz.4.16950'.
[ 1722.753667][ T5806] usb 2-1: qt2_setup_urbs - submit read urb failed -90
[ 1722.765211][ T5806] quatech2: probe of 2-1:0.51 failed with error -90
[ 1723.006623][ T5806] usb 2-1: USB disconnect, device number 68
[ 1723.044531][T11393] loop4: detected capacity change from 0 to 764
[ 1723.173529][T13900] usb 4-1: new high-speed USB device number 38 using dummy_hcd
[ 1723.359594][T13900] usb 4-1: Using ep0 maxpacket: 8
[ 1723.367462][T13900] usb 4-1: config 64 has an invalid interface number: 19 but max is 0
[ 1723.376797][T13900] usb 4-1: config 64 has no interface number 0
[ 1723.383256][T13900] usb 4-1: config 64 interface 19 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 33
[ 1723.393536][T13900] usb 4-1: New USB device found, idVendor=2201, idProduct=012c, bcdDevice=3f.e0
[ 1723.402941][T13900] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1723.415507][T11389] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22
[ 1723.429332][T13900] usb 4-1: probing VID:PID(2201:012C)   
[ 1723.446703][T13900] usb 4-1: vub300 testing BULK OUT EndPoint(0) 03
[ 1723.456136][T13900] usb 4-1: Could not find two sets of bulk-in/out endpoint pairs
[ 1723.494465][T13900] vub300: probe of 4-1:64.19 failed with error -22
[ 1723.540694][T14716] usb 5-1: new high-speed USB device number 17 using dummy_hcd
[ 1723.671191][ T5805] usb 4-1: USB disconnect, device number 38
[ 1723.730933][T14716] usb 5-1: Using ep0 maxpacket: 8
[ 1723.744783][T14716] usb 5-1: New USB device found, idVendor=0c45, idProduct=613a, bcdDevice=c4.6d
[ 1723.763315][T14716] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1723.788394][T14716] usb 5-1: Product: syz
[ 1723.792662][T14716] usb 5-1: Manufacturer: syz
[ 1723.807009][T14716] usb 5-1: SerialNumber: syz
[ 1723.827612][T14716] usb 5-1: config 0 descriptor??
[ 1723.838428][T14716] gspca_main: sonixj-2.14.0 probing 0c45:613a
[ 1724.236604][T14716] gspca_sonixj: reg_r err -71
[ 1724.261504][T14716] sonixj: probe of 5-1:0.0 failed with error -71
[ 1724.283489][T14716] usb 5-1: USB disconnect, device number 17
[ 1724.319948][T11425] netlink: 4 bytes leftover after parsing attributes in process `syz.2.16975'.
[ 1725.146571][T11461] xt_recent: hitcount (4194304) is larger than allowed maximum (255)
[ 1726.060878][T11453] loop3: detected capacity change from 0 to 32768
[ 1726.176350][T11453] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1726.311791][T11453] XFS (loop3): Ending clean mount
[ 1726.348845][T11453] XFS (loop3): Quotacheck needed: Please wait.
[ 1726.496935][T11453] XFS (loop3): Quotacheck: Done.
[ 1726.821518][ T5766] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1727.502918][T11533] netlink: 'syz.1.17023': attribute type 2 has an invalid length.
[ 1728.639530][T11571] netlink: 'syz.3.17042': attribute type 17 has an invalid length.
[ 1728.662578][T11571] netlink: 'syz.3.17042': attribute type 16 has an invalid length.
[ 1728.698185][T11571] netlink: 152 bytes leftover after parsing attributes in process `syz.3.17042'.
[ 1729.167729][   T27] audit: type=1326 audit(1773783121.451:504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11589 comm="syz.4.17051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1729.236654][   T27] audit: type=1326 audit(1773783121.451:505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11589 comm="syz.4.17051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1729.319172][   T27] audit: type=1326 audit(1773783121.461:506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11589 comm="syz.4.17051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=28 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1729.381378][   T27] audit: type=1326 audit(1773783121.461:507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11589 comm="syz.4.17051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1729.446042][   T27] audit: type=1326 audit(1773783121.461:508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11589 comm="syz.4.17051" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1730.032251][T11625] fuse: Bad value for 'fd'
[ 1730.424423][T11643] IPv6: NLM_F_CREATE should be specified when creating new route
[ 1731.312487][ T5805] usb 2-1: new high-speed USB device number 69 using dummy_hcd
[ 1731.522530][ T5805] usb 2-1: Using ep0 maxpacket: 32
[ 1731.530145][ T5805] usb 2-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1731.539378][ T5805] usb 2-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1731.571463][ T5805] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1731.606228][ T5805] usb 2-1: config 1 has no interface number 0
[ 1731.619997][ T5805] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1731.663507][ T5805] usb 2-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1731.683991][ T5805] usb 2-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1731.712622][ T5805] usb 2-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1731.741479][ T5805] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1731.777536][ T5805] snd_usb_pod 2-1:1.1: Line 6 Pocket POD found
[ 1731.841482][T11706] loop4: detected capacity change from 0 to 164
[ 1731.977194][ T5805] snd_usb_pod 2-1:1.1: cannot start listening: -90
[ 1732.008481][ T5805] snd_usb_pod 2-1:1.1: Line 6 Pocket POD now disconnected
[ 1732.016463][ T5805] snd_usb_pod: probe of 2-1:1.1 failed with error -90
[ 1732.117864][T11713] netlink: 36 bytes leftover after parsing attributes in process `syz.4.17111'.
[ 1732.128284][T11713] netlink: 6 bytes leftover after parsing attributes in process `syz.4.17111'.
[ 1732.143324][T11713] netlink: 6 bytes leftover after parsing attributes in process `syz.4.17111'.
[ 1732.276552][T11719] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.17114'.
[ 1732.288192][ T5805] usb 2-1: USB disconnect, device number 69
[ 1732.293557][T11719] openvswitch: netlink: Tunnel attr 0 has unexpected len 3060 expected 8
[ 1732.431068][T11725] IPv6: Can't replace route, no match found
[ 1732.627203][  T449] usb 3-1: new high-speed USB device number 48 using dummy_hcd
[ 1732.828079][  T449] usb 3-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d
[ 1732.865000][  T449] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1732.873993][  T449] usb 3-1: Product: syz
[ 1732.890373][  T449] usb 3-1: Manufacturer: syz
[ 1732.895676][  T449] usb 3-1: SerialNumber: syz
[ 1732.902994][  T449] r8152-cfgselector 3-1: config 0 descriptor??
[ 1733.008523][T11721] loop3: detected capacity change from 0 to 40427
[ 1733.025007][T11721] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504)
[ 1733.062395][T11721] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1733.085228][T11721] F2FS-fs (loop3): build fault injection attr: rate: 2, type: 0x7ffff
[ 1733.110899][T11721] F2FS-fs (loop3): build fault injection attr: rate: 0, type: 0x1f8
[ 1733.129415][T11721] F2FS-fs (loop3): invalid crc value
[ 1733.172745][T11721] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1733.320093][T11721] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1733.339049][T11721] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1733.346646][  T449] r8152-cfgselector 3-1: Unknown version 0x0000
[ 1733.354680][  T449] r8152-cfgselector 3-1: USB disconnect, device number 48
[ 1733.538338][T11721] F2FS-fs (loop3): inject too big dir depth in f2fs_add_regular_entry of f2fs_add_dentry+0xda/0x1d0
[ 1733.755830][T11758] loop4: detected capacity change from 0 to 1024
[ 1733.803151][T11758] syz.4.17128: attempt to access beyond end of device
[ 1733.803151][T11758] loop4: rw=0, sector=4294967564, nr_sectors = 2 limit=1024
[ 1734.002991][T21215] hfsplus: b-tree write err: -5, ino 25
[ 1734.022041][T21215] hfsplus: b-tree write err: -5, ino 4
[ 1734.034794][T21215] hfsplus: b-tree write err: -5, ino 2
[ 1734.053054][T21215] hfsplus: b-tree write err: -5, ino 20
[ 1734.086292][T11764] netlink: 'syz.1.17131': attribute type 3 has an invalid length.
[ 1734.131770][T11764] netlink: 199836 bytes leftover after parsing attributes in process `syz.1.17131'.
[ 1734.277114][T11770] netlink: 12 bytes leftover after parsing attributes in process `syz.4.17133'.
[ 1734.294278][ T5852] usb 3-1: new high-speed USB device number 49 using dummy_hcd
[ 1734.307473][T11770] (unnamed net_device) (uninitialized): option ad_actor_system: mode dependency failed, not supported in mode balance-rr(0)
[ 1734.493744][ T5852] usb 3-1: Using ep0 maxpacket: 32
[ 1734.517642][ T5852] usb 3-1: config index 0 descriptor too short (expected 35577, got 27)
[ 1734.538998][ T5852] usb 3-1: config 1 has too many interfaces: 92, using maximum allowed: 32
[ 1734.578078][ T5852] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 92
[ 1734.607595][ T5852] usb 3-1: config 1 has no interface number 0
[ 1734.624642][ T5852] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1734.657183][ T5852] usb 3-1: config 1 interface 1 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1734.693998][ T5852] usb 3-1: config 1 interface 1 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 17
[ 1734.731872][ T5852] usb 3-1: New USB device found, idVendor=0e41, idProduct=5051, bcdDevice=d5.e8
[ 1734.779744][ T5852] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1734.814343][ T5852] snd_usb_pod 3-1:1.1: Line 6 Pocket POD found
[ 1734.968035][T11795] netlink: 'syz.3.17146': attribute type 21 has an invalid length.
[ 1735.010176][ T5852] snd_usb_pod 3-1:1.1: cannot start listening: -90
[ 1735.031347][ T5852] snd_usb_pod 3-1:1.1: Line 6 Pocket POD now disconnected
[ 1735.043388][ T5852] snd_usb_pod: probe of 3-1:1.1 failed with error -90
[ 1735.148591][   T27] audit: type=1326 audit(1773783127.729:509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11797 comm="syz.4.17148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1735.152361][T11799] loop3: detected capacity change from 0 to 256
[ 1735.185333][T11799] exfat: Deprecated parameter 'utf8'
[ 1735.191823][   T27] audit: type=1326 audit(1773783127.729:510): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11797 comm="syz.4.17148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1735.214348][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1735.227090][T11799] exfat: Deprecated parameter 'namecase'
[ 1735.238432][T11799] exfat: Deprecated parameter 'namecase'
[ 1735.244198][T11799] exfat: Deprecated parameter 'utf8'
[ 1735.259338][T11799] exFAT-fs (loop3): failed to load upcase table (idx : 0x00012153, chksum : 0x6a70c931, utbl_chksum : 0xe619d30d)
[ 1735.274267][   T27] audit: type=1326 audit(1773783127.782:511): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11797 comm="syz.4.17148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=238 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1735.335508][T14716] usb 3-1: USB disconnect, device number 49
[ 1735.369515][   T27] audit: type=1326 audit(1773783127.782:512): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11797 comm="syz.4.17148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1735.446268][   T27] audit: type=1326 audit(1773783127.782:513): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11797 comm="syz.4.17148" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1736.193456][T11836] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17166'.
[ 1736.214005][T11836] netlink: 56 bytes leftover after parsing attributes in process `syz.4.17166'.
[ 1737.353994][T11867] netlink: 4268 bytes leftover after parsing attributes in process `syz.4.17182'.
[ 1737.733092][T11878] netlink: 28 bytes leftover after parsing attributes in process `syz.3.17187'.
[ 1737.753942][T11878] netlink: 28 bytes leftover after parsing attributes in process `syz.3.17187'.
[ 1738.360127][T11902] ip6t_rpfilter: unknown options
[ 1738.475661][T11905] loop1: detected capacity change from 0 to 2048
[ 1738.538332][T11905] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1738.761979][T11916] SET target dimension over the limit!
[ 1739.026245][T11927] xt_hashlimit: size too large, truncated to 1048576
[ 1739.033981][T11927] xt_hashlimit: max too large, truncated to 1048576
[ 1739.742524][ T5805] usb 3-1: new high-speed USB device number 50 using dummy_hcd
[ 1739.850907][T11959] loop3: detected capacity change from 0 to 2048
[ 1739.870258][T11959] UDF-fs: error (device loop3): udf_process_sequence: Primary Volume Descriptor not found!
[ 1739.906648][T11959] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1739.944767][ T5805] usb 3-1: Using ep0 maxpacket: 8
[ 1739.954354][ T5805] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[ 1739.980925][ T5805] usb 3-1: config 179 has no interface number 0
[ 1739.987307][ T5805] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 7
[ 1740.034266][ T5805] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 1024
[ 1740.056988][ T5805] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1740.088519][ T5805] usb 3-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 41728, setting to 1024
[ 1740.123967][ T5805] usb 3-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1740.141500][T11969] overlayfs: conflicting options: metacopy=off,verity=on
[ 1740.185845][ T5805] usb 3-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1740.218326][ T5805] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1740.241650][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1740.248742][T11945] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1740.259452][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1740.671541][T11980] loop3: detected capacity change from 0 to 1024
[ 1740.866915][T11980] hfsplus: b-tree write err: -5, ino 2
[ 1740.971695][T11989] overlayfs: conflicting options: userxattr,redirect_dir=follow
[ 1740.992003][ T4566] hfsplus: b-tree write err: -5, ino 25
[ 1741.011301][ T4566] hfsplus: b-tree write err: -5, ino 4
[ 1741.016954][ T4566] hfsplus: b-tree write err: -5, ino 2
[ 1741.234682][ T5806] usb 3-1: USB disconnect, device number 50
[ 1741.234751][    C1] xpad 3-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1741.249137][    C1] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1741.317569][   T27] audit: type=1326 audit(1773783134.207:514): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11994 comm="syz.1.17245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1741.371167][   T27] audit: type=1326 audit(1773783134.207:515): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11994 comm="syz.1.17245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1741.431770][T12001] xt_bpf: check failed: parse error
[ 1741.441908][   T27] audit: type=1326 audit(1773783134.259:516): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11994 comm="syz.1.17245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=16 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1741.495531][   T27] audit: type=1326 audit(1773783134.259:517): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11994 comm="syz.1.17245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1741.563841][   T27] audit: type=1326 audit(1773783134.259:518): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11994 comm="syz.1.17245" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7ffc0000
[ 1741.685368][T12011] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17253'.
[ 1742.028623][T12024] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17259'.
[ 1742.054551][T12024] netlink: 28 bytes leftover after parsing attributes in process `syz.1.17259'.
[ 1742.165772][T12028] netlink: 52 bytes leftover after parsing attributes in process `syz.4.17261'.
[ 1742.727807][T12054] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1742.890951][T12061] loop1: detected capacity change from 0 to 256
[ 1742.927250][T12064] netlink: 164 bytes leftover after parsing attributes in process `syz.4.17280'.
