last executing test programs: 6.172136463s ago: executing program 0 (id=902): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) tee(r0, r1, 0x6, 0x0) 5.440073389s ago: executing program 0 (id=910): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001440)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000000)={0x16, 0xd, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000ff7f00007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000082000000850000000500000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000240)={r1, 0x0, 0x10, 0x10, &(0x7f00000002c0)='\x00\x00\x00\x00\x00\x00\x00\x00', &(0x7f0000000300)=""/8, 0x2000000, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x4c) 4.332661294s ago: executing program 0 (id=918): mkdirat(0xffffffffffffff9c, &(0x7f0000002040)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000080)='hugetlbfs\x00', 0x0, 0x0) umount2(&(0x7f0000000040)='./file0\x00', 0xb) 4.189891501s ago: executing program 0 (id=921): r0 = syz_usb_connect(0x0, 0x24, &(0x7f0000000040)=ANY=[@ANYBLOB="12010000bdf7130870270c936a8d010203010902120001000000000904"], 0x0) syz_usb_control_io$cdc_ncm(r0, 0x0, &(0x7f00000003c0)={0x44, &(0x7f0000000000)=ANY=[@ANYBLOB="001306000000ec19d02303f6"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$hid(r0, 0x0, 0x0) 2.259989057s ago: executing program 2 (id=942): r0 = bpf$BPF_BTF_LOAD(0x12, &(0x7f0000000300)={&(0x7f0000000380)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0xc, 0xc, 0x2, [@struct]}}, 0x0, 0x26}, 0x20) bpf$BPF_GET_BTF_INFO(0xf, &(0x7f0000000340)={r0, 0x20, &(0x7f0000000100)={0x0, 0x0, 0x0, 0x0}}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000840)={0x8, 0x1c, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x22, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, r1, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x94) 2.237689538s ago: executing program 0 (id=943): sendmsg$sock(0xffffffffffffffff, &(0x7f0000000700)={&(0x7f0000000680)=@pppol2tp={0x18, 0x1, {0x0, 0xffffffffffffffff, {0x2, 0x4e23, @dev={0xac, 0x14, 0x14, 0xf}}, 0x4, 0x4, 0x0, 0x3}}, 0x80, 0x0}, 0x20000085) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0xc, 0xe, &(0x7f0000004000)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00'}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r0, 0x18000000000002a0, 0xe80, 0x6000, &(0x7f0000000640)="b9ff03076844268cb89e14f088a847e086dd200000006006000aac14140ce0", 0x0, 0x11, 0x60000000, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x4000}, 0x48) 2.075897296s ago: executing program 2 (id=944): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000fc0)=ANY=[@ANYBLOB="02000000040000000700000080"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007b00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0x25) 1.975321181s ago: executing program 0 (id=945): r0 = syz_usb_connect$hid(0x2, 0x36, &(0x7f0000000000)=ANY=[@ANYBLOB="12010000000000406a05250700000000000109022400010000000909040004810300000009210000280122070009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f00000001c0)={0x32, 0x0, 0x0, &(0x7f0000000040)={0x0, 0x22, 0x7, {[@global=@item_012={0x1, 0x1, 0x8, "1f"}, @main=@item_012={0x2, 0x0, 0x8, 'Q;'}, @main=@item_012={0x0, 0x0, 0xb}]}}, 0x0}, 0x0) 1.824707549s ago: executing program 2 (id=947): r0 = socket(0x10, 0x3, 0x0) setsockopt$netlink_NETLINK_TX_RING(r0, 0x10e, 0xc, &(0x7f0000000340)={0x3f, 0x3, 0x9, 0x4}, 0x10) write(r0, &(0x7f00000000c0)="240000001e005f0214fffffffffffff807000000a600000000000000080008001d000000", 0x24) 1.745204213s ago: executing program 2 (id=948): syz_mount_image$jfs(&(0x7f0000000000), &(0x7f0000000040)='./file0\x00', 0x408, &(0x7f0000000080)=ANY=[], 0x1, 0x627c, &(0x7f000000c700)="$eJzs3U9vHGcdB/Df7D//KW2jHqoSIeS2AVpK87eEQIG2Bzj0wgHlihK5bhWRAkoCSquIuMqFAy8ChMQREEdOvIAeuHLjBRApQQJ66qCxn8cZL96s43R31n4+H8md+c0z432m3x3vbmZmnwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA4u3v//BMFRGXfpEWHIv4XPQjehErTb0WEStrx/L6g4h4Lraa49mIGC5FVLnx6YjXIuLjpyLu3b+13iw6u89+fO9Pf//dj574wd/+MDz1nz/f6L8+ab2bN3/977/cPvj+AgAAQInquq6r9DH/ePp83+u6UwDAXOTX/zrJy9ULV28uWH/UarVafQjrtnpvt9tFRGy2t2neMzgdDwCHzGZ80nUX6JD8izaIiCe67gSw0KquO8BM3Lt/a71K+Vbt14O17fZ8Lciu/Dernfs7Jk2nGb/GZF7PrzvRj2cm9GdlTn1YJDn/3nj+l7bbR2m9Wec/L5PyH23f+lScnH9/PP8xRyf/3p75lyrnP3ik/PvyBwAAAACABZb//f9Yx+d/lx5/V/blYed/1+bUBwAAAAAAAAD4rD3u+H87KuP/AQAAwKJqPqs3fvPUg2WTvoutWX6xinhybH2gMOlmmdWu+wEAAAAAAAAAAAAAJRlsX8N7sYoYRsSTq6t1XTc/beP1o3rc7Q+70vcfStb1H3kAANj28VNj9/JXEcsRcTF9199wdXW1rpdXVuvVemUpv58dLS3XK63PtXnaLFsa7eMN8WBUN79subVd27TPy9Pax39f81ijur+Pjs1Hh4EDQERsvxrd84p0xNT109H1uxwOB8f/0eP4Zz+6fp4CAAAAs1fXdV2lr/M+ns7597ruFAAwF/n1f/y8gFqtVqvV6qNXt9V7u90uImKzvU3znsFw/ABwyGzGJ113gQ7Jv2iDiHiu604AC63qugPMxL37t9arlG/Vfj1I47vna0F25b9ZbW2Xt99rOs34NSbzen7diX48M6E/z86pD4sk598bz//SdvsorTfr/OdlUv7Nfh7roD9dy/n3x/Mfc3Ty7+2Zf6ly/oNHyr8vfwAAAAAAWGD53/+PLdT539FBd2eqh53/XZvZowIAAAAAAADAbN27f2s93/eaz/9/YY/13P95NOX8K/kXKeef7v/fufDmpbH1+q35u289yP9f92+t//7GPz+fp/vNfynPVOmZVaVnRJUeqRqk6QF3bII7w/6oeaRh1esP0jU/9fDduBJXYyNO71q3l46HB+1ndrU3PR1utdf97fazu9oHO+15+3O72ofpSqd6JbefjPX4aVyNd7bam7alKfu/PKW9ntKe8+87/ouU8x+0fpr8V1N7NTZt3P2o93/HfXu61+O8eeWLvzo9+92Z6k70d/atrdm/Fzroz9b/kydG8fPrG9dO3rx848a1M5Emu5aejTT5jOX8h+kn5//Si9vt+e9++3i9+9HokfNfFHdiMDH/F1vzzf6+POe+dSHnP0o/Of93Uvvex/9hzn/y8f9KB/0BAAAAAAAAAAAAAACAh6nreusW0Tcj4ny6/6erezMBgPnKr/91kpfPq+4fdPs/7t6PrvqvVs+5rhasP3OtP61n/XhvL9T+qg9U/3fB+rNwdVu9tzfaRUT8tb1N857hl3v9MgBgkX0aEf/ouhN0Rv4Fy9/310xPdN0ZYK6uf/Dhjy9fvbpx7XrXPQEAAAAAAAAADiqP/7nWGv/5RF3Xt8fW2zX+61ux9rjjfw7yzM4AoxMGqu4/+j49TC+ivzXWeboF4vmYNP73cGfuYeN/D6Y83nBK+2hK+9KU9uUp7Xve6NGS83++Nd75iYg4Pjb8egnjv46PeV+CnP8Lredzk/9XxtZr51//9jDn39uV/6kb7//s1PUPPnz1yvuX39t4b+Mn586cOX3u/PkLFy6cevfK1Y3T2//tsMezlfPPY1+7DrQsOf+cufzLkvP/UqrlX5ac/5dTLf+y5Pzz+z35lyXnnz/7yL8sOf+XUy3/suT8v5pq+Zcl5/9KquVflpz/11It/7Lk/F9NtfzLkvM/mWr5lyXnfyrV+8x/Zdb9Yj5y/vkMl+O/LDn/fGWD/MuS8z+bavmXJed/LtXyL0vO/7VUy78sOf+vp1r+Zcn5n0+1/MuS8/9GquVflpz/hVTLvyw5/2+mWv5lyfl/K9XyL0vO//VUy78sOf9vp1r+Zcn5fyfV8i9Lzv+7qZZ/WXL+b6Ra/mV58P3/ZsyYMZNnuv7LBAAAAAAAAAAAAACMm8flxF3vIwAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADwP3bgQAAAAAAAyP+1EaqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqqwAwcCAAAAAED+r41QVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVVhb17i5Hrru8AfmZvXjuQGAipk5qwdowxzia7vsQXWhcTrg23khAKvcR2vWtnwbd47ZKkUe0oUCJhVFTRNnloCyhq81JhVXmgVUB5QK0qVSLtA31BVKg8RFVAAakqrSBbzZz//78zs7Mzu97xeuacz0dKftmZM3POnPnP7H7tfHcAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAqLfpXdOfr2RZVqlU8gvWZ9lrqnPt2PraJW+/tscHAAAArNwvav9+5YZ0wcEl3Khum3+69TvPzc3NzWWfGPzT4S/PzaUrxrJseE2W1a6LLv/gk5X6bYInstHKQN3XAx12P9jh+qEO1w93uH6kw/VrOlw/2uH6BSdggbVZJd3Zltp/rs9PaXZjNly7bkuLWz1RWTNQPXfptlmldpu54WPZTHYim84mG7bPt63Utn9+U3Vf78/ivgbq9rWxukJ+8tjReAyVcI63NOxr/j6jH70zG/vpTx47+tfnXr651ex4GhruLz/ObZurx/nZcEl+rJVsTTon8TgH6o5zY4vnZLDhOCu121X/u/k4X1nicQ7OH+aqan7OR7OB2n+/WDtPQ5WsxXnaGC772W1Zll2cP+zmbRbsKxvI1jVcMjD//IzmK7J6H9Wl9PpsaFnrdNMS1ml1Tm1pXKfNr4n4/G8Ktxta5Bjqn6YfPT5S97z/fO5K1mlUfdSLvVaa12C3Xyu9sgbjunix9qCfbLkGt4TH/9jWxddgy7XTYg2mx123Bjd3WoMDI4O1Y05PQqV2m/k1uKNh+8Haniq1+dLW9mtw4tzJMxOzjzx6x8zJI8enj0+f2rVjx+SuPXv27ds3cWzmxPRk/u8rPNu9b102kF4Dm8O5i6+BtzZtW79U5746suD990pfh6NtXofrm7bt9utwqPnBVVbnBblwTeevjY9VT/ropYFskddY7fnZvvLXYXrcda/DobrXYcvvKS1eh0NLeB1WtzmzfWk/swzV/dPqGBb/XrCyNbi+bg02/zzSvAa7/fNIr6zB0bAuvrd98e8FG8PxPjm+3J9HBheswfRww3tP9ZL08/7ovtpotS5vqV5x3Uh2fnb67J0PHzl37uyOLIxV8Ya6tdK8XtfVPaZswXodWPZ6PThz65O3tLh8fThXo3dU/zW66HNV3Wb3ne2fq9p3t9bns+HSnVkYXbba57PVd/Pq+RzJsqe//fi933zs6Xctej6refOzEyv/WTzl0rr33+FF3n9j7n8131+6qycGh4fy1+9gOjvDDe/HjU/VUO29q1Lb9ysTS3s/Hg7/rPb78Y1t3o83NG3b7ffj4eYHF9+PK53+tGNlmp/P0bBOTky2fz+ubrNh53LX5FDb9+PbwqyE8/+2kBRSLqpbO4ut27SvoaHh8LiG4h4a1+muhu2HQzar7uvZnVe2Trfdlt/XYHp081ZrnY41bdvtdZr+7GuxdVrp9KdvV6b5+RwN6+LGXe3XaXWbF3av/L1zbfzPuvfOkU5rcHhwpHrMw2kR1t7vs7m1cQ3emR3NTmcnsqnatSO19VSp7Wv8rqWtwZHwz2q/V25oswa3NW3b7TWYvo8ttvYqQwsffBc0P5+jYV08dVf7NVjd5t17u/uz67ZwSdqm7mfX5j9fW+zPvG5pOk1Xa60MheP89t72fzZb3ebEvuXmzPbn6fZwyXUtzlPz63ex19RUtjrnaUM4zpf3LX6eqsdT3ebL+5e4ng5mWXbhobtrf94b/n7l785/97mGv3dp9Xc6Fx66+8evPfaPyzl+APrfq/lYl3+vq/ubqaX8/T8AAADQF2LuHwgzkf8BAACgMGLuj/9XeCL/AwAAQGHE3D8UZlKS/L/h3S/PvHohS838uSBen07DPfl2seM6Gb4em5tXvfzuZ6b/+x8uLG3fA1mW/fyeP2i5/YZ74nHlxsJxXn5P4+ULPHfHkvZ9+P4Lab/1/fWvhPuPj2epy6BVBXcyy7Lnb/hibT9jn7xUmy/cc7g277345BPVbV7Zn38db//SG/Lt/yKUfw8eO9Jw+5fCefhhmJMfaH0+4u2+fultG/d+fH5/8XaVzdfXHvZTD+T3G39PzpeeyLeP53mx4//mF579enX7h9/S+vgvDLQ+/mfD/T4T5v++Kd++/jmofh1v97lw/HF/8XZ3fu1bLY//8ufz7c+8N9/ucJhx/9vC11ve+/JM/fl6uHKk4XFl78u3i/uf/O4f166P9xfvv/n4Rw9dajgfzevjhX/L72eiaft4edxP9PdN+6/eT/36jPt/9o8ON5znTvu/fO9Lb6reb/P+b2/a7sxD22v7n7+/xt/Y9Jef+2LL/cXjOfi3Zxoez8GPhtdx2P9TD4T1GK7/v8v5/TX/doXDH218/4nbf2X9hYbHE73/p/n+L7/jeG2uGV277rrXvPb6i2+unrsse3FNfn+d9n/8r043HP9Xb8rPR7w+dvSb97+YuP+znxk/dXr2/MxUOquP3VD73TkfzI8nHu8N4b21+etDp889OH12bHJsMsvGivsr9K7Y18L8cT4utt96bsE76Pb7w/N5y58/v27rv34hXv7vH8svv/SB/PvWW8N2XwqXrw/P3/L2v9BTm26qvb4rL4QjnFv4+4JXYuOW/9q3pA3D42/+uSCu9zNvfLB2HqrX1b5vxNf1Co//+1P5/XwjnNe58JuZN980v7/67ePvRrh0X/56X/H5C29z8Xn9m/B8f+iH+f3H44qP9/vh55hvbWh8v4vr4xsXBprvv/ZbPC6G95PsYn593Cqe70uv3NTy8OLvIcku3lz7+k/S/dy8rIe5mNlHZidOzJw6//DEuenZcxOzjzx66OTp86fOHar9Ls9Dn+p0+/n3p3W196ep6T27s9q71el8XGXX+vjP3H90au/k1qnpY0fOHzt3/5nps8ePzs4enZ6a3Xrk2LHpz3S6/czUgR079+/au3P8+MzUgX379+/aPz5z6nT1MPKD6mDP5KfHT509VLvJ7IHd+3fcddfuyfGTp6emD+ydnBw/3+n2te9N49Vb//742ekTR87NnJwen515dPrAjv179uzs+NsAT545Njs2cfb8qYnzs9NnJ/LHMnaudnH1e1+n21NMs/+R/zzbrJL/Ir7