last executing test programs: 3m39.633776507s ago: executing program 1 (id=690): r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x400448cb, 0x0) syz_usb_connect(0x6, 0x0, 0x0, 0x0) 3m36.804282464s ago: executing program 1 (id=713): r0 = syz_usb_connect(0x0, 0x36, &(0x7f00000001c0)=ANY=[@ANYBLOB="12010000a1121710950b2a17f4f7010203010902340001000000000904fb00026c5d650009050402100000fa000905820240"], 0x0) syz_usb_control_io$uac3(r0, 0x0, 0x0) syz_usb_control_io$rtl8150(r0, 0x0, &(0x7f0000000340)={0x2c, &(0x7f00000001c0)={0x40, 0x11, 0x6, "cd0aaa197eeb"}, 0x0, 0x0, 0x0, 0x0}) 3m34.609762591s ago: executing program 1 (id=736): unshare(0xa000400) r0 = syz_open_procfs(0x0, &(0x7f0000002080)='pagemap\x00') lseek(r0, 0xfffffffffffffffd, 0x1) 3m34.519848682s ago: executing program 1 (id=737): syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000804, &(0x7f0000002900)={[{@orlov}, {@grpid}, {@usrjquota}, {@grpid}, {@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@init_itable}, {@bsdgroups}, {@grpid}, {@norecovery}]}, 0xfe, 0x499, &(0x7f0000002e80)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 3m33.917877912s ago: executing program 1 (id=740): syz_mount_image$vfat(&(0x7f0000000080), &(0x7f0000000240)='./file1\x00', 0x804, &(0x7f0000000140)={[{@shortname_win95}, {@shortname_lower}, {@utf8}, {@uni_xlate}, {@shortname_mixed}, {@fat=@nfs_stale_rw}, {@rodir}, {@shortname_win95}, {@fat=@nocase}, {@fat=@codepage={'codepage', 0x3d, '855'}}, {@uni_xlate}, {@uni_xlate}, {@utf8}, {@iocharset={'iocharset', 0x3d, 'iso8859-6'}}, {@shortname_lower}, {@iocharset={'iocharset', 0x3d, 'cp874'}}]}, 0x1, 0x27b, &(0x7f0000000640)="$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") r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) mkdirat(r0, &(0x7f0000000340)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x0) 3m32.197937311s ago: executing program 1 (id=747): sendmsg$802154_dgram(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1000}, 0x800) r0 = io_uring_setup(0x4053, &(0x7f0000000040)={0x0, 0x2063, 0x0, 0x2, 0x94}) io_uring_register$IORING_REGISTER_FILES2(r0, 0xd, &(0x7f0000000140)={0x62, 0x1, 0x0, 0x0, &(0x7f00000001c0)}, 0x20) 3m31.508203622s ago: executing program 32 (id=747): sendmsg$802154_dgram(0xffffffffffffffff, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x1, 0x0, 0x0, 0x1000}, 0x800) r0 = io_uring_setup(0x4053, &(0x7f0000000040)={0x0, 0x2063, 0x0, 0x2, 0x94}) io_uring_register$IORING_REGISTER_FILES2(r0, 0xd, &(0x7f0000000140)={0x62, 0x1, 0x0, 0x0, &(0x7f00000001c0)}, 0x20) 1m40.937684372s ago: executing program 3 (id=1695): r0 = socket$rxrpc(0x21, 0x2, 0xa) connect$rxrpc(r0, &(0x7f00000001c0)=@in6={0x21, 0x0, 0x2, 0x1c, {0xa, 0x4e21, 0x2, @mcast1, 0x7}}, 0x24) listen(r0, 0x9) 1m40.821224064s ago: executing program 3 (id=1697): r0 = socket$packet(0x11, 0x2, 0x300) mmap(&(0x7f0000003000/0x2000)=nil, 0x2000, 0x0, 0x2000011, r0, 0x2000) ioctl$sock_SIOCETHTOOL(r0, 0x8946, &(0x7f0000000000)={'syz_tun\x00', &(0x7f0000002fc0)=@ethtool_coalesce={0xf, 0x1, 0x0, 0x7f11b2d5, 0x8, 0x2, 0xd2d2, 0x1, 0x6, 0x0, 0x91, 0xffffffff, 0xb83, 0x0, 0x0, 0x8000, 0x0, 0x0, 0x0, 0x0, 0x8, 0xc}}) 1m40.493694339s ago: executing program 3 (id=1701): r0 = socket$nl_route(0x10, 0x3, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000040)={'tunl0\x00', 0x0}) sendmsg$nl_route_sched(r0, &(0x7f0000001200)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000080)=@newqdisc={0x50, 0x24, 0x4ee4e6a52ff56541, 0x2003, 0x0, {0x0, 0x0, 0x0, r1, {}, {0xffff, 0xffff}, {0xffed}}, [@qdisc_kind_options=@q_fq_codel={{0xd}, {0x1c, 0x2, [@TCA_FQ_CODEL_INTERVAL={0x8, 0x3, 0x6}, @TCA_FQ_CODEL_CE_THRESHOLD_SELECTOR={0x5, 0xa, 0x3}, @TCA_FQ_CODEL_CE_THRESHOLD_MASK={0x5, 0xb, 0x3}]}}]}, 0x50}, 0x1, 0x0, 0x0, 0x40014}, 0x0) 1m40.299573563s ago: executing program 3 (id=1703): syz_mount_image$ext4(&(0x7f0000000100)='ext3\x00', &(0x7f0000000cc0)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x4000804, &(0x7f0000002900)={[{@orlov}, {@grpid}, {@usrjquota}, {@grpid}, {@noload}, {@max_dir_size_kb={'max_dir_size_kb', 0x3d, 0x3}}, {@init_itable_val={'init_itable', 0x3d, 0x9}}, {@init_itable}, {@bsdgroups}, {@grpid}, {@norecovery}]}, 0xfe, 0x499, &(0x7f0000002e80)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x0, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000100)='./bus\x00', &(0x7f0000000440), 0x8, &(0x7f0000000200)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 1m39.638660434s ago: executing program 3 (id=1711): r0 = socket$alg(0x26, 0x5, 0x0) bind$alg(r0, &(0x7f0000000080)={0x26, 'aead\x00', 0x0, 0x0, 'gcm(aes)\x00'}, 0x58) setsockopt$ALG_SET_AEAD_AUTHSIZE(r0, 0x117, 0x6, 0x0, 0x5) 1m38.384388365s ago: executing program 3 (id=1714): setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000040)=0x1, 0x4) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000040)) 1m38.05752399s ago: executing program 33 (id=1714): setsockopt$inet6_udp_encap(0xffffffffffffffff, 0x11, 0x64, &(0x7f0000000040)=0x1, 0x4) r0 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) ioctl$sock_bt_hci(r0, 0x800448d2, &(0x7f0000000040)) 2.548214228s ago: executing program 4 (id=2536): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000100)='./file0\x00', 0x0, &(0x7f0000000440)={[{@shortname_mixed}, {@utf8no}, {@shortname_win95}, {@shortname_mixed}, {@fat=@codepage={'codepage', 0x3d, '932'}}, {@fat=@dmask={'dmask', 0x3d, 0x4}}, {@uni_xlate}, {@uni_xlateno}, {@shortname_winnt}, {@shortname_win95}, {@shortname_win95}, {@numtail}, {@shortname_lower}, {@fat=@allow_utime}, {@iocharset={'iocharset', 0x3d, 'koi8-u'}}]}, 0x1, 0x346, &(0x7f0000000980)="$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") r0 = openat$incfs(0xffffffffffffff9c, &(0x7f0000000140)='.pending_reads\x00', 0x1a10c1, 0x9c37611dc13d0da6) fchown(r0, 0xffffffffffffffff, 0x0) 2.37845323s ago: executing program 5 (id=2530): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$netlbl_mgmt(&(0x7f0000000780), r0) sendmsg$NLBL_MGMT_C_ADD(r0, &(0x7f0000000d80)={0x0, 0x0, &(0x7f0000000d40)={&(0x7f0000000000)={0x2c, r1, 0x1, 0x400a00, 0xa000000, {}, [@NLBL_MGMT_A_FAMILY={0x6, 0xb, 0x21}, @NLBL_MGMT_A_DOMAIN={0x5, 0x1, '\x00'}, @NLBL_MGMT_A_PROTOCOL={0x8, 0x2, 0x5}]}, 0x2c}}, 0x44004) 2.189894404s ago: executing program 5 (id=2533): r0 = syz_ublk_setup_io_uring(0x20, &(0x7f0000000040), &(0x7f00000000c0), &(0x7f0000000100), &(0x7f0000000140)) io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0) io_uring_enter(r0, 0x1, 0x1, 0x1, 0x0, 0x0) 2.013016947s ago: executing program 5 (id=2535): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000f80), 0xffffffffffffffff) sendmsg$NL802154_CMD_NEW_INTERFACE(r0, &(0x7f0000001080)={0x0, 0x0, &(0x7f00000006c0)={&(0x7f0000000000)={0x44, r1, 0x1, 0x70bd2a, 0x35dfdbfb, {}, [@NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_EXTENDED_ADDR={0xc, 0x17, {0xaaaaaaaaaaaa0102}}, @NL802154_ATTR_IFNAME={0xa, 0x4, 'wpan4\x00'}, @NL802154_ATTR_WPAN_PHY={0x8}, @NL802154_ATTR_IFTYPE={0x8, 0x5, 0x2}]}, 0x44}, 0x1, 0x0, 0x0, 0x8001}, 0x4080080) 1.849813809s ago: executing program 4 (id=2537): r0 = socket$inet6(0xa, 0x2, 0x0) setsockopt$sock_int(r0, 0x1, 0xf, &(0x7f0000000240)=0x9, 0x4) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0xe22, 0x0, @mcast2, 0x3}, 0x1c) 1.7795754s ago: executing program 2 (id=2540): syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000000040)='./file1\x00', 0x21081e, &(0x7f00000001c0)={[{@grpquota}, {@nogrpid}, {@quota}]}, 0x1, 0x4fa, &(0x7f00000005c0)="$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") r0 = syz_open_dev$radio(&(0x7f0000000000), 0xffffffffffffffff, 0x2) ioctl$VIDIOC_S_EXT_CTRLS(r0, 0xc0205648, &(0x7f0000000100)={0x0, 0x1, 0x0, 0xffffffffffffffff, 0x0, &(0x7f00000000c0)={0x98f90d, 0xd, '\x00', @p_u16=&(0x7f0000000740)=0x19a1}}) 1.770002981s ago: executing program 5 (id=2541): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x121a03, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x3) ioctl$TCSETSF(r0, 0x5404, 0x0) 1.609860733s ago: executing program 5 (id=2542): r0 = syz_init_net_socket$bt_rfcomm(0x1f, 0x1, 0x3) r1 = dup(r0) setsockopt$SO_J1939_FILTER(r1, 0x6b, 0x1, 0x0, 0x0) 1.609652903s ago: executing program 4 (id=2543): r0 = gettid() sigaltstack(&(0x7f0000001040)={&(0x7f00000020c0)=""/4111, 0x0, 0x100f}, 0x0) rt_sigqueueinfo(r0, 0x21, &(0x7f00000002c0)={0xb, 0x4}) 1.591201823s ago: executing program 0 (id=2544): prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000080)={&(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffc000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ffc000/0x4000)=nil, &(0x7f0000ff8000/0x4000)=nil, &(0x7f0000ff8000/0x3000)=nil, &(0x7f0000ff0000/0x1000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000ffb000/0x3000)=nil, &(0x7f0000fe9000/0x4000)=nil, &(0x7f0000ff0000/0x2000)=nil, 0x0}, 0x68) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='cmdline\x00') read$FUSE(r0, 0x0, 0x0) 1.457874416s ago: executing program 5 (id=2546): syz_usb_connect(0x5, 0x24, &(0x7f0000000000)=ANY=[@ANYBLOB="1201000024917720042322023f77010203010902120001000010000904"], 0x0) r0 = syz_open_dev$I2C(&(0x7f0000000040), 0x1, 0x2003) ioctl$I2C_RDWR(r0, 0x707, &(0x7f0000000340)={&(0x7f0000000300)=[{0x5, 0x92f5, 0x0, 0x0}], 0x1}) 1.377728747s ago: executing program 0 (id=2547): sendmsg$NFT_BATCH(0xffffffffffffffff, &(0x7f0000000240)={0x0, 0x0, &(0x7f0000000000)={&(0x7f0000000280)={{0x14}, [], {0x14, 0x11, 0x1, 0x0, 0x0, {0xb}}}, 0x28}}, 0x0) r0 = openat$comedi(0xffffffffffffff9c, &(0x7f00000005c0)='/dev/comedi4\x00', 0xa002, 0x0) ioctl$COMEDI_INSNLIST(r0, 0x8010640b, &(0x7f0000000000)={0x62, &(0x7f0000000280)}) 1.377476827s ago: executing program 4 (id=2548): mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000080)='./file0\x00', &(0x7f0000000040)='cgroup2\x00', 0x0, 0x0) mount$overlay(0x0, &(0x7f00000000c0)='./file0\x00', &(0x7f0000000180), 0x0, &(0x7f00000001c0)={[{@redirect_dir_nofollow}, {@nfs_export_on}, {@lowerdir={'lowerdir', 0x3d, './file0'}, 0x3a}], [], 0x2f}) 1.349492367s ago: executing program 2 (id=2549): sendmsg$nl_route_sched(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=@newqdisc={0x34, 0x24, 0xd0f, 0x70bd29, 0x0, {0x60, 0x0, 0x0, 0x0, {}, {0xffe0, 0xa}, {0x4, 0x10}}, [@qdisc_kind_options=@q_cake={{0x9}, {0x4}}]}, 0x34}, 0x1, 0x0, 0x0, 0x55}, 0x4000) r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="280000001800090000000000000000001c140000fe000001000000000c0013"], 0x28}}, 0x0) 1.276453439s ago: executing program 0 (id=2550): r0 = syz_open_dev$vim2m(&(0x7f0000000380), 0x8, 0x2) ioctl$vim2m_VIDIOC_S_CTRL(r0, 0xc008561c, &(0x7f0000000000)={0xf0f043}) ppoll(&(0x7f0000000300)=[{r0, 0x2007}], 0x1, 0x0, 0x0, 0x0) 1.109804222s ago: executing program 0 (id=2551): mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000340)='schedstat\x00') faccessat2(r0, &(0x7f0000000140)='./file0\x00', 0x3, 0x1300) 1.109549122s ago: executing program 4 (id=2552): r0 = syz_create_resource$binfmt(&(0x7f0000000100)='./file1\x00') mprotect(&(0x7f0000000000/0xf000)=nil, 0xf000, 0x1) execveat$binfmt(0xffffffffffffff9c, r0, 0x0, &(0x7f0000004780)={[], 0xf000}, 0x1000) 1.018744033s ago: executing program 2 (id=2553): syz_mount_image$hfsplus(&(0x7f0000000080), &(0x7f0000000640)='./file0\x00', 0x1000004, &(0x7f0000000140)=ANY=[], 0x4, 0x5d9, &(0x7f00000010c0)="$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") creat(&(0x7f0000000e00)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) mknod$loop(&(0x7f0000002200)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x1000, 0x0) 1.002849044s ago: executing program 0 (id=2554): mknodat$null(0xffffffffffffff9c, &(0x7f0000000140)='./file0\x00', 0x2000, 0x103) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) sendmmsg$unix(r0, &(0x7f0000000ec0)=[{{0x0, 0x0, 0x0}}, {{&(0x7f0000000300)=@file={0x1, './file0\x00'}, 0x6e, 0x0, 0x0, 0x0, 0x0, 0x50}}], 0x2, 0x0) 929.684405ms ago: executing program 4 (id=2555): syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x2, &(0x7f0000000180)=ANY=[], 0x1, 0x62d0, &(0x7f000001fb40)="$eJzs3U9vHGcdB/Df7D//KW2jHqoSIeS2AVpK87eEQIG2Bzhw4YByRYlct4pIASUBpVVEXFlCHHgRICSOgDhy4gX0wJUbL4BICRLQUweN/TzOeNnNOkm9s/bz+UjuzG+eGe8z/e54dzMz+wQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAEN/77g/OVBFx6edpwbGIz0Q/ohex0tRrEbGydiyvP4iI52K7OZ6NiOFSRJUbn454LSI+eiri7r1b682is/vsx3f+9Pff/fCJ7//tD8NT//nzjf7r09a7efPX//7L7UffXwAAAChRXdd1lT7mH0+f73tddwoAmIv8+l8nebl64erNBeuPWq1Wqw9h3VZPdrtdRMRme5vmPYPT8QBwyGzGx113gQ7Jv2iDiHii604AC63qugMciLv3bq1XKd+q/XqwttOerwXZk/9mtXt/x7TpLOPXmMzr+bUV/XhmSn9W5tSHRZLz743nf2mnfZTWO+j852Va/qOdW5+Kk/Pvj+c/5ujk35uYf6ly/oOHyr8vfwAAAAAAWGD53/+PdXz+d+nxd2VfHnT+d21OfQAAAAAAAACAT9vjjv+3qzL+HwAAACyq5rN64zdP3V827bvYmuUXq4gnx9YHCpNullntuh8AAAAAAAAAAAAAUJLBzjW8F6uIYUQ8ubpa13Xz0zZeP6zH3f6wK33/oWRd/5EHAIAdHz01di9/FbEcERfTd/0NV1dX63p5ZbVerVeW8vvZ0dJyvdL6XJunzbKl0ez3wysxqptfttzarm3W5+VZ7eO/r3msUd2f3bE56TBwAIiInVeju16Rjpi6fjq6fpfD4eD4P3oc/+xH189TAAAA4ODVdV1X6eu8j6dz/r2uOwUAzEV+/R8/L6BWq9Vqtfro1W31ZLfbRURstrdp3jMYjh8ADpnN+Hji8l8a4LcI0/KnCIOIeG6f6y4dcF+AxVR13QEOxN17t9arlG/Vfj1I47vna0H25L9ZbW+Xt580nWX8GpN5Pb+2oh/PTOnPs3PqwyLJ+ffG87+00z5K6x10/vMyLf9mP4910J+u5fz74/mPOTr59ybmX6qc/+Ch8u/LHwAAAAAAFlj+9/9jC3X+d/SouzPTg87/rh3YowIAAAAAAADAwbp779Z6vu81n///3IT13P95NOX8K/kXKeef7v/fvfDmpbH1+q35O2/dz/9f926t//7GPz+bp/vNf/e7hKr0zKrSM6JKj1QN0vQRd2yKrWF/1DzSsOr1B+man3r4TlyJq7ERp/es20vHw/32M3vam54Ot9vr/k772T3tg932vP25Pe3DdKVTvZLbT8Z6/CSuxtvb7U3b0oz9X57RXs9oz/n3Hf9FyvkPWj9N/qupvRqbNu582Pu/4749nfQ4b175/K9OH/zuzLQV/d19a2v274UO+rP9/+SJUfzs+sa1kzcv37hx7UykyZ6lZyNNPmU5/2H6yfm/9OJOe/673z5e73w4euj8F8VWDNr57842+b/Ymm/29+UO+jdvOf9R+sn5v53aJx//hzn/6cf/Kx30BwAAAAAAAAAAAAAAAB6kruvtW0TfjIjz6f6fru7NBADmK7/+10lePq+6/6jb/3HvfnTVf7V6znW1YP2Za/1JvVj9US9k/d8F68/C1W31ZG+0i4j4a3ub5j3DLyb9MgBgkX0SEf/ouhN0Rv4Fy9/310xPdN0ZYK6uv//Bjy5fvbpx7XrXPQEAAAAAAAAAHlUe/3OtNf7zibqub4+tt2f817di7XHH/xzkmd0BRqcMVN1/+H16kK3eqN9rDTf+fEwb/3u4O/eg8b8HMx5vOKN9NKN9aUb78oz2iTd6tOT8n2+Nd34iIo6PDb9ewviv42PelyDn/0Lr+dzk/6Wx9dr51789zPn39uR/6sZ7Pz11/f0PXr3y3uV3N97d+PG5M2dOnzt//sKFC6feuXJ14/TOfzvs8cHK+eexr10HWpacf85c/mXJ+X8h1fIvS87/i6mWf1ly/vn9nvzLkvPPn33kX5ac/8upln9Zcv5fTrX8y5LzfyXV8i9Lzv8rqZZ/WXL+r6Za/mXJ+Z9MtfzLkvM/lep95r9y0P1iPnL++QyX478sOf98ZYP8y5LzP5tq+Zcl538u1fIvS87/tVTLvyw5/6+mWv5lyfmfT7X8y5Lz/1qq5V+WnP+FVMu/LDn/r6da/mXJ+X8j1fIvS87/9VTLvyw5/2+mWv5lyfl/K9XyL0vO/9upln9Zcv5vpFr+Zbn//f9mzJgxk2e6/ssEAAAAAAAAAAAAAIybx+XEXe8jAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA8D924EAAAAAAAMj/tRGqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqsAMHAgAAAABA/q+NUFVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVYW9e4uR667vAH5m73EgMRBSJzVh45gQnE12fYkvtC4mXBtuJSEUesF2vWuz4BteuwQa1Y4CJRJGRRVtw0NbQKjNS4XV8kArQHlArapWgvaBviAqVB6iKqCAhEQrYKs55///78zs7Myud7yZOefzkZJfdubMnDNn/jO7XzvfHQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAGt3+urlP1LIsq9VqxQWbs+wF9Xnd5Ob8klc/v8cHAAAArN/P838/d2O64NAqbtSwzT/f9s0vLy4uLmbvGf7T0c8sLqYrJrNsdDzL8uuiK997b61xm+DxbKI21PD1UJfdD3e5fqTL9aNdrh/rcv14l+snuly/7AQsc11WS3e2Pf/PzcUpzW7KRvPrtre51eO18aH6uUu3zWr5bRZHj2fz2clsLptp2r7YtpZv/9Xb6/t6cxb3NdSwr631FfKjR4/FY6iFc7y9aV9L9xn94LXZ5I9/9Oixvz7/7C3tZtfT0HR/xXHeta1+nB8LlxTHWsvG0zmJxznUcJxb2zwnw03HWctvV//v1uN8bpXHObx0mBuq9TmfyIby//5Wfp5Galmb87Q1XPbTO7Isu7R02K3bLNtXNpRtarpkaOn5mShWZP0+6kvpxdnImtbp7atYp/U5u715nba+JuLzf3u43cgKx9D4NP3gsbGG5/1ni1ezTqP6o17ptdK6Bnv9WumXNRjXxbfyB/1E2zW4PTz+R+9ceQ22XTtt1mB63A1rcFu3NTg0Npwfc3oSavltltbgzqbth/M91fL5zJ2d1+D0+VNnpxc+8tF75k8dPTF3Yu707p07Z3bv3bt///7p4/Mn52aKf1/l2e5/m7Kh9BrYFs5dfA28smXbxqW6+PmxZe+/V/s6nOjwOtzcsm2vX4cjrQ+utjEvyOVrunhtvKt+0icuD2UrvMby52fH+l+H6XE3vA5HGl6Hbb+ntHkdjqzidVjf5uyO1f3MMtLwT7tjWPl7wfrW4OaGNdj680jrGuz1zyP9sgYnwrr4zo6VvxdsDcf7xNRafx4ZXrYG08MN7z31S9LP+xP789FuXd5av+L6sezCwty5ex85ev78uZ1ZGBviJQ1rpXW9bmp4TNmy9Tq05vV6aP62J25tc/nmcK4m7qn/a2LF56q+zZ57Oz9X+Xe39uez6dJdWRg9ttHns9138/r5HMuyz37jsQe/9uhnX7fi+aznzY9Nr/9n8ZRLG95/R1d4/425/xfF/tJdPT48OlK8fofT2Rltej9ufqpG8veuWr7v56ZX9348Gv7Z6Pfjmzq8H29p2bbX78ejrQ8uvh/Xuv1px/q0Pp8TYZ2cnOn8flzfZsuuta7JkY7vx3eEWQvn/1UhKaRc1LB2Vlq3aV8jI6PhcY3EPTSv091N24+GbFbf11O7rm6d3nVHcV/D6dEt2ah1Otmyba/Xafqzr5XWaa3bn75dndbncyKsi5t2d16n9W2e3rP+987r4n82vHeOdVuDo8Nj9WMeTYswf7/PFq+La/De7Fh2JjuZzebXjuXrqZbva+q+1a3BsfDPRr9XbumwBu9q2bbXazB9H1tp7dVGlj/4Hmh9PifCunjyvs5rsL7N6/f19mfXu8IlaZuGn11b/3xtpT/zurXlNF2rtTISjvMb+zr/2Wx9m5P715ozO5+nu8Ml17c5T62v35VeU7PZxpynLeE4n92/8nmqH099m88cWOV6OpRl2cUP3Z//eW/4+5W/u/DtLzf9vUu7v9O5+KH7f/jC4/+0luMHYPD9ohibiu91DX8ztZq//wcAAAAGQsz9Q2Em8j8AAACURsz98f8KT+R/AAAAKI2Y+0fCTCqS/7e8/tn5X1zMUjN/MYjXp9PwQLFd7LjOhK8nF5fUL7//i3M/+ceLq9v3UJZlP3vgD9puv+WBeFyFyXCcV97QfPkyX75nVfs+8vDFtN/G/vrnwv3Hx7PaZdCugjuTZdlXb/xUvp/J917O59MPHMnng5eeeLy+zXMHiq/j7Z95SbH9X4Ty76HjR5tu/0w4D98Pc+Yt7c9HvN2XLr9q6753L+0v3q627Yb8YT/5vuJ+4+/J+fTjxfbxPK90/F/75FNfqm//yCvaH//FoXQceaU83v6pcL9fDPN/X1Zs3/gc1L+Ox//xcPxxf/F2937h622P/8oniu3PvrHY7kiYcf93ha+3v/HZ+cbz9UjtaNPjyt5UbBf3P/PtP86vj/cX77/1+CcOX246H63r4+n/KO5numX7eHncT/QPLfuv30/j+oz7f+qPjjQ9T932f+XBZ15Wv9/W/d/dst3ZD+3I9790f82/sekvP/6ptvuLx3Pob882PZ5D7wyv47D/J98X1mO4/v+uFPfX+tsVjryz+f0nbv+5zRebHk/05h8X+7/ymhP5HJ+4btP1L3jhDZdeXj93Wfat8eL+uu3/xF+daTr+z99cnI94fezot+5/JXH/5z48dfrMwoX52XRWH70x/905by2OJx7vjeG9tfXrw2fOv3/u3OTM5EyWTZb3V+hdtS+E+cNiXOq89eKyd9AdD4fn89Y//+qmO//9k/Hy/3xXcfnltxTft14Ztvt0uHxzeP7Wtv/lnrz95vz1XXs6HOHi8t8XvB5bt//P/lVtGB5/688Fcb2ffen78/NQvy7/vhFf1+s8/u/OFvfzlXBeF8NvZt5289L+GrePvxvh8kPF633d5y+8zcXn9W/C8/227xf3H48rPt7vhp9jvr6l+f0uro+vXBxqvf/8t3hcCu8n2aXi+rhVPN+Xn7u57eHF30OSXbol//pP0v3csqaHuZKFjyxMn5w/feGR6fNzC+enFz7y0cOnzlw4ff5w/rs8D3+g2+2X3p825e9Ps3N792T5u9WZ8ZkNeMO6hsefreb4zz58bHbfzJ2zc8ePXjh+/uGzc+dOHFtYODY3u3Dn0ePH5z7c7fbzswd37jqwe9+uqRPzswf3Hziw+8DU/Okz9cMoDqqLvTMfnDp97nB+k4WDew7svO++PTNTp87Mzh3cNzMzdaHb7fPvTVP1W//+1Lm5k0fPz5+am1qY/+jcwZ0H9u7d1fDbAH/S9vanzh5fmJw+d+H09IWFuXPTxWOZPJ9fXP/e123/lNPCfxU/z7aqFb+IL3vH3XvT72et++JjK95VsUnLLxB9Nvwumn950dn9q/k65v7RMJOK5H8AAACogpj7x8JM5H8AAAAojZj7x8NM5H8AAAAojZj7J8JMKpL/S9f/33JxVfvX/9+w/n/T7fX/9f/7ov//UL/1/4v3C/3/3lhv/17/P9D/1