[ 1742.946824][T12061] exfat: Deprecated parameter 'utf8'
[ 1742.967608][T12061] exfat: Deprecated parameter 'utf8'
[ 1743.031948][T12061] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d)
[ 1743.111786][T12070] loop4: detected capacity change from 0 to 128
[ 1743.209196][T13900] usb 3-1: new high-speed USB device number 51 using dummy_hcd
[ 1743.369293][T12073] loop4: detected capacity change from 0 to 256
[ 1743.408829][T13900] usb 3-1: Using ep0 maxpacket: 8
[ 1743.416049][T13900] usb 3-1: config 179 has an invalid interface number: 65 but max is 0
[ 1743.431665][T13900] usb 3-1: config 179 has no interface number 0
[ 1743.447403][T13900] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1743.469226][T13900] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1743.514574][T13900] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 52, changing to 9
[ 1743.564519][T13900] usb 3-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid maxpacket 8241, setting to 1024
[ 1743.597055][T12073] FAT-fs (loop4): Directory bread(block 64) failed
[ 1743.603891][T13900] usb 3-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1743.620957][T12073] FAT-fs (loop4): Directory bread(block 65) failed
[ 1743.636540][T12073] FAT-fs (loop4): Directory bread(block 66) failed
[ 1743.643992][T13900] usb 3-1: config 179 interface 65 has no altsetting 0
[ 1743.651574][T12073] FAT-fs (loop4): Directory bread(block 67) failed
[ 1743.658269][T13900] usb 3-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1743.668212][T12073] FAT-fs (loop4): Directory bread(block 68) failed
[ 1743.674810][T12073] FAT-fs (loop4): Directory bread(block 69) failed
[ 1743.681793][T13900] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1743.693236][T12073] FAT-fs (loop4): Directory bread(block 70) failed
[ 1743.714344][T12073] FAT-fs (loop4): Directory bread(block 71) failed
[ 1743.715154][T12081] loop1: detected capacity change from 0 to 4096
[ 1743.728526][T13900] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:179.65/input/input92
[ 1743.745995][T12073] FAT-fs (loop4): Directory bread(block 72) failed
[ 1743.766747][T12081] ntfs3: loop1: Different NTFS sector size (2048) and media sector size (512).
[ 1743.776850][T12073] FAT-fs (loop4): Directory bread(block 73) failed
[ 1743.818591][ T5123] input input92: unable to receive magic message: -110
[ 1743.876012][T12081] ntfs3: loop1: Failed to load $MFT (-2).
[ 1743.894788][ T5123] input input92: unable to receive magic message: -32
[ 1743.942772][ T5934] input input92: unable to receive magic message: -32
[ 1744.031818][ T5123] input input92: unable to receive magic message: -32
[ 1744.089795][ T5123] input input92: unable to receive magic message: -32
[ 1744.117716][ T5123] input input92: unable to receive magic message: -32
[ 1744.340838][    C0] xpad 3-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1744.340847][ T5806] usb 3-1: USB disconnect, device number 51
[ 1744.355148][ T5806] xpad 3-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1744.682667][T12104] netlink: 660 bytes leftover after parsing attributes in process `syz.1.17296'.
[ 1745.208113][T12126] netlink: 8 bytes leftover after parsing attributes in process `syz.4.17307'.
[ 1745.594411][T12137] loop3: detected capacity change from 0 to 4096
[ 1745.623633][T12137] ntfs3: loop3: Different NTFS sector size (2048) and media sector size (512).
[ 1745.684012][T12137] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1747.318350][T12197] loop1: detected capacity change from 0 to 256
[ 1747.375305][T12200] loop4: detected capacity change from 0 to 1024
[ 1747.406393][T12197] FAT-fs (loop1): Directory bread(block 64) failed
[ 1747.428427][T12197] FAT-fs (loop1): Directory bread(block 65) failed
[ 1747.444905][T12197] FAT-fs (loop1): Directory bread(block 66) failed
[ 1747.470032][T12197] FAT-fs (loop1): Directory bread(block 67) failed
[ 1747.508315][T12200] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1747.542863][T12197] FAT-fs (loop1): Directory bread(block 68) failed
[ 1747.549657][T12197] FAT-fs (loop1): Directory bread(block 69) failed
[ 1747.560646][T12197] FAT-fs (loop1): Directory bread(block 70) failed
[ 1747.569262][T12197] FAT-fs (loop1): Directory bread(block 71) failed
[ 1747.577291][T12197] FAT-fs (loop1): Directory bread(block 72) failed
[ 1747.596949][T12197] FAT-fs (loop1): Directory bread(block 73) failed
[ 1747.751531][T12214] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17347'.
[ 1747.781328][ T5644] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1748.160803][T12228] netlink: 'syz.3.17353': attribute type 49 has an invalid length.
[ 1748.202480][T12228] netlink: 'syz.3.17353': attribute type 49 has an invalid length.
[ 1748.660673][T12250] loop1: detected capacity change from 0 to 64
[ 1748.816739][T12256] ptrace attach of "./syz-executor exec"[5766] was attempted by "./syz-executor exec"[12256]
[ 1749.042344][T12264] tmpfs: Bad value for 'mpol'
[ 1749.171427][T12268] loop1: detected capacity change from 0 to 1024
[ 1749.245222][T12268] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1749.490722][T12285] xt_bpf: check failed: parse error
[ 1749.526517][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1750.198538][T12310] loop1: detected capacity change from 0 to 1024
[ 1750.342840][  T449] usb 5-1: new high-speed USB device number 18 using dummy_hcd
[ 1750.535589][  T449] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1750.563985][  T449] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1750.602110][  T449] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1750.632953][  T449] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1750.660900][  T449] usb 5-1: SerialNumber: syz
[ 1750.753930][T12322] netlink: 4 bytes leftover after parsing attributes in process `syz.3.17400'.
[ 1750.913117][  T449] usb 5-1: 0:2 : does not exist
[ 1751.019349][  T449] usb 5-1: USB disconnect, device number 18
[ 1751.093042][ T6193] udevd[6193]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1751.540547][T12344] batadv0: entered promiscuous mode
[ 1752.304350][T12376] loop1: detected capacity change from 0 to 512
[ 1752.324089][ T5806] usb 4-1: new high-speed USB device number 39 using dummy_hcd
[ 1752.378877][T12376] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1752.415689][T12381] netlink: 'syz.2.17426': attribute type 30 has an invalid length.
[ 1752.436862][T12376] ext4 filesystem being mounted at /4215/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1752.463494][T12381] netlink: 32 bytes leftover after parsing attributes in process `syz.2.17426'.
[ 1752.492079][T12356] loop4: detected capacity change from 0 to 32768
[ 1752.493380][T12381] (unnamed net_device) (uninitialized): option arp_missed_max: invalid value (0)
[ 1752.535814][ T5806] usb 4-1: Using ep0 maxpacket: 8
[ 1752.555862][T12381] (unnamed net_device) (uninitialized): option arp_missed_max: allowed values 1 - 255
[ 1752.568518][ T5806] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8D has an invalid bInterval 42, changing to 9
[ 1752.568550][T12356] syz.4.17415: attempt to access beyond end of device
[ 1752.568550][T12356] loop14: rw=0, sector=8, nr_sectors = 8 limit=0
[ 1752.594036][ T5806] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0
[ 1752.622537][ T5806] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x5 has invalid maxpacket 0
[ 1752.645256][ T5806] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 12592, setting to 1024
[ 1752.660405][ T5806] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x8B has invalid maxpacket 1024
[ 1752.671125][T12356] lbmIODone: I/O error in JFS log
[ 1752.678830][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1752.690950][T12356] *** Log Format Error ! ***
[ 1752.697063][T12356] lmLogInit: exit(-22)
[ 1752.701398][ T5806] usb 4-1: New USB device found, idVendor=05ac, idProduct=8215, bcdDevice=8f.58
[ 1752.713173][T12356] lmLogOpen: exit(-22)
[ 1752.718176][ T5806] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1752.746527][ T5806] usb 4-1: config 0 descriptor??
[ 1752.782508][T12368] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1752.960589][T12385] loop1: detected capacity change from 0 to 764
[ 1753.031165][T12385] rock: corrupted directory entry. extent=32, offset=2044, size=237
[ 1753.096649][T12385] Symlink component flag not implemented
[ 1753.102482][T12385] Symlink component flag not implemented (7)
[ 1753.249993][ T5806] usb 4-1: USB disconnect, device number 39
[ 1753.256343][T15256] Bluetooth: hci4: Opcode 0x0c03 failed: -71
[ 1753.331898][T12391] netlink: 68 bytes leftover after parsing attributes in process `syz.2.17432'.
[ 1753.366272][T12393] loop1: detected capacity change from 0 to 164
[ 1753.424167][T12393] Unsupported NM flag settings (240)
[ 1754.067257][T12420] loop3: detected capacity change from 0 to 128
[ 1754.114357][T12420] EXT4-fs (loop3): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none.
[ 1754.130453][T12420] ext4 filesystem being mounted at /4305/mnt supports timestamps until 2038-01-19 (0x7fffffff)
[ 1754.226174][ T5766] EXT4-fs (loop3): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09.
[ 1754.289463][T12425] libceph: secret too big 289
[ 1754.328584][T12429] loop1: detected capacity change from 0 to 1024
[ 1754.695128][T12441] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff)
[ 1755.066385][T12451] batadv1: entered promiscuous mode
[ 1755.415949][T12466] loop4: detected capacity change from 0 to 2048
[ 1755.456685][T12466] UDF-fs: error (device loop4): udf_process_sequence: Primary Volume Descriptor not found!
[ 1755.557057][T12472] netlink: 'syz.2.17469': attribute type 1 has an invalid length.
[ 1755.586573][T12472] netlink: 80 bytes leftover after parsing attributes in process `syz.2.17469'.
[ 1755.819841][  T449] usb 5-1: new high-speed USB device number 19 using dummy_hcd
[ 1756.038953][  T449] usb 5-1: Using ep0 maxpacket: 8
[ 1756.050128][  T449] usb 5-1: config 7 has an invalid interface number: 143 but max is 1
[ 1756.076692][  T449] usb 5-1: config 7 has an invalid interface number: 217 but max is 1
[ 1756.095701][  T449] usb 5-1: config 7 has an invalid descriptor of length 229, skipping remainder of the config
[ 1756.124402][  T449] usb 5-1: config 7 has no interface number 0
[ 1756.140779][  T449] usb 5-1: config 7 has no interface number 1
[ 1756.150635][  T449] usb 5-1: too many endpoints for config 7 interface 217 altsetting 0: 255, using maximum allowed: 30
[ 1756.191351][  T449] usb 5-1: config 7 interface 217 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 255
[ 1756.227887][  T449] usb 5-1: config 7 interface 143 has no altsetting 0
[ 1756.248306][  T449] usb 5-1: New USB device found, idVendor=03f0, idProduct=581d, bcdDevice=ba.35
[ 1756.257747][  T449] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1756.265960][  T449] usb 5-1: Product: syz
[ 1756.288988][  T449] usb 5-1: Manufacturer: syz
[ 1756.324237][  T449] usb 5-1: SerialNumber: syz
[ 1756.567410][  T449] qmi_wwan: probe of 5-1:7.143 failed with error -22
[ 1756.599706][  T449] usb 5-1: USB disconnect, device number 19
[ 1756.962422][ T5806] usb 3-1: new high-speed USB device number 52 using dummy_hcd
[ 1757.164003][ T5806] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1757.185588][ T5806] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3
[ 1757.208063][ T5806] usb 3-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00
[ 1757.241350][ T5806] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3
[ 1757.257958][ T5806] usb 3-1: SerialNumber: syz
[ 1757.503587][ T5806] usb 3-1: 0:2 : does not exist
[ 1757.546682][ T5806] usb 3-1: USB disconnect, device number 52
[ 1757.560989][T12535] loop3: detected capacity change from 0 to 2048
[ 1757.655025][ T6193] udevd[6193]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1757.673955][T12542] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1757.755011][T12535] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 1757.778456][T12535] Remounting filesystem read-only
[ 1757.784050][T12535] NILFS error (device loop3): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 1758.723891][T12550] loop1: detected capacity change from 0 to 32768
[ 1758.779856][T12550] syz.1.17508: attempt to access beyond end of device
[ 1758.779856][T12550] loop14: rw=0, sector=8, nr_sectors = 8 limit=0
[ 1758.801131][T12550] lbmIODone: I/O error in JFS log
[ 1758.806414][T12550] *** Log Format Error ! ***
[ 1758.813971][T12550] lmLogInit: exit(-22)
[ 1758.827813][T12550] lmLogOpen: exit(-22)
[ 1759.060895][T12584] netlink: 12 bytes leftover after parsing attributes in process `syz.2.17524'.
[ 1759.522609][T12600] loop4: detected capacity change from 0 to 256
[ 1759.726176][T12602] bond5: entered allmulticast mode
[ 1759.850955][T12611] netlink: 'syz.4.17536': attribute type 10 has an invalid length.
[ 1759.877596][T12611] netlink: 156 bytes leftover after parsing attributes in process `syz.4.17536'.
[ 1760.423284][T12629] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.17546'.
[ 1760.482002][T12631] loop1: detected capacity change from 0 to 2048
[ 1760.552669][T12636] NILFS (loop1): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1760.614765][T12631] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 1760.641685][T12631] Remounting filesystem read-only
[ 1760.647491][T12631] NILFS error (device loop1): nilfs_bmap_lookup_contig: broken bmap (inode number=12)
[ 1762.415498][T12705] openvswitch: netlink: Message has 4 unknown bytes.
[ 1762.531879][T12703] loop3: detected capacity change from 0 to 4096
[ 1762.619824][T12703] ntfs3: loop3: Mark volume as dirty due to NTFS errors
[ 1762.709622][T12703] ntfs3: loop3: Failed to load $Extend (-22).
[ 1762.738784][T12703] ntfs3: loop3: Failed to initialize $Extend.
[ 1762.834114][T12719] netlink: 'syz.2.17588': attribute type 4 has an invalid length.
[ 1762.853511][T12719] netlink: 152 bytes leftover after parsing attributes in process `syz.2.17588'.
[ 1762.901412][T12719] wlan1: mtu less than device minimum
[ 1763.068055][T14716] usb 2-1: new high-speed USB device number 70 using dummy_hcd
[ 1763.287252][T14716] usb 2-1: Using ep0 maxpacket: 32
[ 1763.325764][T14716] usb 2-1: unable to get BOS descriptor or descriptor too short
[ 1763.345872][T14716] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 120, changing to 7
[ 1763.366533][T14716] usb 2-1: string descriptor 0 read error: -22
[ 1763.382325][T14716] usb 2-1: New USB device found, idVendor=0763, idProduct=2001, bcdDevice= 0.40
[ 1763.401718][T14716] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1763.641050][T14716] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1763.851379][T14716] usb 2-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1763.906405][T14716] usb 2-1: USB disconnect, device number 70
[ 1763.946306][ T6193] udevd[6193]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: Permission denied
[ 1763.983775][T12731] loop3: detected capacity change from 0 to 32768
[ 1764.052384][T12731] JBD2: Ignoring recovery information on journal
[ 1764.160079][T12731] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1764.431061][T12731] OCFS2: ERROR (device loop3): int ocfs2_validate_gd_self(struct super_block *, struct buffer_head *, int): Group descriptor #17056 has bit count 2061 but max bitmap bits of 2048
[ 1764.457994][T12731] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted.
[ 1764.469833][T12731] OCFS2: File system is now read-only.
[ 1764.475397][T12731] (syz.3.17594,12731,1):ocfs2_search_chain:1761 ERROR: status = -30
[ 1764.487822][T12731] (syz.3.17594,12731,1):ocfs2_search_chain:1871 ERROR: status = -30
[ 1764.506000][T12731] (syz.3.17594,12731,1):ocfs2_claim_suballoc_bits:1950 ERROR: status = -30
[ 1764.534999][T12731] (syz.3.17594,12731,1):ocfs2_claim_suballoc_bits:1993 ERROR: status = -30
[ 1764.543674][T12731] (syz.3.17594,12731,1):ocfs2_claim_new_inode:2226 ERROR: status = -30
[ 1764.582703][T12731] (syz.3.17594,12731,1):ocfs2_claim_new_inode:2241 ERROR: status = -30
[ 1764.591055][T12731] (syz.3.17594,12731,1):ocfs2_mknod_locked:639 ERROR: status = -30
[ 1764.638060][T12731] (syz.3.17594,12731,1):ocfs2_mknod:385 ERROR: status = -30
[ 1764.658775][T12731] (syz.3.17594,12731,0):ocfs2_mknod:502 ERROR: status = -30
[ 1764.674208][T12731] (syz.3.17594,12731,0):ocfs2_mkdir:659 ERROR: status = -30
[ 1764.801409][   T27] audit: type=1326 audit(1773783158.859:519): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12774 comm="syz.4.17616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1764.853356][   T27] audit: type=1326 audit(1773783158.859:520): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12774 comm="syz.4.17616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1764.948449][   T27] audit: type=1326 audit(1773783158.869:521): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12774 comm="syz.4.17616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=12 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1764.981697][ T5766] ocfs2: Unmounting device (7,3) on (node local)
[ 1765.002524][   T27] audit: type=1326 audit(1773783158.869:522): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12774 comm="syz.4.17616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1765.069926][   T27] audit: type=1326 audit(1773783158.869:523): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12774 comm="syz.4.17616" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1765.092512][    C1] vkms_vblank_simulate: vblank timer overrun
[ 1765.341667][T12793] netlink: 8 bytes leftover after parsing attributes in process `syz.1.17625'.