sI7fvSb+fteqZxxe9q3yTpl8g+nL4XTT//Loz+5bydcz9w2EmJcn/AAAAUAYx94+Emcj/AAAAUBgx968JM5H/AQAAoDBi7h8NMylJ/i9c/3/DhSXtX/9f/7/+fOn/l6z/f1+v9f/z9wv9/+5Yaf9e/z/Q/9f/1//X/9f/pwt6rf8fc//aLCtl/gcAAIAyiLl/XZiJ/A8AAACFEXP/dWEm8j8AAAAURsz9rwkzKUn+1//X/9f/1//X/2+9f/3//qT/357+fwf6/xNZufr/F7t5/Pr/+v8s1Gv9/5j7XxtmUpL8DwAAAGUQc//1YSbyPwAAABRGzP03hJnI/wAAAFAYMfevDzMpSf7X/9f/1//X/9f/b71//f/+pP/fnv5/B/r/Pv9f/1//n67qtf5/zP2vCzMpSf4HAACAMoi5//VhJvI/AAAA9J6hK7tZzP1vCDNZkP+vcAcAAADANRdz/41ZUxG8JH//r/+v/9/7/f816Tr9f/3/rCf7/4OZ/n/vuCb9/6cn0vOn/6//n+n/6//r/+v/k/Ra/7+W+7PR7I1hJiXJ/wAAAFAGMfffFGYi/wMAAEBhxNz/S2Em8j8AAAAURsz9G8JMSpL/9f/7t/8/Em5T/P6/z//X/+/1/r/P/+8lPv+/Pf3/DvT/9f/1//X/6ape6//H3H9zmElJ8j8AAACUQcz9t4SZyP8AAABQGDH3/3KYifwPAAAAhRFz/8Ywk5Lkf/3/Hu//x+ZoqT//X/9f/1//X/9/6fT/29P/70D/X/9f/1//n67qtf5/zP1vCjMpSf4HAACAMoi5/9YwE/kfAAAACiPm/jeHmcj/AAAAUBgx94+FmZQk/+v/93j/P+/Bj7T6/P8r7f9X71r/X/9f/1//v6j0/9vT/+9A/1//vyv9/7kL+v/6/+R6rf8fc/+mMJOS5H8AAAAog5j7N4eZyP8AAABQGDH33xZmIv8DAABAYcTcvyXMpCT5X/+/L/r/WTf7/z7/X/9f/1//v8j0/9vT/+9A/1//3+f/6//TVb3W/4+5/y1hJiXJ/wAAAFAGMfdvDTOR/wEAAKAwYu5/a5iJ/A8AAACFEXP/tjCTkuR//X/9f/1//X/9/9b71//vT/r/7en/d6D/r/9/Ffr/c/r/+v8l1mv9/5j73xZmUpL8DwAAAGUQc//2MBP5HwAAAAoj5v7bw0zkfwAAACiMmPvHw0xKkv/1//X/9f/1//X/W+9f/78/6f+3p//fgf6//r/P/9f/p6t6rf8fc/8dYSYlyf8AAABQBjH33xlmIv8DAABAYcTcPxFmIv8DAABAYcTcPxlmUpL8r/+v/6//r/+/rP7/m+fvV/8/p//fW/T/29P/70D/X///mvf/h/X/KZRe6//H3L8jzKQk+R8AAADKIOb+nWEm8j8AAAAURsz9u8JM5H8AAAAojJj7d4eZlCT/6//r/+v/6//7/P/W+9f/70/6/+11v/8fH6L+v/6//r/P/9f/Z6Fe6//H3H9XmElJ8j8AAACUQcz9e8JM5H8AAAAojJj794aZyP8AAABQGDH37wszKUn+1//X/9f/1//X/2+9f/3//qT/357P/+9A/1//X/9f/58Vuu8P67/qtf5/zP37w0xKkv8BAACgDGLuf3uYifwPAAAAhRFz/6+Emcj/AAAAUBgx9/9qmElJ8r/+f0P3vPpw9f/1//X/9f9r9P/7k/5/e/r/Hej/6//r/+v/01WL9v9D9F7t/n/M/QfCTEqS/wEAAKAMYu7/tTAT+R8AAAAKI+b+d4SZyP8AAABQGDH3HwwzKUn+1//3+f/6//r/+v+t97/a/f+ReL/6/yui/9+e/n8H+v/6//r/+v90Va99/n/M/e8MMylJ/gcAAIAyiLn/7jAT+R8AAAAKI+b+d4WZyP8AAABQGDH3vzvMpCT5X/9f/79f+v/X6f/r/zc9nqL1/33+f3fo/7en/9+B/r/+v/6//j9d1Wv9/5j73xNmUpL8DwAAAGUQc/97w0zkfwAAACiMmPvfF2Yi/wMAAEBhxNz//jCTkuR//X/9/37p/2f6//r/TY9H/1//vxX9//b0/zvQ/9f/1//X/6ereq3/H3P/r4eZlCT/AwAAQBnE3H9PmIn8DwAAAIURc/8HwkzkfwAAACiMmPs/GGZSkvyv/6//r/+v/6//33r/+v/9Sf+/vT7r///i+nC5/n9O/7+3j3+5/f+hpq+vSv//B4v1/+fWNN9e/5+rodf6/zH3fyjMpCT5HwAAAMog5v4Ph5nI/wAAAFAYMfd/JMxE/gcAAIDCiLn/N8JMSpL/9f+rxzHfXtb/L2r/f0D/X/9f/78k9P/b67P+v8//b6L/39vH7/P/9f9ZqNf6/zH3fzTMpCT5HwAAAMog5v57w0zkfwAAACiMmPvvCzOR/wEAAKAwYu7/WJhJSfK//r/P/y9H/9/n/2f6//r/JaH/357+fwf6//r/vdb//0/9f/pbr/X/Y+6/P8ykJPkfAAAAyiDm/o+Hmcj/AAAAUBgx9/9mmIn8DwAAAIURc/8nwkxKkv/1//ul/z/Wp/3/x/X/r2L//9br8+30//X/maf/357+fwf6//r/vdb/9/n/9Lle6//H3P/JMJOl5//RJW8JAAAAXBMx9/9WmElJ/v4fAAAAyiDm/t8OM5H/AQAAoDBi7v+dMJOS5H/9/37p//v8/0z/3+f/Nz0e/X/9/1ZWr/8f33n0//X/9f8j/X/9f/1/mvVa/z/m/t8NMylJ/gcAAIAyiLn/gTAT+R8AAAD6Qqv/J7tZzP2HwkzkfwAAACiMmPsPh5mUJP/r/+v/6//3aP//zzb/y/e+8+HDO/T/9f/1/5dlVT//v/ri9/n/+v/6/4n+v/6//j/Neq3/H3P/kTCTkuR/AAAAKIOY+38vzET+BwAAgMKIuf9omIn8DwAAAIURc/9UmElJ8r/+v/6//n+P9v/7+PP/4/nQ/2/Utf5/fNPV/28p79+nVXR1+/8fn++J6/8vt/8/0vJS/X/9/34+fv1//X8W6rX+f8z902EmJcn/AAAAUAYh9w8cy+f8FfI/AAAAFEbM/cfDTOR/AAAAKIyY+x8MMylJ/tf/1//X/9f/9/n/rfffrv9fGfL5/70q9e9/Vnuh6P836Z3+f2v6//r//Xz8+v/6/yzUa/3/mPtnwkxKkv8BAACgDGLu/1SYifwPAAAAhRFz/6fDTOR/AAAAKIyY+0+EmZQk/+v/6//r/+v/6/+33n/Pfv6//n9bK+3f6/8H+v/l7v//j/6//r/+P93Ra/3/mPtPhpmUJP8DAADA/7N3J02W1Wkdx09iQWUFLty5cGOESyN8Ayx0rS9AI9y4McJwgQMqzhTOIwqKsyI4D6CCIKKCswgqojiD3fQ8D/RE001UB1nP81QOJ8/NzLp57zn//+ez4JGkknsliCx+lfXt04Pc/bfGLfY/AAAANCN3/9fFLfY/AAAANCN3/9fHLZ3sf/3/9fT/1ypl/f/B97+6/89XPMf+/4v1/8e9vv5/Gf3/V9yo/z8L/f80/f8K4/3/TcMw9NX/e/6//l//z5rMrf/P3f8NcUsn+x8AAAB6kLv/G+MW+x8AAACakbv/trjF/gcAAIBm5O7/prilk/1/qP/fGfrs/zPj9fx/z//X/+v/Z9P/e/7/2Wy2/7/zja98+v8T9/8P3bPqZWfa/7f4/P+bxj647X7+em37/Z+w/7943Ofr/2nR3Pr/3P3fHLd0sv8BAACgB7n7vyVusf8BAACgGbn7b49b7H8AAABoRu7+b41bOtn/63v+/6W9jy+0/y/6f/3/3gf0//p//f9ief7/tJ6e/3/bCzff+spjn/f4aV6/o/5/1Lb7+aW/f8//1/9z1Nz6/9z93xa3dLL/AQAAoAe5+789brH/AQAAoBm5+78jbrH/AQAAoBm5+78zbulk/6+v/1/08/+L/l//v/cB/b/+X/+/WPr/aT31/2d5ff2//l//r/9nvebW/+fu/664pZP9DwAAAD3I3f/dcYv9DwAAAM3I3X9H3GL/AwAAwHIdCtly91+OWzrZ//r/8+//X9f/6//j6v/1//r/86f/n6b/X0H/r//X/+v/Wau59f+5+++MWzrZ/wAAANCD3P3fE7fY/wAAANCM3P3fG7fY/wAAANCM3P3fF7d0sv/1/57/r//X/+v/x19f/79M+v9p+v8V9P/X28/fqP/X/+v/2e+U/f9rE1+219L/5+7//rilk/0PAAAAPcjd/wNxi/0PAAAAzcjd/4Nxi/0PAAAAzcjd/0NxSyf7X/+v/9f/6//P3P8f/Vdvj/5/nP5/M/T/02bT/+9cGP2w/n/x/b/n/+v/9f8cMLfn/+fu/+G4pZP9DwAAAD3I3f8jccvE/j/1L+YDAAAAW5W7/0fjFt//BwAAgMXL6ix3/4/FLZ3sf/2//l//r//3/P/x15/q/x/f9/70//Oi/582m/7/GPp//f+S37/+X//PUXPr/3P3/3jc0sn+BwAAgB7k7r8rbrH/AQAAoBm5+38ibrH/AQAAoBm5+38ybulk/4/3/9f+uv7/ZPT/B99/b/1/2lT/n39H/f9k//8lnv/fJ/3/tM33/xf1/wf//vr/c7Tt9994/39p1efr/xkzt/4/d//dcUsn+x8AAAB6kLv/nrjF/gcAAIBm5O7/qbjF/gcAAIBm5O7/6bilk/3v+f/6f/2/5/832v+f6/P/h433/xf0/yek/5/m+f8r6P/1//p/z/9nrebW/+fuvzdu6WT/AwAAQA/ufXXY2/0/Mwz2PwAAACzR/t87cPg3lIbc/T8bt9j/AAAA0Izc/T8Xt3Sy//X/+n/9v/5f/z/++qft/1c9GNnz/zdD/z9N/7+C/v88+vkLjfX/9x33+XPo/+/Q/zMzB/r/J699fFv9f+7+n49bOtn/AAAA0IPc/b8Qt9j/AAAA0Izc/b8Yt9j/AAAA0Izc/b8Ut3Sy/8+9/58IYvX/+n/9v/6/pf5/Ff3/Zuj/p+n/V9D/e/6/5//r/1mra/3/wa+H2+r/c/f/ctzSyf4HAACAHuTu/5W4xf4HAACAZuTuvy9usf8BAACgGbn7fzVu6WT/e/6//l//r//X/4+/vv5/mfT/0/T/K+j/9f/6f/0/a3Xg+f/7bKv/z91/f9zSyf4HAACAHuTufyBusf8BAACgGbn7fy1usf8BAACgGbn7fz1u6WT/6//Pt//Pj+v/9f+D/l//r//fiG77/52xn4mOOqb/f/ZrLn/ZwY/o//X/C+//82u1/l//z3bNov+/cu2/LnP3/0bc0sn+BwAAgB7k7v/NuMX+BwAAgGbk7v+tuMX+BwAAgGbk7v/tuOWU+/9z1vquNkf/7/n/+n/9v/5//PX1/8vUbf9/Qp7/v4L+v5n+3/P/9f/Mwyz6/31/nrv/d+IW3/8HAACAZuTu/924xf4HAACAZuTu/724xf4HAACAZuTu//24pZP9r//X/+v/9f/6//HXP2v/vzuM0/9vhv5/mv5/Bf2//l//r/9nrebW/+fufzBu6WT/AwAAQA9y9z8Ut9j/AAAA0Izc/X8Qt9j/AAAA0Izc/X8Yt3Sy//X/+n/9v/5f/z/++p7/v0z6/2mb6//z68UM+/+HJ97AWP9/5aL+X/+v/9f/c0Zz6/9z9/9R3NLJ/gcAAIAe5O5/OG6x/wEAAKAZufsfiVvsfwAAAGhG7v4/jls62f/6f/2//l//r/8ff339/zLp/6d5/v8Knv+v/9f/6/9Zq7n1/7n7H41bOtn/AAAA0IPc/Y/FLfY/AAAANCN3/5/ELfY/AAAANCN3/+NxSyf7X/+v/9f/6//Ppf+/rP8/TP+/GefX/w/6f/2//n8F/b/+X//PYZvq/1+Lr/er+v/c/X8at3Sy/wEAAKAHufufiFvsfwAAAGhG7v4/i1vsfwAAAGhG7v4/j1s62f/6f/2//l//7/n/46+v/18mz/+f1mP/P/Zz9LH0//p//b/+n7XaVP9/XO9/+M9z9/9F3NLJ/gcAAIAe5O5/Mm6x/wEAAKAZufufilvsfwAAAGhG7v6/jFs62f/6f/3/wf5/GPT/+n/9/1Ub6P93B/3/2un/p/XY/5/m9fX/jfb/NwwN9f+Xjv18/T9zNLf+P3f/X8Utnex/AAAA6EHu/r+OW+x/AAAAaEbu/r+JW+x/AAAAaEbu/r+NW1ra/68fn74tv/+/eOgT9f/DMLx4u+f/6/8nXl//P5v+v/6p6v/XR/8/Tf+/gv6/zf7f8//1/2zN3Pr/3P1/F7e0tP8BAACgc7n7/z5usf8BAACgGbn7/yFusf8BAACgGbn7n45bOtn/y+//D3+i/n+4ruf/6//3PtBE/79z7Ovr//X/Lbve/v7+3fg5Tf+v/9f/j/bzO8f8d8+g/9f/6/8ZMbf+P3f/P8Ytnex/AAAA6EHu/mfiFvsfAAAAmpG7/9m4xf4HAACAZuTu/6e4pZP9r//X/zfX/9/QR/+/6/n/+n/9/6i5PP//llu+9Hn9v/6/xf5/iv5f/6//57C59f+5+/85bulk/wMAAEAPcvf/S9xi/wMAAEAzcvc/F7fY/wAAANCM5/ZCzt3hX4ehy/1/tP+/cbhaqF411v9Ho6b/30f/f/D9e/7/+L8fm33+//Gvv7H+/4v0//vp/zdjLv2/5/+f7f3r//X/S37/p+r/P//o5+v/adHc+v/c/c/HLZ3sfwAAAOhB7v5/i1vsfwAAAGhG7v5/j1vsfwAAAGhG7v4X4pZO9r/n/+v/9f/6f8//H399/f8y6f+n6f9X0P9ffz+fX1X1/8t9/v9n6f9Zn7n1/7n7/yNu2Rt+X/DZZ/x/EwAAAJiR3P3/Gbd08v1/AAAA6EHu/v+KW+x/AAAAaEbu/v+OWzrZ//p//f+S+v/hsv5f/6//1/9P0/9P0/+v0E//vzv2wW3389dr2++/mf7f8/9Zo7n1/7n7/ydu6WT/AwAAQNte3ftj7v7/jVvsfwAAAGhG7v7/i1vsfwAAAGhG7v4X45ZO9r/+X/+/pP7/bM///yr9/6HX1//r/1um/8+f0cfp/1fop/8fte1+funvX/+v/+eoufX/uftfils62f8AAADQg9z9/x+32P8AAADQjNz9b4pb7H8AAABoRu7+N8ctTez/Cyt/hP6/r/5/Z+ix//f8f/2//r8ny+n/Hxj9Sdrz//X/+v/lvn/9v/6fo+bW/+fuf3nnQoP7HwAAANr15V/4tS+d9Me+vPfH3eEtcYv9DwAAAM3I3f/WuMX+BwAAgGbk7n9b3NLJ/tf/99X/9/n8f/2//l//35ON9f9Px1+Y4fP/p8y//7/63yP6f/3/Et+//l//z1Fz6/9z9789btk3/Fb/r+gBAAAAG3XT6X547v53xC2dfP8fAAAAepC7/51xy5H9f+WEv6sdAAAAmKfd4V1xSyff/9f/z7z/H86p/48fp/+/Sv+v/x97ff3/Mi3n+f/jZt7/X9nx/H/9/wT9v/5f/89hc+v/c/c/8ejQ5f4HAACARh34FYV37/1xd3hP3GL/AwAAQDNy9783brH/AQAAoBm5+98Xt3Sy//X/M+//z/T8/0v1f3n+f+f9/127o6+v/9f/t0z/P23+z//X/+v/l/v+9f/6f446Rf+/N0jPu//P3f/+uKWT/Q8AAAA9yN3/gbjF/gcAAIBm5O7/YNxi/wMAAEAzcvd/KG7pZP/r/7fQ/999cRjOtf8/wfP/9f999P/HvH47/f/n3nz5ma/86kce1P9zzSb7//x3Qf+v/9f/X6X/1//r/zlsbs//z93/4bilk/0PAAAAPcjd/0rcYv8DAABAM3L3fyRueWP/P7WtdwUAAACsU+7+j8YtnXz/X//f4vP/l9n/5z/rLfT/l5fX/2dT3Hv/7/n/+v+jPP9/mv5/Bf2//l//r/9nrebW/+fu/1jc0sn+BwAAgB7k7v943JL7f+fUv3QPAAAAzEzu/k/ELb7/DwAAAM3I3f9q3NLJ/tf/6//n0v8nz/+/9nme/3+V/l//fxr6/2n6/xX0//p//b/+n7WaW/+fu/+TcUsn+x8AAAB6kLv/tbjF/gcAAIBm5O7/VNxi/wMAAEAzcvd/Om45sv/b/AUB/b/+X/+v/9f/j7++/n+Z9P/T9P8r6P/1/832/5dWvn/9P+dhbv1/7v7PBAAA//9VZmfp") chdir(&(0x7f0000000040)='./file0\x00') mknod$loop(&(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x6000, 0x1) 1.554369372s ago: executing program 3 (id=951): syz_open_dev$ttys(0xc, 0x2, 0x1) r0 = syz_open_dev$ptys(0xc, 0x3, 0x1) ioctl$TCSETS2(r0, 0x402c542b, &(0x7f0000000080)={0x8, 0x200, 0x401, 0xffff, 0x4, "a4104019d494892ded7cf2782f1453398d5d06", 0x4, 0x4}) 1.413658449s ago: executing program 3 (id=952): r0 = syz_init_net_socket$rose(0xb, 0x5, 0x0) mprotect(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x5) connect$rose(r0, &(0x7f00000002c0)=@short={0xb, @dev={0xbb, 0xbb, 0xbb, 0x1, 0x0}, @null, 0x2, @null}, 0x1c) 1.240343208s ago: executing program 3 (id=953): syz_mount_image$cramfs(&(0x7f0000000440), &(0x7f0000000000)='./file1\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfc, 0x15d, &(0x7f00000000c0)="$eJzs0c1qGlEUwPH/nbmOQhVbakG6qO5qKwU/aHdFnFKpi1ZoKZSuBDslAcUQIckykm0WQrYu8gFZhbyCJlmEBN3kKbJxneWEO6MM5BnOb3fOueecmXu/fp4XFJEv/d6pw2Dg/cv/bH1v/LqfTOomHwcSYX1j0zP18Py0DmtophoWQzDpqxT8X+96VqffNfGiHva7z5Z5eunVPjejGWoo49ur3GU8OGctV4a5V/CHrlclFsSvNbjpcF4JmB3BW3zcF9ayY3fVqpQD+PEwahZzLxXsjIvnZ7c/ZjfND+9r3n6lMXqXzNpF4BhXJa6t6ErmsyTQmlcrlU+JUtni450TLBihvyW34K8CbeZZBPMcsm/0b9hTcBDsWlyolPmJw4dWL/yOmhmwbedB5caddjZ20s48t7AL2lR9njBPFFSiGxFCCCGEEEIIIYQQQgghhBBCCCEijwEAAP//1upJrA==") r0 = openat$dir(0xffffffffffffff9c, &(0x7f0000000000)='.