/9/Hvrzg3781en/t6f/Tzv91v+Puf+6LKtk/gcAAIAqiLl/U5iJ/A8AAAClEXP/9WEm8j8AAACURsz9LwgzqUj+1//X/9f/1//X/2+/f/3/waT/35n+fxf6/9NZtfr/l3p5/Pr/+v8s12/9/5j7XxhmUpH8DwAAAFUQc/8NYSbyPwAAAJRGzP03hpnI/wAAAFAaMfdvDjOpSP7X/9f/1//X/9f/b79//f/BpP/fmf5/F/r/Pv9f/1//n57qt/5/zP0vCjOpSP4HAACAKoi5/8VhJvI/AAAA9J+Rq7tZzP0vCTNZlv+vcgcAAADA8y7m/puyliJ4Rf7+X/9f/7//+//j6Tr9f/3/rC/7/8OZ/n//0P/vTP+/C/1//X/9f/1/eqrf+v957s8mspeGmVQk/wMAAEAVxNx/c5iJ/A8AAAClEXP/L4WZyP8AAABQGjH3bwkzqUj+1//X/+///r/P/9f/7/f+v8//7yf6/53p/3eh/6//r/+v/09P9Vv/P+b+W8JMKpL/AQAAoApi7r81zET+BwAAgNKIuf+Xw0zkfwAAACiNmPu3hplUJP/r//d5/z82R/X/9f/1//X/9f9XRf+/M/3/LvT/9f/1//X/6al+6//H3P+yMJOK5H8AAACogpj7bwszkf8BAACgNGLuf3mYifwPAAAApRFz/2SYSUXyv/5/n/f/ix78mM//1//X/9f/1/9fHf3/zvT/u9D/1//vSf9/8WJ1+//jmf4/jfqt/x9z/+1hJhXJ/wAAAFAFMfdvCzOR/wEAAKA0Yu6/I8xE/gcAAIDSiLl/e5hJRfK//v9A9P8z/X/9f/1//X/9/9XR/+9M/78L/X/9f5//7/P/6al+6//H3P+KMJOK5H8AAACogpj77wwzkf8BAACgNGLuf2WYifwPAAAApRFz/11hJhXJ//r/+v/6//r/+v/t96//P5j0/zvT/+9C/1//X/9f/5+e6rf+f8z9rwozqUj+BwAAgCqIuX9HmIn8DwAAAKURc//dYSbyPwAAAJRGzP1TYSYVyf/6//r/+v/6//r/S8+h/v/g0//vTP+/C/1//X/9f/1/eqrf+v8x998TZlKR/A8AAABVEHP/vWEm8j8AAACURsz902Em8j8AAACURsz9M2EmFcn/+v/6//r/+v9r6v+/fOl+y9T/b7d//f/BpP/fmf5/F/r/+v/Pe/9/VP+fUum3/n/M/TvDTCqS/wEAAKAKYu7fFWYi/wMAAEBpxNy/O8xE/gcAAIDSiLl/T5hJRfK//r/+v/6//r/P/2+/f/3/waT/31nv+//xIW5E/3982fb6//r//XT8Pv9f/5/l+q3/H3P/fWEmFcn/AAAAUAUx9+8NM5H/AQAAoDRi7t8XZiL/AwAAQGnE3L8/zKQi+V//X/9f/1//X/+//f71/weT/n9nPv+/C/1//X/9f/1/1umhP2z86ur6/2Pt7rgn/f+Y+w+EmVQk/wMAAEAVxNz/6jAT+R8AAABKI+b+X8nnvy5dIf8DAABAaRS5fyL71TCTiuR//f+m7nn94er/6//r/+v/5/T/B5P+f2f6/13o/+v/6//r/9NTK/b/Q/Ru3/9vqyf9/5j7D4aZVCT/AwAAQBXE3P9rYSbyPwAAAJRGzP2vCTOR/wEAAKA0Yu4/FGZSkfyv/+/z//X/9f/1/9vvf6P7//GTbvX/10f/vzP9/y70//X/9f/1/+mpq/v8/7Z60v+Puf+1YSYVyf8AAABQBTH33x9mIv8DAABAacTc/7owE/kfAAAASiPm/teHmVQk/+v/6//r/+v/6/+337/P/x9M+v+d6f93of+v/6//r/9PT/Vb/z/m/jeEmVQk/wMAAEAVxNz/xjAT+R8AAABKI+b+N4WZyP8AAABQGjH3vznMpCL5X/9f/1//X/9f/7/9/rv1/+Pn9ev/9xf9/870/7vQ/9f/1//X/6en+q3/H3P/r4eZVCT/AwAAwECaWNvmMfc/0Hpj+R8AAABKI+b+t4SZyP8AAABQGjH3vzXMpCL5X/9f/1//X/9f/7/9/n3+/2DS/+9swPr/P78hXK7/X9D/7+/jX2v/f6Tl62vS///eSv3/xfHW2+v/cy30W/8/5v63hZlUJP8DAABAFcTc//YwE/kfAAAASiPm/neEmcj/AAAAUBox9/9GmElF8r/+f/04ltrL+v9l7f8P6f/3X///77+TZfr/+v89p//f2YD1/33+fwv9//4+fp//r//Pcv3W/4+5/51hJhXJ/wAAAFAFMfc/GGYi/wMAAEBpxNz/UJiJ/A8AAAClEXP/u8JMKpL/9f99/n81+v8+/z/rv/6/z/9vOKv6/72j/9+Z/n8X+v/6//3W//9v/X8GW7/1/2PufzjMpCL5HwAAAKog5v53h5nI/wAAAFAaMff/ZpiJ/A8AAAClEXP/e8JMKpL/9f8Hpf8/OaD9/8f0/69h//+2G4rt9P/1/1mi/9+Z/n8X+v/6//3W//f5/wy4fuv/x9z/3jCT1ef/iVVvCQAAADwvYu7/rTCTivz9PwAAAFRBzP2/HWYi/wMAAEBpxNz/O2EmFcn/+v+D0v/3+f+Z/r/P/295PPr/+v/tbFz/P77z6P/r/+v/R/r/+v/6/7Tqt/5/zP2/G2ZSkfwPAAAAVRBz//vCTOR/AAAAGAjt/p/sVjH3Hw4zkf8BAACgNGLuPxJmUpH8r/+/iv7/ePf70/9vPn79//brY039/z/b9m/f+ebbj+zU/9f/1/9fkw39/P/6i9/n/+v/6/8n+v/6//r/tOq3/n/M/UfDTCqS/wEAAKAKYu7/vTAT+R8AAABKI+b+Y2Em8j8AAACURsz9s2EmFcn/+v8+/1//v0/7/wP8+f/xfOj/N+tZ/z++6er/t1X079Mqurb9/3cv9cT1/9fa/x9re6n+v/7/IB+//r/+P8v1W/8/5v65MJOK5H8AAACogpD7h44Xc+kK+R8AAABKI+b+E2Em8j8AAACURsz97w8zqUj+1//X/9f/1//3+f/t99+p/18b8fn//Sr173+av1D0/1v0T/+/Pf1//f9BPn79f/1/luu3/n/M/fNhJhXJ/wAAAFAFMfd/IMxE/gcAAIDSiLn/g2Em8j8AAACURsz9J8NMKpL/9f8Hr/8ft9X/1//X/6/o5//r/3f0/+zdSZBldVbH8ZtYUFmBYbgwwoUbI1i6dMlC17p04cKNGyMMI8QBFWcK5xFFxVkRnAccQBBRQe0ZeqKbnqG76XmiB3oomm6iOsg85+R0870cXua79///fBacNqnkPYgy4UfWl3va/l7/H/T/fff/V/T/+n/9P6sxtf4/d//3xy2d7H8AAADoQe7+m+IW+x8AAACakbv/B+IW+x8AAACakbv/B+OWTva//v80/f9Opez5/3vf/yT6/2/R/x/2+vr/aff/1w36/9PQ/y+m/19C/+/5//p//T8rNbX+P3f/D8Utnex/AAAA6EHu/h+OW+x/AAAAaEbu/pvjFvsfAAAAmpG7/0filk72/77+f2Pos//PjHcWz//X/3v+v/5/W6v9v+f/n8759v+3vfSVT/+v/9f/B/3/kfr/i4d9vv6fFk2t/8/d/6NxSyf7HwAAAHqQu//H4hb7HwAAAJqRu/+WuMX+BwAAgGbk7v/xuKWT/b+65/9f2vr4TPv/ov/X/299QP+v/9f/z5bn/y/WU/9/85PX3/Tcg9/w0HFeX/+v//f8f/0/qzW1/j93/0/ELZ3sfwAAAOhB7v6fjFvsfwAAAGhG7v6filvsfwAAAGhG7v6fjls62f+r6/9n/fz/ov/X/299QP+v/9f/z5b+f7Ge+v+TvL7+X/+v/9f/s1pT6/9z9/9M3NLJ/gcAAIAe5O7/2bjF/gcAAIBm5O6/NW6x/wEAAKAZufsvxy2d7H/9/9n3/y/q//X/cfX/+n/9/9nT/y+m/19C/6//1//r/1mpqfX/uftvi1s62f8AAADQg9z9Pxe32P8AAADQjNz9Px+32P8AAADQjNz9vxC3dLL/9f+e/6//1//r/8dfX/8/T/r/xfT/S+j/T9vPX6v/1//r/9ntmP3/Cwu+bK+k/8/d/4txSyf7HwAAAHqQu/+X4hb7HwAAAJqRu/+X4xb7HwAAAJqRu/9X4pZO9r/+X/+v/z9S/7/1evr/ff3/wZ96W/T/4/T/50P/v9hk+v+NC6Mf1v/Pvv+f2PP/8yu2/l//z7pM7fn/uft/NW7pZP8DAABAD3L3/1rcsmD/H/tf5gMAAABrlbv/1+MW3/8HAACA2cvqLHf/b8Qtnex//b/+X//v+f+e/z/++ov6/4d2vT/9/7To/xebTP9/CP2//n/O71//r//noKn1/7n7fzNu6WT/AwAAQA9y998et9j/AAAA0Izc/b8Vt9j/AAAA0Izc/b8dt3Sy/8f7/53fr/8/Gv3/3vev/x//+bGq/j//iPr/hf3/t3r+f5/0/4udf/9/Uf+/949/wv5/+yuO/n/a77/x/v/Sss/X/zNmav1/7v474pZO9j8AAAD0IHf/78Qt9j8AAAA0I3f/78Yt9j8AAADM2jd/3U4Llrv/9+KWTva/5//r//X/8+v/Pf9/2zqf/z+ce/9/Qf9/RPr/xTz/f4nJ9v/b9P/Tfv+N9/+e/8+JTK3/z91/Z9zSyf4HAACAHtz5/LC1+39/GOx/AAAAmKPdv3Zg/y8oDbn7/yBusf8BAACgGbn7/zBu6WT/6//1//p//b/+f/z1p9X/e/7/Uc26/7+w8z/1//r/MTPt/y801v/fddjnT6H/v1X/z8Ts6f8f2fn4uvr/3P1/FLd0sv8BAACgB7n7/zhusf8BAACgGbn7/yRusf8BAACgGbn7/zRu6WT/n3n/f+nw19b/6//1//p//b/+f9Vm3f97/r/+v83+3/P/Pf9f/9+xnf5/79fDdfX/ufv/LG7pZP8DAABAD3L3/3ncYv8DAABAM3L33xW32P8AAADQjNz9fxG3dLL/Pf9f/6//1//r/8dfX/8/T/r/xfT/S+j/9f/6f/0/K7Xn+f+7rKv/z91/d9zSyf4HAACAHuTuvydusf8BAACgGbn7/zJusf8BAACgGbn7/ypu6WT/6//Ptv/Pj+v/9f+D/l//r/8/F932/xtjfyc66JD+//Hvvfztez+i/9f/6//1//p/VmAS/f/VnX+6zN3/13FLJ/sfAAAAepC7/2/iFvsfAAAAmpG7/2/jFvsfAAAAmpG7/+/ilmPu/69d6bs6P/p/z//X/+v/9f/jr6//n6du+/8j8vz/JfT/+n/9v/6flTqT/v/Kzhf34z7/P3f/38ctvv8PAAAAzcjd/w9xi/0PAAAAzcjd/49xy9L9f8PXnOHbAgAAAFYod/8/xS2dfP9f/6//1//r//X/469/0v5/cxin/z8f+v/F9P9L6P/1//p//T8rdSb9/y7H7f9z998bt3Sy/wEAAKAHufv/OW6x/wEAAKAZufv/JW6x/wEAAKAZufv/NW7pZP/r//X/+n/9v/5//PU9/3+e9P+L6f+HYbhvwRsY6/+vXtT/6//1//p/Tmhq/X/u/n+LWzrZ/wAAANCD3P33xS32PwAAADQjd//9cYv9DwAAAM3I3f/vcUsn+1//r//X/+v/9f/jr6//nyf9/2L6/yU8//+0/fxV/b/+X//PblPr/3P3PxC3dLL/AQAAoAe5+x+MW+x/AAAAaEbu/v+IW+x/AAAAaEbu/ofilk72v/5f/6//1/+fSf9/Wf+/n/7/fJxd/z/o//X/+v8lPP9f/6//Z7/z6v9fiK/3y/r/3P3/Gbd0sv8BAACgB7n7H45b7H8AAABoRu7+/4pb7H8AAABoRu7+/45bOtn/+n/9v/5f/+/5/+Ovr/+fJ8//X0z/v4T+X/+v/9f/s1Ln1f8f1vvv/79z9/9P3NLJ/gcAAIAe5O5/JG6x/wEAAKAZufsfjVvsfwAAAGhG7v7/jVs62f/6f/3/3v5/GPT/+n/9/7Zz6P83B/3/yun/F9P/L6H/b7P/v2ZoqP+/dOjn6/+Zoqn1/7n7/y9u6WT/AwAAQA9y9/9/3GL/AwAAQDNy978sbrH/AQAAoBm5+18et7S0/188PH2bf/9/cd8n6v+HYXjqFs//39X/7/z/tf5f/z+x/r/+qur/V0f/v5j+fwn9f5v9v+f/6/9Zm6n1/7n7XxG3tLT/AQAAoHO5+18Zt9j/AAAA0Izc/a+KW+x/AAAAaEbu/lfHLZ3s/z39/5Wd8Cx///T7//2fqP8fTvX8/xb7f8//1//r/3ty2v7+7s34e5r+X/+v/x/t5zcO+eeeIfr5l/789P/6f/0/aWr9f+7+18Qtnex/AAAA6EHu/sfiFvsfAAAAmpG7//G4xf4HAACAZuTuf23c0sn+n//z//d/ov5/0P930f9v6v/1//r/UVN5/v+NN37bE/p//X+L/f8inv+v/9f/s9/U+v/c/a+LWzrZ/wAAANCD3P2vj1vsfwAAAGhG7v43xC32PwAAADQjd/8b45ZO9v/B/v/aYbtQ3TbW/0ejpv/fRf+/9/3r/8d/fnj+v/5f/3/2ptL/e/7/yd6//n+F/f8Jfuqsu58/rXW//2P1/9948PP1/7Roav1/7v4n4pZO9j8AAAD0IHf/m+IW+x8AAACakbv/zXGL/Q8AAADNyN3/ZNzSyf73/H/9v/5f/6//H399/f886f8X0/8v0VL/fwIr6efzq6r+f77P//8q/T+rM7X+P3f/W+KWreF3w1ef8E8TAAAAmJDc/W+NWzr5/j8AAAD0IHf/2+IW+x8AAACakbv/7XFLJ/tf/6//1//r//X/46+v/58n/f9i+v8l+un/N8c+uO5+/rTW/f6b6f89/58Vmlr/n7v/HXFLJ/sfAAAAZuza5T/k+a3f5u5/Z9xi/wMAAEAzcve/K2452v6/cDbvCgAAAFil3P1PxS2dfP9f/6//b7///279/77X1//r/1um/1/8iyD1/0v00/+PWnc/P/f3X/3/1Yv6f/0/YWr9f+7+p+OWTvY/AAAA9CB3/7vjFvsfAAAAmpG7/z1xi/0PAAAAzcjd/964pZP9r//vq//fGHrs/z3/v5X+f3Pfn4/+X/8/Zj79/z2j/w1hz//X/+v/5/v+Pf9f/89BU+v/c/c/s3Ghy/0PAAAAc/Wd3/R9Tx/1xz6z9dvN4X1xi/0PAAAAzcjd//64xf4HAACAZuTu/0Dc0sn+1//31f/3+fx//X8r/b/n/+v/j2I+/f84/b/+X/8/3/ev/9f/c9DU+v/c/R+MW3YNv9H/QA8AAACwPtcd74fn7v9Q3NLJ9/8BAACgB7n7Pxy3HNj/V4/4q9oBAACAqcnd/5G4pZPv/+v/J97/D2fU/8eP0/9v0//r/8deX/8/T/r/xU7Z/1/d0P/r/xfQ/+v/9f/sN7X+P3f/ww8MXe5/AAAAaNSef6Pw0a3fbg4fi1vsfwAAAGhG7v6Pxy32PwAAADQjd/8n4pZO9r/+f+L9/4me/3+p/pfn/3fe/9++Ofr6+n/9f8v0/4t5/v8S+n/9v/5f/89KHaP/3xqkZ93/5+5/Nm7pZP8DAABAD3L3fzJusf8BAACgGbn7PxW32P8AAADQjNz9n45bOtn/+v819P93XByGM+3/j/D8f/1/H/3/Ia/fTv//9ddffuy7vuf+e/X/7DjP/j9/Luj/9f/6/236f/2//p/9pvb8/9z9n4lbOtn/AAAA0IPc/c/FLfY/AAAANCN3/2fjlpf2/6PrelcAAADAKuXu/1zc0sn3//X/LT7/f579f/61XkP/f3l+/X82xb33/57/r/8/yPP/F9P/L6H/1//r//X/rNTU+v/c/Z+PWzrZ/wAAANCD3P1fiFty/28c+1/dAwAAABOTu/9K3OL7/wAAANCM3P3Pxy2d7H/9v/5/Kv1/8vz/nc/z/P9t+n/9/3Ho/xfT/y+h/9f/6//1/6zU1Pr/3P1fjFs62f8AAADQg9z9L8Qt9j8AAAA0I3f/l+IW+x8AAACakbv/y3FLJ/tf/z8M1zy783H9v/5/6wP6f/2//n+2ptj/f8cxGvTz6f8vLf+B+n/9v/5f/6//ZwWm1v/n7v9KAAAA//+vq2ae") syz_mount_image$tmpfs(&(0x7f0000000000), &(0x7f0000000100)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x206420, 0x0, 0x0, 0x0, &(0x7f0000006380)) open(&(0x7f00000000c0)='./file1\x00', 0x66842, 0x21) 866.142766ms ago: executing program 0 (id=2556): r0 = syz_usb_connect$hid(0x3, 0x36, &(0x7f00000004c0)=ANY=[@ANYBLOB="1201000000000040f30455070000000400010902240001000040b10904000001030001000921010100012205000905810379e8a979"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x18, &(0x7f0000000700)=ANY=[@ANYBLOB=' \n\a'], 0x0, 0x0, 0x0, 0x0}, 0x0) 623.29796ms ago: executing program 2 (id=2557): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000004c0)=@base={0x2, 0x4, 0x4, 0x8, 0x1014}, 0x48) unshare(0x22020400) bpf$MAP_GET_NEXT_KEY(0x15, &(0x7f0000000000)={r0, 0x0, 0x0}, 0x20) 333.759155ms ago: executing program 2 (id=2558): syz_mount_image$hfs(&(0x7f0000000180), &(0x7f0000000080)='./file1\x00', 0x84, &(0x7f0000000000)=ANY=[], 0x8b, 0x2d5, &(0x7f0000025dc0)="$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") openat(0xffffffffffffff9c, &(0x7f0000000080)='./file2\x00', 0x842, 0x20) openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x103042, 0x2) 0s ago: executing program 2 (id=2559): r0 = socket$nl_netfilter(0x10, 0x3, 0xc) sendmsg$NFT_BATCH(r0, &(0x7f000000c2c0)={0x0, 0x0, &(0x7f0000000200)={&(0x7f0000000340)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a28000000000a0101000000005e1affd5020000000900010073797a300000000008000240000000032c000000030a01030000e6ff00000000020000000900010073797a30000000000900030073797a320000000014000000110001"], 0x7c}}, 0x0) sendmsg$NFT_BATCH(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000040)={&(0x7f0000000680)=ANY=[@ANYBLOB="140000001000010000000000000000000000000a70000000060a0b0400000000000000000200000044000480400001800a0001006d6174636800000030000280080002400000000118000300d6feffffffffffffff537c4c3060c6a405106c720a0001006f776e65720000000900010073797a30000000000900020073797a32"], 0x98}}, 0x4048010) kernel console output (not intermixed with test programs): x0 [ 273.812197][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.820424][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.849868][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.890835][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.925907][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.933483][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.952419][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.966271][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.983552][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 273.991531][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.015900][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.033819][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.057244][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.064755][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.097515][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.105014][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.156171][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.164181][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.196033][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.205163][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.226487][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.233979][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.270620][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.292191][T10219] loop2: detected capacity change from 0 to 1024 [ 274.298905][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.315373][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.349884][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.371093][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.392942][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.426100][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.428321][T10219] hfsplus: walked past end of dir [ 274.433731][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.433765][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.458071][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.465667][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.473760][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.481897][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.508537][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.532385][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.532453][ T12] hfsplus: b-tree write err: -5, ino 25 [ 274.545641][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.561579][ T23] hid-generic 0000:0000:0004.0013: unknown main item tag 0x0 [ 274.584097][ T12] hfsplus: b-tree write err: -5, ino 4 [ 274.604428][ T23] hid-generic 0000:0000:0004.0013: hidraw0: HID v0.03 Device [syz0] on syz1 [ 274.605896][ T12] hfsplus: b-tree write err: -5, ino 2 [ 274.660237][ T12] hfsplus: b-tree write err: -5, ino 17 [ 274.680437][T10228] Bluetooth: MGMT ver 1.22 [ 274.891428][T10229] fido_id[10229]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 275.245698][T10226] loop0: detected capacity change from 0 to 32768 [ 275.512651][T10246] loop2: detected capacity change from 0 to 1024 [ 275.534768][T10246] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 275.601805][T10246] EXT4-fs (loop2): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 275.626450][T10246] ext4 filesystem being mounted at /409/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 275.792498][T10246] EXT4-fs (loop2): re-mounted 00000000-0000-0006-0000-000000000000. [ 275.957641][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 276.173744][T10265] netlink: 12 bytes leftover after parsing attributes in process `syz.4.1585'. [ 276.203262][T10265] nbd: illegal input index -1113835520 [ 276.362411][T10269] netdevsim netdevsim3 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.372699][T10269] netdevsim netdevsim3 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.382804][T10269] netdevsim netdevsim3 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.391712][T10269] netdevsim netdevsim3 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 276.467815][T10276] netlink: 16 bytes leftover after parsing attributes in process `syz.4.1589'. [ 276.917099][ T5085] Bluetooth: hci1: command 0x0406 tx timeout [ 276.986985][T10295] loop3: detected capacity change from 0 to 1024 [ 276.999296][T10295] EXT4-fs: Ignoring removed bh option [ 277.026508][T10295] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 277.078560][T10295] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 277.178324][T10295] EXT4-fs error (device loop3): ext4_check_all_de:666: inode #12: block 7: comm syz.3.1600: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=108 fake=0 [ 277.222603][T10295] EXT4-fs (loop3): Remounting filesystem read-only [ 277.299316][T10305] loop2: detected capacity change from 0 to 128 [ 277.320910][T10305] EXT4-fs: Ignoring removed nobh option [ 277.367174][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 277.402066][ T5778] kernel write not supported for file /sysvipc/sem (pid: 5778 comm: kworker/0:3) [ 277.402764][T10305] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 277.470772][T10305] ext4 filesystem being mounted at /416/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 277.516555][T10305] EXT4-fs warning (device loop2): verify_group_input:151: Cannot add at group 2175 (only 1 groups) [ 277.659355][ T5775] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 278.116089][T10330] sp0: Synchronizing with TNC [ 278.142479][T10328] [U] è [ 278.494273][T10346] loop4: detected capacity change from 0 to 1024 [ 278.573563][T10346] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 278.668840][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 279.143987][T10364] loop3: detected capacity change from 0 to 2048 [ 279.219623][T10364] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 279.274607][T10368] loop0: detected capacity change from 0 to 1024 [ 279.283949][T10364] UDF-fs: error (device loop3): udf_verify_fi: directory (ino 1376) has entry where CRC length (32) does not match entry length (24) [ 279.316812][T10368] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 279.423543][T10370] netlink: 9 bytes leftover after parsing attributes in process `syz.4.1631'. [ 279.441577][T10370] 0: renamed from hsr_slave_1 (while UP) [ 279.442996][T10368] EXT4-fs (loop0): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 279.477036][T10370] 0: entered allmulticast mode [ 279.492650][T10370] A link change request failed with some changes committed already. Interface c0 may have been left with an inconsistent configuration, please check. [ 279.516493][T10368] ext4 filesystem being mounted at /404/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 279.578486][ T28] audit: type=1800 audit(1777606254.327:68): pid=10368 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1630" name="file1" dev="loop0" ino=15 res=0 errno=0 [ 279.602376][T10368] EXT4-fs error (device loop0): ext4_validate_block_bitmap:439: comm syz.0.1630: bg 0: block 112: padding at end of block bitmap is not set [ 279.660417][T10368] EXT4-fs error (device loop0): ext4_free_blocks:6694: comm syz.0.1630: Freeing blocks not in datazone - block = 0, count = 16 [ 279.688398][T10376] netlink: 128 bytes leftover after parsing attributes in process `syz.3.1633'. [ 279.699495][T10376] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1633'. [ 279.827478][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 279.944441][T10359] loop2: detected capacity change from 0 to 32768 [ 279.953358][T10380] loop3: detected capacity change from 0 to 2048 [ 280.003415][T10359] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 