[ 1765.516240][ T5852] usb 3-1: new high-speed USB device number 53 using dummy_hcd
[ 1765.563273][T12801] loop3: detected capacity change from 0 to 256
[ 1765.660410][T12801] FAT-fs (loop3): Directory bread(block 64) failed
[ 1765.679974][T12801] FAT-fs (loop3): Directory bread(block 65) failed
[ 1765.686784][T12801] FAT-fs (loop3): Directory bread(block 66) failed
[ 1765.723447][T12801] FAT-fs (loop3): Directory bread(block 67) failed
[ 1765.735858][T12801] FAT-fs (loop3): Directory bread(block 68) failed
[ 1765.742850][T12801] FAT-fs (loop3): Directory bread(block 69) failed
[ 1765.743641][ T5852] usb 3-1: New USB device found, idVendor=0af0, idProduct=7a05, bcdDevice=f6.00
[ 1765.754908][T12801] FAT-fs (loop3): Directory bread(block 70) failed
[ 1765.772124][T12801] FAT-fs (loop3): Directory bread(block 71) failed
[ 1765.779716][T12801] FAT-fs (loop3): Directory bread(block 72) failed
[ 1765.799445][ T5852] usb 3-1: New USB device strings: Mfr=0, Product=2, SerialNumber=3
[ 1765.819491][T12807] loop4: detected capacity change from 0 to 1764
[ 1765.826195][T12801] FAT-fs (loop3): Directory bread(block 73) failed
[ 1765.829667][ T5852] usb 3-1: Product: syz
[ 1765.848238][ T5852] usb 3-1: SerialNumber: syz
[ 1765.880980][ T5852] usb 3-1: config 0 descriptor??
[ 1766.123425][ T5852] hso 3-1:0.0: Failed to find BULK IN ep
[ 1766.333723][T12823] netlink: 40 bytes leftover after parsing attributes in process `syz.3.17636'.
[ 1766.377399][  T449] usb 3-1: USB disconnect, device number 53
[ 1766.509841][T12827] netlink: 40 bytes leftover after parsing attributes in process `syz.1.17639'.
[ 1766.665897][T12831] netlink: 12 bytes leftover after parsing attributes in process `syz.3.17641'.
[ 1766.810142][   T27] audit: type=1326 audit(1773783160.969:524): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz.4.17645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1766.858816][   T27] audit: type=1326 audit(1773783161.000:525): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz.4.17645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1766.916312][   T27] audit: type=1326 audit(1773783161.011:526): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz.4.17645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1766.988964][   T27] audit: type=1326 audit(1773783161.011:527): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz.4.17645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1767.069187][   T27] audit: type=1326 audit(1773783161.011:528): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12836 comm="syz.4.17645" exe="/root/syz-executor" sig=0 arch=c000003e syscall=131 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1767.272876][T12851] IPv6: RTM_NEWROUTE with no NLM_F_CREATE or NLM_F_REPLACE
[ 1767.280278][T12851] IPv6: NLM_F_CREATE should be set when creating new route
[ 1767.287821][T12851] IPv6: NLM_F_CREATE should be set when creating new route
[ 1767.999615][T12865] netlink: 'syz.1.17658': attribute type 1 has an invalid length.
[ 1768.246965][T12875] loop1: detected capacity change from 0 to 1024
[ 1768.322613][T12875] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE
[ 1768.383109][T12875] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none.
[ 1768.467957][T12875] EXT4-fs error (device loop1): ext4_xattr_inode_iget:441: inode #11: comm syz.1.17663: missing EA_INODE flag
[ 1768.488138][T12875] EXT4-fs (loop1): Remounting filesystem read-only
[ 1768.640792][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1769.011733][ T5805] usb 3-1: new high-speed USB device number 54 using dummy_hcd
[ 1769.192800][ T5805] usb 3-1: Using ep0 maxpacket: 8
[ 1769.201190][ T5805] usb 3-1: config 1 interface 0 altsetting 250 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1769.221374][ T5805] usb 3-1: config 1 interface 0 has no altsetting 0
[ 1769.260126][ T5805] usb 3-1: New USB device found, idVendor=05ac, idProduct=030a, bcdDevice= 0.40
[ 1769.280045][ T5805] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1769.298324][ T5805] usb 3-1: Product: syz
[ 1769.302737][ T5805] usb 3-1: Manufacturer: syz
[ 1769.308045][ T5805] usb 3-1: SerialNumber: syz
[ 1769.417221][T12920] netlink: 20 bytes leftover after parsing attributes in process `syz.3.17684'.
[ 1769.478212][ T5852] usb 2-1: new high-speed USB device number 71 using dummy_hcd
[ 1769.562392][ T5805] input: appletouch as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/input/input93
[ 1769.609531][ T5805] usb 3-1: USB disconnect, device number 54
[ 1769.659707][ T5805] appletouch 3-1:1.0: input: appletouch disconnected
[ 1769.668419][ T5852] usb 2-1: Using ep0 maxpacket: 16
[ 1769.676116][ T5852] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x82 has an invalid bInterval 0, changing to 7
[ 1769.738631][ T5852] usb 2-1: New USB device found, idVendor=13b1, idProduct=0042, bcdDevice=7b.55
[ 1769.765694][ T5852] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1769.779197][ T5852] usb 2-1: Product: syz
[ 1769.785774][ T5852] usb 2-1: Manufacturer: syz
[ 1769.790426][ T5852] usb 2-1: SerialNumber: syz
[ 1769.814662][ T5852] usb 2-1: config 0 descriptor??
[ 1769.834264][T12932] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1769.856931][ T5852] usb 2-1: Warning: ath10k USB support is incomplete, don't expect anything to work!
[ 1769.896807][T12937] netlink: 132 bytes leftover after parsing attributes in process `syz.4.17691'.
[ 1770.110992][ T4566] usb 2-1: Failed to submit usb control message: -71
[ 1770.122022][ T5852] usb 2-1: USB disconnect, device number 71
[ 1770.133977][ T4566] usb 2-1: unable to send the bmi data to the device: -71
[ 1770.160563][ T4566] usb 2-1: unable to get target info from device
[ 1770.184899][ T4566] usb 2-1: could not get target info (-71)
[ 1770.190905][ T4566] usb 2-1: could not probe fw (-71)
[ 1770.764221][ T5805] usb 5-1: new high-speed USB device number 20 using dummy_hcd
[ 1770.823849][T12966] loop1: detected capacity change from 0 to 2048
[ 1770.871773][T12966] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1770.919711][T12970] netlink: 'syz.3.17706': attribute type 21 has an invalid length.
[ 1770.973398][ T5805] usb 5-1: Using ep0 maxpacket: 8
[ 1770.992503][ T5805] usb 5-1: config 179 has an invalid interface number: 65 but max is 0
[ 1771.011800][ T5805] usb 5-1: config 179 has no interface number 0
[ 1771.021516][ T5805] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has an invalid bInterval 63, changing to 9
[ 1771.063271][ T5805] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0xF has invalid maxpacket 57605, setting to 1024
[ 1771.126135][ T5805] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has an invalid bInterval 0, changing to 7
[ 1771.154607][ T5805] usb 5-1: config 179 interface 65 altsetting 12 endpoint 0x83 has invalid wMaxPacketSize 0
[ 1771.177400][ T5805] usb 5-1: config 179 interface 65 altsetting 12 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1771.211659][ T5805] usb 5-1: config 179 interface 65 has no altsetting 0
[ 1771.227619][ T5805] usb 5-1: New USB device found, idVendor=12ab, idProduct=0004, bcdDevice= 0.00
[ 1771.257398][ T5805] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1771.333638][ T5805] input: Honey Bee Xbox360 dancepad as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:179.65/input/input94
[ 1771.652151][ T5805] usb 5-1: USB disconnect, device number 20
[ 1771.660623][ T5805] xpad 5-1:179.65: xpad_try_sending_next_out_packet - usb_submit_urb failed with result -19
[ 1771.858575][T12996] ip6t_srh: unknown srh match flags  4000
[ 1771.871932][T12998] loop3: detected capacity change from 0 to 2048
[ 1771.895921][T12998] NILFS (loop3): broken superblock, retrying with spare superblock (blocksize = 1024)
[ 1771.923752][T13001] NILFS (loop3): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds
[ 1772.126098][T14716] usb 3-1: new high-speed USB device number 55 using dummy_hcd
[ 1772.306941][T14716] usb 3-1: Using ep0 maxpacket: 32
[ 1772.331634][T13011] netlink: 'syz.1.17726': attribute type 3 has an invalid length.
[ 1772.336225][T14716] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 1772.362924][T14716] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0
[ 1772.392105][T14716] usb 3-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40
[ 1772.412590][T14716] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1772.438239][T14716] usb 3-1: config 0 descriptor??
[ 1772.455922][T14716] hub 3-1:0.0: USB hub found
[ 1772.646963][T14716] hub 3-1:0.0: config failed, can't read hub descriptor (err -90)
[ 1772.668170][T13021] loop3: detected capacity change from 0 to 1024
[ 1772.884739][T14716] usbhid 3-1:0.0: can't add hid device: -71
[ 1772.898220][T14716] usbhid: probe of 3-1:0.0 failed with error -71
[ 1772.977222][T14716] usb 3-1: USB disconnect, device number 55
[ 1773.127054][T13035] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17738'.
[ 1773.752102][T13031] loop4: detected capacity change from 0 to 32768
[ 1773.847325][T13031] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1774.011957][T13031] XFS (loop4): Ending clean mount
[ 1774.035085][T13031] XFS (loop4): Quotacheck needed: Please wait.
[ 1774.037811][T13067] loop3: detected capacity change from 0 to 512
[ 1774.073641][T13067] EXT4-fs (loop3): orphan cleanup on readonly fs
[ 1774.097887][T13067] EXT4-fs error (device loop3): ext4_xattr_inode_update_ref:1037: inode #11: comm syz.3.17750: EA inode 11 ref wraparound: ref_count=0 ref_change=-1
[ 1774.116496][  T449] usb 2-1: new high-speed USB device number 72 using dummy_hcd
[ 1774.126715][T13067] EXT4-fs warning (device loop3): ext4_xattr_inode_dec_ref_all:1231: inode #11: comm syz.3.17750: ea_inode dec ref err=-117
[ 1774.202738][T13067] EXT4-fs (loop3): 1 orphan inode deleted
[ 1774.210236][T13067] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none.
[ 1774.220376][T13031] XFS (loop4): Quotacheck: Done.
[ 1774.296755][  T449] usb 2-1: config 1 interface 1 altsetting 1 endpoint 0x1 has an invalid bInterval 248, changing to 7
[ 1774.331069][  T449] usb 2-1: New USB device found, idVendor=041e, idProduct=3000, bcdDevice= 0.40
[ 1774.345154][  T449] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1774.353259][  T449] usb 2-1: Product: syz
[ 1774.372976][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1774.378979][  T449] usb 2-1: Manufacturer: syz
[ 1774.400864][  T449] usb 2-1: SerialNumber: syz
[ 1774.476070][ T5644] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb
[ 1774.710113][  T449] usb 2-1: 1:1 : UAC_AS_GENERAL descriptor not found
[ 1774.726356][  T449] usb 2-1: 2:1 : UAC_AS_GENERAL descriptor not found
[ 1774.792015][  T449] usb 2-1: USB disconnect, device number 72
[ 1774.922356][    C0] vkms_vblank_simulate: vblank timer overrun
[ 1775.098111][T13079] vti1: entered promiscuous mode
[ 1775.304129][T13085] tmpfs: Bad value for 'mpol'
[ 1775.346196][T13087] 8021q: adding VLAN 0 to HW filter on device bond7
[ 1775.383176][ T5852] usb 4-1: new full-speed USB device number 40 using dummy_hcd
[ 1775.567824][T13095] delete_channel: no stack
[ 1775.585306][ T5852] usb 4-1: config 11 has an invalid interface number: 93 but max is 0
[ 1775.602583][ T5852] usb 4-1: config 11 has no interface number 0
[ 1775.611870][ T5852] usb 4-1: config 11 interface 93 altsetting 4 endpoint 0x9 has invalid maxpacket 1023, setting to 64
[ 1775.640943][ T5852] usb 4-1: config 11 interface 93 has no altsetting 0
[ 1775.679924][ T5852] usb 4-1: New USB device found, idVendor=05e1, idProduct=0408, bcdDevice= 3.e1
[ 1775.698970][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1775.707957][T13900] usb 5-1: new high-speed USB device number 21 using dummy_hcd
[ 1775.717407][ T5852] usb 4-1: Product: syz
[ 1775.724903][ T5852] usb 4-1: Manufacturer: syz
[ 1775.734669][ T5852] usb 4-1: SerialNumber: syz
[ 1775.749697][T13081] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1775.900310][T13900] usb 5-1: config 0 has an invalid interface number: 216 but max is 0
[ 1775.918505][T13900] usb 5-1: config 0 has no interface number 0
[ 1775.934978][T13900] usb 5-1: config 0 interface 216 altsetting 4 bulk endpoint 0x8F has invalid maxpacket 64
[ 1775.953108][T13900] usb 5-1: config 0 interface 216 altsetting 4 endpoint 0x1 has invalid wMaxPacketSize 0
[ 1775.977917][T13900] usb 5-1: config 0 interface 216 has no altsetting 0
[ 1775.988351][ T5852] usb 4-1: no audio or video endpoints found
[ 1775.997128][T13900] usb 5-1: New USB device found, idVendor=1286, idProduct=2046, bcdDevice=c1.2e
[ 1776.015968][ T5852] usb 4-1: USB disconnect, device number 40
[ 1776.031560][T13900] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1776.058686][T13900] usb 5-1: config 0 descriptor??
[ 1776.070158][T13092] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22
[ 1776.081130][T13900] usb 5-1: NFC: intf ffff888031306000 id ffffffff8da44880
[ 1776.156646][T13112] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.17771'.
[ 1776.166711][T13112] openvswitch: netlink: Key type 29 is not supported
[ 1776.282763][ T5852] usb 5-1: USB disconnect, device number 21
[ 1776.530834][   T27] kauditd_printk_skb: 5 callbacks suppressed
[ 1776.530919][   T27] audit: type=1326 audit(1773783171.174:534): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13118 comm="syz.2.17774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1776.560208][   T27] audit: type=1326 audit(1773783171.174:535): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13118 comm="syz.2.17774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1776.568013][T13900] usb 2-1: new high-speed USB device number 73 using dummy_hcd
[ 1776.590692][   T27] audit: type=1326 audit(1773783171.195:536): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13118 comm="syz.2.17774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=104 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1776.615264][   T27] audit: type=1326 audit(1773783171.195:537): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13118 comm="syz.2.17774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1776.679933][T13121] (unnamed net_device) (uninitialized): Unable to set peer notification delay as MII monitoring is disabled
[ 1776.684857][   T27] audit: type=1326 audit(1773783171.195:538): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13118 comm="syz.2.17774" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1776.847978][T13900] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1776.867092][T13900] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1776.895977][T13900] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1776.936870][T13900] usb 2-1: New USB device found, idVendor=0cf3, idProduct=9375, bcdDevice=1a.de
[ 1776.953411][T13900] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1776.973209][T13900] usb 2-1: config 0 descriptor??