\x00', 0x0, 0x0) getdents64(r0, &(0x7f0000000f80)=""/4096, 0x1000) 1.052845917s ago: executing program 1 (id=954): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ieee802154(&(0x7f00000001c0), r0) sendmsg$IEEE802154_LLSEC_ADD_DEVKEY(r0, &(0x7f0000000600)={0x0, 0x0, &(0x7f0000001200)={&(0x7f0000000100)={0x28, r1, 0x607, 0x0, 0x4, {}, [@IEEE802154_ATTR_LLSEC_FRAME_COUNTER={0x8, 0x2f, 0xfffffffe}, @IEEE802154_ATTR_DEV_NAME={0xa, 0x1, 'wpan1\x00'}]}, 0x28}}, 0x14084) 959.590712ms ago: executing program 3 (id=955): r0 = socket$packet(0x11, 0x2, 0x300) setsockopt$packet_tx_ring(r0, 0x107, 0xd, &(0x7f0000000040)=@req3={0x10000, 0x100000001, 0x10000, 0x1}, 0x1c) sendmmsg$sock(r0, &(0x7f00000003c0)=[{{&(0x7f0000000080)=@phonet={0x23, 0xff, 0x4, 0x6}, 0x80, 0x0}}], 0x1, 0x40001) 787.578161ms ago: executing program 2 (id=956): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl80211(&(0x7f0000000040), 0xffffffffffffffff) sendmsg$NL80211_CMD_SET_REG(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000440)={0x34, r1, 0x1, 0x70bd26, 0x25dfdc00, {}, [@NL80211_ATTR_REG_RULES={0x18, 0x22, 0x0, 0x1, [{0x4}, {0x4}, {0x4}, {0x4}, {0x4}]}, @NL80211_ATTR_REG_ALPHA2={0x6, 0x21, 'a\x00'}]}, 0x34}, 0x1, 0x0, 0x0, 0x4040001}, 0x8000) 769.815781ms ago: executing program 3 (id=957): r0 = syz_open_dev$ttys(0xc, 0x2, 0x0) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000040)=0x19) write$binfmt_misc(r0, &(0x7f0000000dc0), 0x386) 769.047382ms ago: executing program 1 (id=958): r0 = openat$ppp(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$PPPIOCNEWUNIT(r0, 0xc004743e, &(0x7f00000000c0)) ioctl$PPPIOCSNPMODE(r0, 0x4008744b, &(0x7f0000000080)={0xc021}) 524.638084ms ago: executing program 3 (id=959): r0 = syz_usb_connect(0x0, 0x36, &(0x7f0000000180)=ANY=[@ANYBLOB="120100006325a640402000498b4d000000010902240001000000000904000002214c6a0009050702000000da000905890e"], 0x0) syz_usb_control_io(r0, 0x0, &(0x7f0000000c40)={0x84, &(0x7f0000000780)=ANY=[@ANYBLOB='\x00\x00.'], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) syz_usb_control_io$lan78xx(r0, 0x0, 0x0) 492.771015ms ago: executing program 2 (id=960): r0 = syz_mount_image$reiserfs(&(0x7f0000000000), &(0x7f0000000140)='./file0\x00', 0x120c083, &(0x7f0000000480), 0xfd, 0x111d, &(0x7f0000000640)="$eJzs2bFqFFEUBuD/7qwm3cjYD4IWFhIS1gcwhcK2ttqIBARTZUFQfA3fwLfwFTSVtSG9FgFLYWScHRMloCGbQOD7YPeeOTNnzr3lvRMAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADoTZOvJbk5SZoxN0lSkrbdnx8macf8jY/VJCWPd+aLh3uzR4sk1a/Hy5Ok9FV9WZqt2+vNrJk1W839B9t3Pi1ev3n5bHd3Z2/5mpI2B0crXUUZ/6qTubLSHgAAAHBldedW592r/+l0/cvF9AcAAAD+ZeUHCgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABn1NXHcTMGkyQladv9+WGS9pS6a5c0PwAAAOD8SiZ5Wp+WH44Bjt3L57r8zvfj99LHm3lfp0wvb8oAAABw5bz48Mdlt7YMTn5f/9EN+n333UyHffn6cO9WptnYGOLlkG/bSZVk869eB0dvn4+/0lXJ2sWsCQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAgJ/swAEJAAAAgKD/r9sRKAAAAAAAAAAAAAAAAAAAAAAAAAAAFwUAAP//cLriEQ==") syz_mount_image$msdos(&(0x7f00000000c0), &(0x7f0000000100)='.\x00', 0x1a484bc, &(0x7f0000000200)=ANY=[@ANYRES8=r0, @ANYBLOB="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", @ANYRES8, @ANYRESDEC=r0, @ANYRESOCT, @ANYRES16, @ANYRESHEX=r0, @ANYRESHEX, @ANYRESDEC], 0x1, 0x0, &(0x7f0000000480)) mount$bind(0x0, &(0x7f0000000100)='.\x00', 0x0, 0x21, 0x0) 459.437207ms ago: executing program 1 (id=961): write$cgroup_subtree(0xffffffffffffffff, &(0x7f0000000100)=ANY=[@ANYBLOB='-0'], 0x9) syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) mount(&(0x7f0000000100), &(0x7f0000000040)='./file0\x00', &(0x7f0000000000)='9p\x00', 0x0, &(0x7f0000000080)='trans=tcp,') 277.630046ms ago: executing program 1 (id=962): bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000040)={0xffffffffffffffff, 0xe0, &(0x7f00000002c0)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40068, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x43, 0x8, 0x0, 0x0}}, 0x10) r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)=ANY=[@ANYBLOB="02000000040000000800000001"], 0x48) bpf$MAP_GET_NEXT_KEY(0x4, &(0x7f0000000080)={r0, &(0x7f0000000000), &(0x7f0000000100)=""/183}, 0x20) 135.588353ms ago: executing program 1 (id=963): r0 = openat$dsp(0xffffffffffffff9c, &(0x7f0000000000), 0x2002, 0x0) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f0000000040)=0x9) ioctl$SNDCTL_DSP_SETTRIGGER(r0, 0x40045010, &(0x7f00000000c0)) 0s ago: executing program 1 (id=964): r0 = syz_usb_connect(0x5, 0x24, &(0x7f0000000440)=ANY=[@ANYBLOB="120100003d2ab420720c0d009b27010203010902120001000000000904"], 0x0) syz_usb_control_io$cdc_ecm(r0, 0x0, &(0x7f0000000680)={0x1c, &(0x7f0000000580)={0x0, 0xd}, 0x0, 0x0}) syz_usb_control_io$uac3(r0, 0x0, &(0x7f0000000a40)={0x44, &(0x7f00000007c0)={0x20, 0x16}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) kernel console output (not intermixed with test programs): syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 103.842371][ T28] audit: type=1326 audit(1774431820.817:7): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.0.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 103.880624][ T28] audit: type=1326 audit(1774431820.827:8): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.0.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 103.952971][ T6347] tipc: Started in network mode [ 103.959350][ T6347] tipc: Node identity ff010000000000000000000000000001, cluster identity 4711 [ 103.970037][ T6347] tipc: Enabling of bearer rejected, failed to enable media [ 103.983014][ T28] audit: type=1326 audit(1774431820.827:9): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.0.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 104.041876][ T6310] XFS (loop2): Ending clean mount [ 104.057743][ T6350] loop1: detected capacity change from 0 to 256 [ 104.085452][ T6310] XFS (loop2): Quotacheck needed: Please wait. [ 104.098413][ T6352] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 104.116762][ T28] audit: type=1326 audit(1774431820.827:10): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.0.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 104.212709][ T6310] XFS (loop2): Quotacheck: Done. [ 104.247728][ T28] audit: type=1326 audit(1774431820.827:11): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6330 comm="syz.0.195" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 104.258152][ T6356] loop3: detected capacity change from 0 to 128 [ 104.307382][ T6356] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 104.480327][ T5771] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 104.992048][ T6370] netdevsim netdevsim2 netdevsim0: set [0, 0] type 1 family 0 port 8472 - 0 [ 105.001577][ T6370] netdevsim netdevsim2 netdevsim1: set [0, 0] type 1 family 0 port 8472 - 0 [ 105.010719][ T6370] netdevsim netdevsim2 netdevsim2: set [0, 0] type 1 family 0 port 8472 - 0 [ 105.019825][ T6370] netdevsim netdevsim2 netdevsim3: set [0, 0] type 1 family 0 port 8472 - 0 [ 105.319765][ T6380] netlink: 48 bytes leftover after parsing attributes in process `syz.2.212'. [ 105.345084][ T6358] loop1: detected capacity change from 0 to 32768 [ 105.430501][ T28] audit: type=1800 audit(1774431822.587:12): pid=6358 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.1.203" name="file1" dev="loop1" ino=7 res=0 errno=0 [ 105.565441][ T6387] loop2: detected capacity change from 0 to 8 [ 105.572919][ T6387] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 105.606507][ T6389] loop3: detected capacity change from 0 to 64 [ 105.644545][ T5988] udevd[5988]: incorrect cramfs checksum on /dev/loop2 [ 105.719001][ T5938] udevd[5938]: incorrect cramfs checksum on /dev/loop2 [ 106.145564][ T5773] Bluetooth: hci3: hardware error 0x09 [ 106.271178][ T6401] capability: warning: `syz.3.224' uses deprecated v2 capabilities in a way that may be insecure [ 106.335176][ T6403] overlayfs: option "workdir=./bus" is useless in a non-upper mount, ignore [ 106.354317][ T6403] overlayfs: at least 2 lowerdir are needed while upperdir nonexistent [ 106.368711][ T6391] loop0: detected capacity change from 0 to 32768 [ 106.454047][ T6391] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 106.512635][ T6410] loop3: detected capacity change from 0 to 256 [ 106.544375][ T6410] exfat: Deprecated parameter 'utf8' [ 106.577974][ T6410] exfat: Deprecated parameter 'utf8' [ 106.619233][ T6410] exfat: Deprecated parameter 'utf8' [ 106.639220][ T6416] team_slave_0: entered promiscuous mode [ 106.645367][ T6416] team_slave_1: entered promiscuous mode [ 106.684605][ T6416] macvtap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 106.689462][ T6410] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 106.698858][ T6416] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 106.756874][ T6391] XFS (loop0): Ending clean mount [ 106.797181][ T6391] XFS (loop0): Quotacheck needed: Please wait. [ 106.883824][ T6391] XFS (loop0): Quotacheck: Done. [ 106.994165][ T6423] UDPLite: UDP-Lite is deprecated and scheduled to be removed in 2025, please contact the netdev mailing list [ 107.110611][ T5769] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 107.223059][ T6427] loop2: detected capacity change from 0 to 1024 [ 107.264531][ T6427] EXT4-fs: Ignoring