280.031371][T10380] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 280.211047][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 280.282513][T10359] XFS (loop2): Ending clean mount [ 280.720534][T10408] loop3: detected capacity change from 0 to 2048 [ 280.797827][ T5775] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 280.810927][T10411] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1646'. [ 280.838603][T10408] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 280.888483][T10408] ext4 filesystem being mounted at /374/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 280.918129][T10408] EXT4-fs (loop3): resizing filesystem from 256 to 0 blocks [ 280.956855][T10408] EXT4-fs warning (device loop3): ext4_resize_fs:2048: can't shrink FS - resize aborted [ 281.233963][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.316143][T10423] vivid-000: disconnect [ 281.364232][T10422] vivid-000: reconnect [ 281.463849][T10427] loop3: detected capacity change from 0 to 512 [ 281.502983][T10427] EXT4-fs error (device loop3): ext4_orphan_get:1404: inode #15: comm syz.3.1651: inode has both inline data and extents flags [ 281.524543][T10427] EXT4-fs error (device loop3): ext4_orphan_get:1409: comm syz.3.1651: couldn't read orphan inode 15 (err -117) [ 281.555507][T10427] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.586494][T10432] netlink: 24 bytes leftover after parsing attributes in process `syz.4.1654'. [ 281.789625][T10438] loop0: detected capacity change from 0 to 512 [ 281.817208][ T5774] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 281.821919][T10438] EXT4-fs: Ignoring removed nobh option [ 281.914031][T10438] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 281.946065][T10438] ext4 filesystem being mounted at /414/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 282.212842][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 282.880869][T10474] loop4: detected capacity change from 0 to 2048 [ 282.943412][T10474] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 283.012753][T10480] loop0: detected capacity change from 0 to 256 [ 283.209530][T10485] netlink: 16 bytes leftover after parsing attributes in process `syz.2.1678'. [ 283.719744][ T5778] usb 3-1: new high-speed USB device number 14 using dummy_hcd [ 283.803974][T10501] loop0: detected capacity change from 0 to 4096 [ 283.848026][T10501] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 283.889482][T10501] ntfs3: loop0: Failed to load $Extend (-22). [ 283.897219][T10501] ntfs3: loop0: Failed to initialize $Extend. [ 283.956866][ T5778] usb 3-1: Using ep0 maxpacket: 8 [ 283.982951][ T5778] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 284.020082][ T5778] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 284.055815][ T5778] usb 3-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00 [ 284.085651][ T5778] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 284.138125][ T5778] usb 3-1: config 0 descriptor?? [ 284.225568][T10514] sg_write: process 805 (syz.3.1691) changed security contexts after opening file descriptor, this is not allowed. [ 284.319331][T10511] overlayfs: failed to resolve './file0': -2 [ 284.408419][T10517] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1693'. [ 284.559803][ T5778] logitech 0003:046D:C20E.0014: rdesc size test failed for formula gp [ 284.583619][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.603033][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.624474][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.652193][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.672511][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.693509][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.727442][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.745640][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.766443][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.773695][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.797475][ T5778] logitech 0003:046D:C20E.0014: unknown main item tag 0x0 [ 284.836372][ T5778] logitech 0003:046D:C20E.0014: hidraw0: USB HID v0.00 Device [HID 046d:c20e] on usb-dummy_hcd.2-1/input0 [ 284.880570][ T5778] usb 3-1: USB disconnect, device number 14 [ 285.090038][T10532] fido_id[10532]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/report_descriptor': No such file or directory [ 285.231991][T10540] loop3: detected capacity change from 0 to 512 [ 285.250950][T10540] EXT4-fs: Ignoring removed orlov option [ 285.278827][T10540] EXT4-fs (loop3): mounting ext3 file system using the ext4 subsystem [ 285.298177][T10540] EXT4-fs error (device loop3): ext4_iget_extra_inode:4739: inode #15: comm syz.3.1703: corrupted in-inode xattr: e_value size too large [ 285.376202][T10540] EXT4-fs error (device loop3): ext4_orphan_get:1409: comm syz.3.1703: couldn't read orphan inode 15 (err -117) [ 285.465716][T10548] loop0: detected capacity change from 0 to 1024 [ 285.475087][T10540] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 285.616416][T10540] overlayfs: upper fs needs to support d_type. [ 285.623957][ T34] hfsplus: b-tree write err: -5, ino 25 [ 285.647567][ T34] hfsplus: b-tree write err: -5, ino 4 [ 285.664257][ T34] hfsplus: b-tree write err: -5, ino 2 [ 285.685179][ T34] hfsplus: b-tree write err: -5, ino 17 [ 285.797245][ T5774] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 285.849171][T10554] loop4: detected capacity change from 0 to 512 [ 285.857099][ T5774] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 285.885124][T10554] EXT4-fs: Ignoring removed mblk_io_submit option [ 285.885630][ T5774] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 285.922239][T10554] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 285.943285][T10554] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 285.969214][ T5774] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 285.992653][ T5774] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 286.014693][ T5774] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 286.035309][ T5774] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 286.037639][T10554] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 286.066469][ T5774] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 286.069223][T10554] ext4 filesystem being mounted at /270/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 286.100623][ T27] usb 1-1: new low-speed USB device number 11 using dummy_hcd [ 286.110631][ T5774] EXT4-fs error (device loop3): ext4_readdir:263: inode #11: block 18: comm syz-executor: path (unknown): bad entry in directory: inode out of bounds - offset=0, inode=256, rec_len=1024, size=1024 fake=0 [ 286.162988][ T5774] EXT4-fs error (device loop3): ext4_empty_dir:3177: inode #11: block 18: comm syz-executor: bad entry in directory: inode out of bounds - offset=4096, inode=256, rec_len=1024, size=1024 fake=0 [ 286.165991][ T5778] usb 3-1: new low-speed USB device number 15 using dummy_hcd [ 286.266278][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 286.310025][ T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 286.330891][ T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 286.352967][ T27] usb 1-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00 [ 286.373557][ T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.388332][ T5778] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 286.397226][ T27] usb 1-1: config 0 descriptor?? [ 286.405996][ T5778] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 1024, setting to 8 [ 286.422704][ T5778] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 286.440982][ T5778] usb 3-1: New USB device found, idVendor=046d, idProduct=c081, bcdDevice= 0.00 [ 286.450838][ T5778] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 286.466313][ T5778] usb 3-1: config 0 descriptor?? [ 286.472791][T10558] raw-gadget.1 gadget.2: fail, usb_ep_enable returned -22 [ 286.831883][ T27] aquacomputer_d5next 0003:0C70:F0B6.0015: item fetching failed at offset 5/7 [ 286.844858][ T27] aquacomputer_d5next: probe of 0003:0C70:F0B6.0015 failed with error -22 [ 286.909249][ T5778] logitech-hidpp-device 0003:046D:C081.0016: ignoring exceeding usage max [ 286.924147][ T5778] logitech-hidpp-device 0003:046D:C081.0016: item fetching failed at offset 24/40 [ 286.935244][ T5778] logitech-hidpp-device 0003:046D:C081.0016: hidpp_probe:parse failed [ 286.944148][ T5778] logitech-hidpp-device: probe of 0003:046D:C081.0016 failed with error -22 [ 286.972559][ T9598] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 287.049320][ T5778] usb 1-1: USB disconnect, device number 11 [ 287.135144][ T34] netdevsim netdevsim3 netdevsim3 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 287.150579][ T23] usb 3-1: USB disconnect, device number 15 [ 287.151579][ T34] netdevsim netdevsim3 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.214833][ T28] audit: type=1326 audit(1777606261.957:69): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=10561 comm="syz.4.1713" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f598639cdd9 code=0x7fc00000 [ 287.239271][ C1] vkms_vblank_simulate: vblank timer overrun [ 287.322855][ T34] netdevsim netdevsim3 netdevsim2 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 287.335640][ T34] netdevsim netdevsim3 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.444478][ T34] netdevsim netdevsim3 netdevsim1 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 287.465557][ T34] netdevsim netdevsim3 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.589753][ T34] netdevsim netdevsim3 netdevsim0 (unregistering): unset [0, 0] type 1 family 0 port 8472 - 0 [ 287.615092][ T34] netdevsim netdevsim3 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0 [ 287.778936][T10568] loop0: detected capacity change from 0 to 764 [ 287.906234][T10570] loop2: detected capacity change from 0 to 512 [ 287.962797][ T5777] Bluetooth: hci3: unexpected cc 0x0c03 length: 249 > 1 [ 287.962976][T10570] EXT4-fs (loop2): mounting ext2 file system using the ext4 subsystem [ 288.005957][ T5777] Bluetooth: hci3: unexpected cc 0x1003 length: 249 > 9 [ 288.015493][ T5777] Bluetooth: hci3: unexpected cc 0x1001 length: 249 > 9 [ 288.038124][ T5777] Bluetooth: hci3: unexpected cc 0x0c23 length: 249 > 4 [ 288.055075][ T5777] Bluetooth: hci3: unexpected cc 0x0c25 length: 249 > 3 [ 288.064040][ T5777] Bluetooth: hci3: unexpected cc 0x0c38 length: 249 > 2 [ 288.162140][T10570] EXT4-fs error (device loop2): ext4_validate_block_bitmap:430: comm syz.2.1718: bg 0: block 104: invalid block bitmap [ 288.251690][T10570] EXT4-fs error (device loop2) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 288.338692][T10570] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.1718: invalid indirect mapped block 1 (level 1) [ 288.404658][T10570] EXT4-fs (loop2): 1 truncate cleaned up [ 288.452820][T10570] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 288.724643][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 289.082284][T10594] loop0: detected capacity change from 0 to 2048 [ 289.225531][T10594] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 289.283932][T10571] chnl_net:caif_netlink_parms(): no params data found [ 289.301558][ T28] audit: type=1800 audit(1777606264.047:70): pid=10594 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1723" name="file2" dev="loop0" ino=1347 res=0 errno=0 [ 289.322331][ C1] vkms_vblank_simulate: vblank timer overrun [ 289.743107][T10614] loop0: detected capacity change from 0 to 64 [ 289.932004][T10617] netlink: 'syz.2.1731': attribute type 62 has an invalid length. [ 290.115969][ T5085] Bluetooth: hci3: command tx timeout [ 290.502894][T10571] bridge0: port 1(bridge_slave_0) entered blocking state [ 290.525610][T10571] bridge0: port 1(bridge_slave_0) entered disabled state [ 290.559531][T10571] bridge_slave_0: entered allmulticast mode [ 290.577948][T10571] bridge_slave_0: entered promiscuous mode [ 290.664922][T10603] loop4: detected capacity change from 0 to 40427 [ 290.669604][T10571] bridge0: port 2(bridge_slave_1) entered blocking state [ 290.699363][T10603] F2FS-fs (loop4): build fault injection attr: rate: 771, type: 0x7ffff [ 290.722922][T10603] F2FS-fs (loop4): invalid crc value [ 290.734006][T10571] bridge0: port 2(bridge_slave_1) entered disabled state [ 290.754296][T10571] bridge_slave_1: entered allmulticast mode [ 290.766715][T10603] F2FS-fs (loop4): Found nat_bits in checkpoint [ 290.777932][T10571] bridge_slave_1: entered promiscuous mode [ 290.853512][T10603] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 291.103665][T10571] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link [ 291.159353][T10571] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link [ 291.179334][T10637] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1739'. [ 291.217287][T10638] sp0: Synchronizing with TNC [ 291.314691][T10642] loop4: detected capacity change from 0 to 1024 [ 291.506055][ T2971] hfsplus: b-tree write err: -5, ino 25 [ 291.511934][ T2971] hfsplus: b-tree write err: -5, ino 4 [ 291.520902][T10571] team0: Port device team_slave_0 added [ 291.534770][ T2971] hfsplus: b-tree write err: -5, ino 2 [ 291.693437][T10571] team0: Port device team_slave_1 added [ 291.802016][T10652] loop4: detected capacity change from 0 to 1024 [ 291.861468][ T34] hsr_slave_0: left promiscuous mode [ 291.925148][ T34] hsr_slave_1: left promiscuous mode [ 291.942774][ T34] batman_adv: batadv0: Interface deactivated: batadv_slave_0 [ 291.967244][ T34] batman_adv: batadv0: Removing interface: batadv_slave_0 [ 292.004385][ T34] batman_adv: batadv0: Interface deactivated: batadv_slave_1 [ 292.017185][ T34] batman_adv: batadv0: Removing interface: batadv_slave_1 [ 292.050410][ T34] bridge_slave_1: left allmulticast mode [ 292.063623][ T34] bridge_slave_1: left promiscuous mode [ 292.097561][ T34] bridge0: port 2(bridge_slave_1) entered disabled state [ 292.137868][T10661] loop4: detected capacity change from 0 to 512 [ 292.148042][ T34] bridge_slave_0: left allmulticast mode [ 292.153778][ T34] bridge_slave_0: left promiscuous mode [ 292.172838][ T34] bridge0: port 1(bridge_slave_0) entered disabled state [ 292.197569][ T5085] Bluetooth: hci3: command tx timeout [ 292.215613][T10661] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 292.236426][T10661] ext4 filesystem being mounted at /277/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 292.268587][ C1] vkms_vblank_simulate: vblank timer overrun [ 292.305211][ T34] batadv0: left allmulticast mode [ 292.316210][ T34] batadv0: left promiscuous mode [ 292.336272][ T34] veth1_macvtap: left promiscuous mode [ 292.367267][T10661] EXT4-fs error (device loop4): ext4_xattr_block_get:597: inode #15: comm syz.4.1745: corrupted xattr block 33: invalid header [ 292.383736][ T34] veth0_macvtap: left promiscuous mode [ 292.417539][ T34] veth1_vlan: left promiscuous mode [ 292.427907][ T34] veth0_vlan: left promiscuous mode [ 292.482383][T10661] fscrypt (loop4, inode 15): Error -117 getting encryption context [ 292.627756][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 292.824432][T10674] loop4: detected capacity change from 0 to 1024 [ 292.932855][ T28] audit: type=1800 audit(1777606267.677:71): pid=10674 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.1748" name="file1" dev="loop4" ino=2 res=0 errno=0 [ 293.845257][ T34] team0 (unregistering): Port device team_slave_1 removed [ 293.886863][T10677] slcan: can't register candev [ 293.892143][T10677] Falling back ldisc for ttyS3. [ 293.941082][ T34] team0 (unregistering): Port device team_slave_0 removed [ 294.040202][ T34] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface [ 294.149509][ T34] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface [ 294.279393][ T5085] Bluetooth: hci3: command tx timeout [ 294.730064][ T34] bond0 (unregistering): (slave dummy0): Releasing backup interface [ 294.809498][ T34] bond0 (unregistering): Released all slaves [ 294.932979][T10656] netlink: 12 bytes leftover after parsing attributes in process `syz.2.1743'. [ 294.994410][T10571] batman_adv: batadv0: Adding interface: batadv_slave_0 [ 295.019713][T10571] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 295.045859][ C1] vkms_vblank_simulate: vblank timer overrun [ 295.106007][T10571] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active [ 295.135296][T10571] batman_adv: batadv0: Adding interface: batadv_slave_1 [ 295.184825][T10571] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem. [ 295.211011][ C1] vkms_vblank_simulate: vblank timer overrun [ 295.284446][T10571] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active [ 295.528717][T10571] hsr_slave_0: entered promiscuous mode [ 295.546889][T10571] hsr_slave_1: entered promiscuous mode [ 295.566290][ T9] usb 3-1: new high-speed USB device number 16 using dummy_hcd [ 295.655475][T10708] netlink: 20 bytes leftover after parsing attributes in process `syz.0.1762'. [ 295.796726][ T9] usb 3-1: Using ep0 maxpacket: 16 [ 295.834500][ T9] usb 3-1: config index 0 descriptor too short (expected 52, got 36) [ 295.853148][ T9] usb 3-1: config 0 has an invalid interface number: 251 but max is 0 [ 295.885549][ T9] usb 3-1: config 0 has no interface number 0 [ 295.919804][ T9] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 295.931104][ T9] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 295.946462][ T9] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 295.955708][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 295.985874][ T9] usb 3-1: Product: syz [ 295.993975][ T9] usb 3-1: Manufacturer: syz [ 296.005996][ T9] usb 3-1: SerialNumber: syz [ 296.052695][ T9] usb 3-1: config 0 descriptor?? [ 296.076919][T10697] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 296.084361][T10697] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 