[ 1777.167546][T13900] ath6kl: Failed to submit usb control message: -71
[ 1777.190032][T13900] ath6kl: unable to send the bmi data to the device: -71
[ 1777.211452][T13900] ath6kl: Unable to send get target info: -71
[ 1777.239862][T13900] ath6kl: Failed to init ath6kl core: -71
[ 1777.261314][T13900] ath6kl_usb: probe of 2-1:0.0 failed with error -71
[ 1777.294454][T13900] usb 2-1: USB disconnect, device number 73
[ 1777.970425][T13169] netlink: 'syz.4.17798': attribute type 21 has an invalid length.
[ 1777.998349][T13169] netlink: 4 bytes leftover after parsing attributes in process `syz.4.17798'.
[ 1778.393480][T13190] ieee802154 phy0 wpan0: encryption failed: -22
[ 1778.569162][T13197] tmpfs: User quota block hardlimit too large.
[ 1778.799055][T13208] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1779.022248][T13216] netlink: 32 bytes leftover after parsing attributes in process `syz.2.17822'.
[ 1779.041694][T13216] netlink: 32 bytes leftover after parsing attributes in process `syz.2.17822'.
[ 1779.119960][T13221] netlink: 5 bytes leftover after parsing attributes in process `syz.4.17824'.
[ 1779.391232][T13231] netlink: 16 bytes leftover after parsing attributes in process `syz.3.17829'.
[ 1779.431296][T13231] netlink: 8 bytes leftover after parsing attributes in process `syz.3.17829'.
[ 1779.437653][T13226] loop1: detected capacity change from 0 to 4096
[ 1779.452832][T13231] ip6gretap3: entered allmulticast mode
[ 1779.461801][T13226] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512).
[ 1779.529294][T13226] ntfs3: loop1: ino=3, ntfs_set_state failed, -22.
[ 1779.537841][T13226] ntfs3: loop1: Failed to initialize $Extend/$Reparse.
[ 1779.560614][T13235] loop4: detected capacity change from 0 to 2048
[ 1779.588690][T13235] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000)
[ 1779.813438][T21215] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22.
[ 1779.841915][ T5768] ntfs3: loop1: ino=3, ntfs_set_state failed, -22.
[ 1779.871650][ T5768] ntfs3: loop1: Mark volume as dirty due to NTFS errors
[ 1779.878849][ T5768] ntfs3: loop1: ino=3, ntfs_set_state failed, -22.
[ 1779.955317][T21215] ntfs3: loop1: ino=3, ntfs3_write_inode failed, -22.
[ 1780.306608][T13257] netlink: 209852 bytes leftover after parsing attributes in process `syz.1.17842'.
[ 1781.487567][T13295] netlink: 830 bytes leftover after parsing attributes in process `syz.2.17861'.
[ 1781.619695][T13301] netlink: 20 bytes leftover after parsing attributes in process `syz.1.17864'.
[ 1781.661736][T13301] netlink: 20 bytes leftover after parsing attributes in process `syz.1.17864'.
[ 1781.730247][T13305] netdevsim netdevsim4 netdevsim0: entered allmulticast mode
[ 1781.839205][T13307] netlink: 'syz.2.17867': attribute type 1 has an invalid length.
[ 1782.058748][T13316] loop1: detected capacity change from 0 to 16
[ 1782.085533][T13316] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1782.132480][T13316] erofs: (device loop1): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 36
[ 1782.165325][T13316] erofs: (device loop1): z_erofs_fill_inode_lazy: per-inode big pcluster without sb feature for nid 36
[ 1782.204826][T13316] erofs: (device loop1): z_erofs_read_folio: read error -117 @ 43 of nid 36
[ 1782.631696][T13900] usb 5-1: new high-speed USB device number 22 using dummy_hcd
[ 1782.803209][T13900] usb 5-1: Using ep0 maxpacket: 8
[ 1782.816521][T13900] usb 5-1: New USB device found, idVendor=046d, idProduct=08dd, bcdDevice=ff.f4
[ 1782.831845][T13900] usb 5-1: New USB device strings: Mfr=8, Product=2, SerialNumber=3
[ 1782.842332][T13900] usb 5-1: Product: syz
[ 1782.846558][T13900] usb 5-1: Manufacturer: syz
[ 1782.853016][T13900] usb 5-1: SerialNumber: syz
[ 1782.863369][T13900] usb 5-1: config 0 descriptor??
[ 1782.880397][T13900] gspca_main: gspca_zc3xx-2.14.0 probing 046d:08dd
[ 1783.019744][T13352] loop1: detected capacity change from 0 to 256
[ 1783.088596][T13356] netlink: 4096 bytes leftover after parsing attributes in process `syz.2.17891'.
[ 1783.111925][T13356] openvswitch: netlink: Flow actions may not be safe on all matching packets.
[ 1783.266935][T13900] gspca_zc3xx: reg_r err -71
[ 1783.276816][T13900] gspca_zc3xx: probe of 5-1:0.0 failed with error -71
[ 1783.299425][T13900] usb 5-1: USB disconnect, device number 22
[ 1783.349419][T13359] geneve3: entered allmulticast mode
[ 1783.594378][T13370] loop1: detected capacity change from 0 to 256
[ 1783.692059][T13370] FAT-fs (loop1): Directory bread(block 64) failed
[ 1783.701231][T13370] FAT-fs (loop1): Directory bread(block 65) failed
[ 1783.710837][T13370] FAT-fs (loop1): Directory bread(block 66) failed
[ 1783.725371][T13370] FAT-fs (loop1): Directory bread(block 67) failed
[ 1783.742406][T13370] FAT-fs (loop1): Directory bread(block 68) failed
[ 1783.759808][T13370] FAT-fs (loop1): Directory bread(block 69) failed
[ 1783.779640][T13370] FAT-fs (loop1): Directory bread(block 70) failed
[ 1783.792554][T13370] FAT-fs (loop1): Directory bread(block 71) failed
[ 1783.802428][T13370] FAT-fs (loop1): Directory bread(block 72) failed
[ 1783.812457][T13370] FAT-fs (loop1): Directory bread(block 73) failed
[ 1783.984515][T13379] netlink: 'syz.2.17902': attribute type 2 has an invalid length.
[ 1783.992430][T13379] netlink: 'syz.2.17902': attribute type 1 has an invalid length.
[ 1784.251314][T13387] binder: 13385:13387 ioctl c00c620f 0 returned -14
[ 1784.570958][T13401] loop4: detected capacity change from 0 to 256
[ 1784.674925][T13401] FAT-fs (loop4): Directory bread(block 64) failed
[ 1784.689575][T13401] FAT-fs (loop4): Directory bread(block 65) failed
[ 1784.708387][T13401] FAT-fs (loop4): Directory bread(block 66) failed
[ 1784.714996][T13401] FAT-fs (loop4): Directory bread(block 67) failed
[ 1784.756484][T13401] FAT-fs (loop4): Directory bread(block 68) failed
[ 1784.763187][T13401] FAT-fs (loop4): Directory bread(block 69) failed
[ 1784.803120][T13401] FAT-fs (loop4): Directory bread(block 70) failed
[ 1784.829694][T13401] FAT-fs (loop4): Directory bread(block 71) failed
[ 1784.837024][T13401] FAT-fs (loop4): Directory bread(block 72) failed
[ 1784.849471][T13401] FAT-fs (loop4): Directory bread(block 73) failed
[ 1785.029142][T13415] netlink: 'syz.1.17920': attribute type 3 has an invalid length.
[ 1785.060851][T13415] netlink: 130984 bytes leftover after parsing attributes in process `syz.1.17920'.
[ 1785.278944][T13423] netlink: 'syz.1.17924': attribute type 2 has an invalid length.
[ 1785.297991][T13423] netlink: 'syz.1.17924': attribute type 8 has an invalid length.
[ 1785.319552][T13423] netlink: 132 bytes leftover after parsing attributes in process `syz.1.17924'.
[ 1785.389648][T13429] ieee802154 phy0 wpan0: encryption failed: -22
[ 1785.755681][T14716] usb 4-1: new high-speed USB device number 41 using dummy_hcd
[ 1785.903818][T13451] netlink: 24 bytes leftover after parsing attributes in process `syz.1.17938'.
[ 1785.921954][T13451] netlink: 'syz.1.17938': attribute type 3 has an invalid length.
[ 1785.934388][T13451] netlink: 24 bytes leftover after parsing attributes in process `syz.1.17938'.
[ 1785.947106][T14716] usb 4-1: Using ep0 maxpacket: 8
[ 1785.959681][T13451] netlink: 44 bytes leftover after parsing attributes in process `syz.1.17938'.
[ 1785.966487][T14716] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 7
[ 1785.993829][T14716] usb 4-1: New USB device found, idVendor=082d, idProduct=0100, bcdDevice=70.4b
[ 1786.013237][T14716] usb 4-1: New USB device strings: Mfr=44, Product=2, SerialNumber=3
[ 1786.021650][T14716] usb 4-1: Product: syz
[ 1786.026433][T14716] usb 4-1: Manufacturer: syz
[ 1786.031176][T14716] usb 4-1: SerialNumber: syz
[ 1786.215871][   T27] audit: type=1326 audit(1773783181.348:539): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.243904][T14716] usb 4-1: Handspring Visor / Palm OS: No valid connect info available
[ 1786.252899][T14716] usb 4-1: Handspring Visor / Palm OS: port 106, is for unknown use
[ 1786.266076][T14716] usb 4-1: Handspring Visor / Palm OS: port 214, is for Remote File System use
[ 1786.276070][   T27] audit: type=1326 audit(1773783181.348:540): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.306576][T14716] usb 4-1: Handspring Visor / Palm OS: Number of ports: 2
[ 1786.346229][   T27] audit: type=1326 audit(1773783181.348:541): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.402366][   T27] audit: type=1326 audit(1773783181.348:542): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.426315][   T27] audit: type=1326 audit(1773783181.389:543): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=328 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.465690][T14716] usb 4-1: palm_os_3_probe - error -71 getting bytes available request
[ 1786.474984][T14716] visor 4-1:1.0: Handspring Visor / Palm OS converter detected
[ 1786.483787][   T27] audit: type=1326 audit(1773783181.389:544): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.529746][T14716] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB0
[ 1786.552075][T14716] usb 4-1: Handspring Visor / Palm OS converter now attached to ttyUSB1
[ 1786.561373][   T27] audit: type=1326 audit(1773783181.389:545): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.587647][T14716] usb 4-1: USB disconnect, device number 41
[ 1786.598095][T14716] visor ttyUSB0: Handspring Visor / Palm OS converter now disconnected from ttyUSB0
[ 1786.613000][   T27] audit: type=1326 audit(1773783181.400:546): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1786.655542][T14716] visor ttyUSB1: Handspring Visor / Palm OS converter now disconnected from ttyUSB1
[ 1786.708213][T14716] visor 4-1:1.0: device disconnected
[ 1786.714046][   T27] audit: type=1326 audit(1773783181.400:547): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13461 comm="syz.4.17943" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f2a3999c799 code=0x7ffc0000
[ 1787.846665][T13524] loop4: detected capacity change from 0 to 256
[ 1788.046189][T13528] netlink: 'syz.2.17975': attribute type 1 has an invalid length.
[ 1788.959324][T13557] netlink: 32 bytes leftover after parsing attributes in process `syz.1.17988'.
[ 1789.593568][T13579] netlink: 'syz.2.18000': attribute type 2 has an invalid length.
[ 1789.607142][T13579] netlink: 224 bytes leftover after parsing attributes in process `syz.2.18000'.
[ 1790.064338][T13589] x_tables: ip6_tables: SYNPROXY target: used from hooks PREROUTING, but only usable from INPUT/FORWARD
[ 1790.068509][T13565] loop1: detected capacity change from 0 to 32768
[ 1790.173213][T13565] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1790.396491][T13565] XFS (loop1): Ending clean mount
[ 1790.430324][T13565] XFS (loop1): Quotacheck needed: Please wait.
[ 1790.603361][T13565] XFS (loop1): Quotacheck: Done.
[ 1790.693086][ T5768] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1790.727953][T21609] usb 3-1: new high-speed USB device number 56 using dummy_hcd
[ 1790.826739][T13617] netlink: 36 bytes leftover after parsing attributes in process `syz.3.18016'.
[ 1790.858858][T13617] netlink: 36 bytes leftover after parsing attributes in process `syz.3.18016'.
[ 1790.869496][T13617] netlink: 20 bytes leftover after parsing attributes in process `syz.3.18016'.
[ 1790.908919][T21609] usb 3-1: Using ep0 maxpacket: 32
[ 1790.924169][T21609] usb 3-1: config 0 has an invalid interface number: 16 but max is 0
[ 1790.944071][T21609] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1790.985651][T21609] usb 3-1: config 0 has no interface number 0
[ 1790.992112][T21609] usb 3-1: config 0 interface 16 altsetting 0 bulk endpoint 0x6 has invalid maxpacket 255
[ 1791.051922][T21609] usb 3-1: config 0 interface 16 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1791.089693][T13621] netlink: 8 bytes leftover after parsing attributes in process `syz.4.18017'.
[ 1791.113914][T13621] netlink: 660 bytes leftover after parsing attributes in process `syz.4.18017'.
[ 1791.123903][T21609] usb 3-1: New USB device found, idVendor=0499, idProduct=102a, bcdDevice=85.2d
[ 1791.136889][T21609] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1791.156568][T21609] usb 3-1: Product: syz
[ 1791.160873][T21609] usb 3-1: Manufacturer: syz
[ 1791.165509][T21609] usb 3-1: SerialNumber: syz
[ 1791.204614][T21609] usb 3-1: config 0 descriptor??
[ 1791.210610][T13608] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22
[ 1791.229056][T21609] usb 3-1: Quirk or no altest; falling back to MIDI 1.0
[ 1791.458973][T14716] usb 3-1: USB disconnect, device number 56
[ 1792.521311][T13641] loop3: detected capacity change from 0 to 1024
[ 1792.553104][T13643] netlink: 'syz.1.18028': attribute type 21 has an invalid length.
[ 1792.562433][T13643] netlink: 128 bytes leftover after parsing attributes in process `syz.1.18028'.
[ 1792.572715][T13643] netlink: 'syz.1.18028': attribute type 5 has an invalid length.
[ 1792.582709][T13643] netlink: 'syz.1.18028': attribute type 6 has an invalid length.
[ 1792.598883][T13643] netlink: 3 bytes leftover after parsing attributes in process `syz.1.18028'.
[ 1792.619389][T13641] EXT4-fs (loop3): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: none.
[ 1792.632650][T13641] ext4 filesystem being mounted at /4455/file1 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1792.664166][T13641] EXT4-fs warning (device loop3): ext4_empty_dir:3156: inode #12: comm syz.3.18026: directory missing '..'
[ 1792.722222][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0006-0000-000000000000.
[ 1792.766673][T13631] loop4: detected capacity change from 0 to 32768
[ 1792.819371][T13631] BTRFS: device fsid e417788f-7a09-42b2-9266-8ddc5d5d35d2 devid 1 transid 8 /dev/loop4 scanned by syz.4.18027 (13631)
[ 1792.902101][T13631] BTRFS info (device loop4): first mount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1792.932305][T13631] BTRFS info (device loop4): using xxhash64 (xxhash64-generic) checksum algorithm
[ 1792.967068][T13631] BTRFS info (device loop4): force zlib compression, level 3
[ 1792.985103][T13631] BTRFS info (device loop4): turning on flush-on-commit
[ 1792.992201][T13631] BTRFS info (device loop4): max_inline at 4096
[ 1793.019609][T13631] BTRFS info (device loop4): using free space tree
[ 1793.233546][T13631] BTRFS info (device loop4): enabling ssd optimizations
[ 1793.240591][T13631] BTRFS info (device loop4): auto enabling async discard
[ 1793.458866][T13678] i2c i2c-0: DVB: adapter 0 frontend 0 frequency 4294967295 out of range (51000000..2150000000)
[ 1793.686035][ T5644] BTRFS info (device loop4): last unmount of filesystem e417788f-7a09-42b2-9266-8ddc5d5d35d2
[ 1795.051829][T13714] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18053'.