removed orlov option [ 107.339867][ T6427] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 107.652533][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 108.203280][ T6455] loop3: detected capacity change from 0 to 256 [ 108.231847][ T6455] exfat: Deprecated parameter 'utf8' [ 108.268844][ T5773] Bluetooth: hci3: Opcode 0x0c03 failed: -110 [ 108.319406][ T6455] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe3908169, utbl_chksum : 0xe619d30d) [ 108.477852][ T6461] semctl(GETNCNT/GETZCNT) is since 3.16 Single Unix Specification compliant. [ 108.477852][ T6461] The task syz.0.247 (6461) triggered the difference, watch for misbehavior. [ 108.829759][ T6467] loop1: detected capacity change from 0 to 128 [ 108.981508][ T6459] loop2: detected capacity change from 0 to 32768 [ 109.004276][ T6459] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop2 scanned by syz.2.246 (6459) [ 109.040472][ T6459] BTRFS info (device loop2): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 109.052013][ T6459] BTRFS info (device loop2): using blake2b (blake2b-256-generic) checksum algorithm [ 109.081556][ T6459] BTRFS info (device loop2): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 109.126730][ T6459] BTRFS info (device loop2): use zstd compression, level 3 [ 109.147492][ T6459] BTRFS info (device loop2): using free space tree [ 109.293431][ T6459] BTRFS info (device loop2): enabling ssd optimizations [ 109.338320][ T6459] BTRFS info (device loop2): auto enabling async discard [ 109.479439][ T6491] loop0: detected capacity change from 0 to 128 [ 109.513074][ T6491] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 109.552108][ T28] audit: type=1800 audit(1774431826.707:13): pid=6459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.246" name="bus" dev="loop2" ino=263 res=0 errno=0 [ 109.595298][ T6491] ext4 filesystem being mounted at /66/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 109.713745][ T28] audit: type=1804 audit(1774431826.747:14): pid=6459 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.2.246" name="/newroot/72/file0/bus" dev="loop2" ino=263 res=1 errno=0 [ 109.836702][ T5769] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 109.837831][ T5771] BTRFS info (device loop2): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 110.001660][ T6499] loop0: detected capacity change from 0 to 64 [ 110.314771][ T6503] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) ! [ 110.462038][ T6494] loop1: detected capacity change from 0 to 32768 [ 110.590087][ T6494] XFS (loop1): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 110.593243][ T6514] dvb_demux: dvb_demux_feed_del: feed not in list (type=0 state=0 pid=ffff) [ 110.842083][ T6494] XFS (loop1): Ending clean mount [ 110.866977][ T6525] loop2: detected capacity change from 0 to 16 [ 111.010333][ T6525] erofs: (device loop2): mounted with root inode @ nid 36. [ 111.131090][ T6494] XFS (loop1): Metadata CRC error detected at xfs_rmapbt_read_verify+0x42/0xd0, xfs_rmapbt block 0x14 [ 111.169070][ T6525] erofs: (device loop2): z_erofs_do_map_blocks: inconsistent algorithmtype 0 for nid 36 [ 111.222528][ T6494] XFS (loop1): Unmount and run xfs_repair [ 111.270042][ T6494] XFS (loop1): First 128 bytes of corrupted metadata buffer: [ 111.296374][ T6494] 00000000: 52 4d 42 33 00 00 00 0c ff ff ff ff ff ff ff ff RMB3............ [ 111.353647][ T6494] 00000010: 00 00 00 00 00 00 00 14 00 00 00 01 00 00 00 80 ................ [ 111.377851][ T6494] 00000020: bf dc 47 fc 10 d8 4e ed a5 62 11 a8 31 b3 f7 91 ..G...N..b..1... [ 111.439911][ T6494] 00000030: 00 00 00 00 5b af 3b 1d 00 00 00 00 00 00 00 01 ....[.;......... [ 111.453159][ T6494] 00000040: ff ff ff ff ff ff ff fd 00 00 00 00 00 00 00 00 ................ [ 111.469433][ T6494] 00000050: 00 00 00 01 00 00 00 02 ff ff ff ff ff ff ff fb ................ [ 111.479826][ T6494] 00000060: 00 00 00 00 00 00 00 00 00 00 00 03 00 00 00 02 ................ [ 111.491378][ T6494] 00000070: ff ff ff ff ff ff ff fa 00 00 00 00 00 00 00 00 ................ [ 111.508757][ T6494] XFS (loop1): metadata I/O error in "xfs_btree_read_buf_block+0x1df/0x2e0" at daddr 0x14 len 4 error 74 [ 111.553352][ T6494] XFS (loop1): Corruption of in-memory data (0x8) detected at xfs_defer_finish_noroll+0x183c/0x1e00 (fs/xfs/libxfs/xfs_defer.c:598). Shutting down filesystem. [ 111.581741][ T6494] XFS (loop1): Please unmount the filesystem and rectify the problem(s) [ 111.661255][ T5768] XFS (loop1): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 111.770391][ T6540] set_capacity_and_notify: 1 callbacks suppressed [ 111.770405][ T6540] loop0: detected capacity change from 0 to 64 [ 111.917637][ T6540] hfs: bad catalog entry type 65535 [ 112.141769][ T6546] raw_sendmsg: syz.1.271 forgot to set AF_INET. Fix it! [ 112.155200][ T6530] loop3: detected capacity change from 0 to 32768 [ 112.210619][ T6530] XFS (loop3): DAX unsupported by block device. Turning off DAX. [ 112.243928][ T5828] usb 3-1: new high-speed USB device number 6 using dummy_hcd [ 112.309818][ T6530] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 112.438328][ T6530] XFS (loop3): Ending clean mount [ 112.462039][ T6530] XFS (loop3): Quotacheck needed: Please wait. [ 112.492910][ T5828] usb 3-1: config 0 has an invalid interface number: 4 but max is 0 [ 112.533906][ T5828] usb 3-1: config 0 has no interface number 0 [ 112.540255][ T5828] usb 3-1: config 0 interface 4 has no altsetting 0 [ 112.588065][ T5828] usb 3-1: New USB device found, idVendor=0bed, idProduct=1100, bcdDevice=ec.c3 [ 112.609255][ T5828] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 112.653815][ T5828] usb 3-1: config 0 descriptor?? [ 112.660804][ T6530] XFS (loop3): Quotacheck: Done. [ 112.673353][ T5828] cp210x 3-1:0.4: cp210x converter detected [ 112.819039][ T5770] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 113.065496][ T6556] loop1: detected capacity change from 0 to 32768 [ 113.078827][ T5828] cp210x 3-1:0.4: failed to get vendor val 0x000e size 3: -71 [ 113.152692][ T5828] usb 3-1: cp210x converter now attached to ttyUSB0 [ 113.187907][ T5828] usb 3-1: USB disconnect, device number 6 [ 113.197981][ T6563] loop0: detected capacity change from 0 to 32768 [ 113.208883][ T5828] cp210x ttyUSB0: cp210x converter now disconnected from ttyUSB0 [ 113.238737][ T5828] cp210x 3-1:0.4: device disconnected [ 113.586338][ T6572] netlink: 84 bytes leftover after parsing attributes in process `syz.3.282'. [ 113.626015][ T6572] netlink: 84 bytes leftover after parsing attributes in process `syz.3.282'. [ 113.940382][ T6579] loop3: detected capacity change from 0 to 1024 [ 113.980195][ T6579] EXT4-fs: Ignoring removed nobh option [ 114.020164][ T6582] loop1: detected capacity change from 0 to 1024 [ 114.042089][ T6582] EXT4-fs: Ignoring removed orlov option [ 114.049560][ T6579] EXT4-fs (loop3): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 114.090582][ T6582] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 114.090607][ T6579] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 114.375497][ T6579] EXT4-fs warning (device loop3): ext4_expand_extra_isize_ea:2853: Unable to expand inode 12. Delete some EAs or run e2fsck. [ 114.377710][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.413045][ T6579] EXT4-fs error (device loop3): ext4_find_dest_de:2115: inode #12: block 7: comm syz.3.285: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 114.474028][ T6579] EXT4-fs (loop3): Remounting filesystem read-only [ 114.595576][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 114.600488][ T6597] team0: Device is already in use. [ 114.999462][ T6595] loop2: detected capacity change from 0 to 32768 [ 115.087936][ T6595] JBD2: Ignoring recovery information on journal [ 115.240427][ T6595] ocfs2: Mounting device (7,2) on (node local, slot 0) with ordered data mode. [ 115.263147][ T6611] loop1: detected capacity change from 0 to 4096 [ 115.299897][ T6611] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 115.380172][ T6611] ntfs3: loop1: Mark volume as dirty due to NTFS errors [ 115.419758][ T6611] ntfs3: loop1: Inode r=b is not in use! [ 115.444737][ T6611] ntfs3: loop1: Failed to load $Extend (-116). [ 115.451230][ T6611] ntfs3: loop1: Failed to initialize $Extend. [ 115.632916][ T5771] ocfs2: Unmounting device (7,2) on (node local) [ 115.689597][ T28] audit: type=1326 audit(1774431832.837:15): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 115.727937][ T28] audit: type=1326 audit(1774431832.837:16): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 115.791852][ T28] audit: type=1326 audit(1774431832.877:17): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 115.875356][ T28] audit: type=1326 audit(1774431832.877:18): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 115.940252][ T6633] loop3: detected capacity change from 0 to 512 [ 115.976024][ T28] audit: type=1326 audit(1774431832.877:19): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 116.010899][ T6635] loop0: detected capacity change from 0 to 2048 [ 116.035638][ T6633] EXT4-fs error (device loop3): ext4_iget_extra_inode:4732: inode #15: comm syz.3.310: corrupted in-inode xattr: bad e_name length [ 116.051727][ T28] audit: type=1326 audit(1774431832.877:20): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 116.082689][ T28] audit: type=1326 audit(1774431832.877:21): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=6627 comm="syz.0.306" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 116.087338][ T6635] UDF-fs: INFO Mounting volume 'LiuxUDF', timestamp 2022/11/22 14:59 (1000) [ 116.115948][ T6633] EXT4-fs error (device loop3): ext4_orphan_get:1403: comm syz.3.310: couldn't read orphan inode 15 (err -117) [ 116.140020][ T6633] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 116.317570][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 116.492446][ T6642] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 116.756429][ T6652] EXT4-fs: Ignoring removed nobh option [ 116.762065][ T6652] EXT4-fs: Ignoring removed oldalloc option [ 116.859594][ T6652] EXT4-fs (loop2): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 116.915303][ T6659] nftables ruleset with unbound set [ 116.979469][ T6663] set_capacity_and_notify: 2 callbacks suppressed [ 116.979483][ T6663] loop0: detected capacity change from 0 to 4096 [ 116.988455][ T6652] ext4 filesystem being mounted at /83/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 117.069326][ T6652] EXT4-fs (loop2): resizing filesystem from 64 to 1 blocks [ 117.114014][ T6652] EXT4-fs warning (device loop2): ext4_resize_fs:2048: can't shrink FS - resize aborted [ 117.140797][ T6663] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 117.163343][ T6663] ntfs3: loop0: Failed to initialize $Extend/$ObjId. [ 117.245690][ T5771] EXT4-fs (loop2): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 117.258596][ T6669] loop3: detected capacity change from 0 to 128 [ 117.297737][ T28] audit: type=1800 audit(1774431834.447:22): pid=6663 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.321" name="file1" dev="loop0" ino=30 res=0 errno=0 [ 117.329642][ T6663] ntfs3: loop0: ino=1e, "file1" attr_set_size [ 117.514505][ T11] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 117.556604][ T5769] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 117.585300][ T5769] ntfs3: loop0: Mark volume as dirty due to NTFS errors [ 117.592450][ T5769] ntfs3: loop0: ino=3, ntfs_set_state failed, -22. [ 117.655676][ T11] ntfs3: loop0: ino=3, ntfs3_write_inode failed, -22. [ 118.392556][ T6709] loop1: detected capacity change from 0 to 164 [ 118.658238][ T6716] loop0: detected capacity change from 0 to 256 [ 118.691032][ T6716] exfat: Deprecated parameter 'utf8' [ 118.718349][ T6716] exfat: Deprecated parameter 'namecase' [ 118.794879][ T6716] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x11bbdf60, utbl_chksum : 0xe619d30d) [ 119.474488][ T6744] loop2: detected capacity change from 0 to 8192 [ 119.488062][ T6746] loop1: detected capacity change from 0 to 2048 [ 119.536182][ T6744] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 119.574751][ T6746] UDF-fs: INFO Mounting volume 'LinuxUDF', timestamp 2022/11/22 14:59 (1000) [ 119.604792][ T6744] REISERFS (device loop2): found reiserfs format "3.6" with non-standard journal [ 119.616405][ T6744] REISERFS (device loop2): using ordered data mode [ 119.622966][ T6744] reiserfs: using flush barriers [ 119.632877][ T6744] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 119.650811][ T6744] REISERFS (device loop2): checking transaction log (loop2) [ 119.876926][ T6744] REISERFS (device loop2): Using r5 hash to sort names [ 119.927300][ T6744] REISERFS (device loop2): Created .reiserfs_priv - reserved for xattr storage. [ 119.977638][ T6754] loop1: detected capacity change from 0 to 256 [ 119.995476][ T6754] exfat: Deprecated parameter 'namecase' [ 120.050245][ T6754] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 120.360715][ T6760] loop1: detected capacity change from 0 to 512 [ 120.384332][ T6760] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 120.384469][ T6743] loop0: detected capacity change from 0 to 32768 [ 120.497700][ T6743] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 120.534193][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 120.923516][ T6743] XFS (loop0): Ending clean mount [ 120.942124][ T5809] IPVS: starting estimator thread 0... [ 120.942355][ T6743] XFS (loop0): Quotacheck needed: Please wait. [ 121.005233][ T6743] XFS (loop0): Quotacheck: Done. [ 121.065890][ T6783] IPVS: using max 24 ests per chain, 57600 per kthread [ 121.230381][ T5769] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 121.391141][ T5809] usb 2-1: new high-speed USB device number 8 using dummy_hcd [ 121.560064][ T6793] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 121.567390][ T6793] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 121.574155][ T6793] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 121.580789][ T6793] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 121.584114][ T5809] usb 2-1: Using ep0 maxpacket: 16 [ 121.593065][ T6793] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 121.602645][ T5809] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 121.606903][ T6793] comedi comedi3: 8255: I/O port conflict (0x12,4) [ 121.620969][ T6793] comedi comedi3: 8255: I/O port conflict (0x11,4) [ 121.631040][ T6793] comedi comedi3: 8255: I/O port conflict (0x81,4) [ 121.637540][ T5809] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 121.641361][ T6793] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffc,4) [ 121.652301][ T5809] usb 2-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 121.666027][ T5809] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 121.675205][ T6793] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 121.678846][ T5809] usb 2-1: config 0 descriptor?? [ 121.682487][ T6793] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4) [ 121.706202][ T6793] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 121.722618][ T6793] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 121.733274][ T6793] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 121.746189][ T6793] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 121.755032][ T6793] comedi comedi3: 8255: I/O port conflict (0x400009,4) [ 121.780768][ T6793] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 121.804009][ T6793] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 121.821498][ T6793] comedi comedi3: 8255: I/O port conflict (0x80,4) [ 121.828868][ T6793] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 121.840056][ T6793] comedi comedi3: 8255: I/O port conflict (0x2000e67,4) [ 121.848835][ T6793] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 121.860118][ T6793] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4) [ 121.881557][ T6799] futex_wake_op: syz.0.381 tries to shift op by 32; fix this program [ 122.132342][ T6807] loop2: detected capacity change from 0 to 24 [ 122.139156][ T5809] hid-multitouch 0003:1FD2:6007.000C: item fetching failed at offset 1/5 [ 122.139855][ T5809] hid-multitouch: probe of 0003:1FD2:6007.000C failed with error -22 [ 122.175158][ T6807] MTD: Attempt to mount non-MTD device "/dev/loop2" [ 122.185797][ T787] usb 4-1: new full-speed USB device number 2 using dummy_hcd [ 122.227725][ T6807] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 122.409879][ T787] usb 4-1: New USB device found, idVendor=174f, idProduct=6a31, bcdDevice=26.3f [ 122.427382][ T787] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 122.448094][ T787] usb 4-1: Product: syz [ 122.453396][ T787] usb 4-1: Manufacturer: syz [ 122.460322][ T787] usb 4-1: SerialNumber: syz [ 122.461729][ T27] usb 2-1: USB disconnect, device number 8 [ 122.467668][ T787] usb 4-1: config 0 descriptor?? [ 122.492527][ T6815] binder: 6814:6815 ioctl 4018620d 0 returned -22 [ 122.505784][ T6815] binder: 6814:6815 ioctl c0306201 200000000300 returned -11 [ 122.511088][ T787] gspca_main: stk1135-2.14.0 probing 174f:6a31 [ 122.683742][ T5809] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 122.873953][ T5809] usb 1-1: Using ep0 maxpacket: 16 [ 122.885783][ T5809] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 122.898180][ T5809] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 122.899516][ T6825] CUSE: unknown device info "" [ 122.908886][ T5809] usb 1-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 122.918165][ T6825] CUSE: unknown device info "" [ 122.926668][ T5809] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 122.928310][ T6825] CUSE: unknown device info "" [ 122.941187][ T6825] CUSE: zero length info key specified [ 122.952072][ T5809] usb 1-1: config 0 descriptor?? [ 123.117650][ T787] gspca_stk1135: reg_w 0x3 err -71 [ 123.134854][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.153494][ T787] gspca_stk1135: Sensor write failed [ 123.170297][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.196099][ T787] gspca_stk1135: Sensor write failed [ 123.212207][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.222311][ T787] gspca_stk1135: Sensor read failed [ 123.240770][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.253692][ T787] gspca_stk1135: Sensor read failed [ 123.268664][ T787] gspca_stk1135: Detected sensor type unknown (0x0) [ 123.282019][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.304004][ T787] gspca_stk1135: Sensor read failed [ 123.312045][ T6832] loop1: detected capacity change from 0 to 1024 [ 123.323172][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.330891][ T787] gspca_stk1135: Sensor read failed [ 123.338947][ T6832] EXT4-fs: Ignoring removed mblk_io_submit option [ 123.353743][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.364233][ T787] gspca_stk1135: Sensor write failed [ 123.369602][ T787] gspca_stk1135: serial bus timeout: status=0x00 [ 123.380302][ T787] gspca_stk1135: Sensor write failed [ 123.387764][ T787] stk1135: probe of 4-1:0.0 failed with error -71 [ 123.410343][ T787] usb 4-1: USB disconnect, device number 2 [ 123.425580][ T5809] konepure 0003:1E7D:2DB4.000D: hidraw0: USB HID v0.00 Device [HID 1e7d:2db4] on usb-dummy_hcd.0-1/input0 [ 123.489238][ T6832] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 123.683174][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 123.717487][ T27] usb 1-1: USB disconnect, device number 5 [ 123.838991][ T6838] program syz.3.399 is using a deprecated SCSI ioctl, please convert it to SG_IO [ 123.866908][ T6827] loop2: detected capacity change from 0 to 40427 [ 123.883331][ T6827] F2FS-fs (loop2): build fault injection attr: rate: 690, type: 0x7ffff [ 123.905865][ T6827] F2FS-fs (loop2): heap/no_heap options were deprecated [ 123.950567][ T6827] F2FS-fs (loop2): invalid crc value [ 123.978312][ T6827] F2FS-fs (loop2): Found nat_bits in checkpoint [ 124.112293][ T6827] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 124.248823][ T6827] syz.2.395: attempt to access beyond end of device [ 124.248823][ T6827] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 124.284821][ T6827] F2FS-fs (loop2): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x99c/0x1a00 [ 124.337135][ T6827] syz.2.395: attempt to access beyond end of device [ 124.337135][ T6827] loop2: rw=2049, sector=45112, nr_sectors = 8 limit=40427 [ 124.405894][ T6827] syz.2.395: attempt to access beyond end of device [ 124.405894][ T6827] loop2: rw=2049, sector=45128, nr_sectors = 16 limit=40427 [ 124.443108][ T6827] syz.2.395: attempt to access beyond end of device [ 124.443108][ T6827] loop2: rw=2049, sector=45176, nr_sectors = 24 limit=40427 [ 124.474369][ T6827] syz.2.395: attempt to access beyond end of device [ 124.474369][ T6827] loop2: rw=2049, sector=45208, nr_sectors = 32 limit=40427 [ 124.512770][ T6827] syz.2.395: attempt to access beyond end of device [ 124.512770][ T6827] loop2: rw=2049, sector=45264, nr_sectors = 8 limit=40427 [ 124.604254][ T5771] syz-executor: attempt to access beyond end of device [ 124.604254][ T5771] loop2: rw=2049, sector=45272, nr_sectors = 8 limit=40427 [ 124.624524][ T6858] nbd: must specify at least one socket [ 124.653758][ T5771] F2FS-fs (loop2): Stopped filesystem due to reason: 3 [ 125.043800][ T6846] mmap: syz.1.401 (6846) uses deprecated remap_file_pages() syscall. See Documentation/mm/remap_file_pages.rst. [ 125.188430][ T6872] loop0: detected capacity change from 0 to 1024 [ 125.415158][ T6872] hfsplus: bad catalog entry type [ 125.558911][ T61] hfsplus: b-tree write err: -5, ino 25 [ 125.577250][ T61] hfsplus: b-tree write err: -5, ino 4 [ 125.604062][ T61] hfsplus: b-tree write err: -5, ino 2 [ 125.777699][ T6868] loop3: detected capacity change from 0 to 32768 [ 125.892345][ T6886] netlink: 20 bytes leftover after parsing attributes in process `syz.1.417'. [ 126.222494][ T6898] loop2: detected capacity change from 0 to 65 [ 126.263711][ T6898] BFS-fs: bfs_fill_super(): loop2 is unclean, continuing [ 126.293959][ T6898] BFS-fs: bfs_fill_super(): NOTE: filesystem loop2 was created with 512 inodes, the real maximum is 511, mounting anyway [ 126.324778][ T27] usb 2-1: new high-speed USB device number 9 using dummy_hcd [ 126.531309][ T27] usb 2-1: New USB device found, idVendor=0547, idProduct=0201, bcdDevice=11.64 [ 126.557234][ T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 126.604018][ T27] usb 2-1: Product: syz [ 126.611546][ T27] usb 2-1: Manufacturer: syz [ 126.629684][ T27] usb 2-1: SerialNumber: syz [ 126.668394][ T27] usb 2-1: config 0 descriptor?? [ 126.680525][ T6908] loop3: detected capacity change from 0 to 2048 [ 126.696881][ T27] dvb-usb: found a 'Nebula Electronics uDigiTV DVB-T USB2.0)' in warm state. [ 126.746285][ T6908] UDF-fs: warning (device loop3): udf_fill_super: No fileset found [ 126.768141][ T27] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 126.795458][ T27] dvbdev: DVB: registering new adapter (Nebula Electronics uDigiTV DVB-T USB2.0)) [ 126.827193][ T27] usb 2-1: media controller created [ 126.878635][ T27] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 126.920094][ T6894] digitv: more than 2 i2c messages at a time is not handled yet. TODO. [ 126.949177][ T6894] dvb-usb: bulk message failed: -22 (7/0) [ 127.128454][ T27] DVB: Unable to find symbol mt352_attach() [ 127.236758][ T6925] loop3: detected capacity change from 0 to 128 [ 127.243402][ T27] DVB: Unable to find symbol nxt6000_attach() [ 127.262572][ T6925] VFS: Found a Xenix FS (block size = 512) on device loop3 [ 127.270316][ T27] dvb-usb: no frontend was attached by 'Nebula Electronics uDigiTV DVB-T USB2.0)' [ 127.300691][ T27] input: IR-receiver inside an USB DVB receiver as /devices/platform/dummy_hcd.1/usb2/2-1/input/input7 [ 127.345273][ T27] dvb-usb: schedule remote query interval to 1000 msecs. [ 127.360070][ T27] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0) successfully initialized and connected. [ 127.374925][ T5770] sysv_free_block: trying to free block not in datazone [ 127.389653][ T27] dvb-usb: bulk message failed: -22 (7/0) [ 127.399187][ T5770] sysv_free_inode: inode 0,1,2 or nonexistent inode [ 127.407017][ T27] dvb-usb: bulk message failed: -22 (7/0) [ 127.442447][ T27] usb 2-1: USB disconnect, device number 9 [ 127.611810][ T27] dvb-usb: Nebula Electronics uDigiTV DVB-T USB2.0 successfully deinitialized and disconnected. [ 127.799973][ T6938] loop1: detected capacity change from 0 to 128 [ 127.835232][ T6938] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 127.853003][ T6938] ext4 filesystem being mounted at /88/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038-01-19 (0x7fffffff) [ 127.993695][ T5809] usb 3-1: new high-speed USB device number 7 using dummy_hcd [ 128.026461][ T6943] netlink: 20 bytes leftover after parsing attributes in process `syz.0.442'. [ 128.154748][ T5768] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 128.184142][ T5809] usb 3-1: Using ep0 maxpacket: 32 [ 128.186417][ T5809] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 128.186449][ T5809] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 128.186483][ T5809] usb 3-1: New USB device found, idVendor=13ec, idProduct=0006, bcdDevice= 0.00 [ 128.186505][ T5809] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.192742][ T5809] usb 3-1: config 0 descriptor?? [ 128.466192][ T6954] loop0: detected capacity change from 0 to 16 [ 128.506272][ T6954] erofs: (device loop0): mounted with root inode @ nid 36. [ 128.605752][ T787] usb 2-1: new high-speed USB device number 10 using dummy_hcd [ 128.638357][ T5809] zydacron 0003:13EC:0006.000E: item fetching failed at offset 0/2 [ 128.654485][ T5809] zydacron 0003:13EC:0006.000E: parse failed [ 128.675383][ T5809] zydacron: probe of 0003:13EC:0006.000E failed with error -22 [ 128.823827][ T787] usb 2-1: Using ep0 maxpacket: 16 [ 128.843050][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 128.863988][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 128.883721][ T787] usb 2-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 128.903769][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 128.915881][ T5809] usb 3-1: USB disconnect, device number 7 [ 128.954631][ T787] usb 2-1: config 0 descriptor?? [ 129.178058][ T6963] loop3: detected capacity change from 0 to 32768 [ 129.199755][ T6963] XFS (loop3): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 129.213744][ T5828] usb 1-1: new low-speed USB device number 6 using dummy_hcd [ 129.287889][ T6963] XFS (loop3): Ending clean mount [ 129.397492][ T787] konepure 0003:1E7D:2DB4.000F: hidraw0: USB HID v0.00 Device [HID 1e7d:2db4] on usb-dummy_hcd.1-1/input0 [ 129.414310][ T5828] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 129.429857][ T5828] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 129.452236][ T5828] usb 1-1: New USB device found, idVendor=0c70, idProduct=f0b6, bcdDevice= 0.00 [ 129.462373][ T5828] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 129.473021][ T5770] XFS (loop3): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 129.515340][ T5828] usb 1-1: config 0 descriptor?? [ 129.699372][ T787] usb 2-1: USB disconnect, device number 10 [ 129.968533][ T5828] aquacomputer_d5next 0003:0C70:F0B6.0010: item fetching failed at offset 5/7 [ 129.995717][ T5828] aquacomputer_d5next: probe of 0003:0C70:F0B6.0010 failed with error -22 [ 130.012629][ T6984] loop3: detected capacity change from 0 to 65 [ 130.050667][ T6984] BFS-fs: bfs_fill_super(): loop3 is unclean, continuing [ 130.060528][ T6984] BFS-fs: bfs_fill_super(): NOTE: filesystem loop3 was created with 512 inodes, the real maximum is 511, mounting anyway [ 130.203813][ T5809] usb 1-1: USB disconnect, device number 6 [ 131.133703][ T5809] usb 3-1: new high-speed USB device number 8 using dummy_hcd [ 131.188201][ T7002] loop3: detected capacity change from 0 to 32768 [ 131.213828][ T7002] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.467 (7002) [ 131.263355][ T7002] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 131.294526][ T7002] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 131.323335][ T7002] BTRFS info (device loop3): using free space tree [ 131.343817][ T5809] usb 3-1: Using ep0 maxpacket: 16 [ 131.351178][ T5809] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 131.395435][ T5809] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 131.427698][ T5809] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2db4, bcdDevice= 0.00 [ 131.449242][ T5809] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 131.512748][ T5809] usb 3-1: config 0 descriptor?? [ 131.603018][ T7002] BTRFS info (device loop3): enabling ssd optimizations [ 131.624273][ T7002] BTRFS info (device loop3): auto enabling async discard [ 131.784905][ T5770] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 131.971005][ T7012] loop0: detected capacity change from 0 to 32768 [ 132.008220][ T7012] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop0 scanned by syz.0.472 (7012) [ 132.030941][ T7032] loop1: detected capacity change from 0 to 128 [ 132.034120][ T5809] konepure 0003:1E7D:2DB4.0011: hidraw0: USB HID v0.00 Device [HID 1e7d:2db4] on usb-dummy_hcd.2-1/input0 [ 132.100931][ T7032] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 132.123876][ T7012] BTRFS info (device loop0): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 132.151101][ T6935] BTRFS warning: duplicate device /dev/loop3 devid 1 generation 9 scanned by udevd (6935) [ 132.173761][ T7032] hpfs: filesystem error: improperly stopped [ 132.175755][ T7012] BTRFS info (device loop0): using sha256 (sha256-avx2) checksum algorithm [ 132.222981][ T7032] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 132.247309][ T7032] hpfs: You really don't want any checks? You are crazy... [ 132.255042][ T7012] BTRFS info (device loop0): using free space tree [ 132.290066][ T7032] hpfs: hpfs_map_sector(): read error [ 132.292199][ T5810] usb 3-1: USB disconnect, device number 8 [ 132.308146][ T7032] hpfs: code page support is disabled [ 132.315633][ T7032] hpfs: hpfs_map_4sectors(): unaligned read [ 132.319548][ T7034] loop3: detected capacity change from 0 to 4096 [ 132.322167][ T7032] hpfs: hpfs_map_4sectors(): unaligned read [ 132.337757][ T7032] hpfs: filesystem error: unable to find root dir [ 132.399586][ T7035] fido_id[7035]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.2/usb3/3-1/report_descriptor': No such file or directory [ 132.433088][ T7034] ntfs: (device loop3): parse_options(): Option utf8 is no longer supported, using option nls=utf8. Please use option nls=utf8 in the future and make sure utf8 is compiled either as a module or into the kernel. [ 132.510266][ T7032] hpfs: bad mount options. [ 132.523990][ T7012] BTRFS info (device loop0): enabling ssd optimizations [ 132.541471][ T7012] BTRFS info (device loop0): auto enabling async discard [ 132.608795][ T7034] ntfs: volume version 3.1. [ 132.950380][ T5769] BTRFS info (device loop0): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 133.072922][ T7059] CUSE: unknown device info "" [ 133.082755][ T7059] CUSE: unknown device info "" [ 133.114036][ T7059] CUSE: unknown device info "" [ 133.134378][ T7059] CUSE: zero length info key specified [ 133.311067][ T1285] ieee802154 phy0 wpan0: encryption failed: -22 [ 133.323743][ T1285] ieee802154 phy1 wpan1: encryption failed: -22 [ 133.543432][ T5809] hid-generic 0004:00A9:0000.0012: unknown main item tag 0x0 [ 133.566125][ T5809] hid-generic 0004:00A9:0000.0012: unknown main item tag 0x2 [ 133.603829][ T5809] hid-generic 0004:00A9:0000.0012: unknown main item tag 0xe [ 133.627322][ T5809] hid-generic 0004:00A9:0000.0012: hidraw0: HID v1.01 Device [syz1] on syz0 [ 133.811876][ T7073] fido_id[7073]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 133.914520][ T28] audit: type=1800 audit(1774431851.067:23): pid=7079 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed comm="syz.1.496" name="SYSV00000000" dev="hugetlbfs" ino=0 res=0 errno=0 [ 134.181325][ T7068] loop2: detected capacity change from 0 to 32768 [ 134.207707][ T7068] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.485 (7068) [ 134.224719][ T7086] atomic_op ffff8880777c4198 conn xmit_atomic 0000000000000000 [ 134.293639][ T7068] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 134.340159][ T7068] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 134.394833][ T7068] BTRFS info (device loop2): using free space tree [ 134.426473][ T7088] tipc: Started in network mode [ 134.442667][ T7088] tipc: Node identity 00000000000000000000ffffac141422, cluster identity 4711 [ 134.454329][ T7088] tipc: Enabling of bearer rejected, failed to enable media [ 134.527100][ T7090] loop1: detected capacity change from 0 to 4096 [ 134.562176][ T7090] ntfs3: loop1: Different NTFS sector size (4096) and media sector size (512). [ 134.617112][ T7068] BTRFS info (device loop2): enabling ssd optimizations [ 134.636679][ T7077] loop0: detected capacity change from 0 to 32768 [ 134.646379][ T7068] BTRFS info (device loop2): auto enabling async discard [ 134.674595][ T7077] XFS (loop0): Mounting V5 Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 134.909034][ T7077] XFS (loop0): Ending clean mount [ 134.965807][ T5771] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 135.117875][ T7117] netlink: 80 bytes leftover after parsing attributes in process `syz.1.502'. [ 135.167059][ T5769] XFS (loop0): Unmounting Filesystem bfdc47fc-10d8-4eed-a562-11a831b3f791 [ 136.357678][ T7126] loop1: detected capacity change from 0 to 32768 [ 136.384292][ T7126] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.507 (7126) [ 136.435266][ T7126] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 136.457114][ T7149] netlink: 32 bytes leftover after parsing attributes in process `syz.3.509'. [ 136.464806][ T7126] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 136.485675][ T7126] BTRFS info (device loop1): using free space tree [ 136.670581][ T7126] BTRFS info (device loop1): enabling ssd optimizations [ 136.723792][ T7126] BTRFS info (device loop1): auto enabling async discard [ 136.919147][ T5768] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 136.942200][ T7136] loop0: detected capacity change from 0 to 40427 [ 136.981261][ T7136] F2FS-fs (loop0): build fault injection attr: rate: 771, type: 0x7ffff [ 137.021556][ T7136] F2FS-fs (loop0): invalid crc value [ 137.072524][ T7136] F2FS-fs (loop0): Found nat_bits in checkpoint [ 137.283828][ T28] audit: type=1326 audit(1774431854.427:24): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.343772][ T7136] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 137.375817][ T28] audit: type=1326 audit(1774431854.427:25): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.471160][ T28] audit: type=1326 audit(1774431854.427:26): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.520585][ T28] audit: type=1326 audit(1774431854.427:27): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.559906][ T28] audit: type=1326 audit(1774431854.427:28): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.624470][ T28] audit: type=1326 audit(1774431854.427:29): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=281 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.713192][ T28] audit: type=1326 audit(1774431854.447:30): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.744548][ T5769] syz-executor: attempt to access beyond end of device [ 137.744548][ T5769] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 137.783833][ T5769] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 137.821532][ T28] audit: type=1326 audit(1774431854.447:31): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=436 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.892358][ T7192] loop2: detected capacity change from 0 to 4096 [ 137.903727][ T28] audit: type=1326 audit(1774431854.447:32): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7182 comm="syz.1.523" exe="/root/syz-executor" sig=0 arch=c000003e syscall=231 compat=0 ip=0x7efc4639c799 code=0x7ffc0000 [ 137.913035][ T7194] loop1: detected capacity change from 0 to 128 [ 137.956112][ T7192] ntfs3: loop2: Different NTFS sector size (4096) and media sector size (512). [ 137.966239][ T7194] EXT4-fs: Ignoring removed nobh option [ 137.996969][ T7194] EXT4-fs: Ignoring removed oldalloc option [ 138.050189][ T7194] EXT4-fs (loop1): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 138.092534][ T7194] ext4 filesystem being mounted at /107/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 138.175404][ T7194] EXT4-fs (loop1): resizing filesystem from 64 to 1 blocks [ 138.183043][ T7194] EXT4-fs warning (device loop1): ext4_resize_fs:2048: can't shrink FS - resize aborted [ 138.358058][ T5768] EXT4-fs (loop1): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 138.567472][ T7202] netlink: 'syz.1.522': attribute type 1 has an invalid length. [ 138.885060][ T7213] overlayfs: The uuid=off requires a single fs for lower and upper, falling back to uuid=null. [ 139.423728][ T23] usb 4-1: new high-speed USB device number 3 using dummy_hcd [ 139.610247][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 139.631747][ T23] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 