296.331219][T10723] loop4: detected capacity change from 0 to 1024 [ 296.356012][ T5085] Bluetooth: hci3: command tx timeout [ 296.404136][T10697] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 296.419876][T10697] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 296.496754][ T12] hfsplus: b-tree write err: -5, ino 25 [ 296.502709][ T12] hfsplus: b-tree write err: -5, ino 4 [ 296.535920][ T12] hfsplus: b-tree write err: -5, ino 2 [ 296.556182][ T12] hfsplus: b-tree write err: -5, ino 26 [ 296.632015][T10571] netdevsim netdevsim5 netdevsim0: renamed from eth0 [ 296.767662][T10571] netdevsim netdevsim5 netdevsim1: renamed from eth1 [ 296.831606][T10571] netdevsim netdevsim5 netdevsim2: renamed from eth2 [ 296.888480][ T9] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 296.917970][T10571] netdevsim netdevsim5 netdevsim3: renamed from eth3 [ 296.936842][ T9] asix 3-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 296.972792][T10731] loop4: detected capacity change from 0 to 1024 [ 297.006103][ T9] asix: probe of 3-1:0.251 failed with error -71 [ 297.105889][ T9] usb 3-1: USB disconnect, device number 16 [ 297.366235][ T34] hfsplus: b-tree write err: -5, ino 25 [ 297.411215][ T34] hfsplus: b-tree write err: -5, ino 4 [ 297.425753][ C1] sched: RT throttling activated [ 297.438586][ T34] hfsplus: b-tree write err: -5, ino 2 [ 297.541139][T10571] 8021q: adding VLAN 0 to HW filter on device bond0 [ 297.704157][T10727] loop0: detected capacity change from 0 to 131072 [ 297.715021][T10571] 8021q: adding VLAN 0 to HW filter on device team0 [ 297.735823][T10727] F2FS-fs (loop0): Test dummy encryption mode enabled [ 297.746385][T10727] F2FS-fs (loop0): invalid crc value [ 297.789732][T10727] F2FS-fs (loop0): Found nat_bits in checkpoint [ 297.792395][ T12] bridge0: port 1(bridge_slave_0) entered blocking state [ 297.803417][ T12] bridge0: port 1(bridge_slave_0) entered forwarding state [ 297.834237][T10727] F2FS-fs (loop0): sanity_check_inode: corrupted inode ino=3, run fsck to fix. [ 297.845002][T10727] F2FS-fs (loop0): Failed to read root inode [ 297.940030][ T11] bridge0: port 2(bridge_slave_1) entered blocking state [ 297.947399][ T11] bridge0: port 2(bridge_slave_1) entered forwarding state [ 298.111443][T10741] loop2: detected capacity change from 0 to 4096 [ 298.148626][T10741] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 298.170291][T10571] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network [ 298.319650][T10748] loop4: detected capacity change from 0 to 256 [ 298.378767][T10741] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 298.417020][T10741] ntfs3: loop2: Failed to initialize $Extend/$Reparse. [ 298.793222][T10757] sp0: Synchronizing with TNC [ 299.087530][T10571] 8021q: adding VLAN 0 to HW filter on device batadv0 [ 299.566573][ T23] usb 5-1: new high-speed USB device number 4 using dummy_hcd [ 299.772508][ T23] usb 5-1: Using ep0 maxpacket: 16 [ 299.782148][ T23] usb 5-1: config index 0 descriptor too short (expected 52, got 36) [ 299.825957][ T23] usb 5-1: config 0 has an invalid interface number: 251 but max is 0 [ 299.834220][ T23] usb 5-1: config 0 has no interface number 0 [ 299.884390][ T23] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 299.924435][ T23] usb 5-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 299.961640][ T23] usb 5-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 299.989837][ T23] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 300.033629][ T23] usb 5-1: Product: syz [ 300.056171][ T23] usb 5-1: Manufacturer: syz [ 300.060858][ T23] usb 5-1: SerialNumber: syz [ 300.114173][ T23] usb 5-1: config 0 descriptor?? [ 300.126795][T10773] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 300.134218][T10773] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 300.191642][T10571] veth0_vlan: entered promiscuous mode [ 300.318994][T10571] veth1_vlan: entered promiscuous mode [ 300.426780][T10773] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 300.434221][T10773] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 300.438425][T10571] veth0_macvtap: entered promiscuous mode [ 300.479058][T10571] veth1_macvtap: entered promiscuous mode [ 300.522354][T10571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.555860][T10571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.578345][T10571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.609651][T10571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.635878][T10571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3e) already exists on: batadv_slave_0 [ 300.665901][T10571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.706713][T10571] batman_adv: batadv0: Interface activated: batadv_slave_0 [ 300.748280][T10785] loop2: detected capacity change from 0 to 32768 [ 300.757429][T10571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.789980][T10571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.815520][T10799] loop0: detected capacity change from 0 to 4096 [ 300.830381][T10571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 300.866954][ T23] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 300.868231][T10571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 300.906124][ T23] asix 5-1:0.251 (unnamed net_device) (uninitialized): Failed to read software interface selection register: -71 [ 300.940764][ T23] asix: probe of 5-1:0.251 failed with error -71 [ 300.977934][ T23] usb 5-1: USB disconnect, device number 4 [ 300.982171][T10571] batman_adv: The newly added mac address (aa:aa:aa:aa:aa:3f) already exists on: batadv_slave_1 [ 301.044763][T10571] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 301.094288][T10571] batman_adv: batadv0: Interface activated: batadv_slave_1 [ 301.169428][T10571] netdevsim netdevsim5 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.202440][T10571] netdevsim netdevsim5 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.215812][T10571] netdevsim netdevsim5 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.266064][T10571] netdevsim netdevsim5 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0 [ 301.591110][ T59] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 301.617660][ T59] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 301.655208][T10813] sp0: Synchronizing with TNC [ 301.811744][ T59] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50 [ 301.843416][ T59] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50 [ 302.283429][T10826] netlink: 'syz.5.1715': attribute type 3 has an invalid length. [ 302.921141][T10841] loop4: detected capacity change from 0 to 4096 [ 303.121209][T10848] loop2: detected capacity change from 0 to 4096 [ 303.169820][T10856] sp0: Synchronizing with TNC [ 304.014481][T10879] netlink: 12 bytes leftover after parsing attributes in process `syz.0.1819'. [ 304.981263][T10915] loop2: detected capacity change from 0 to 736 [ 305.024717][T10919] loop5: detected capacity change from 0 to 64 [ 305.815546][T10933] loop2: detected capacity change from 0 to 4096 [ 305.907027][T10933] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 305.940548][T10933] ntfs3: loop2: Failed to load $Extend (-22). [ 305.969132][T10933] ntfs3: loop2: Failed to initialize $Extend. [ 306.437537][T10951] netlink: 'syz.4.1835': attribute type 3 has an invalid length. [ 306.501517][T10925] loop0: detected capacity change from 0 to 32768 [ 306.529166][T10925] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 307.057897][T10968] loop2: detected capacity change from 0 to 512 [ 307.075576][T10964] loop4: detected capacity change from 0 to 8192 [ 307.132270][T10964] FAT-fs (loop4): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 307.185953][ T27] usb 6-1: new high-speed USB device number 2 using dummy_hcd [ 307.195302][T10968] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 307.296476][T10968] ext4 filesystem being mounted at /466/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 307.429098][ T27] usb 6-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 307.466046][ T27] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 307.474604][ T27] usb 6-1: Product: syz [ 307.524707][ T27] usb 6-1: Manufacturer: syz [ 307.530261][ T27] usb 6-1: SerialNumber: syz [ 307.552937][ T27] usb 6-1: config 0 descriptor?? [ 307.585273][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 307.971394][ T787] usb 6-1: USB disconnect, device number 2 [ 308.194041][T10997] syz.4.1850[10997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 308.194200][T10997] syz.4.1850[10997] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 308.248304][ T787] kernel write not supported for file /vcs (pid: 787 comm: kworker/1:2) [ 308.341202][T11003] ipvlan2: entered allmulticast mode [ 308.389628][T11003] netdevsim netdevsim2 netdevsim0: entered allmulticast mode [ 308.464326][T11008] loop0: detected capacity change from 0 to 65 [ 308.474534][T11008] BFS-fs: bfs_fill_super(): NOTE: filesystem loop0 was created with 512 inodes, the real maximum is 511, mounting anyway [ 309.234062][T11027] loop2: detected capacity change from 0 to 736 [ 309.363871][T11035] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1864'. [ 309.867472][T11044] netlink: 822 bytes leftover after parsing attributes in process `syz.0.1868'. [ 309.878098][T11007] loop4: detected capacity change from 0 to 40427 [ 309.897555][T11007] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 309.937387][T11007] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 310.010976][T11007] F2FS-fs (loop4): Found nat_bits in checkpoint [ 310.056898][T11051] netlink: 12 bytes leftover after parsing attributes in process `syz.5.1869'. [ 310.180798][T11007] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 310.216013][T11007] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 310.417747][T11007] F2FS-fs (loop4): Unrecognized mount option "stripe=0x0000000000000000" or missing value [ 310.530152][T11063] netlink: 'syz.5.1875': attribute type 7 has an invalid length. [ 310.551304][T11063] netlink: 'syz.5.1875': attribute type 8 has an invalid length. [ 310.607216][T11062] netlink: 'syz.5.1875': attribute type 7 has an invalid length. [ 310.625457][T11062] netlink: 'syz.5.1875': attribute type 8 has an invalid length. [ 310.918774][T11046] loop2: detected capacity change from 0 to 32768 [ 311.020941][T11046] XFS (loop2): Mounting V5 Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 311.117452][T11046] XFS (loop2): Ending clean mount [ 311.378035][ T5775] XFS (loop2): Unmounting Filesystem 986211a9-7d00-4ebf-a576-e3de63fa2cbd [ 311.490430][T11094] loop4: detected capacity change from 0 to 8 [ 311.848436][T11090] loop5: detected capacity change from 0 to 32768 [ 311.874843][T11090] (syz.5.1882,11090,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 311.892127][T11090] (syz.5.1882,11090,1):ocfs2_block_check_validate:402 ERROR: CRC32 failed: stored: 0xb3775c19, computed 0x2dd1c265. Applying ECC. [ 311.920990][T11090] JBD2: Ignoring recovery information on journal [ 311.987207][T11090] ocfs2: Mounting device (7,5) on (node local, slot 0) with ordered data mode. [ 312.113292][T10571] ocfs2: Unmounting device (7,5) on (node local) [ 312.638483][T11113] netlink: 24 bytes leftover after parsing attributes in process `syz.0.1894'. [ 312.666248][ T23] usb 5-1: new high-speed USB device number 5 using dummy_hcd [ 312.726067][ T5778] usb 6-1: new high-speed USB device number 3 using dummy_hcd [ 312.864388][ T23] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 312.884063][ T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 312.895627][ T23] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 312.916013][ T23] usb 5-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00 [ 312.925258][ T23] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.940491][ T5778] usb 6-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 312.940790][ T23] usb 5-1: config 0 descriptor?? [ 312.975005][ T5778] usb 6-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 313.008671][ T5778] usb 6-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 313.033638][ T5778] usb 6-1: config 1 has no interface number 1 [ 313.050150][ T5778] usb 6-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 313.067411][ T5778] usb 6-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 313.095821][ T5778] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 313.121738][ T5778] usb 6-1: Product: syz [ 313.133548][ T5778] usb 6-1: Manufacturer: syz [ 313.146798][ T5778] usb 6-1: SerialNumber: syz [ 313.318740][T11131] loop2: detected capacity change from 0 to 64 [ 313.394186][ T23] wacom 0003:056A:0010.0017: unbalanced collection at end of report description [ 313.397290][ T5778] usb 6-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0 [ 313.427317][ T5778] usb 6-1: MIDIStreaming interface descriptor not found [ 313.445333][ T23] wacom 0003:056A:0010.0017: parse failed [ 313.468172][ T23] wacom: probe of 0003:056A:0010.0017 failed with error -22 [ 313.532304][ T5778] usb 6-1: USB disconnect, device number 3 [ 313.635899][ T5085] Bluetooth: hci2: command 0x0406 tx timeout [ 313.702948][ T5765] udevd[5765]: error opening ATTR{/sys/devices/platform/dummy_hcd.5/usb6/6-1/6-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 313.769078][T11136] loop2: detected capacity change from 0 to 128 [ 313.793153][ T9] usb 5-1: USB disconnect, device number 5 [ 313.839772][T11136] FAT-fs (loop2): Invalid FSINFO signature: 0x41615200, 0x61417272 (sector = 1) [ 314.039290][T11129] loop0: detected capacity change from 0 to 32768 [ 314.072958][T11129] JBD2: Ignoring recovery information on journal [ 314.106816][T11129] ocfs2: Mounting device (7,0) on (node local, slot 0) with ordered data mode. [ 314.326778][ T5772] ocfs2: Unmounting device (7,0) on (node local) [ 314.557206][T11153] netlink: 8 bytes leftover after parsing attributes in process `syz.0.1905'. [ 314.729866][T11157] loop0: detected capacity change from 0 to 16 [ 314.743464][T11157] erofs: (device loop0): mounted with root inode @ nid 36. [ 315.346307][T11179] netlink: 4 bytes leftover after parsing attributes in process `syz.5.1916'. [ 316.005866][ T27] usb 5-1: new full-speed USB device number 6 using dummy_hcd [ 316.229619][ T27] usb 5-1: unable to get BOS descriptor or descriptor too short [ 316.249945][ T27] usb 5-1: not running at top speed; connect to a high speed hub [ 316.288235][ T27] usb 5-1: config 1 interface 0 altsetting 248 endpoint 0x81 has invalid maxpacket 6821, setting to 64 [ 316.309153][ T27] usb 5-1: config 1 interface 0 altsetting 248 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 316.345838][ T27] usb 5-1: config 1 interface 0 has no altsetting 0 [ 316.368629][ T27] usb 5-1: New USB device found, idVendor=0b0e, idProduct=ffff, bcdDevice= 0.40 [ 316.380716][ T27] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 316.405263][ T27] usb 5-1: Product: syz [ 316.416363][ T27] usb 5-1: Manufacturer: syz [ 316.424063][ T27] usb 5-1: SerialNumber: syz [ 316.438105][T11191] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 316.467479][T11219] macvtap1: entered promiscuous mode [ 316.551768][ T9] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 316.726740][ T27] usbhid 5-1:1.0: can't add hid device: -71 [ 316.735993][ T27] usbhid: probe of 5-1:1.0 failed with error -71 [ 316.746099][ T9] usb 1-1: Using ep0 maxpacket: 16 [ 316.759299][ T27] usb 5-1: USB disconnect, device number 6 [ 316.768431][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 316.811405][ T9] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 316.836503][ T9] usb 1-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 316.863980][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 316.904956][ T9] usb 1-1: config 0 descriptor?? [ 317.076888][T11234] loop5: detected capacity change from 0 to 16 [ 317.094373][T11234] erofs: (device loop5): mounted with root inode @ nid 36. [ 317.188547][ T28] audit: type=1800 audit(1777606291.937:72): pid=11234 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.5.1937" name="file1" dev="loop5" ino=86 res=0 errno=0 [ 317.378474][T11240] loop5: detected capacity change from 0 to 512 [ 317.420373][ T9] hid-multitouch 0003:1FD2:6007.0018: item fetching failed at offset 1/5 [ 317.440625][ T9] hid-multitouch: probe of 0003:1FD2:6007.0018 failed with error -22 [ 317.451743][T11240] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 317.470200][T11240] ext4 filesystem being mounted at /42/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 317.560680][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 317.567312][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 317.705624][ T27] usb 1-1: USB disconnect, device number 12 [ 317.713320][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 318.003155][T11259] batadv0: entered promiscuous mode [ 318.031022][T11259] macsec2: entered promiscuous mode [ 318.053833][T11259] macsec2: entered allmulticast mode [ 318.077686][T11259] batadv0: entered allmulticast mode [ 318.821385][T11288] loop5: detected capacity change from 0 to 256 [ 318.829162][T11288] exfat: Deprecated parameter 'utf8' [ 318.834681][T11288] exfat: Deprecated parameter 'utf8' [ 318.847552][T11288] exfat: Deprecated parameter 'namecase' [ 318.972996][T11286] loop0: detected capacity change from 0 to 4096 [ 318.985145][T11288] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 319.063360][T11294] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 319.365272][T11299] loop4: detected capacity change from 0 to 1024 [ 319.846073][T11314] netlink: 'syz.0.1965': attribute type 8 has an invalid length. [ 320.079086][T11327] loop0: detected capacity change from 0 to 128 [ 320.092301][T11325] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1968'. [ 320.139933][T11323] loop5: detected capacity change from 