[ 1795.310936][T13698] loop1: detected capacity change from 0 to 32768
[ 1795.372337][T13698] 
[ 1795.372337][T13698]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1795.372337][T13698] 
[ 1795.513785][T13698] ERROR: (device loop1): diWrite: ixpxd invalid
[ 1795.513785][T13698] 
[ 1795.536848][T13698] ERROR: (device loop1): txCommit: 
[ 1795.536848][T13698] 
[ 1795.681352][ T5768] 
[ 1795.681352][ T5768]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1795.681352][ T5768] 
[ 1795.712450][ T5768] 
[ 1795.712450][ T5768]  ... Log Wrap ... Log Wrap ... Log Wrap ...
[ 1795.712450][ T5768] 
[ 1795.956724][T13900] usb 5-1: new high-speed USB device number 23 using dummy_hcd
[ 1796.161733][T13900] usb 5-1: config 0 has an invalid interface number: 156 but max is 0
[ 1796.184829][T13900] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config
[ 1796.233189][T13900] usb 5-1: config 0 has no interface number 0
[ 1796.239919][T13900] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has an invalid bInterval 0, changing to 7
[ 1796.257780][T13900] usb 5-1: config 0 interface 156 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0
[ 1796.267840][T13900] usb 5-1: config 0 interface 156 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2
[ 1796.314702][T13900] usb 5-1: New USB device found, idVendor=abcd, idProduct=cdee, bcdDevice= 5.b9
[ 1796.327105][T13900] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=2
[ 1796.328725][T13752] xt_TPROXY: Can be used only with -p tcp or -p udp
[ 1796.350133][T13900] usb 5-1: SerialNumber: syz
[ 1796.370142][T13900] usb 5-1: config 0 descriptor??
[ 1796.389680][T13900] gspca_main: spca561-2.14.0 probing abcd:cdee
[ 1796.589247][T13900] spca561: probe of 5-1:0.156 failed with error -22
[ 1796.627947][T13900] usb 5-1: Quirk or no altest; falling back to MIDI 1.0
[ 1796.652301][T13900] usb 5-1: MIDIStreaming interface descriptor not found
[ 1796.739036][T13900] usb 5-1: USB disconnect, device number 23
[ 1796.904786][ T5757] udevd[5757]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.156/sound/card3/controlC3/../uevent} for writing: No such file or directory
[ 1797.013373][T13771] (unnamed net_device) (uninitialized): option lacp_active: mode dependency failed, not supported in mode balance-rr(0)
[ 1797.112328][T13775] usb usb8: check_ctrlrecip: process 13775 (syz.1.18083) requesting ep 01 but needs 81
[ 1797.123916][T13775] usb usb8: usbfs: process 13775 (syz.1.18083) did not claim interface 0 before use
[ 1797.610748][T13789] loop4: detected capacity change from 0 to 16
[ 1797.638441][T13789] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1798.366569][T13805] delete_channel: no stack
[ 1798.398888][T13807] netlink: 'syz.3.18097': attribute type 13 has an invalid length.
[ 1798.466729][T13807] gretap0: refused to change device tx_queue_len
[ 1798.476242][T13807] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check.
[ 1798.761577][ T1281] ieee802154 phy0 wpan0: encryption failed: -22
[ 1798.768249][ T1281] ieee802154 phy1 wpan1: encryption failed: -22
[ 1799.187539][T13838] loop4: detected capacity change from 0 to 16
[ 1799.209466][T13838] erofs: (device loop4): mounted with root inode @ nid 36.
[ 1799.275893][   T27] audit: type=1326 audit(1773783195.059:548): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.307076][   T27] audit: type=1326 audit(1773783195.070:549): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.358218][   T27] audit: type=1326 audit(1773783195.070:550): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.425401][   T27] audit: type=1326 audit(1773783195.070:551): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.458128][   T27] audit: type=1326 audit(1773783195.070:552): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.483329][   T27] audit: type=1326 audit(1773783195.070:553): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.533200][   T27] audit: type=1326 audit(1773783195.070:554): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.557047][   T27] audit: type=1326 audit(1773783195.070:555): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.586649][   T27] audit: type=1326 audit(1773783195.070:556): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.618930][   T27] audit: type=1326 audit(1773783195.070:557): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=13839 comm="syz.1.18114" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdd6af9c799 code=0x7fc00000
[ 1799.966294][T13854] SET target dimension over the limit!
[ 1800.071741][T14716] usb 4-1: new high-speed USB device number 42 using dummy_hcd
[ 1800.089929][T13844] loop4: detected capacity change from 0 to 32768
[ 1800.180583][T13844] JBD2: Ignoring recovery information on journal
[ 1800.271530][T14716] usb 4-1: Using ep0 maxpacket: 16
[ 1800.285468][T14716] usb 4-1: config 254 has an invalid interface number: 235 but max is 0
[ 1800.295310][T14716] usb 4-1: config 254 has no interface number 0
[ 1800.302568][T14716] usb 4-1: config 254 interface 235 altsetting 2 bulk endpoint 0x6 has invalid maxpacket 32
[ 1800.304614][T13844] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1800.314639][T14716] usb 4-1: config 254 interface 235 has no altsetting 0
[ 1800.348070][T14716] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a0, bcdDevice=2b.f1
[ 1800.366898][T14716] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=5
[ 1800.387345][T14716] usb 4-1: Product: syz
[ 1800.391629][T14716] usb 4-1: Manufacturer: syz
[ 1800.404944][T14716] usb 4-1: SerialNumber: syz
[ 1800.425752][T13852] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1800.657573][T14716] usbtest 4-1:254.235: couldn't get endpoints, -71
[ 1800.695095][ T5644] ocfs2: Unmounting device (7,4) on (node local)
[ 1800.698015][T14716] usbtest: probe of 4-1:254.235 failed with error -71
[ 1800.750399][T14716] usb 4-1: USB disconnect, device number 42
[ 1801.122582][T13868] overlayfs: missing 'workdir'
[ 1801.461413][T13879] loop3: detected capacity change from 0 to 512
[ 1801.551842][T13879] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1801.629288][T13879] ext4 filesystem being mounted at /4475/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1801.787708][ T5766] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1802.653324][T13910] loop1: detected capacity change from 0 to 256
[ 1802.762787][T13914] loop3: detected capacity change from 0 to 1764
[ 1802.797675][T13910] FAT-fs (loop1): Directory bread(block 64) failed
[ 1802.814809][T13910] FAT-fs (loop1): Directory bread(block 65) failed
[ 1802.840183][T13910] FAT-fs (loop1): Directory bread(block 66) failed
[ 1802.850057][T13914] iso9660: Corrupted directory entry in block 2 of inode 1920
[ 1802.868080][T13910] FAT-fs (loop1): Directory bread(block 67) failed
[ 1802.881857][T13910] FAT-fs (loop1): Directory bread(block 68) failed
[ 1802.900812][T13910] FAT-fs (loop1): Directory bread(block 69) failed
[ 1802.907536][T13910] FAT-fs (loop1): Directory bread(block 70) failed
[ 1802.941522][T13910] FAT-fs (loop1): Directory bread(block 71) failed
[ 1802.971129][T13910] FAT-fs (loop1): Directory bread(block 72) failed
[ 1802.999228][T13910] FAT-fs (loop1): Directory bread(block 73) failed
[ 1803.114241][T13918] xt_TCPMSS: Only works on TCP SYN packets
[ 1803.710405][T13936] netlink: 'syz.4.18158': attribute type 1 has an invalid length.
[ 1804.087123][T13953] loop1: detected capacity change from 0 to 512
[ 1804.138392][T13953] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1804.175311][T13953] ext4 filesystem being mounted at /4382/bus supports timestamps until 2038-01-19 (0x7fffffff)
[ 1804.247079][T13953] EXT4-fs error (device loop1): ext4_get_first_dir_block:3592: inode #12: block 32: comm syz.1.18166: bad entry in directory: rec_len is too small for name_len - offset=0, inode=12, rec_len=12, size=2048 fake=0
[ 1804.284998][T13953] EXT4-fs error (device loop1): ext4_get_first_dir_block:3595: inode #12: comm syz.1.18166: directory missing '.'
[ 1804.379942][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1804.951346][T13975] loop4: detected capacity change from 0 to 8192
[ 1805.101133][T13988] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18184'.
[ 1805.139766][T13975] FAT-fs (loop4): error, corrupted directory (invalid entries)
[ 1805.161713][T13975] FAT-fs (loop4): Filesystem has been set read-only
[ 1805.385591][T13997] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check.
[ 1805.503564][T14001] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1805.602806][T14003] loop1: detected capacity change from 0 to 1024
[ 1806.145692][T14025] netlink: 104 bytes leftover after parsing attributes in process `syz.2.18202'.
[ 1806.596412][ T5852] usb 3-1: new high-speed USB device number 57 using dummy_hcd
[ 1806.621413][T14044] netlink: 'syz.3.18211': attribute type 21 has an invalid length.
[ 1806.633609][T14044] netlink: 128 bytes leftover after parsing attributes in process `syz.3.18211'.
[ 1806.653867][T14044] netlink: 'syz.3.18211': attribute type 5 has an invalid length.
[ 1806.661847][T14044] netlink: 'syz.3.18211': attribute type 6 has an invalid length.
[ 1806.681222][T14044] netlink: 3 bytes leftover after parsing attributes in process `syz.3.18211'.
[ 1806.786761][ T5852] usb 3-1: Using ep0 maxpacket: 16
[ 1806.820890][ T5852] usb 3-1: config index 0 descriptor too short (expected 51443, got 18)
[ 1806.856285][ T5852] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06
[ 1806.881920][ T5852] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1806.890177][ T5852] usb 3-1: Product: syz
[ 1806.914207][ T5852] usb 3-1: Manufacturer: syz
[ 1806.920962][ T5852] usb 3-1: SerialNumber: syz
[ 1806.946417][ T5852] r8152-cfgselector 3-1: config 0 descriptor??
[ 1807.171462][ T5852] usbip-host 3-1: 3-1 is not in match_busid table... skip!
[ 1807.389019][   T23] usb 3-1: USB disconnect, device number 57
[ 1808.078660][T14095] x_tables: unsorted entry at hook 3
[ 1808.196186][T21609] usb 5-1: new full-speed USB device number 24 using dummy_hcd
[ 1808.269084][T14104] loop1: detected capacity change from 0 to 16
[ 1808.314846][T14104] erofs: (device loop1): mounted with root inode @ nid 36.
[ 1808.380059][T21609] usb 5-1: config 1 has an invalid interface number: 105 but max is 0
[ 1808.401765][T21609] usb 5-1: config 1 has no interface number 0
[ 1808.403684][T14104] syz.1.18241: attempt to access beyond end of device
[ 1808.403684][T14104] loop1: rw=524288, sector=1342177272, nr_sectors = 32 limit=16
[ 1808.425853][T21609] usb 5-1: config 1 interface 105 altsetting 2 endpoint 0x82 has invalid wMaxPacketSize 0
[ 1808.449701][T21609] usb 5-1: config 1 interface 105 has no altsetting 0
[ 1808.455174][T14104] syz.1.18241: attempt to access beyond end of device
[ 1808.455174][T14104] loop1: rw=0, sector=1342177272, nr_sectors = 32 limit=16
[ 1808.471181][T21609] usb 5-1: New USB device found, idVendor=20f4, idProduct=e05a, bcdDevice=6c.6d
[ 1808.491348][   T27] kauditd_printk_skb: 3395 callbacks suppressed
[ 1808.491365][   T27] audit: type=1800 audit(1773783204.729:3953): pid=14104 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.18241" name="file1" dev="loop1" ino=86 res=0 errno=0
[ 1808.493498][T21609] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1808.567803][T21609] usb 5-1: Product: syz
[ 1808.576980][T21609] usb 5-1: Manufacturer: syz
[ 1808.581653][T21609] usb 5-1: SerialNumber: syz
[ 1808.826783][T21609] aqc111: probe of 5-1:1.105 failed with error -22
[ 1808.851068][T14097] loop3: detected capacity change from 0 to 32768
[ 1808.877955][T14097] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.18238 (14097)
[ 1808.969809][T14097] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1808.987097][T14117] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18248'.
[ 1809.007409][T14097] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm
[ 1809.043711][T14097] BTRFS info (device loop3): using free space tree
[ 1809.130010][ T5805] usb 5-1: USB disconnect, device number 24
[ 1809.186019][T14097] BTRFS info (device loop3): enabling ssd optimizations
[ 1809.207667][T14097] BTRFS info (device loop3): auto enabling async discard
[ 1809.486733][ T5766] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d
[ 1809.982525][ T6193] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 9 /dev/loop3 scanned by udevd (6193)
[ 1810.863937][T14178] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18268'.
[ 1811.191701][T14184] netlink: 'syz.1.18271': attribute type 2 has an invalid length.
[ 1811.216458][T14184] netlink: 'syz.1.18271': attribute type 1 has an invalid length.
[ 1811.224384][T14184] netlink: 'syz.1.18271': attribute type 1 has an invalid length.
[ 1811.293060][T14166] loop4: detected capacity change from 0 to 32768
[ 1811.319962][T14166] (syz.4.18264,14166,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1811.351271][T14161] loop3: detected capacity change from 0 to 32768
[ 1811.354762][T14166] (syz.4.18264,14166,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1811.427101][T14161] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1811.499006][T14166] JBD2: Ignoring recovery information on journal
[ 1811.622295][T14166] ocfs2: Mounting device (7,4) on (node local, slot 0) with ordered data mode.
[ 1811.680557][T14161] XFS (loop3): Ending clean mount
[ 1811.852220][T14166] (syz.4.18264,14166,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x7dc2e7ff, computed 0xf156e878. Applying ECC.
[ 1811.904905][T14166] (syz.4.18264,14166,0):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0x7dc2e7ff, computed 0x24c0fe6f
[ 1811.955498][T14166] (syz.4.18264,14166,0):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[ 1812.002254][T14166] (syz.4.18264,14166,0):ocfs2_quota_read:201 ERROR: status = -5
[ 1812.017050][ T5766] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1812.033099][T14166] Quota error (device loop4): find_tree_dqentry: Can't read quota tree block 2
[ 1812.057107][T14166] Quota error (device loop4): qtree_read_dquot: Can't read quota structure for id 0
[ 1812.089479][T14166] (syz.4.18264,14166,1):ocfs2_acquire_dquot:878 ERROR: status = -5
[ 1812.107660][T14166] (syz.4.18264,14166,1):ocfs2_mknod:314 ERROR: status = -5
[ 1812.141892][T14166] (syz.4.18264,14166,1):ocfs2_mknod:502 ERROR: status = -5
[ 1812.142019][T14213] netlink: 8 bytes leftover after parsing attributes in process `syz.1.18281'.
[ 1812.155530][T14166] (syz.4.18264,14166,1):ocfs2_mkdir:659 ERROR: status = -5
[ 1812.360828][ T5644] ocfs2: Unmounting device (7,4) on (node local)
[ 1812.720271][   T23] usb 3-1: new high-speed USB device number 58 using dummy_hcd
[ 1812.903381][   T23] usb 3-1: config 4 has an invalid descriptor of length 0, skipping remainder of the config
[ 1812.921755][   T23] usb 3-1: New USB device found, idVendor=041e, idProduct=4007, bcdDevice=5d.18
[ 1812.960634][   T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1812.990153][   T23] gspca_main: stv0680-2.14.0 probing 041e:4007
[ 1813.230806][T14238] netlink: 80 bytes leftover after parsing attributes in process `syz.1.18291'.