0 to 2048 [ 320.143349][T11327] FAT-fs (loop0): Invalid FSINFO signature: 0x41615252, 0x61ff7272 (sector = 1) [ 320.191591][T11323] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 320.236518][ T28] audit: type=1800 audit(1777606294.987:73): pid=11327 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.1969" name="file1" dev="loop0" ino=1048745 res=0 errno=0 [ 321.613818][T11322] loop2: detected capacity change from 0 to 40427 [ 321.719905][T11322] F2FS-fs (loop2): Found nat_bits in checkpoint [ 321.779639][T11338] loop0: detected capacity change from 0 to 32768 [ 321.826046][T11338] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 322.005858][T11322] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 322.090541][T11377] loop4: detected capacity change from 0 to 512 [ 322.173115][ T8107] BTRFS error: device /dev/loop0 already registered with a higher generation, found 8 expect 9 [ 322.221981][T11377] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 322.252906][T11377] ext4 filesystem being mounted at /338/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 322.399009][ T5775] syz-executor: attempt to access beyond end of device [ 322.399009][ T5775] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 322.458162][ T5775] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 322.532532][T11377] EXT4-fs warning (device loop4): verify_group_input:151: Cannot add at group 23 (only 1 groups) [ 322.753797][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 322.969501][T11393] loop0: detected capacity change from 0 to 1024 [ 323.076823][T11393] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 323.083436][T11393] hfsplus: xattr searching failed [ 323.118478][ T28] audit: type=1804 audit(1777606297.857:74): pid=11400 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.1986" name="/newroot/514/file0/file1" dev="loop0" ino=20 res=1 errno=0 [ 323.140175][ C1] vkms_vblank_simulate: vblank timer overrun [ 323.146938][T11400] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 323.147027][T11400] hfsplus: xattr searching failed [ 323.176276][T11400] hfsplus: inconsistency in B*Tree (128,1,255,1,0) [ 323.213727][T11400] hfsplus: xattr searching failed [ 323.243482][T11400] syz.0.1986: attempt to access beyond end of device [ 323.243482][T11400] loop0: rw=0, sector=917504, nr_sectors = 2 limit=1024 [ 323.272034][T11400] Buffer I/O error on dev loop0, logical block 458752, async page read [ 323.291347][T11400] hfsplus: unable to mark blocks free: error -5 [ 323.321446][T11400] hfsplus: can't free extent [ 323.340987][T11406] loop5: detected capacity change from 0 to 512 [ 323.410512][T11406] EXT4-fs (loop5): orphan cleanup on readonly fs [ 323.452264][T11406] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 323.490225][T11406] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 323.548320][T11406] EXT4-fs error (device loop5): ext4_acquire_dquot:6953: comm syz.5.1990: Failed to acquire dquot type 1 [ 323.599648][T11406] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 323.629988][T11406] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 323.645438][T11406] EXT4-fs error (device loop5): ext4_acquire_dquot:6953: comm syz.5.1990: Failed to acquire dquot type 1 [ 323.667706][T11406] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.1990: bg 0: block 248: padding at end of block bitmap is not set [ 323.671015][T11412] netlink: 60 bytes leftover after parsing attributes in process `syz.0.1991'. [ 323.688244][T11406] EXT4-fs error (device loop5) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 323.708376][T11406] Quota error (device loop5): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 323.729390][T11406] Quota error (device loop5): qtree_write_dquot: Error -117 occurred while creating quota [ 323.745550][T11406] EXT4-fs error (device loop5): ext4_acquire_dquot:6953: comm syz.5.1990: Failed to acquire dquot type 1 [ 323.790990][T11406] EXT4-fs (loop5): 1 orphan inode deleted [ 323.812370][T11406] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 323.992457][T11417] loop2: detected capacity change from 0 to 2048 [ 324.136046][T11424] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 324.151159][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 324.326633][T11417] NILFS error (device loop2): nilfs_dotdot: directory #12 missing '..' [ 324.375450][T11417] Remounting filesystem read-only [ 324.465908][ T5775] NILFS (loop2): disposed unprocessed dirty file(s) when detaching log writer [ 324.475109][ T5775] NILFS (loop2): discard dirty page: offset=0, ino=18 [ 324.525971][ T5775] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 324.533275][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 324.566151][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 324.575377][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 324.646208][ T5775] NILFS (loop2): discard dirty page: offset=0, ino=2 [ 324.653099][ T5775] NILFS (loop2): discard dirty block: blocknr=18, size=1024 [ 324.690026][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 324.730375][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 324.755966][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 324.789027][ T5775] NILFS (loop2): discard dirty page: offset=0, ino=6 [ 324.807784][ T5775] NILFS (loop2): discard dirty block: blocknr=35, size=1024 [ 324.815374][ T5775] NILFS (loop2): discard dirty block: blocknr=36, size=1024 [ 324.866303][ T5775] NILFS (loop2): discard dirty block: blocknr=37, size=1024 [ 324.873751][ T5775] NILFS (loop2): discard dirty block: blocknr=38, size=1024 [ 324.923754][ T5775] NILFS (loop2): discard dirty page: offset=4096, ino=6 [ 324.961613][ T5775] NILFS (loop2): discard dirty block: blocknr=39, size=1024 [ 324.984583][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.015269][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.055869][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.097970][ T5775] NILFS (loop2): discard dirty page: offset=0, ino=3 [ 325.104792][ T5775] NILFS (loop2): discard dirty block: blocknr=42, size=1024 [ 325.146922][ T5775] NILFS (loop2): discard dirty block: blocknr=43, size=1024 [ 325.154372][ T5775] NILFS (loop2): discard dirty block: blocknr=44, size=1024 [ 325.182306][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.224795][ T5775] NILFS (loop2): discard dirty page: offset=65536, ino=3 [ 325.241206][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.265804][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.295308][ T5775] NILFS (loop2): discard dirty block: blocknr=0, size=1024 [ 325.325884][ T5775] NILFS (loop2): discard dirty block: blocknr=18446744073709551615, size=1024 [ 325.412184][T11457] loop5: detected capacity change from 0 to 64 [ 325.479916][T11430] loop4: detected capacity change from 0 to 32768 [ 325.504520][T11457] hfs: request for non-existent node 327680 in B*Tree [ 325.544318][T11430] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 325.546464][T11457] hfs: request for non-existent node 327680 in B*Tree [ 325.748169][T11462] loop0: detected capacity change from 0 to 4096 [ 325.872343][T11468] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 325.936168][T11134] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 326.286802][T11479] netlink: 'syz.5.2014': attribute type 3 has an invalid length. [ 326.572490][T11489] sctp: [Deprecated]: syz.4.2015 (pid 11489) Use of struct sctp_assoc_value in delayed_ack socket option. [ 326.572490][T11489] Use struct sctp_sack_info instead [ 326.696165][T11490] sctp: [Deprecated]: syz.4.2015 (pid 11490) Use of struct sctp_assoc_value in delayed_ack socket option. [ 326.696165][T11490] Use struct sctp_sack_info instead [ 326.960479][T11497] loop0: detected capacity change from 0 to 4096 [ 327.056773][T11506] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 327.243326][ T787] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 327.442722][T11516] loop5: detected capacity change from 0 to 512 [ 327.446174][ T787] usb 3-1: Using ep0 maxpacket: 32 [ 327.468067][ T787] usb 3-1: config index 0 descriptor too short (expected 164, got 36) [ 327.476444][T11516] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 327.476470][T11516] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 327.515971][T11516] EXT4-fs (loop5): 1 truncate cleaned up [ 327.555366][T11516] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 327.607398][ T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 327.633001][ T787] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 327.670837][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 327.690940][ T787] usb 3-1: New USB device found, idVendor=046d, idProduct=c29c, bcdDevice= 0.00 [ 327.742659][ T787] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 327.809594][ T787] usb 3-1: config 0 descriptor?? [ 328.275684][ T787] logitech 0003:046D:C29C.0019: hidraw0: USB HID v0.00 Device [HID 046d:c29c] on usb-dummy_hcd.2-1/input0 [ 328.473118][ T787] logitech 0003:046D:C29C.0019: no inputs found [ 328.535277][ T787] usb 3-1: USB disconnect, device number 17 [ 328.565459][T11539] fido_id[11539]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/report_descriptor': No such file or directory [ 328.751332][T11542] loop5: detected capacity change from 0 to 4096 [ 328.809956][T11542] ntfs3: loop5: Different NTFS sector size (4096) and media sector size (512). [ 328.966035][T11542] ntfs3: loop5: ino=3, ntfs_set_state failed, -22. [ 329.194322][ T2971] ntfs3: loop5: ino=3, ntfs3_write_inode failed, -22. [ 329.236284][T10571] ntfs3: loop5: ino=3, ntfs_set_state failed, -22. [ 329.243287][T10571] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 329.266551][T10571] ntfs3: loop5: ino=3, ntfs_set_state failed, -22. [ 329.298914][ T2971] ntfs3: loop5: ino=3, ntfs3_write_inode failed, -22. [ 329.588818][T11564] loop4: detected capacity change from 0 to 64 [ 329.605613][T11562] loop5: detected capacity change from 0 to 1024 [ 329.632724][T11562] EXT4-fs: Ignoring removed nomblk_io_submit option [ 329.667322][ T27] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 329.704488][T11562] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 329.854729][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 329.867650][ T27] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 329.883961][ T27] usb 1-1: config 0 interface 0 altsetting 2 endpoint 0x81 has invalid wMaxPacketSize 0 [ 329.944119][ T27] usb 1-1: config 0 interface 0 has no altsetting 0 [ 329.961573][ T27] usb 1-1: New USB device found, idVendor=0566, idProduct=3004, bcdDevice= 0.00 [ 329.982055][ T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 330.068327][ T27] usb 1-1: config 0 descriptor?? [ 330.083102][ T5085] Bluetooth: hci2: unexpected event for opcode 0x0c14 [ 330.527961][ T27] monterey 0003:0566:3004.001A: unknown main item tag 0x0 [ 330.550465][ T27] monterey 0003:0566:3004.001A: unknown main item tag 0x0 [ 330.566100][ T27] monterey 0003:0566:3004.001A: unknown main item tag 0x0 [ 330.583821][ T27] monterey 0003:0566:3004.001A: unknown main item tag 0x0 [ 330.624898][ T27] monterey 0003:0566:3004.001A: hidraw0: USB HID v10.09 Device [HID 0566:3004] on usb-dummy_hcd.0-1/input0 [ 330.792300][T11596] loop4: detected capacity change from 0 to 256 [ 330.835261][T11596] exfat: Deprecated parameter 'utf8' [ 330.867250][ T5778] usb 1-1: USB disconnect, device number 13 [ 330.927622][T11596] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xf8a64500, utbl_chksum : 0xe619d30d) [ 331.193155][T11601] loop4: detected capacity change from 0 to 512 [ 331.199801][T11576] loop5: detected capacity change from 0 to 32768 [ 331.221662][T11601] EXT4-fs: Ignoring removed bh option [ 331.252591][T11601] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 331.298749][T11601] EXT4-fs warning (device loop4): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 331.356697][T11576] ERROR: (device loop5): jfs_readdir: JFS:Dtree error: ino = 2, bn=0, index = 4 [ 331.356697][T11576] [ 331.379361][T11601] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2043: bg 0: block 248: padding at end of block bitmap is not set [ 331.399343][T11576] ERROR: (device loop5): remounting filesystem as read-only [ 331.411448][T11601] Quota error (device loop4): write_blk: dquota write failed [ 331.444586][T11601] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 331.483939][T11601] EXT4-fs error (device loop4): ext4_acquire_dquot:6953: comm syz.4.2043: Failed to acquire dquot type 1 [ 331.540735][T11601] EXT4-fs (loop4): 1 truncate cleaned up [ 331.549485][T11601] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 331.793055][T11601] EXT4-fs: Ignoring removed orlov option [ 331.801057][T11601] EXT4-fs: Ignoring removed nobh option [ 331.813351][T11601] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 331.856419][T11601] EXT4-fs (loop4): re-mounted 00000000-0000-0000-0008-000000000000. [ 332.082660][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 333.161081][T11666] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2068'. [ 333.177241][T11666] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2068'. [ 333.199393][T11668] loop5: detected capacity change from 0 to 2048 [ 333.222786][T11668] NILFS (loop5): broken superblock, retrying with spare superblock (blocksize = 1024) [ 333.292960][T11668] NILFS (loop5): mounting unchecked fs [ 333.346553][ T5871] udevd[5871]: incorrect nilfs2 checksum on /dev/loop5 [ 333.395933][T11668] NILFS (loop5): recovery complete [ 333.438749][T11674] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 333.627243][T11677] loop0: detected capacity change from 0 to 1024 [ 333.649788][T11677] EXT4-fs: Ignoring removed bh option [ 333.681119][T11681] loop5: detected capacity change from 0 to 256 [ 333.692551][T11677] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 333.754202][T11686] loop2: detected capacity change from 0 to 128 [ 333.826990][ T28] audit: type=1800 audit(1777606308.577:75): pid=11686 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2074" name="file1" dev="loop2" ino=1048751 res=0 errno=0 [ 333.866860][T11686] FAT-fs (loop2): error, invalid access to FAT (entry 0x0fff0000) [ 333.896562][T11686] FAT-fs (loop2): Filesystem has been set read-only [ 333.909149][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 333.924029][T11686] FAT-fs (loop2): error, invalid access to FAT (entry 0x0fff0000) [ 334.116085][ T5085] Bluetooth: hci2: Controller not accepting commands anymore: ncmd = 0 [ 334.127212][ T5085] Bluetooth: hci2: Injecting HCI hardware error event [ 334.137916][ T5777] Bluetooth: hci2: hardware error 0x00 [ 334.545519][T11702] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2083'. [ 335.052691][T11715] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2087'. [ 335.088153][T11697] loop5: detected capacity change from 0 to 40427 [ 335.101150][T11715] netlink: 12 bytes leftover after parsing attributes in process `syz.2.2087'. [ 335.106713][T11697] F2FS-fs (loop5): build fault injection attr: rate: 690, type: 0x7ffff [ 335.142827][T11697] F2FS-fs (loop5): invalid crc value [ 335.159873][T11717] loop0: detected capacity change from 0 to 512 [ 335.170730][T11717] EXT4-fs: Ignoring removed i_version option [ 335.193879][T11717] EXT4-fs error (device loop0): ext4_get_journal_inode:5820: comm syz.0.2088: inode #196608: comm syz.0.2088: iget: illegal inode # [ 335.217369][T11697] F2FS-fs (loop5): Found nat_bits in checkpoint [ 335.219986][T11717] EXT4-fs (loop0): no journal found [ 335.234345][T11717] EXT4-fs (loop0): can't get journal size [ 335.257540][T11717] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 335.293293][T11717] EXT4-fs (loop0): Errors on filesystem, clearing orphan list. [ 335.321103][T11717] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 335.441708][T11717] EXT4-fs error (device loop0): ext4_append:79: inode #2: comm syz.0.2088: Logical block already allocated [ 335.504719][T11697] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 335.607418][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 336.163953][T11741] loop5: detected capacity change from 0 to 512 [ 336.172609][T11741] EXT4-fs: Ignoring removed oldalloc option [ 336.179241][T11741] EXT4-fs: Ignoring removed bh option [ 336.199047][ T5777] Bluetooth: hci2: Opcode 0x0c03 failed: -110 [ 336.216412][T11741] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802c118, mo2=0002] [ 336.246125][T11741] System zones: 1-12 [ 336.250576][T11741] EXT4-fs error (device loop5): ext4_iget_extra_inode:4739: inode #15: comm syz.5.2094: corrupted in-inode xattr: e_value size too large [ 336.340741][T11741] EXT4-fs error (device loop5): ext4_orphan_get:1409: comm syz.5.2094: couldn't read orphan inode 15 (err -117) [ 336.349038][T11748] netlink: 4 bytes leftover after parsing attributes in process `syz.2.2102'. [ 336.400252][T11741] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 336.681381][T11757] loop2: detected capacity change from 0 to 1024 [ 336.691577][T11752] loop0: detected capacity change from 0 to 2048 [ 336.714056][T11757] hfsplus: Filesystem was not cleanly unmounted, running fsck.hfsplus is recommended. mounting read-only. [ 336.799576][T11752] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 336.927568][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.196583][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 337.296412][T11771] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2112'. [ 338.363213][T11781] loop0: detected capacity change from 0 to 32768 [ 338.389824][T11781] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 8 /dev/loop0 scanned by syz.0.2116 (11781) [ 338.429501][T11802] loop5: detected capacity change from 0 to 1024 [ 338.454023][T11781] BTRFS info (device loop0): first mount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 338.479711][T11781] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 338.482841][T11802] hfsplus: bad catalog entry type [ 338.522790][T11781] BTRFS info (device loop0): enabling disk space caching [ 338.555952][T11781] BTRFS info (device loop0): force clearing of disk cache [ 338.575679][T11781] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 338.606882][T11781] BTRFS info (device loop0): use zstd compression, level 3 [ 338.643602][T11781] BTRFS info (device loop0): disk space caching is enabled [ 338.686115][ T12] hfsplus: b-tree write err: -5, ino 25 [ 338.692026][ T12] hfsplus: b-tree write err: -5, ino 4 [ 338.745470][ T12] hfsplus: b-tree write err: -5, ino 2 [ 338.882181][T11781] BTRFS info (device loop0): enabling ssd optimizations [ 338.896070][T11781] BTRFS info (device loop0): auto enabling async discard [ 338.926843][T11781] BTRFS info (device loop0): rebuilding free space tree [ 338.988928][T11781] BTRFS info (device loop0): disabling free space tree [ 339.010723][T11781] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE (0x1) [ 339.042638][T11781] BTRFS info (device loop0): clearing compat-ro feature flag for FREE_SPACE_TREE_VALID (0x2) [ 339.229033][T11808] loop4: detected capacity change from 0 to 32768 [ 339.314636][T11808] overlayfs: upper fs needs to support d_type. [ 339.331422][ T5772] BTRFS info (device loop0): last unmount of filesystem 24c7a497-3402-47dd-bef8-82358f5f30e0 [ 339.356361][T11808] overlayfs: upper fs does not support tmpfile. [ 339.390001][T11808] overlayfs: upper fs does not support RENAME_WHITEOUT. [ 339.446275][T11808] ERROR: (device loop4): dbAlloc: the hint is outside the map [ 339.446275][T11808] [ 339.461081][T11808] overlayfs: failed to set uuid (/file0, err=-5); falling back to uuid=null. [ 339.472030][T11808] ERROR: (device loop4): dbAlloc: the hint is outside the map [ 339.472030][T11808] [ 339.518867][T11808] overlayfs: failed to verify origin (/, ino=2, err=-5) [ 339.543187][T11808] overlayfs: failed to verify upper root origin [ 339.682694][ T28] audit: type=1326 audit(1777606314.417:76): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 339.682919][ T2874] read_mapping_page failed! [ 339.706730][ C1] vkms_vblank_simulate: vblank timer overrun [ 339.742141][ T5871] BTRFS: device fsid 24c7a497-3402-47dd-bef8-82358f5f30e0 devid 1 transid 12 /dev/loop0 scanned by udevd (5871) [ 339.784342][ T28] audit: type=1326 audit(1777606314.417:77): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 339.808907][ C1] vkms_vblank_simulate: vblank timer overrun [ 339.809736][ T2874] ERROR: (device loop4): txCommit: [ 339.809736][ T2874] [ 339.843695][ T2874] jfs_write_inode: jfs_commit_inode failed! [ 339.885968][ T28] audit: type=1326 audit(1777606314.417:78): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 339.976493][ T28] audit: type=1326 audit(1777606314.467:79): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.082985][ T28] audit: type=1326 audit(1777606314.467:80): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.178150][ T28] audit: type=1326 audit(1777606314.467:81): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.202309][ C1] vkms_vblank_simulate: vblank timer overrun [ 340.292533][ T28] audit: type=1326 audit(1777606314.467:82): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.396475][ T28] audit: type=1326 audit(1777606314.467:83): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.420917][ C1] vkms_vblank_simulate: vblank timer overrun [ 340.509079][ T28] audit: type=1326 audit(1777606314.467:84): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.646452][ T28] audit: type=1326 audit(1777606314.487:85): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=11835 comm="syz.0.2134" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=443 compat=0 ip=0x7f1cb7f9cdd9 code=0x7ffc0000 [ 340.670666][ C1] vkms_vblank_simulate: vblank timer overrun [ 340.951591][T11834] loop5: detected capacity change from 0 to 32768 [ 341.016951][T11834] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 341.257787][T11834] XFS (loop5): Ending clean mount [ 341.320010][T11834] XFS (loop5): Quotacheck needed: Please wait. [ 341.412125][T11834] XFS (loop5): Quotacheck: Done. [ 341.424386][T11870] loop2: detected capacity change from 0 to 512 [ 341.438413][T11870] EXT4-fs: inline encryption not supported [ 341.449324][T11841] loop0: detected capacity change from 0 to 32768 [ 341.510670][T11841] XFS (loop0): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 341.545539][T11870] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 341.564801][T11870] ext4 filesystem being mounted at /546/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 341.694709][T11841] XFS (loop0): Ending clean mount [ 341.714543][T10571] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 341.775537][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 341.904988][ T5772] XFS (loop0): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 342.075871][T11885] [U] [ 342.078678][T11885] [U] [ 342.081688][T11885] [U] [ 342.084429][T11885] [U] [ 342.087179][T11885] [U] [ 342.089936][T11885] [U] [ 342.092670][T11885] [U] [ 342.095410][T11885] [U] [ 342.146916][T11885] [U] [ 342.149714][T11885] [U] [ 342.152446][T11885] [U] [ 342.161439][T11884] [U] [ 342.522995][T11897] loop4: detected capacity change from 0 to 512 [ 342.555214][T11897] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 342.631996][T11897] EXT4-fs (loop4): 1 truncate cleaned up [ 342.664844][T11897] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 342.700400][T11904] loop2: detected capacity change from 0 to 512 [ 342.710418][T11904] EXT4-fs: Ignoring removed bh option [ 342.723402][T11904] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 342.750947][T11904] EXT4-fs (loop2): 1 truncate cleaned up [ 342.782100][T11904] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 342.857462][T11904] EXT4-fs warning (device loop2): ext4_group_add:1742: No reserved GDT blocks, can't resize [ 342.892007][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 342.934404][T11907] loop0: detected capacity change from 0 to 512 [ 343.031375][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 343.126522][T11907] FAT-fs (loop0): error, fat_get_cluster: invalid cluster chain (i_pos 548) [ 343.135343][T11907] FAT-fs (loop0): Filesystem has been set read-only [ 343.193504][T11907] FAT-fs (loop0): error, fat_free: invalid cluster chain (i_pos 548) [ 343.615166][T11920] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2166'. [ 343.642403][T11920] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2166'. [ 343.883906][T11924] loop5: detected capacity change from 0 to 4096 [ 343.923531][T11924] ntfs: volume version 3.1. [ 344.380552][T11941] loop4: detected capacity change from 0 to 16 [ 344.428412][T11941] erofs: (device loop4): mounted with root inode @ nid 36. [ 344.548374][T11941] erofs: (device loop4): erofs_fill_dentries: bogus dirent @ nid 36 [ 344.729887][T11954] pim6reg2: entered allmulticast mode [ 344.814113][T11956] netlink: 20 bytes leftover after parsing attributes in process `syz.4.2180'. [ 344.829460][T11956] netlink: 'syz.4.2180': attribute type 4 has an invalid length. [ 345.105414][T11964] loop2: detected capacity change from 0 to 1024 [ 345.126780][T11966] sch_tbf: peakrate 7 is lower than or equals to rate 6829859379779001161 ! [ 345.182401][T11964] hfsplus: bad catalog entry type [ 345.299379][ T2889] hfsplus: b-tree write err: -5, ino 25 [ 345.305303][ T2889] hfsplus: b-tree write err: -5, ino 4 [ 345.359364][ T2889] hfsplus: b-tree write err: -5, ino 2 [ 345.591641][T11972] loop4: detected capacity change from 0 to 4096 [ 345.778007][T11972] ntfs3: loop4: failed to convert "0000" to iso8859-6 [ 345.786068][T11972] ntfs3: loop4: failed to convert "0030" to iso8859-6 [ 345.825176][T11972] ntfs3: loop4: Mark volume as dirty due to NTFS errors [ 345.868398][T11972] ntfs3: loop4: failed to convert name for inode 1e. [ 345.882384][T11972] ntfs3: loop4: failed to convert "0032" to iso8859-6 [ 345.903574][T11972] ntfs3: loop4: failed to convert "0033" to iso8859-6 [ 346.969736][T12007] EXT4-fs: Conflicting test_dummy_encryption options [ 347.455617][T12017] loop5: detected capacity change from 0 to 8192 [ 347.496002][T12017] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 347.550725][T12017] REISERFS (device loop5): found reiserfs format "3.6" with non-standard journal [ 347.591928][T12017] REISERFS (device loop5): using ordered data mode [ 347.620646][T12017] reiserfs: using flush barriers [ 347.659816][T12017] REISERFS (device loop5): journal params: device loop5, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 347.668523][T12009] loop0: detected capacity change from 0 to 40427 [ 347.687999][T12009] F2FS-fs (loop0): invalid crc value [ 347.703916][T12009] F2FS-fs (loop0): Found nat_bits in checkpoint [ 347.717112][T12017] REISERFS (device loop5): checking transaction log (loop5) [ 347.846573][T12009] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 347.941303][T12011] loop2: detected capacity change from 0 to 32768 [ 347.982604][T12017] REISERFS (device loop5): Using tea hash to sort names [ 347.992714][T12017] REISERFS (device loop5): Created .reiserfs_priv - reserved for xattr storage. [ 348.008660][ T5772] syz-executor: attempt to access beyond end of device [ 348.008660][ T5772] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 348.048699][ T5772] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 348.048943][T12011] ocfs2: Slot 0 on device (7,2) was already allocated to this node! [ 348.171758][T12027] loop4: detected capacity change from 0 to 8 [ 348.176604][T12011] JBD2: Ignoring recovery information on journal [ 348.210168][T12011] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 348.734301][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 348.734320][ T28] audit: type=1326 audit(1777606323.477:98): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.4.2219" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f598639cdd9 code=0x7ffc0000 [ 348.796362][ T28] audit: type=1326 audit(1777606323.477:99): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.4.2219" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=73 compat=0 ip=0x7f598639cdd9 code=0x7ffc0000 [ 348.820579][ C1] vkms_vblank_simulate: vblank timer overrun [ 348.866353][ T5775] ocfs2: Unmounting device (7,2) on (node local) [ 348.876235][ T28] audit: type=1326 audit(1777606323.477:100): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.4.2219" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f598639cdd9 code=0x7ffc0000 [ 348.882615][T12036] loop4: detected capacity change from 0 to 736 [ 348.900924][ T28] audit: type=1326 audit(1777606323.477:101): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12033 comm="syz.4.2219" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f598639cdd9 code=0x7ffc0000 [ 349.102924][T12036] rock: directory entry would overflow storage [ 349.136139][T12036] rock: sig=0x3b10, size=4, remaining=3 [ 349.450646][T12045] loop5: detected capacity change from 0 to 512 [ 349.460124][T12045] EXT4-fs: Ignoring removed orlov option [ 349.535593][T12052] loop4: detected capacity change from 0 to 512 [ 349.549765][T12052] EXT4-fs: Ignoring removed nobh option [ 349.555530][T12052] EXT4-fs: Invalid uid value -1 [ 349.563667][T12045] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 349.578174][T12045] ext4 filesystem being mounted at /114/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 349.647991][ T5871] I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 349.803760][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 350.580655][T12071] netlink: 8 bytes leftover after parsing attributes in process `syz.0.2232'. [ 350.603517][T12061] loop4: detected capacity change from 0 to 32768 [ 350.640795][T12061] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 350.646697][T12063] loop5: detected capacity change from 0 to 32768 [ 350.739585][T12063] XFS (loop5): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 350.929801][T12063] XFS (loop5): Ending clean mount [ 350.931630][ T5871] BTRFS error: device /dev/loop4 already registered with a higher generation, found 8 expect 9 [ 350.976450][ T5782] IPVS: starting estimator thread 0... [ 351.090150][T12087] IPVS: using max 16 ests per chain, 38400 per kthread [ 351.219917][T10571] XFS (loop5): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 351.646252][ T5777] Bluetooth: hci3: command 0x0405 tx timeout [ 351.802494][T12103] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 351.811965][T12103] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 351.821329][T12103] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 351.831575][T12103] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 352.228197][T12115] vivid-000: disconnect [ 352.234334][T12114] vivid-000: reconnect [ 352.658114][T12130] loop0: detected capacity change from 0 to 2048 [ 352.694648][T12130] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 352.764307][T12130] UDF-fs: error (device loop0): udf_verify_fi: directory (ino 1376) has entry where CRC length (32) does not match entry length (24) [ 352.777618][T12135] loop4: detected capacity change from 0 to 256 [ 352.884211][T12138] netlink: 12 bytes leftover after parsing attributes in process `syz.5.2257'. [ 353.204710][T12146] loop4: detected capacity change from 0 to 512 [ 353.244419][T12146] EXT4-fs: Ignoring removed nobh option [ 353.330635][T12146] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 353.399459][T12146] ext4 filesystem being mounted at /405/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 353.411875][T12157] netlink: 16 bytes leftover after parsing attributes in process `syz.5.2267'. [ 353.761141][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 353.860183][T12167] loop2: detected capacity change from 0 to 4096 [ 353.920934][T12167] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 353.931109][T12167] ntfs3: loop2: Failed to load $Extend (-22). [ 353.938192][T12167] ntfs3: loop2: Failed to initialize $Extend. [ 354.335452][T12182] loop4: detected capacity change from 0 to 512 [ 354.375125][T12182] EXT4-fs (loop4): mounting ext2 file system using the ext4 subsystem [ 354.405966][ T27] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 354.421777][T12182] EXT4-fs error (device loop4): ext4_validate_block_bitmap:430: comm syz.4.2278: bg 0: block 104: invalid block bitmap [ 354.449864][T12182] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6655: Corrupt filesystem [ 354.471568][T12182] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #11: comm syz.4.2278: invalid indirect mapped block 1 (level 1) [ 354.498898][T12182] EXT4-fs (loop4): 1 truncate cleaned up [ 354.508381][T12182] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 354.511787][T12187] loop2: detected capacity change from 0 to 2048 [ 354.559012][T12187] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 354.601747][ T28] audit: type=1800 audit(1777606329.347:102): pid=12187 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2279" name="file2" dev="loop2" ino=1347 res=0 errno=0 [ 354.646271][ T27] usb 1-1: Using ep0 maxpacket: 8 [ 354.656106][ T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.667472][ T27] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.684465][ T27] usb 1-1: New USB device found, idVendor=046d, idProduct=c20e, bcdDevice= 0.00 [ 354.694977][ T27] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.699580][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 354.727204][ T27] usb 1-1: config 0 descriptor?? [ 354.847197][T12189] loop4: detected capacity change from 0 to 64 [ 355.051963][T12191] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2282'. [ 355.076025][ T28] audit: type=1326 audit(1777606329.817:103): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12177 comm="syz.5.2276" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7fc00000 [ 355.168990][ T27] logitech 0003:046D:C20E.001B: rdesc size test failed for formula gp [ 355.187036][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.225086][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.254773][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.275281][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.300528][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.305301][T12197] loop2: detected capacity change from 0 to 1024 [ 355.337014][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.372200][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.378034][T12201] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2286'. [ 355.411188][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.437780][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.466015][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.488008][ T27] logitech 0003:046D:C20E.001B: unknown main item tag 0x0 [ 355.528428][ T27] logitech 0003:046D:C20E.001B: hidraw0: USB HID v0.00 Device [HID 046d:c20e] on usb-dummy_hcd.0-1/input0 [ 355.542440][ T28] audit: type=1800 audit(1777606330.297:104): pid=12197 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2284" name="file1" dev="loop2" ino=2 res=0 errno=0 [ 355.577731][ T27] usb 1-1: USB disconnect, device number 14 [ 355.765545][T12204] fido_id[12204]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.0/usb1/report_descriptor': No such file or directory [ 355.885633][T12211] loop5: detected capacity change from 0 to 1024 [ 356.094503][ T34] hfsplus: b-tree write err: -5, ino 25 [ 356.109642][ T34] hfsplus: b-tree write err: -5, ino 4 [ 356.115306][ T34] hfsplus: b-tree write err: -5, ino 2 [ 356.300405][T12217] loop0: detected capacity change from 0 to 1024 [ 356.776279][T12221] ntfs3: loop5: Different NTFS sector size (1024) and media sector size (512). [ 