[ 1813.480496][T14222] loop3: detected capacity change from 0 to 32768
[ 1813.537287][   T27] audit: type=1800 audit(1773783210.031:3954): pid=14222 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.18279" name="file1" dev="loop3" ino=4 res=0 errno=0
[ 1814.005054][   T23] stv0680 3-1:4.0: STV(e): camera ping failed!!
[ 1814.191957][T14264] loop3: detected capacity change from 0 to 1764
[ 1814.202863][   T23] gspca_stv0680: usb_control_msg error 0, request = 0x80, error = -71
[ 1814.238813][   T23] stv0680 3-1:4.0: last error: 179,  command = 0x17
[ 1814.267459][   T23] usb 3-1: USB disconnect, device number 58
[ 1814.473007][T14272] netlink: 'syz.4.18308': attribute type 10 has an invalid length.
[ 1814.675338][T14279] i2c i2c-0: dtv_property_process_set: SET cmd 0x00000000 undefined
[ 1814.919272][T14288] bridge_slave_1: left allmulticast mode
[ 1814.953478][T14288] bridge_slave_1: left promiscuous mode
[ 1814.967135][T14288] bridge0: port 2(bridge_slave_1) entered disabled state
[ 1815.010062][T14288] A link change request failed with some changes committed already. Interface bridge_slave_1 may have been left with an inconsistent configuration, please check.
[ 1815.204188][   T27] audit: type=1400 audit(1773783211.774:3955): apparmor="DENIED" operation="change_onexec" class="file" info="label not found" error=-22 profile="unconfined" name="&" pid=14296 comm="syz.4.18320"
[ 1815.311119][T14716] usb 4-1: new full-speed USB device number 43 using dummy_hcd
[ 1815.464767][T14307] loop1: detected capacity change from 0 to 128
[ 1815.500894][T14310] netlink: 209852 bytes leftover after parsing attributes in process `syz.4.18326'.
[ 1815.514220][T14716] usb 4-1: config 179 has an invalid interface number: 65 but max is 0
[ 1815.534769][T14716] usb 4-1: config 179 has no interface number 0
[ 1815.549354][T14716] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has an invalid bInterval 0, changing to 10
[ 1815.568345][T14307] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 54)
[ 1815.587427][T14307] FAT-fs (loop1): Filesystem has been set read-only
[ 1815.606558][T14716] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0xF has invalid maxpacket 1025, setting to 64
[ 1815.637027][T14716] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has an invalid bInterval 0, changing to 10
[ 1815.663676][T14716] usb 4-1: config 179 interface 65 altsetting 0 endpoint 0x83 has invalid maxpacket 45824, setting to 64
[ 1815.685627][T14716] usb 4-1: config 179 interface 65 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 23
[ 1815.692173][ T5768] FAT-fs (loop1): error, fat_free: invalid cluster chain (i_pos 54)
[ 1815.699371][T14716] usb 4-1: New USB device found, idVendor=12ab, idProduct=90a3, bcdDevice=1e.eb
[ 1815.751045][T14716] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1815.782430][T14290] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1815.797157][T14290] raw-gadget.0 gadget.3: fail, usb_ep_enable returned -22
[ 1816.216741][T14321] (unnamed net_device) (uninitialized): option downdelay: invalid value (18446744073709551609)
[ 1816.270642][T14321] (unnamed net_device) (uninitialized): option downdelay: allowed values 0 - 2147483647
[ 1816.309138][T21609] usb 4-1: USB disconnect, device number 43
[ 1816.309182][    C1] xpad 4-1:179.65: xpad_irq_in - usb_submit_urb failed with result -19
[ 1816.323901][    C1] xpad 4-1:179.65: xpad_irq_out - usb_submit_urb failed with result -19
[ 1816.711064][   T23] usb 5-1: new high-speed USB device number 25 using dummy_hcd
[ 1816.922251][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0
[ 1816.936158][   T23] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0
[ 1816.954202][   T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0
[ 1816.984316][   T23] usb 5-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0
[ 1817.013589][   T23] usb 5-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b
[ 1817.033346][   T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 1817.041826][T14345] loop3: detected capacity change from 0 to 256
[ 1817.042917][T14345] exfat: Deprecated parameter 'namecase'
[ 1817.094732][   T23] usb 5-1: config 0 descriptor??
[ 1817.097911][T14345] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xf4419509, utbl_chksum : 0xe619d30d)
[ 1817.160258][T14334] loop1: detected capacity change from 0 to 32768
[ 1817.241596][T14334] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1817.306891][   T23] hdpvr 5-1:0.0: firmware version 0x7e dated �M��8 9>������S��|�h��n��B��k矉?qC�$F��
[ 1817.317985][   T23] hdpvr 5-1:0.0: untested firmware, the driver might not work.
[ 1817.498722][   T23] hdpvr 5-1:0.0: device init failed
[ 1817.528473][T14334] XFS (loop1): Ending clean mount
[ 1817.536908][   T23] hdpvr: probe of 5-1:0.0 failed with error -12
[ 1817.565014][   T23] usb 5-1: USB disconnect, device number 25
[ 1817.813350][ T5768] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1818.273208][T14380] sctp: [Deprecated]: syz.4.18358 (pid 14380) Use of int in max_burst socket option deprecated.
[ 1818.273208][T14380] Use struct sctp_assoc_value instead
[ 1818.292706][T14383] netlink: 7 bytes leftover after parsing attributes in process `syz.3.18359'.
[ 1818.330871][T14383] netlink: 8 bytes leftover after parsing attributes in process `syz.3.18359'.
[ 1818.550192][T14392] loop4: detected capacity change from 0 to 512
[ 1818.622358][ T6193] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2
[ 1818.761288][   T27] audit: type=1326 audit(1773783215.515:3956): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1818.833882][   T27] audit: type=1326 audit(1773783215.515:3957): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1818.931631][   T27] audit: type=1326 audit(1773783215.515:3958): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.015987][   T27] audit: type=1326 audit(1773783215.515:3959): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=229 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.082530][   T27] audit: type=1326 audit(1773783215.515:3960): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.136781][   T27] audit: type=1326 audit(1773783215.515:3961): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.170183][   T27] audit: type=1326 audit(1773783215.515:3962): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.278829][   T27] audit: type=1326 audit(1773783215.515:3963): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.324978][   T27] audit: type=1326 audit(1773783215.515:3964): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14399 comm="syz.3.18367" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7ff95299c799 code=0x7ffc0000
[ 1819.593786][   T27] audit: type=1400 audit(1773783216.387:3965): apparmor="DENIED" operation="stack_onexec" class="file" info="label not found" error=-2 profile="unconfined" name="#(%#{//&@\)//&" pid=14427 comm="syz.3.18381"
[ 1819.995036][T14446] netlink: 'syz.3.18390': attribute type 5 has an invalid length.
[ 1820.012574][T14446] netlink: 3657 bytes leftover after parsing attributes in process `syz.3.18390'.
[ 1820.058648][T14448] loop1: detected capacity change from 0 to 512
[ 1820.109671][T14448] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback.
[ 1820.133651][T14450] tmpfs: Bad value for 'usrquota_block_hardlimit'
[ 1820.166625][T14448] ext4 filesystem being mounted at /4451/file0 supports timestamps until 2038-01-19 (0x7fffffff)
[ 1820.513958][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000.
[ 1820.587341][T14469] loop3: detected capacity change from 0 to 164
[ 1820.594227][T14469] rock: directory entry would overflow storage
[ 1820.594244][T14469] rock: sig=0x66, size=4, remaining=3
[ 1820.607038][T14469] rock: directory entry would overflow storage
[ 1820.607121][T14469] rock: sig=0x66, size=4, remaining=3
[ 1820.616017][T14469] iso9660: Corrupted directory entry in block 4 of inode 1792
[ 1822.124810][T14527] netlink: 4 bytes leftover after parsing attributes in process `syz.1.18427'.
[ 1822.508775][T14542] Process accounting resumed
[ 1823.614607][T14584] QAT: Device 3 not found
[ 1824.225323][T14608] binder: Bad value for 'stats'
[ 1824.834920][T14627] netlink: 'syz.4.18478': attribute type 10 has an invalid length.
[ 1824.881780][T14627] team0: Device veth1_macvtap failed to register rx_handler
[ 1824.887150][T14606] loop1: detected capacity change from 0 to 32768
[ 1825.023744][T14606] JBD2: Ignoring recovery information on journal
[ 1825.115612][T14606] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode.
[ 1825.161415][T14606] (syz.1.18467,14606,1):ocfs2_check_dir_entry:325 ERROR: bad entry in directory #65: directory entry too close to end - offset=0, inode=65, rec_len=16, name_len=1
[ 1825.178030][T14606] (syz.1.18467,14606,1):ocfs2_prepare_dir_for_insert:4312 ERROR: status = -2
[ 1825.192974][T14606] (syz.1.18467,14606,1):ocfs2_mknod:298 ERROR: status = -2
[ 1825.217834][T14606] (syz.1.18467,14606,1):ocfs2_mknod:502 ERROR: status = -2
[ 1825.240122][T14606] (syz.1.18467,14606,1):ocfs2_create:676 ERROR: status = -2
[ 1825.379110][T14642] loop3: detected capacity change from 0 to 1024
[ 1825.395191][ T5768] ocfs2: Unmounting device (7,1) on (node local)
[ 1825.497859][T14642] syz.3.18484: attempt to access beyond end of device
[ 1825.497859][T14642] loop3: rw=0, sector=393226, nr_sectors = 2 limit=1024
[ 1825.646154][   T23] usb 3-1: new high-speed USB device number 59 using dummy_hcd
[ 1825.739826][T14652] loop4: detected capacity change from 0 to 128
[ 1825.848907][   T23] usb 3-1: config 0 has too many interfaces: 253, using maximum allowed: 32
[ 1825.878172][   T23] usb 3-1: config 0 has 1 interface, different from the descriptor's value: 253
[ 1825.918600][   T23] usb 3-1: New USB device found, idVendor=055f, idProduct=c630, bcdDevice=b6.ac
[ 1825.931412][   T23] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1825.942605][   T23] usb 3-1: Product: syz
[ 1825.947654][   T23] usb 3-1: Manufacturer: syz
[ 1825.953549][   T23] usb 3-1: SerialNumber: syz
[ 1825.960885][ T5852] usb 4-1: new high-speed USB device number 44 using dummy_hcd
[ 1825.963583][   T23] usb 3-1: config 0 descriptor??
[ 1825.993149][   T23] gspca_main: sunplus-2.14.0 probing 055f:c630
[ 1826.179987][ T5852] usb 4-1: Using ep0 maxpacket: 8
[ 1826.192887][ T5852] usb 4-1: config 1 has an invalid interface number: 128 but max is 1
[ 1826.203115][ T5852] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config
[ 1826.215538][ T5852] usb 4-1: config 1 has 1 interface, different from the descriptor's value: 2
[ 1826.231032][ T5852] usb 4-1: config 1 has no interface number 0
[ 1826.238808][ T5852] usb 4-1: config 1 interface 128 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1
[ 1826.269996][ T5852] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40
[ 1826.302542][ T5852] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3
[ 1826.315997][ T5852] usb 4-1: Product: syz
[ 1826.320227][ T5852] usb 4-1: Manufacturer: syz
[ 1826.337797][ T5852] usb 4-1: SerialNumber: syz
[ 1826.354320][ T5852] cdc_wdm 4-1:1.128: skipping garbage
[ 1826.359787][ T5852] cdc_wdm 4-1:1.128: invalid descriptor buffer length
[ 1826.360589][T14668] vim2m vim2m.0: Fourcc format (0x31384142) invalid.
[ 1826.370812][ T5852] cdc_wdm: probe of 4-1:1.128 failed with error -22
[ 1826.379380][T14667] netlink: 'syz.4.18496': attribute type 2 has an invalid length.
[ 1826.393299][   T23] gspca_sunplus: reg_r err -71
[ 1826.398220][   T23] sunplus: probe of 3-1:0.0 failed with error -71
[ 1826.424813][   T23] usb 3-1: USB disconnect, device number 59
[ 1826.604044][ T5852] usb 4-1: USB disconnect, device number 44
[ 1826.701143][T14676] (null): rxe_set_mtu: Set mtu to 4096
[ 1826.735411][T14676] lo speed is unknown, defaulting to 1000
[ 1826.737071][T14678] xt_l2tp: unknown flags: 10
[ 1826.777076][T14676] lo speed is unknown, defaulting to 1000
[ 1826.796137][T14676] lo speed is unknown, defaulting to 1000
[ 1827.301343][   T23] lo speed is unknown, defaulting to 1000
[ 1827.310108][T14676] infiniband syz0: set down
[ 1827.333067][T14676] infiniband syz0: added lo
[ 1827.638608][T14676] RDS/IB: syz0: added
[ 1827.644701][T14676] smc: adding ib device syz0 with port count 1
[ 1827.675412][T14676] smc:    ib device syz0 port 1 has pnetid 
[ 1827.710980][T21609] lo speed is unknown, defaulting to 1000
[ 1827.752652][T14676] lo speed is unknown, defaulting to 1000
[ 1828.100404][T14720] loop4: detected capacity change from 0 to 4096
[ 1828.269288][T14676] lo speed is unknown, defaulting to 1000
[ 1828.670749][T14676] lo speed is unknown, defaulting to 1000
[ 1828.778826][T14734] netlink: 8 bytes leftover after parsing attributes in process `syz.4.18529'.
[ 1828.975305][T14722] loop3: detected capacity change from 0 to 32768
[ 1829.050810][T14722] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1829.060750][T14676] lo speed is unknown, defaulting to 1000
[ 1829.293377][T14722] XFS (loop3): Ending clean mount
[ 1829.304158][T14722] XFS (loop3): Quotacheck needed: Please wait.
[ 1829.436276][T14722] XFS (loop3): Quotacheck: Done.
[ 1829.580525][ T5766] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791
[ 1830.489189][T14774] (unnamed net_device) (uninitialized): option packets_per_slave: invalid value (18446744073709551489)
[ 1830.513539][T14774] (unnamed net_device) (uninitialized): option packets_per_slave: allowed values 0 - 65535
[ 1831.482544][T14800] (null): rxe_set_mtu: Set mtu to 4096
[ 1831.515374][T14800] rdma_rxe: rxe_newlink: failed to add lo
[ 1831.550050][T14803] ip6gre4: entered promiscuous mode
[ 1831.593957][T14803] ip6gre4: entered allmulticast mode
[ 1832.080190][T14824] netlink: 72 bytes leftover after parsing attributes in process `syz.2.18570'.
[ 1832.098657][T14824] netlink: 12 bytes leftover after parsing attributes in process `syz.2.18570'.
[ 1832.140465][T14824] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18570'.
[ 1832.337063][T14838] loop3: detected capacity change from 0 to 8
[ 1832.364171][T14838] MTD: Attempt to mount non-MTD device "/dev/loop3"
[ 1832.380923][T21609] usb 5-1: new high-speed USB device number 26 using dummy_hcd
[ 1832.394549][ T6193] udevd[6193]: incorrect cramfs checksum on /dev/loop3
[ 1832.411147][T14838] cramfs: Error -3 while decompressing!
[ 1832.416902][T14838] cramfs: ffffffff973fa368(26)->ffff88805005f000(4096)
[ 1832.424955][T14838] cramfs: Error -3 while decompressing!
[ 1832.431246][T14838] cramfs: ffffffff973fa382(26)->ffff888053ee3000(4096)
[ 1832.443297][T14838] cramfs: Error -3 while decompressing!
[ 1832.450500][T14838] cramfs: ffffffff973fa39c(16)->ffff888056b24000(4096)
[ 1832.460446][T14838] cramfs: Error -3 while decompressing!