356.827302][ T11] hfsplus: b-tree write err: -5, ino 25 [ 356.867665][ T11] hfsplus: b-tree write err: -5, ino 4 [ 356.873325][ T11] hfsplus: b-tree write err: -5, ino 2 [ 356.924440][ T11] hfsplus: b-tree write err: -5, ino 26 [ 357.310902][T12221] ntfs3: loop5: Mark volume as dirty due to NTFS errors [ 357.368945][T12221] ntfs3: loop5: Failed to initialize $Extend/$Reparse. [ 357.553501][T12219] F2FS-fs (loop4): Test dummy encryption mode enabled [ 357.569643][T12219] F2FS-fs (loop4): invalid crc value [ 357.624272][T12219] F2FS-fs (loop4): Found nat_bits in checkpoint [ 357.675184][T12219] F2FS-fs (loop4): sanity_check_inode: corrupted inode ino=3, run fsck to fix. [ 357.688131][T12219] F2FS-fs (loop4): Failed to read root inode [ 357.730916][T12232] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 357.743845][T12237] netlink: 'syz.0.2308': attribute type 62 has an invalid length. [ 357.759935][T12232] ext4 filesystem being mounted at /588/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 357.792128][ C1] vkms_vblank_simulate: vblank timer overrun [ 357.920761][T12232] EXT4-fs error (device loop2): ext4_xattr_block_get:597: inode #15: comm syz.2.2299: corrupted xattr block 33: invalid header [ 357.977563][T12232] fscrypt (loop2, inode 15): Error -117 getting encryption context [ 358.098220][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 358.332027][T12248] sp0: Synchronizing with TNC [ 358.492959][T12252] set_capacity_and_notify: 4 callbacks suppressed [ 358.492976][T12252] loop2: detected capacity change from 0 to 764 [ 359.265622][T12276] loop5: detected capacity change from 0 to 512 [ 359.299757][T12276] EXT4-fs: Ignoring removed mblk_io_submit option [ 359.358189][T12276] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 359.380670][T12276] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 359.389855][ T5778] usb 3-1: new low-speed USB device number 18 using dummy_hcd [ 359.451989][T12276] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 359.466346][T12276] ext4 filesystem being mounted at /136/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 359.560183][T12285] loop4: detected capacity change from 0 to 1024 [ 359.601200][ T5778] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 359.641189][ T5778] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 359.682071][ T5778] usb 3-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00 [ 359.714876][ T5778] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 359.727492][ T2971] hfsplus: b-tree write err: -5, ino 25 [ 359.733336][ T2971] hfsplus: b-tree write err: -5, ino 4 [ 359.748914][ T5778] usb 3-1: config 0 descriptor?? [ 359.764599][ T2971] hfsplus: b-tree write err: -5, ino 2 [ 359.783924][ T2971] hfsplus: b-tree write err: -5, ino 17 [ 359.912283][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 360.201493][ T5778] aquacomputer_d5next 0003:0C70:F0B6.001C: item fetching failed at offset 5/7 [ 360.237206][ T5778] aquacomputer_d5next: probe of 0003:0C70:F0B6.001C failed with error -22 [ 360.332047][T12299] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2330'. [ 360.482730][ T5778] usb 3-1: USB disconnect, device number 18 [ 361.765656][T12347] netlink: 24 bytes leftover after parsing attributes in process `syz.0.2354'. [ 361.773738][T12351] loop5: detected capacity change from 0 to 512 [ 361.845927][T12351] EXT4-fs error (device loop5): ext4_orphan_get:1404: inode #15: comm syz.5.2353: inode has both inline data and extents flags [ 361.877274][T12351] EXT4-fs error (device loop5): ext4_orphan_get:1409: comm syz.5.2353: couldn't read orphan inode 15 (err -117) [ 361.918310][T12351] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 362.071286][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 362.150578][T12359] loop0: detected capacity change from 0 to 2048 [ 362.228262][T12359] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 362.258309][T12359] ext4 filesystem being mounted at /604/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 362.296571][T12359] EXT4-fs (loop0): resizing filesystem from 256 to 0 blocks [ 362.304229][T12359] EXT4-fs warning (device loop0): ext4_resize_fs:2048: can't shrink FS - resize aborted [ 362.387707][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 362.695899][ T27] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 362.895875][ T27] usb 3-1: Using ep0 maxpacket: 32 [ 362.914365][ T27] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 362.946646][ T27] usb 3-1: config 0 interface 0 has no altsetting 0 [ 362.959539][ T27] usb 3-1: New USB device found, idVendor=0079, idProduct=0011, bcdDevice= 0.00 [ 362.981695][ T27] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.001727][ T27] usb 3-1: config 0 descriptor?? [ 363.361068][T12370] loop5: detected capacity change from 0 to 32768 [ 363.436965][T12370] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 363.446278][ T27] dragonrise 0003:0079:0011.001D: unknown main item tag 0x0 [ 363.453680][ T27] dragonrise 0003:0079:0011.001D: unknown main item tag 0x0 [ 363.462562][ T27] dragonrise 0003:0079:0011.001D: unknown main item tag 0x0 [ 363.472055][ T27] dragonrise 0003:0079:0011.001D: unknown main item tag 0x0 [ 363.502960][ T27] dragonrise 0003:0079:0011.001D: unknown main item tag 0x0 [ 363.533750][ T27] dragonrise 0003:0079:0011.001D: unbalanced collection at end of report description [ 363.560791][ T27] dragonrise 0003:0079:0011.001D: parse failed [ 363.593667][ T27] dragonrise: probe of 0003:0079:0011.001D failed with error -22 [ 363.618925][T12370] XFS (loop5): Ending clean mount [ 363.656294][ T27] usb 3-1: USB disconnect, device number 19 [ 364.047011][T12390] loop0: detected capacity change from 0 to 40427 [ 364.083911][T12390] F2FS-fs (loop0): invalid crc value [ 364.093303][T10571] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 364.112132][T12390] F2FS-fs (loop0): Found nat_bits in checkpoint [ 364.140205][T12401] loop4: detected capacity change from 0 to 128 [ 364.221013][T12401] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 364.235942][T12401] FAT-fs (loop4): Filesystem has been set read-only [ 364.270886][T12401] FAT-fs (loop4): error, corrupted directory (invalid entries) [ 364.346003][T12390] F2FS-fs (loop0): Start checkpoint disabled! [ 364.391148][T12390] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 364.591238][T12390] F2FS-fs (loop0): f2fs_check_nid_range: out-of-range nid=81000000, run fsck to fix. [ 364.708412][T12404] loop2: detected capacity change from 0 to 4096 [ 364.782004][T12406] loop5: detected capacity change from 0 to 256 [ 364.791730][T12408] NILFS (loop2): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 364.923875][T12406] FAT-fs (loop5): Directory bread(block 64) failed [ 364.946865][T12406] FAT-fs (loop5): Directory bread(block 65) failed [ 364.986195][T12406] FAT-fs (loop5): Directory bread(block 66) failed [ 365.005967][T12406] FAT-fs (loop5): Directory bread(block 67) failed [ 365.012772][T12406] FAT-fs (loop5): Directory bread(block 68) failed [ 365.064741][T12406] FAT-fs (loop5): Directory bread(block 69) failed [ 365.096077][T12406] FAT-fs (loop5): Directory bread(block 70) failed [ 365.102706][T12406] FAT-fs (loop5): Directory bread(block 71) failed [ 365.156318][T12406] FAT-fs (loop5): Directory bread(block 72) failed [ 365.163126][T12406] FAT-fs (loop5): Directory bread(block 73) failed [ 365.548453][T12417] netlink: 9 bytes leftover after parsing attributes in process `syz.0.2388'. [ 365.575233][T12417] 0: renamed from hsr_slave_1 (while UP) [ 365.594549][T12417] 0: entered allmulticast mode [ 365.617448][T12417] A link change request failed with some changes committed already. Interface c0 may have been left with an inconsistent configuration, please check. [ 365.873997][T12409] loop4: detected capacity change from 0 to 32768 [ 365.967797][T12409] XFS (loop4): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 366.063954][T12409] XFS (loop4): Ending clean mount [ 366.167331][ T5778] XFS (loop4): Corruption warning: Metadata has LSN (2:16) ahead of current LSN (1:112). Please unmount and run xfs_repair (>= v4.3) to resolve. [ 366.245754][ T5778] XFS (loop4): Metadata CRC error detected at xfs_inobt_read_verify+0x42/0xd0, xfs_finobt block 0x20 [ 366.293762][ T5778] XFS (loop4): Unmount and run xfs_repair [ 366.312052][ T5778] XFS (loop4): First 128 bytes of corrupted metadata buffer: [ 366.326861][T12438] loop0: detected capacity change from 0 to 128 [ 366.335815][ T5778] 00000000: 46 49 42 33 00 00 00 01 ff ff ff ff ff ff ff ff FIB3............ [ 366.366950][T12438] EXT4-fs: Ignoring removed nobh option [ 366.373951][ T5778] 00000010: 00 00 00 00 00 00 00 20 00 00 00 02 00 00 00 10 ....... ........ [ 366.393661][ T5778] 00000020: c4 96 e0 5e 54 0d 4c 72 b5 91 04 d7 9d 8b 4e eb ...^T.Lr......N. [ 366.404944][T12438] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 366.425992][ T5778] 00000030: 00 00 00 00 ca b4 20 ce 00 00 11 40 00 00 40 37 ...... ....@..@7 [ 366.449905][T12438] ext4 filesystem being mounted at /614/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 366.467178][ T5778] 00000040: ff ff ff ff ff ff fe 00 00 00 00 00 00 00 00 00 ................ [ 366.487880][T12415] loop2: detected capacity change from 0 to 32768 [ 366.495925][ T5778] 00000050: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 366.530598][ T5778] 00000060: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 366.533490][T12438] EXT4-fs warning (device loop0): verify_group_input:151: Cannot add at group 2175 (only 1 groups) [ 366.576075][T12415] XFS (loop2): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 366.587873][ T5778] 00000070: 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 00 ................ [ 366.610074][ T5772] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 366.624319][T12409] XFS (loop4): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x20 len 8 error 74 [ 366.726062][T12409] XFS (loop4): Failed to initialize disk quotas. [ 366.919509][ T7831] XFS (loop4): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 366.954306][T12415] XFS (loop2): Ending clean mount [ 367.188511][ T5775] XFS (loop2): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 367.530476][T12463] loop4: detected capacity change from 0 to 1024 [ 367.545929][T12463] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 367.677460][T12463] EXT4-fs (loop4): mounted filesystem 00000000-0000-0006-0000-000000000000 r/w without journal. Quota mode: writeback. [ 367.707324][T12463] ext4 filesystem being mounted at /437/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 367.773397][ T28] audit: type=1800 audit(1777606342.517:105): pid=12463 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.4.2389" name="file1" dev="loop4" ino=15 res=0 errno=0 [ 367.841776][T12463] EXT4-fs error (device loop4): ext4_validate_block_bitmap:439: comm syz.4.2389: bg 0: block 112: padding at end of block bitmap is not set [ 367.866430][T12468] loop2: detected capacity change from 0 to 4096 [ 367.878462][T12463] EXT4-fs error (device loop4): ext4_free_blocks:6694: comm syz.4.2389: Freeing blocks not in datazone - block = 0, count = 16 [ 367.943863][T12468] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 368.054698][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0006-0000-000000000000. [ 368.066332][T12468] ntfs3: loop2: Failed to load $Extend (-22). [ 368.077385][T12468] ntfs3: loop2: Failed to initialize $Extend. [ 368.163256][ T28] audit: type=1800 audit(1777606342.907:106): pid=12468 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.2393" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 368.184306][ C1] vkms_vblank_simulate: vblank timer overrun [ 368.489050][T12472] loop5: detected capacity change from 0 to 8192 [ 368.671405][T12478] ntfs3: loop2: Different NTFS sector size (1024) and media sector size (512). [ 369.534640][T12500] sp0: Synchronizing with TNC [ 369.557881][T12502] set_capacity_and_notify: 1 callbacks suppressed [ 369.557899][T12502] loop5: detected capacity change from 0 to 64 [ 369.578211][T12476] loop4: detected capacity change from 0 to 32768 [ 369.696477][T12476] ERROR: (device loop4): diWrite: ixpxd invalid [ 369.696477][T12476] [ 369.747450][T12476] ERROR: (device loop4): remounting filesystem as read-only [ 369.754954][T12476] ERROR: (device loop4): txCommit: [ 369.754954][T12476] [ 370.152020][T12508] loop5: detected capacity change from 0 to 4096 [ 370.325844][ T27] usb 5-1: new high-speed USB device number 7 using dummy_hcd [ 370.339306][T12508] ntfs3: loop5: Failed to initialize $Extend/$ObjId. [ 370.550048][ T27] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 370.592356][ T27] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 370.646797][ T27] usb 5-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.01 [ 370.673885][ T27] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 370.706960][ T27] usb 5-1: config 0 descriptor?? [ 371.123543][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.132068][T12531] loop0: detected capacity change from 0 to 8192 [ 371.146291][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.153212][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.168654][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.177497][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.184508][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.191587][ T27] arvo 0003:1E7D:30D4.001E: unknown main item tag 0x0 [ 371.192134][T12531] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 371.215500][ T27] arvo 0003:1E7D:30D4.001E: hidraw0: USB HID v0.00 Device [HID 1e7d:30d4] on usb-dummy_hcd.4-1/input0 [ 371.251451][T12531] REISERFS (device loop0): found reiserfs format "3.5" with non-standard journal [ 371.261406][T12531] REISERFS (device loop0): using ordered data mode [ 371.268952][T12531] reiserfs: using flush barriers [ 371.272837][T12540] tipc: Invalid UDP bearer configuration [ 371.291375][T12531] REISERFS (device loop0): journal params: device loop0, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 371.324110][T12540] tipc: Enabling of bearer rejected, failed to enable media [ 371.340486][ T27] arvo 0003:1E7D:30D4.001E: couldn't init struct arvo_device [ 371.357950][T12531] REISERFS (device loop0): checking transaction log (loop0) [ 371.381348][ T27] arvo 0003:1E7D:30D4.001E: couldn't install keyboard [ 371.416574][T12531] REISERFS (device loop0): Using r5 hash to sort names [ 371.424979][ T27] arvo: probe of 0003:1E7D:30D4.001E failed with error -71 [ 371.446271][T12531] REISERFS (device loop0): Created .reiserfs_priv - reserved for xattr storage. [ 371.475107][ T27] usb 5-1: USB disconnect, device number 7 [ 371.521984][T12543] fido_id[12543]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.4/usb5/5-1/report_descriptor': No such file or directory [ 371.571369][T12545] loop5: detected capacity change from 0 to 64 [ 372.858691][T12560] loop5: detected capacity change from 0 to 32768 [ 372.900177][T12560] XFS (loop5): DAX unsupported by block device. Turning off DAX. [ 372.948962][T12560] XFS (loop5): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 373.190189][T12560] XFS (loop5): Ending clean mount [ 373.343248][T10571] XFS (loop5): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 373.465021][T12576] loop2: detected capacity change from 0 to 32768 [ 373.502690][T12576] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 373.684909][T12576] XFS (loop2): Ending clean mount [ 373.873685][ T5775] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 375.146660][T12618] loop4: detected capacity change from 0 to 32768 [ 375.266528][T12618] ERROR: (device loop4): dtSearch: DT_GETPAGE: dtree page corrupt [ 375.266528][T12618] [ 375.305327][T12618] ERROR: (device loop4): remounting filesystem as read-only [ 375.315997][T12618] jfs_lookup: dtSearch returned -5 [ 375.481307][T12639] loop5: detected capacity change from 0 to 512 [ 375.507378][T12639] EXT4-fs: Ignoring removed bh option [ 375.561095][T12639] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 375.634382][T12639] EXT4-fs warning (device loop5): ext4_update_dynamic_rev:1154: updating to rev 1 because of new feature flag, running e2fsck is recommended [ 375.670447][T12639] EXT4-fs error (device loop5): ext4_validate_block_bitmap:439: comm syz.5.2460: bg 0: block 248: padding at end of block bitmap is not set [ 375.746269][T12639] Quota error (device loop5): write_blk: dquota write failed [ 375.753777][T12639] Quota error (device loop5): qtree_write_dquot: Error -28 occurred while creating quota [ 375.781008][T12639] EXT4-fs error (device loop5): ext4_acquire_dquot:6953: comm syz.5.2460: Failed to acquire dquot type 1 [ 375.803224][T12629] loop0: detected capacity change from 0 to 40427 [ 375.829533][T12629] F2FS-fs (loop0): build fault injection attr: rate: 690, type: 0x7ffff [ 375.829555][T12639] EXT4-fs (loop5): 1 truncate cleaned up [ 375.830974][T12639] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0008-000000000000 r/w without journal. Quota mode: writeback. [ 375.867916][T12629] F2FS-fs (loop0): invalid crc value [ 375.902685][T12629] F2FS-fs (loop0): Found nat_bits in checkpoint [ 376.030262][T12629] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 376.125240][T12639] EXT4-fs: Ignoring removed orlov option [ 376.145246][T12639] EXT4-fs: Ignoring removed nobh option [ 376.195863][T12639] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 376.241297][T12639] EXT4-fs (loop5): re-mounted 00000000-0000-0000-0008-000000000000. [ 376.281873][T12654] pim6reg2: entered allmulticast mode [ 376.296712][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0008-000000000000. [ 376.311896][T12653] loop4: detected capacity change from 0 to 512 [ 376.335892][T12653] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 