[ 1832.466053][T14838] cramfs: ffffffff973fa368(26)->ffff88805005f000(4096)
[ 1832.572120][T14843] netlink: 'syz.2.18587': attribute type 1 has an invalid length.
[ 1832.572580][T21609] usb 5-1: Using ep0 maxpacket: 32
[ 1832.580088][T14843] netlink: 4 bytes leftover after parsing attributes in process `syz.2.18587'.
[ 1832.602372][T21609] usb 5-1: config index 0 descriptor too short (expected 156, got 27)
[ 1832.613670][T21609] usb 5-1: too many endpoints for config 0 interface 0 altsetting 191: 144, using maximum allowed: 30
[ 1832.613705][T14845] kAFS: unable to lookup cell ''
[ 1832.638710][T21609] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has an invalid bInterval 0, changing to 7
[ 1832.674719][T21609] usb 5-1: config 0 interface 0 altsetting 191 endpoint 0x87 has invalid wMaxPacketSize 0
[ 1832.699139][T21609] usb 5-1: config 0 interface 0 altsetting 191 has 1 endpoint descriptor, different from the interface descriptor's value: 144
[ 1832.729721][T21609] usb 5-1: config 0 interface 0 has no altsetting 0
[ 1832.769562][T21609] usb 5-1: New USB device found, idVendor=0f11, idProduct=1021, bcdDevice=86.66
[ 1832.800896][T21609] usb 5-1: New USB device strings: Mfr=85, Product=120, SerialNumber=172
[ 1832.826251][T21609] usb 5-1: Product: syz
[ 1832.835415][T21609] usb 5-1: Manufacturer: syz
[ 1832.860265][T21609] usb 5-1: SerialNumber: syz
[ 1832.878480][T21609] usb 5-1: config 0 descriptor??
[ 1832.894040][T21609] ldusb 5-1:0.0: Interrupt out endpoint not found (using control endpoint instead)
[ 1832.937915][T21609] ldusb 5-1:0.0: LD USB Device #0 now attached to major 180 minor 0
[ 1833.212431][T14828] ldusb 5-1:0.0: Couldn't submit interrupt_in_urb -90
[ 1833.245255][T21609] usb 5-1: USB disconnect, device number 26
[ 1833.255566][T21609] ldusb 5-1:0.0: LD USB Device #0 now disconnected
[ 1833.340074][T14869] loop3: detected capacity change from 0 to 64
[ 1833.491890][T14872] xt_CT: You must specify a L4 protocol and not use inversions on it
[ 1833.721175][T14879] Timeout policy `syz0' can only be used by L3 protocol number 9
[ 1834.851716][T14892] loop3: detected capacity change from 0 to 32768
[ 1834.873203][T14892] (syz.3.18603,14892,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1834.920642][T14892] (syz.3.18603,14892,0):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC.
[ 1834.997564][T14892] JBD2: Ignoring recovery information on journal
[ 1835.176309][T14892] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode.
[ 1835.238666][T14892] (syz.3.18603,14892,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x98842a5e, computed 0xe74db1cd. Applying ECC.
[ 1835.332867][T14941] loop4: detected capacity change from 0 to 64
[ 1835.488731][T14892] (syz.3.18603,14892,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0x1cec3d0f, computed 0xd2ffbdfe. Applying ECC.
[ 1835.587548][T14892] (syz.3.18603,14892,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xdf8356d3, computed 0xb8c23ae4. Applying ECC.
[ 1835.624152][T14892] (syz.3.18603,14892,1):ocfs2_block_check_validate:416 ERROR: Fixed CRC32 failed: stored: 0xdf8356d3, computed 0x2acb7e3c
[ 1835.659179][T14892] (syz.3.18603,14892,1):ocfs2_read_quota_phys_block:160 ERROR: status = -5
[ 1835.674273][T14892] (syz.3.18603,14892,1):ocfs2_quota_read:201 ERROR: status = -5
[ 1835.685141][T14892] __quota_error: 9 callbacks suppressed
[ 1835.685163][T14892] Quota error (device loop3): find_block_dqentry: Can't read quota tree block 6
[ 1835.701711][T14892] Quota error (device loop3): qtree_read_dquot: Can't read quota structure for id 0
[ 1835.712574][T14892] (syz.3.18603,14892,1):ocfs2_acquire_dquot:878 ERROR: status = -5
[ 1835.767146][T14892] (syz.3.18603,14892,1):ocfs2_mknod:314 ERROR: status = -5
[ 1835.806672][T14892] (syz.3.18603,14892,1):ocfs2_mknod:502 ERROR: status = -5
[ 1835.819443][T14892] (syz.3.18603,14892,1):ocfs2_mkdir:659 ERROR: status = -5
[ 1836.104115][ T5766] ocfs2: Unmounting device (7,3) on (node local)
[ 1836.187046][   T27] audit: type=1326 audit(1773783233.803:3975): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14965 comm="syz.2.18640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1836.267825][   T27] audit: type=1326 audit(1773783233.803:3976): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14965 comm="syz.2.18640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1836.330684][   T27] audit: type=1326 audit(1773783233.855:3977): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14965 comm="syz.2.18640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=122 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1836.391262][   T27] audit: type=1326 audit(1773783233.855:3978): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14965 comm="syz.2.18640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1836.467563][   T27] audit: type=1326 audit(1773783233.855:3979): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=14965 comm="syz.2.18640" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f49be99c799 code=0x7ffc0000
[ 1836.479110][T14972] bridge5: entered promiscuous mode
[ 1836.505121][T14972] bridge5: entered allmulticast mode
[ 1836.748822][T14983] loop3: detected capacity change from 0 to 16
[ 1836.810651][T14983] erofs: (device loop3): mounted with root inode @ nid 36.
[ 1836.866123][T14983] syz.3.18648: attempt to access beyond end of device
[ 1836.866123][T14983] loop3: rw=524288, sector=1056, nr_sectors = 16 limit=16
[ 1836.939237][T14983] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -32 in[46, 4050] out[4096]
[ 1836.978118][   T27] audit: type=1800 audit(1773783234.632:3980): pid=14983 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.3.18648" name="file2" dev="loop3" ino=89 res=0 errno=0
[ 1837.167750][T14998] netlink: 8 bytes leftover after parsing attributes in process `syz.4.18654'.
[ 1837.538227][T15015] loop4: detected capacity change from 0 to 164
[ 1838.393216][T15047] netlink: 830 bytes leftover after parsing attributes in process `syz.1.18679'.
[ 1838.535125][T15053] netlink: 'syz.2.18682': attribute type 7 has an invalid length.
[ 1838.548011][T15053] netlink: 140 bytes leftover after parsing attributes in process `syz.2.18682'.
[ 1839.010456][T15067] netlink: 4 bytes leftover after parsing attributes in process `syz.4.18689'.
[ 1839.256465][T15041] loop3: detected capacity change from 0 to 40427
[ 1839.288776][T15041] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12
[ 1839.315807][T15041] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock
[ 1839.400778][T15041] F2FS-fs (loop3): Found nat_bits in checkpoint
[ 1839.514764][T15086] netlink: 8 bytes leftover after parsing attributes in process `syz.2.18697'.
[ 1839.549964][T15041] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0
[ 1839.564026][T15041] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5
[ 1839.682152][T15091] loop4: detected capacity change from 0 to 64
[ 1839.738066][T15091] hfs: unable to locate alternate MDB
[ 1839.743523][T15091] hfs: continuing without an alternate MDB
[ 1839.802054][   T27] audit: type=1800 audit(1773783237.593:3981): pid=15091 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.18699" name="bus" dev="loop4" ino=21 res=0 errno=0
[ 1839.820652][T15095] (unnamed net_device) (uninitialized): option ad_user_port_key: mode dependency failed, not supported in mode active-backup(1)
[ 1839.882105][T21215] 
[ 1839.884500][T21215] ======================================================
[ 1839.892066][T21215] WARNING: possible circular locking dependency detected
[ 1839.899133][T21215] syzkaller #0 Not tainted
[ 1839.903840][T21215] ------------------------------------------------------
[ 1839.911066][T21215] kworker/u4:0/21215 is trying to acquire lock:
[ 1839.917344][T21215] ffff888025ee1af8 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}, at: hfs_extend_file+0xff/0x1380
[ 1839.928277][T21215] 
[ 1839.928277][T21215] but task is already holding lock:
[ 1839.935675][T21215] ffff88805cd940b0 (&tree->tree_lock#2/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0
[ 1839.945415][T21215] 
[ 1839.945415][T21215] which lock already depends on the new lock.
[ 1839.945415][T21215] 
[ 1839.955938][T21215] 
[ 1839.955938][T21215] the existing dependency chain (in reverse order) is:
[ 1839.964991][T21215] 
[ 1839.964991][T21215] -> #1 (&tree->tree_lock#2/1){+.+.}-{3:3}:
[ 1839.973192][T21215]        __mutex_lock+0x136/0xcc0
[ 1839.978411][T21215]        hfs_find_init+0x17e/0x1f0
[ 1839.983541][T21215]        hfs_extend_file+0x361/0x1380
[ 1839.989167][T21215]        hfs_bmap_reserve+0x107/0x430
[ 1839.994579][T21215]        hfs_cat_create+0x1fe/0x6b0
[ 1840.000110][T21215]        hfs_mkdir+0x6c/0xe0
[ 1840.004826][T21215]        vfs_mkdir+0x296/0x440
[ 1840.009621][T21215]        do_mkdirat+0x1dc/0x450
[ 1840.014497][T21215]        __x64_sys_mkdirat+0x89/0xa0
[ 1840.019806][T21215]        do_syscall_64+0x55/0xa0
[ 1840.024793][T21215]        entry_SYSCALL_64_after_hwframe+0x68/0xd2
[ 1840.031311][T21215] 
[ 1840.031311][T21215] -> #0 (&HFS_I(tree->inode)->extents_lock){+.+.}-{3:3}:
[ 1840.040540][T21215]        __lock_acquire+0x2df1/0x7d40
[ 1840.046181][T21215]        lock_acquire+0x19e/0x420
[ 1840.051214][T21215]        __mutex_lock+0x136/0xcc0
[ 1840.056251][T21215]        hfs_extend_file+0xff/0x1380
[ 1840.061540][T21215]        hfs_bmap_reserve+0x107/0x430
[ 1840.066913][T21215]        __hfs_ext_write_extent+0x1fa/0x470
[ 1840.072819][T21215]        hfs_ext_write_extent+0x17f/0x210
[ 1840.078542][T21215]        hfs_write_inode+0xdc/0x880
[ 1840.083741][T21215]        __writeback_single_inode+0x705/0xec0
[ 1840.089823][T21215]        writeback_sb_inodes+0x7cd/0xf50
[ 1840.095466][T21215]        wb_writeback+0x46a/0xbf0
[ 1840.100587][T21215]        wb_workfn+0x400/0xe60
[ 1840.105359][T21215]        process_scheduled_works+0xa5d/0x15d0
[ 1840.111608][T21215]        worker_thread+0xa55/0xfc0
[ 1840.116748][T21215]        kthread+0x2fa/0x390
[ 1840.121340][T21215]        ret_from_fork+0x48/0x80
[ 1840.126373][T21215]        ret_from_fork_asm+0x11/0x20
[ 1840.131669][T21215] 
[ 1840.131669][T21215] other info that might help us debug this:
[ 1840.131669][T21215] 
[ 1840.142040][T21215]  Possible unsafe locking scenario:
[ 1840.142040][T21215] 
[ 1840.149607][T21215]        CPU0                    CPU1
[ 1840.155109][T21215]        ----                    ----
[ 1840.160563][T21215]   lock(&tree->tree_lock#2/1);
[ 1840.165435][T21215]                                lock(&HFS_I(tree->inode)->extents_lock);
[ 1840.174036][T21215]                                lock(&tree->tree_lock#2/1);
[ 1840.181423][T21215]   lock(&HFS_I(tree->inode)->extents_lock);
[ 1840.187500][T21215] 
[ 1840.187500][T21215]  *** DEADLOCK ***
[ 1840.187500][T21215] 
[ 1840.195730][T21215] 3 locks held by kworker/u4:0/21215:
[ 1840.201291][T21215]  #0: ffff88801ce57938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[ 1840.212622][T21215]  #1: ffffc9000be4fd00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x96f/0x15d0
[ 1840.225172][T21215]  #2: ffff88805cd940b0 (&tree->tree_lock#2/1){+.+.}-{3:3}, at: hfs_find_init+0x17e/0x1f0
[ 1840.235207][T21215] 
[ 1840.235207][T21215] stack backtrace:
[ 1840.241299][T21215] CPU: 1 PID: 21215 Comm: kworker/u4:0 Not tainted syzkaller #0
[ 1840.249197][T21215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1840.259350][T21215] Workqueue: writeback wb_workfn (flush-7:4)
[ 1840.265355][T21215] Call Trace:
[ 1840.268739][T21215]  <TASK>
[ 1840.271678][T21215]  dump_stack_lvl+0x18c/0x250
[ 1840.276435][T21215]  ? load_image+0x400/0x400
[ 1840.281059][T21215]  ? show_regs_print_info+0x20/0x20
[ 1840.286357][T21215]  ? print_circular_bug+0x12b/0x1a0
[ 1840.291564][T21215]  check_noncircular+0x2fc/0x400
[ 1840.296516][T21215]  ? look_up_lock_class+0x75/0x140
[ 1840.301645][T21215]  ? print_deadlock_bug+0x5d0/0x5d0
[ 1840.307022][T21215]  ? lockdep_lock+0xf5/0x230
[ 1840.311719][T21215]  ? _find_first_zero_bit+0xd3/0x100
[ 1840.317193][T21215]  __lock_acquire+0x2df1/0x7d40
[ 1840.322060][T21215]  ? arch_stack_walk+0x16e/0x190
[ 1840.327006][T21215]  ? ret_from_fork_asm+0x11/0x20
[ 1840.331974][T21215]  ? verify_lock_unused+0x140/0x140
[ 1840.337222][T21215]  ? stack_trace_save+0xaa/0x100
[ 1840.342435][T21215]  ? stack_trace_snprint+0xf0/0xf0
[ 1840.347644][T21215]  ? check_noncircular+0x18a/0x400
[ 1840.352778][T21215]  ? print_deadlock_bug+0x5d0/0x5d0
[ 1840.357985][T21215]  lock_acquire+0x19e/0x420
[ 1840.362497][T21215]  ? hfs_extend_file+0xff/0x1380
[ 1840.367445][T21215]  ? __might_sleep+0xe0/0xe0
[ 1840.372084][T21215]  ? read_lock_is_recursive+0x20/0x20
[ 1840.377473][T21215]  __mutex_lock+0x136/0xcc0
[ 1840.381988][T21215]  ? hfs_extend_file+0xff/0x1380
[ 1840.386935][T21215]  ? verify_lock_unused+0x140/0x140
[ 1840.392242][T21215]  ? hfs_extend_file+0xff/0x1380
[ 1840.397195][T21215]  ? mutex_lock_nested+0x20/0x20
[ 1840.402158][T21215]  hfs_extend_file+0xff/0x1380
[ 1840.407085][T21215]  ? hfs_ext_write_extent+0x152/0x210
[ 1840.412577][T21215]  ? hfs_write_inode+0xdc/0x880
[ 1840.417449][T21215]  ? hfs_get_block+0xc50/0xc50
[ 1840.422309][T21215]  ? trace_raw_output_contention_end+0xd0/0xd0
[ 1840.428652][T21215]  ? rcu_is_watching+0x15/0xb0
[ 1840.433599][T21215]  ? trace_contention_end+0x39/0xe0
[ 1840.438809][T21215]  ? __asan_memset+0x22/0x40
[ 1840.443416][T21215]  ? hfs_brec_find+0x19b/0x500
[ 1840.448212][T21215]  ? hfs_find_init+0x17e/0x1f0
[ 1840.453246][T21215]  hfs_bmap_reserve+0x107/0x430
[ 1840.458110][T21215]  __hfs_ext_write_extent+0x1fa/0x470
[ 1840.463498][T21215]  hfs_ext_write_extent+0x17f/0x210
[ 1840.468791][T21215]  ? verify_lock_unused+0x140/0x140
[ 1840.474003][T21215]  ? hfs_ext_find_block+0x190/0x190
[ 1840.479251][T21215]  ? blk_start_plug+0x51/0x1a0
[ 1840.484200][T21215]  hfs_write_inode+0xdc/0x880
[ 1840.488905][T21215]  ? hfs_inode_write_fork+0x1a0/0x1a0
[ 1840.494381][T21215]  ? __writeback_single_inode+0x48d/0xec0
[ 1840.500298][T21215]  ? __lock_acquire+0x7d40/0x7d40
[ 1840.505426][T21215]  ? do_raw_spin_lock+0x11f/0x2c0
[ 1840.510573][T21215]  ? __rwlock_init+0x150/0x150
[ 1840.515449][T21215]  __writeback_single_inode+0x705/0xec0
[ 1840.521016][T21215]  writeback_sb_inodes+0x7cd/0xf50
[ 1840.526240][T21215]  ? queue_io+0x550/0x550
[ 1840.530594][T21215]  ? rcu_is_watching+0x15/0xb0
[ 1840.535391][T21215]  wb_writeback+0x46a/0xbf0
[ 1840.539931][T21215]  ? queue_io+0x3b1/0x550
[ 1840.544368][T21215]  ? percpu_ref_tryget+0x250/0x250
[ 1840.549499][T21215]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1840.555491][T21215]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1840.560700][T21215]  wb_workfn+0x400/0xe60
[ 1840.564963][T21215]  ? inode_wait_for_writeback+0x230/0x230
[ 1840.570783][T21215]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1840.576771][T21215]  ? read_lock_is_recursive+0x20/0x20
[ 1840.582155][T21215]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1840.587453][T21215]  ? process_scheduled_works+0x96f/0x15d0
[ 1840.593280][T21215]  ? process_scheduled_works+0x96f/0x15d0
[ 1840.599029][T21215]  process_scheduled_works+0xa5d/0x15d0
[ 1840.604714][T21215]  ? worker_attach_to_pool+0x380/0x380
[ 1840.610298][T21215]  ? assign_work+0x3d2/0x5d0
[ 1840.614999][T21215]  worker_thread+0xa55/0xfc0
[ 1840.619610][T21215]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1840.625513][T21215]  ? _raw_spin_unlock+0x40/0x40
[ 1840.630374][T21215]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 1840.636282][T21215]  kthread+0x2fa/0x390
[ 1840.640358][T21215]  ? pr_cont_work+0x560/0x560
[ 1840.645059][T21215]  ? kthread_blkcg+0xd0/0xd0
[ 1840.649651][T21215]  ret_from_fork+0x48/0x80
[ 1840.654083][T21215]  ? kthread_blkcg+0xd0/0xd0
[ 1840.658776][T21215]  ret_from_fork_asm+0x11/0x20
[ 1840.663678][T21215]  </TASK>
[ 1840.690010][T21215] hfs: new node 0 already hashed?
[ 1840.695525][T21215] ------------[ cut here ]------------
[ 1840.701075][T21215] WARNING: CPU: 1 PID: 21215 at fs/hfs/bnode.c:520 hfs_bnode_create+0x3b9/0x440
[ 1840.710849][T21215] Modules linked in:
[ 1840.714778][T21215] CPU: 1 PID: 21215 Comm: kworker/u4:0 Not tainted syzkaller #0
[ 1840.722516][T21215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1840.732815][T21215] Workqueue: writeback wb_workfn (flush-7:4)
[ 1840.738882][T21215] RIP: 0010:hfs_bnode_create+0x3b9/0x440
[ 1840.744718][T21215] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c
[ 1840.764744][T21215] RSP: 0018:ffffc9000be4ee18 EFLAGS: 00010246
[ 1840.770921][T21215] RAX: 000000000000001f RBX: ffff88805cd94000 RCX: b207488a970c5000
[ 1840.779169][T21215] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 1840.787283][T21215] RBP: 0000000000000000 R08: ffffc9000be4eb27 R09: 1ffff920017c9d64
[ 1840.795303][T21215] R10: dffffc0000000000 R11: fffff520017c9d65 R12: 0000000000000000
[ 1840.803329][T21215] R13: ffff88805cd940e0 R14: ffff88802c4e8b00 R15: dffffc0000000000
[ 1840.811449][T21215] FS:  0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000
[ 1840.820558][T21215] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 1840.827166][T21215] CR2: 00007fdd6bd456b8 CR3: 000000002f2c8000 CR4: 00000000003506e0
[ 1840.835200][T21215] Call Trace:
[ 1840.838493][T21215]  <TASK>
[ 1840.841468][T21215]  hfs_bmap_alloc+0x541/0x5d0
[ 1840.846171][T21215]  ? hfs_bmap_reserve+0x430/0x430
[ 1840.851258][T21215]  ? rcu_is_watching+0x15/0xb0
[ 1840.856071][T21215]  hfs_btree_inc_height+0x101/0xac0
[ 1840.861392][T21215]  ? __rwlock_init+0x150/0x150
[ 1840.866194][T21215]  ? hfs_brec_insert+0xbd0/0xbd0
[ 1840.871198][T21215]  ? do_raw_spin_unlock+0x121/0x230
[ 1840.876430][T21215]  hfs_brec_insert+0x748/0xbd0
[ 1840.881261][T21215]  ? hfs_brec_keylen+0x360/0x360
[ 1840.886221][T21215]  __hfs_ext_write_extent+0x2a1/0x470
[ 1840.891798][T21215]  hfs_ext_write_extent+0x17f/0x210
[ 1840.897227][T21215]  ? verify_lock_unused+0x140/0x140
[ 1840.902457][T21215]  ? hfs_ext_find_block+0x190/0x190
[ 1840.907863][T21215]  ? blk_start_plug+0x51/0x1a0
[ 1840.912646][T21215]  hfs_write_inode+0xdc/0x880
[ 1840.917408][T21215]  ? hfs_inode_write_fork+0x1a0/0x1a0
[ 1840.922909][T21215]  ? __writeback_single_inode+0x48d/0xec0
[ 1840.928789][T21215]  ? __lock_acquire+0x7d40/0x7d40
[ 1840.933914][T21215]  ? do_raw_spin_lock+0x11f/0x2c0
[ 1840.938994][T21215]  ? __rwlock_init+0x150/0x150
[ 1840.943884][T21215]  __writeback_single_inode+0x705/0xec0
[ 1840.949577][T21215]  writeback_sb_inodes+0x7cd/0xf50
[ 1840.954766][T21215]  ? queue_io+0x550/0x550
[ 1840.959198][T21215]  ? rcu_is_watching+0x15/0xb0
[ 1840.964007][T21215]  wb_writeback+0x46a/0xbf0
[ 1840.968837][T21215]  ? queue_io+0x3b1/0x550
[ 1840.973693][T21215]  ? percpu_ref_tryget+0x250/0x250
[ 1840.978931][T21215]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1840.985203][T21215]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1840.990466][T21215]  wb_workfn+0x400/0xe60
[ 1840.994996][T21215]  ? inode_wait_for_writeback+0x230/0x230
[ 1841.000765][T21215]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1841.006879][T21215]  ? read_lock_is_recursive+0x20/0x20
[ 1841.012438][T21215]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1841.018009][T21215]  ? process_scheduled_works+0x96f/0x15d0
[ 1841.023805][T21215]  ? process_scheduled_works+0x96f/0x15d0
[ 1841.029745][T21215]  process_scheduled_works+0xa5d/0x15d0
[ 1841.035398][T21215]  ? worker_attach_to_pool+0x380/0x380
[ 1841.040936][T21215]  ? assign_work+0x3d2/0x5d0
[ 1841.045549][T21215]  worker_thread+0xa55/0xfc0
[ 1841.050182][T21215]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1841.056108][T21215]  ? _raw_spin_unlock+0x40/0x40
[ 1841.061093][T21215]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 1841.067017][T21215]  kthread+0x2fa/0x390
[ 1841.071198][T21215]  ? pr_cont_work+0x560/0x560
[ 1841.075909][T21215]  ? kthread_blkcg+0xd0/0xd0
[ 1841.080812][T21215]  ret_from_fork+0x48/0x80
[ 1841.085252][T21215]  ? kthread_blkcg+0xd0/0xd0
[ 1841.089910][T21215]  ret_from_fork_asm+0x11/0x20
[ 1841.094712][T21215]  </TASK>
[ 1841.097774][T21215] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 1841.105068][T21215] CPU: 1 PID: 21215 Comm: kworker/u4:0 Not tainted syzkaller #0
[ 1841.112700][T21215] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026
[ 1841.122777][T21215] Workqueue: writeback wb_workfn (flush-7:4)
[ 1841.128773][T21215] Call Trace:
[ 1841.132065][T21215]  <TASK>
[ 1841.135005][T21215]  dump_stack_lvl+0x18c/0x250
[ 1841.139708][T21215]  ? show_regs_print_info+0x20/0x20
[ 1841.144923][T21215]  ? load_image+0x400/0x400
[ 1841.149445][T21215]  panic+0x2dc/0x730
[ 1841.153376][T21215]  ? bpf_jit_dump+0xd0/0xd0
[ 1841.157889][T21215]  ? ret_from_fork_asm+0x11/0x20
[ 1841.162840][T21215]  __warn+0x2e0/0x470
[ 1841.166828][T21215]  ? hfs_bnode_create+0x3b9/0x440
[ 1841.171946][T21215]  ? hfs_bnode_create+0x3b9/0x440
[ 1841.176981][T21215]  report_bug+0x2be/0x4f0
[ 1841.181313][T21215]  ? hfs_bnode_create+0x3b9/0x440
[ 1841.186364][T21215]  ? hfs_bnode_create+0x3b9/0x440
[ 1841.191392][T21215]  ? hfs_bnode_create+0x3bb/0x440
[ 1841.196608][T21215]  handle_bug+0xcf/0x120
[ 1841.200885][T21215]  exc_invalid_op+0x1a/0x50
[ 1841.205400][T21215]  asm_exc_invalid_op+0x1a/0x20
[ 1841.210259][T21215] RIP: 0010:hfs_bnode_create+0x3b9/0x440
[ 1841.215899][T21215] Code: d4 e0 8a 89 ee e8 47 8c 1f 08 e9 73 fd ff ff e8 1d 1c 2d ff 4c 89 ef e8 45 bc 34 08 48 c7 c7 c0 d4 e0 8a 89 ee e8 27 8c 1f 08 <0f> 0b eb b7 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fc ff ff 4c
[ 1841.235521][T21215] RSP: 0018:ffffc9000be4ee18 EFLAGS: 00010246
[ 1841.241695][T21215] RAX: 000000000000001f RBX: ffff88805cd94000 RCX: b207488a970c5000
[ 1841.249850][T21215] RDX: 0000000000000000 RSI: 0000000080000000 RDI: 0000000000000000
[ 1841.257825][T21215] RBP: 0000000000000000 R08: ffffc9000be4eb27 R09: 1ffff920017c9d64
[ 1841.265974][T21215] R10: dffffc0000000000 R11: fffff520017c9d65 R12: 0000000000000000
[ 1841.273956][T21215] R13: ffff88805cd940e0 R14: ffff88802c4e8b00 R15: dffffc0000000000
[ 1841.282065][T21215]  ? hfs_bnode_create+0x3b9/0x440
[ 1841.287100][T21215]  hfs_bmap_alloc+0x541/0x5d0
[ 1841.291792][T21215]  ? hfs_bmap_reserve+0x430/0x430
[ 1841.296825][T21215]  ? rcu_is_watching+0x15/0xb0
[ 1841.301600][T21215]  hfs_btree_inc_height+0x101/0xac0
[ 1841.306893][T21215]  ? __rwlock_init+0x150/0x150
[ 1841.311680][T21215]  ? hfs_brec_insert+0xbd0/0xbd0
[ 1841.316886][T21215]  ? do_raw_spin_unlock+0x121/0x230
[ 1841.322358][T21215]  hfs_brec_insert+0x748/0xbd0
[ 1841.327140][T21215]  ? hfs_brec_keylen+0x360/0x360
[ 1841.332091][T21215]  __hfs_ext_write_extent+0x2a1/0x470
[ 1841.337469][T21215]  hfs_ext_write_extent+0x17f/0x210
[ 1841.342671][T21215]  ? verify_lock_unused+0x140/0x140
[ 1841.347893][T21215]  ? hfs_ext_find_block+0x190/0x190
[ 1841.353192][T21215]  ? blk_start_plug+0x51/0x1a0
[ 1841.357962][T21215]  hfs_write_inode+0xdc/0x880
[ 1841.362647][T21215]  ? hfs_inode_write_fork+0x1a0/0x1a0
[ 1841.368163][T21215]  ? __writeback_single_inode+0x48d/0xec0
[ 1841.373895][T21215]  ? __lock_acquire+0x7d40/0x7d40
[ 1841.378933][T21215]  ? do_raw_spin_lock+0x11f/0x2c0
[ 1841.384065][T21215]  ? __rwlock_init+0x150/0x150
[ 1841.388838][T21215]  __writeback_single_inode+0x705/0xec0
[ 1841.394403][T21215]  writeback_sb_inodes+0x7cd/0xf50
[ 1841.399534][T21215]  ? queue_io+0x550/0x550
[ 1841.403884][T21215]  ? rcu_is_watching+0x15/0xb0
[ 1841.408715][T21215]  wb_writeback+0x46a/0xbf0
[ 1841.413232][T21215]  ? queue_io+0x3b1/0x550
[ 1841.417591][T21215]  ? percpu_ref_tryget+0x250/0x250
[ 1841.423064][T21215]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1841.429144][T21215]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1841.434508][T21215]  wb_workfn+0x400/0xe60
[ 1841.438978][T21215]  ? inode_wait_for_writeback+0x230/0x230
[ 1841.444713][T21215]  ? lockdep_hardirqs_on_prepare+0x40d/0x770
[ 1841.450711][T21215]  ? read_lock_is_recursive+0x20/0x20
[ 1841.456102][T21215]  ? _raw_spin_unlock_irq+0x23/0x50
[ 1841.461343][T21215]  ? process_scheduled_works+0x96f/0x15d0
[ 1841.467072][T21215]  ? process_scheduled_works+0x96f/0x15d0
[ 1841.472798][T21215]  process_scheduled_works+0xa5d/0x15d0
[ 1841.478385][T21215]  ? worker_attach_to_pool+0x380/0x380
[ 1841.484027][T21215]  ? assign_work+0x3d2/0x5d0
[ 1841.488726][T21215]  worker_thread+0xa55/0xfc0
[ 1841.493557][T21215]  ? _raw_spin_unlock_irqrestore+0xc5/0x120
[ 1841.499553][T21215]  ? _raw_spin_unlock+0x40/0x40
[ 1841.504427][T21215]  ? _raw_spin_unlock_irqrestore+0x86/0x120
[ 1841.510524][T21215]  kthread+0x2fa/0x390
[ 1841.514689][T21215]  ? pr_cont_work+0x560/0x560
[ 1841.519378][T21215]  ? kthread_blkcg+0xd0/0xd0
[ 1841.524066][T21215]  ret_from_fork+0x48/0x80
[ 1841.528492][T21215]  ? kthread_blkcg+0xd0/0xd0
[ 1841.533174][T21215]  ret_from_fork_asm+0x11/0x20
[ 1841.537952][T21215]  </TASK>
[ 1841.541469][T21215] Kernel Offset: disabled
[ 1841.545789][T21215] Rebooting in 86400 seconds..