376.385930][T12653] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 376.510903][T12653] EXT4-fs (loop4): 1 truncate cleaned up [ 376.536184][T12653] EXT4-fs (loop4): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 376.680484][ T7831] EXT4-fs (loop4): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 376.978130][T12669] netlink: 60 bytes leftover after parsing attributes in process `syz.5.2472'. [ 377.098616][T12676] loop0: detected capacity change from 0 to 64 [ 377.328246][T12682] loop4: detected capacity change from 0 to 2048 [ 377.341925][T12682] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 377.417524][T12684] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2479'. [ 377.490466][T12686] loop5: detected capacity change from 0 to 2048 [ 377.579390][T12688] loop0: detected capacity change from 0 to 512 [ 377.639887][T12686] EXT4-fs (loop5): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 377.668865][T12688] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 377.683966][T12694] loop2: detected capacity change from 0 to 1024 [ 377.713583][T12688] ext4 filesystem being mounted at /641/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 377.771718][T12686] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1244: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 377.814596][T12688] EXT4-fs (loop0): re-mounted 00000000-0000-0000-0000-000000000000 ro. [ 377.858388][T12686] overlayfs: failed to verify origin (/, ino=2, err=-28) [ 377.868443][T12686] overlayfs: failed to verify upper root origin [ 378.007794][ T5772] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.091760][T10571] EXT4-fs (loop5): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 378.208311][T12702] batadv0: entered promiscuous mode [ 378.213808][T12702] macsec1: entered promiscuous mode [ 378.239243][T12702] macsec1: entered allmulticast mode [ 378.245027][T12702] batadv0: entered allmulticast mode [ 378.500138][T12707] loop5: detected capacity change from 0 to 4096 [ 378.553209][T12716] NILFS (loop5): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 378.952702][T12722] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 378.965622][T12722] hpfs: filesystem error: improperly stopped [ 378.974495][T12722] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 378.983019][T12722] hpfs: You really don't want any checks? You are crazy... [ 378.990964][T12722] hpfs: Code page index out of array [ 379.003055][ T1288] ieee802154 phy0 wpan0: encryption failed: -22 [ 379.010059][ T1288] ieee802154 phy1 wpan1: encryption failed: -22 [ 379.032693][T12722] hpfs: code page support is disabled [ 379.054781][T12722] hpfs: hpfs_map_4sectors(): unaligned read [ 379.073807][T12722] hpfs: hpfs_map_4sectors(): unaligned read [ 379.082448][T12722] hpfs: filesystem error: unable to find root dir [ 379.315947][ T5782] usb 5-1: new high-speed USB device number 8 using dummy_hcd [ 379.470462][T12728] ntfs: (device loop0): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 379.525996][ T5782] usb 5-1: Using ep0 maxpacket: 16 [ 379.539460][ T5782] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 379.559445][ T5782] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 379.579522][ T5782] usb 5-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 379.590996][ T5782] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 379.614245][ T5782] usb 5-1: config 0 descriptor?? [ 379.628109][T12736] can0: slcan on ptm0. [ 379.714407][T12728] ntfs: volume version 3.1. [ 379.726872][T12735] can0 (unregistered): slcan off ptm0. [ 379.846470][T12728] ntfs: (device loop0): ntfs_bmap(): BMAP does not make sense for resident attributes, returning 0. [ 380.093837][T12743] netlink: 24 bytes leftover after parsing attributes in process `syz.2.2503'. [ 380.149360][ T5782] hid-multitouch 0003:1FD2:6007.001F: item fetching failed at offset 1/5 [ 380.198117][ T5782] hid-multitouch: probe of 0003:1FD2:6007.001F failed with error -22 [ 380.335370][T12752] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2506'. [ 380.353722][T12752] netlink: 8 bytes leftover after parsing attributes in process `syz.5.2506'. [ 380.405206][ T5814] usb 5-1: USB disconnect, device number 8 [ 380.513944][ T28] audit: type=1326 audit(1777606355.257:107): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.538227][ C1] vkms_vblank_simulate: vblank timer overrun [ 380.565534][ T28] audit: type=1326 audit(1777606355.257:108): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.589828][ C1] vkms_vblank_simulate: vblank timer overrun [ 380.599271][ T28] audit: type=1326 audit(1777606355.257:109): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.633726][ T28] audit: type=1326 audit(1777606355.257:110): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.666142][ T27] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 380.701098][ T28] audit: type=1326 audit(1777606355.257:111): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.752331][ T787] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 380.776237][ T28] audit: type=1326 audit(1777606355.257:112): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.800717][ C1] vkms_vblank_simulate: vblank timer overrun [ 380.831421][ T28] audit: type=1326 audit(1777606355.297:113): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.855630][ C1] vkms_vblank_simulate: vblank timer overrun [ 380.883204][ T28] audit: type=1326 audit(1777606355.297:114): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12759 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=230 compat=0 ip=0x7fdfa1d5d60e code=0x7ffc0000 [ 380.920986][ T27] usb 3-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 380.930037][ T27] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 380.945866][ T28] audit: type=1326 audit(1777606355.307:115): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 380.970409][ C1] vkms_vblank_simulate: vblank timer overrun [ 380.978489][ T27] usb 3-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 381.016358][ T27] usb 3-1: config 1 has no interface number 1 [ 381.022756][ T27] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 381.035936][ T787] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 381.046459][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 381.063362][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 381.073543][ T28] audit: type=1326 audit(1777606355.307:116): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 381.087966][ T27] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 381.137035][ T787] usb 1-1: New USB device found, idVendor=056a, idProduct=0010, bcdDevice= 0.00 [ 381.147144][ T28] audit: type=1326 audit(1777606355.307:117): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=15 compat=0 ip=0x7fdfa1d3e159 code=0x7ffc0000 [ 381.171801][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 381.197072][ T787] usb 1-1: config 0 descriptor?? [ 381.202527][ T27] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 381.243560][ T27] usb 3-1: Product: syz [ 381.245927][ T28] audit: type=1326 audit(1777606355.307:118): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 381.254831][ T27] usb 3-1: Manufacturer: syz [ 381.297757][ T28] audit: type=1326 audit(1777606355.307:119): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 381.323113][ T27] usb 3-1: SerialNumber: syz [ 381.405954][ T28] audit: type=1326 audit(1777606355.307:120): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 381.474565][ T28] audit: type=1326 audit(1777606355.307:121): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=12757 comm="syz.5.2507" exe="/root/ci2-linux-6-6-kasan/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7fdfa1d9cdd9 code=0x7ffc0000 [ 381.608131][ T27] usb 3-1: No MIDI 2.0 at altset 1, falling back to MIDI 1.0 [ 381.633602][ T27] usb 3-1: MIDIStreaming interface descriptor not found [ 381.649702][ T787] wacom 0003:056A:0010.0020: unbalanced collection at end of report description [ 381.679234][ T787] wacom 0003:056A:0010.0020: parse failed [ 381.689915][ T787] wacom: probe of 0003:056A:0010.0020 failed with error -22 [ 381.776408][ T27] usb 3-1: USB disconnect, device number 20 [ 381.978047][ T5782] usb 1-1: USB disconnect, device number 15 [ 382.235384][T12801] set_capacity_and_notify: 2 callbacks suppressed [ 382.235399][T12801] loop5: detected capacity change from 0 to 65 [ 382.260682][T12801] BFS-fs: bfs_fill_super(): NOTE: filesystem loop5 was created with 512 inodes, the real maximum is 511, mounting anyway [ 382.754707][T12813] netlink: 20 bytes leftover after parsing attributes in process `syz.5.2523'. [ 382.837557][T12819] netlink: 'syz.0.2525': attribute type 3 has an invalid length. [ 383.013300][T12823] loop4: detected capacity change from 0 to 256 [ 383.028512][T12827] tmpfs: Cannot disable swap on remount [ 383.076450][T12823] FAT-fs (loop4): Directory bread(block 64) failed [ 383.103463][T12823] FAT-fs (loop4): Directory bread(block 65) failed [ 383.143609][T12823] FAT-fs (loop4): Directory bread(block 66) failed [ 383.164794][T12823] FAT-fs (loop4): Directory bread(block 67) failed [ 383.190876][T12823] FAT-fs (loop4): Directory bread(block 68) failed [ 383.211962][T12823] FAT-fs (loop4): Directory bread(block 69) failed [ 383.231345][T12823] FAT-fs (loop4): Directory bread(block 70) failed [ 383.262410][T12823] FAT-fs (loop4): Directory bread(block 71) failed [ 383.306454][T12823] FAT-fs (loop4): Directory bread(block 72) failed [ 383.325830][T12823] FAT-fs (loop4): Directory bread(block 73) failed [ 383.761379][T12848] loop2: detected capacity change from 0 to 512 [ 383.867863][T12848] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 383.918325][T12848] ext4 filesystem being mounted at /637/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 384.103851][ T5775] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 384.365890][ T5778] usb 6-1: new high-speed USB device number 4 using dummy_hcd [ 384.564654][T12877] loop2: detected capacity change from 0 to 1024 [ 384.576255][ T5778] usb 6-1: Using ep0 maxpacket: 32 [ 384.589502][ T5778] usb 6-1: New USB device found, idVendor=2304, idProduct=0222, bcdDevice=77.3f [ 384.613124][ T5778] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 384.648196][ T5778] usb 6-1: Product: syz [ 384.652446][ T5778] usb 6-1: Manufacturer: syz [ 384.667513][ T5778] usb 6-1: SerialNumber: syz [ 384.697699][ T5778] usb 6-1: config 0 descriptor?? [ 384.718233][ T5778] dvb-usb: found a 'Pinnacle 450e DVB-S USB2.0' in warm state. [ 384.727552][ T5778] dvb-usb: bulk message failed: -22 (4/0) [ 384.738913][ T5778] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 384.766407][ T5778] dvb-usb: bulk message failed: -22 (5/0) [ 384.772229][ T5778] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 384.809800][ T5778] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 384.851700][ T5778] dvbdev: DVB: registering new adapter (Pinnacle 450e DVB-S USB2.0) [ 384.881176][ T5778] usb 6-1: media controller created [ 384.925139][T12862] dvb-usb: bulk message failed: -22 (7/0) [ 384.935870][ T787] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 384.945843][T12862] ttusb2: there might have been an error during control message transfer. (rlen = 3, was 0) [ 384.968252][ T5778] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 384.976968][T12862] ttusb2: i2c transfer failed. [ 385.029375][ T5778] usb 6-1: selecting invalid altsetting 3 [ 385.035193][ T5778] ttusb2: set interface to alts=3 failed [ 385.094955][ T5778] DVB: Unable to find symbol tda10086_attach() [ 385.112471][ T5778] dvb-usb: no frontend was attached by 'Pinnacle 450e DVB-S USB2.0' [ 385.122222][ T5778] dvb-usb: bulk message failed: -22 (4/0) [ 385.138057][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 169, changing to 11 [ 385.138861][ T5778] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 385.166688][T12885] loop2: detected capacity change from 0 to 64 [ 385.167363][ T5778] dvb-usb: bulk message failed: -22 (5/0) [ 385.173065][ T787] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 57465, setting to 1024 [ 385.184271][ T5778] ttusb2: there might have been an error during control message transfer. (rlen = 0, was 0) [ 385.210554][ T5778] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully initialized and connected. [ 385.224411][ T787] usb 1-1: New USB device found, idVendor=04f3, idProduct=0755, bcdDevice= 0.00 [ 385.226612][ T5778] usb 6-1: USB disconnect, device number 4 [ 385.249269][ T787] usb 1-1: New USB device strings: Mfr=0, Product=4, SerialNumber=0 [ 385.274153][T12885] hfs: hfs: Invalid key length: 94 [ 385.284338][ T787] usb 1-1: Product: syz [ 385.316953][ T787] usb 1-1: config 0 descriptor?? [ 385.359130][ T5778] dvb-usb: Pinnacle 450e DVB-S USB2.0 successfully deinitialized and disconnected. [ 385.420269][ T11] ------------[ cut here ]------------ [ 385.426097][ T11] kernel BUG at fs/hfs/inode.c:449! [ 385.435815][ T11] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 385.442064][ T11] CPU: 1 PID: 11 Comm: kworker/u4:0 Not tainted syzkaller #0 [ 385.446514][T12878] loop4: detected capacity change from 0 to 32768 [ 385.449436][ T11] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/18/2026 [ 385.466053][ T11] Workqueue: writeback wb_workfn (flush-7:2) [ 385.466910][T12878] [ 385.466910][T12878] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 385.466910][T12878] [ 385.472074][ T11] RIP: 0010:hfs_write_inode+0x87a/0x880 [ 385.472107][ T11] Code: c7 c1 00 03 31 97 80 e1 07 80 c1 03 38 c1 0f 8c 73 fe ff ff 48 c7 c7 00 03 31 97 e8 f0 f9 83 ff e9 62 fe ff ff e8 d6 c2 2b ff <0f> 0b 0f 1f 40 00 f3 0f 1e fa 55 41 57 41 56 41 54 53 48 89 fb 49 [ 385.472122][ T11] RSP: 0018:ffffc90000107340 EFLAGS: 00010293 [ 385.472139][ T11] RAX: ffffffff825b5f2a RBX: ffff88801c3c35a8 RCX: ffff88801be4bc00 [ 385.472152][ T11] RDX: 0000000000000000 RSI: ffffffff8d339b40 RDI: 0000000000000000 [ 385.472164][ T11] RBP: ffffc900001074d0 R08: ffff88801be4bc00 R09: 0000000000000003 [ 385.472176][ T11] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 385.472187][ T11] R13: 1ffff92000020e6c R14: ffff88801c3c3558 R15: 0000000000000000 [ 385.472200][ T11] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 385.472214][ T11] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 385.472227][ T11] CR2: 000055557aba6a38 CR3: 00000000760e8000 CR4: 00000000003506e0 [ 385.472245][ T11] Call Trace: [ 385.472255][ T11] [ 385.584328][ T11] ? hfs_inode_write_fork+0x1a0/0x1a0 [ 385.589843][ T11] ? __rwlock_init+0x150/0x150 [ 385.594760][ T11] __writeback_single_inode+0x705/0xec0 [ 385.600447][ T11] writeback_sb_inodes+0x7cd/0xf50 [ 385.605618][ T11] ? queue_io+0x550/0x550 [ 385.610012][ T11] ? rcu_is_watching+0x15/0xb0 [ 385.614831][ T11] wb_writeback+0x46a/0xbf0 [ 385.619404][ T11] ? queue_io+0x3b1/0x550 [ 385.623773][ T11] ? percpu_ref_tryget+0x250/0x250 [ 385.629011][ T11] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 385.635204][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 385.640552][ T11] wb_workfn+0x400/0xe60 [ 385.644275][T12878] ERROR: (device loop4): diWrite: ixpxd invalid [ 385.644275][T12878] [ 385.644833][ T11] ? inode_wait_for_writeback+0x230/0x230 [ 385.653609][T12878] ERROR: (device loop4): remounting filesystem as read-only [ 385.658979][ T11] ? lockdep_hardirqs_on_prepare+0x40d/0x770 [ 385.659009][ T11] ? read_lock_is_recursive+0x20/0x20 [ 385.659032][ T11] ? _raw_spin_unlock_irq+0x23/0x50 [ 385.667880][T12878] ERROR: (device loop4): txCommit: [ 385.667880][T12878] [ 385.672312][ T11] ? process_scheduled_works+0x96f/0x15d0 [ 385.672344][ T11] ? process_scheduled_works+0x96f/0x15d0 [ 385.682319][T12878] ERROR: (device loop4): dtSearch: stack overrun! [ 385.682319][T12878] [ 385.682913][ T11] process_scheduled_works+0xa5d/0x15d0 [ 385.693546][T12878] btstack dump: [ 385.696016][ T11] ? worker_attach_to_pool+0x380/0x380 [ 385.696051][ T11] ? assign_work+0x3d2/0x5d0 [ 385.702187][T12878] bn = 0, index = 0 [ 385.710362][ T11] worker_thread+0xa55/0xfc0 [ 385.710404][ T11] kthread+0x2fa/0x390 [ 385.710421][ T11] ? pr_cont_work+0x560/0x560 [ 385.717165][T12878] bn = 0, index = 0 [ 385.719529][ T11] ? kthread_blkcg+0xd0/0xd0 [ 385.719554][ T11] ret_from_fork+0x48/0x80 [ 385.725063][T12878] bn = 0, index = 0 [ 385.729594][ T11] ? kthread_blkcg+0xd0/0xd0 [ 385.729615][ T11] ret_from_fork_asm+0x11/0x20 [ 385.729645][ T11] [ 385.729652][ T11] Modules linked in: [ 385.729741][ C1] vkms_vblank_simulate: vblank timer overrun [ 385.734446][T12878] bn = 0, index = 0 [ 385.739611][ T11] ---[ end trace 0000000000000000 ]--- [ 385.764783][T12878] bn = 0, index = 0 [ 385.769490][ T11] RIP: 0010:hfs_write_inode+0x87a/0x880 [ 385.769524][ T11] Code: c7 c1 00 03 31 97 80 e1 07 80 c1 03 38 c1 0f 8c 73 fe ff ff 48 c7 c7 00 03 31 97 e8 f0 f9 83 ff e9 62 fe ff ff e8 d6 c2 2b ff <0f> 0b 0f 1f 40 00 f3 0f 1e fa 55 41 57 41 56 41 54 53 48 89 fb 49 [ 385.769541][ T11] RSP: 0018:ffffc90000107340 EFLAGS: 00010293 [ 385.769560][ T11] RAX: ffffffff825b5f2a RBX: ffff88801c3c35a8 RCX: ffff88801be4bc00 [ 385.769574][ T11] RDX: 0000000000000000 RSI: ffffffff8d339b40 RDI: 0000000000000000 [ 385.769587][ T11] RBP: ffffc900001074d0 R08: ffff88801be4bc00 R09: 0000000000000003 [ 385.769656][ T11] R10: 0000000000000004 R11: 0000000000000000 R12: dffffc0000000000 [ 385.769669][ T11] R13: 1ffff92000020e6c R14: ffff88801c3c3558 R15: 0000000000000000 [ 385.769681][ T11] FS: 0000000000000000(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 385.769698][ T11] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 385.776659][T12878] bn = 0, index = 0 [ 385.777643][ T11] CR2: 000055557aba6a38 CR3: 00000000760e8000 CR4: 00000000003506e0 [ 385.781545][T12878] bn = 0, index = 0 [ 385.788059][ T11] Kernel panic - not syncing: Fatal exception [ 385.792207][ T11] Kernel Offset: disabled