139.652052][ T23] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 139.685771][ T23] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 139.708933][ T23] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 139.739447][ T7227] loop1: detected capacity change from 0 to 32768 [ 139.746577][ T23] usb 4-1: config 0 descriptor?? [ 139.790318][ T7227] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop1 scanned by syz.1.537 (7227) [ 139.866557][ T7227] BTRFS info (device loop1): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 139.871586][ T7237] loop0: detected capacity change from 0 to 2048 [ 139.899991][ T7231] loop2: detected capacity change from 0 to 32768 [ 139.903831][ T7227] BTRFS info (device loop1): using sha256 (sha256-avx2) checksum algorithm [ 139.916855][ T7227] BTRFS info (device loop1): using free space tree [ 139.970446][ T7237] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 140.019402][ T7231] XFS (loop2): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 140.105454][ T7227] BTRFS info (device loop1): enabling ssd optimizations [ 140.144442][ T7227] BTRFS info (device loop1): auto enabling async discard [ 140.205326][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.226574][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.240119][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.240169][ T7231] XFS (loop2): Ending clean mount [ 140.249953][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 140.262736][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.271843][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.282829][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.315306][ T7231] XFS (loop2): Quotacheck needed: Please wait. [ 140.347241][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.377033][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.395297][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.416576][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.420589][ T7231] XFS (loop2): Quotacheck: Done. [ 140.436073][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.453689][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.481557][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.511930][ T23] plantronics 0003:047F:FFFF.0013: unknown main item tag 0x0 [ 140.522037][ T5768] BTRFS info (device loop1): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 140.538093][ T23] plantronics 0003:047F:FFFF.0013: No inputs registered, leaving [ 140.587921][ T23] plantronics 0003:047F:FFFF.0013: hiddev0,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 140.613797][ T5771] XFS (loop2): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 140.687905][ T7267] loop0: detected capacity change from 0 to 64 [ 140.694050][ T23] usb 4-1: USB disconnect, device number 3 [ 140.860310][ T7268] fido_id[7268]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.3/usb4/report_descriptor': No such file or directory [ 141.223520][ T7278] netlink: 48 bytes leftover after parsing attributes in process `syz.3.550'. [ 141.962682][ T7298] team_slave_0: entered promiscuous mode [ 141.968506][ T7298] team_slave_1: entered promiscuous mode [ 141.997783][ T7298] macvtap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 142.046755][ T7298] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 142.132650][ T7287] loop3: detected capacity change from 0 to 32768 [ 142.160539][ T7287] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop3 scanned by syz.3.554 (7287) [ 142.255889][ T7287] BTRFS info (device loop3): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 142.319303][ T7287] BTRFS info (device loop3): using sha256 (sha256-avx2) checksum algorithm [ 142.349096][ T7287] BTRFS info (device loop3): using free space tree [ 142.501870][ T7287] BTRFS info (device loop3): enabling ssd optimizations [ 142.518029][ T7326] netlink: 4 bytes leftover after parsing attributes in process `syz.1.565'. [ 142.528760][ T7287] BTRFS info (device loop3): auto enabling async discard [ 142.797524][ T5770] BTRFS info (device loop3): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 142.935860][ T7338] netlink: 16186 bytes leftover after parsing attributes in process `syz.1.570'. [ 143.149722][ T5781] Bluetooth: hci1: hardware error 0x09 [ 143.416747][ T7346] netlink: 4 bytes leftover after parsing attributes in process `syz.0.576'. [ 143.675398][ T7355] loop0: detected capacity change from 0 to 64 [ 144.346777][ T7370] team_slave_0: entered promiscuous mode [ 144.353155][ T7370] team_slave_1: entered promiscuous mode [ 144.392626][ T7370] macvtap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 144.412944][ T7370] 8021q: adding VLAN 0 to HW filter on device macvtap1 [ 144.599423][ T7356] loop2: detected capacity change from 0 to 32768 [ 144.631939][ T7378] loop1: detected capacity change from 0 to 64 [ 144.650981][ T7356] BTRFS: device fsid 395ef67a-297e-477c-816d-cd80a5b93e5d devid 1 transid 8 /dev/loop2 scanned by syz.2.578 (7356) [ 144.751084][ T7356] BTRFS info (device loop2): first mount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 144.820958][ T7356] BTRFS info (device loop2): using sha256 (sha256-avx2) checksum algorithm [ 144.863335][ T7356] BTRFS info (device loop2): using free space tree [ 145.130789][ T7356] BTRFS info (device loop2): enabling ssd optimizations [ 145.160202][ T7356] BTRFS info (device loop2): auto enabling async discard [ 145.224758][ T5781] Bluetooth: hci1: Opcode 0x0c03 failed: -110 [ 145.271633][ T7376] loop0: detected capacity change from 0 to 32768 [ 145.297999][ T7376] BTRFS: device fsid 14d642db-7b15-43e4-81e6-4b8fac6a25f8 devid 1 transid 8 /dev/loop0 scanned by syz.0.596 (7376) [ 145.377498][ T7376] BTRFS info (device loop0): first mount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 145.430514][ T7376] BTRFS info (device loop0): using blake2b (blake2b-256-generic) checksum algorithm [ 145.456320][ T7376] BTRFS info (device loop0): setting incompat feature flag for COMPRESS_ZSTD (0x10) [ 145.482925][ T7376] BTRFS info (device loop0): use zstd compression, level 3 [ 145.497669][ T7376] BTRFS info (device loop0): using free space tree [ 145.530836][ T7406] loop1: detected capacity change from 0 to 2048 [ 145.622777][ T7413] delete_channel: no stack [ 145.633074][ T5771] BTRFS info (device loop2): last unmount of filesystem 395ef67a-297e-477c-816d-cd80a5b93e5d [ 145.678600][ T7376] BTRFS info (device loop0): enabling ssd optimizations [ 145.753994][ T7376] BTRFS info (device loop0): auto enabling async discard [ 145.787951][ T7406] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 146.024826][ T28] audit: type=1800 audit(1774431863.177:33): pid=7376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.0.596" name="bus" dev="loop0" ino=263 res=0 errno=0 [ 146.100316][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 146.103891][ T28] audit: type=1804 audit(1774431863.187:34): pid=7376 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=invalid_pcr cause=open_writers comm="syz.0.596" name="/newroot/153/file0/bus" dev="loop0" ino=263 res=1 errno=0 [ 146.240383][ T5769] BTRFS info (device loop0): last unmount of filesystem 14d642db-7b15-43e4-81e6-4b8fac6a25f8 [ 146.302443][ T7438] netlink: 8 bytes leftover after parsing attributes in process `syz.1.598'. [ 146.519283][ T7441] loop3: detected capacity change from 0 to 64 [ 146.694670][ T7446] netlink: 4 bytes leftover after parsing attributes in process `syz.0.602'. [ 146.857705][ T7448] overlayfs: disabling nfs_export due to verity=on [ 146.891054][ T7448] overlayfs: conflicting options: userxattr,redirect_dir=on [ 147.121226][ T7454] loop0: detected capacity change from 0 to 512 [ 147.202803][ T7454] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 147.246147][ T7454] ext4 filesystem being mounted at /157/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 147.280852][ T7462] loop2: detected capacity change from 0 to 2048 [ 147.333540][ T7462] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 147.424843][ T27] usb 2-1: new full-speed USB device number 11 using dummy_hcd [ 147.540921][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 147.556828][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 147.643127][ T27] usb 2-1: New USB device found, idVendor=13d8, idProduct=0001, bcdDevice=30.62 [ 147.679475][ T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 147.708049][ T27] usb 2-1: Product: syz [ 147.728367][ T27] usb 2-1: Manufacturer: syz [ 147.733025][ T27] usb 2-1: SerialNumber: syz [ 147.765969][ T27] usb 2-1: config 0 descriptor?? [ 147.822361][ T27] usb 2-1: selecting invalid altsetting 3 [ 147.833717][ T27] comedi comedi5: could not set alternate setting 3 in high speed [ 147.852198][ T27] usbdux 2-1:0.0: driver 'usbdux' failed to auto-configure device. [ 147.872740][ T27] usbdux: probe of 2-1:0.0 failed with error -22 [ 148.097842][ T27] usb 2-1: USB disconnect, device number 11 [ 148.156202][ T7468] loop3: detected capacity change from 0 to 32768 [ 148.205552][ T7468] XFS (loop3): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 148.358558][ T7490] delete_channel: no stack [ 148.363539][ T7468] XFS (loop3): Torn write (CRC failure) detected at log block 0x30. Truncating head block from 0x51. [ 148.442741][ T7468] XFS (loop3): Starting recovery (logdev: internal) [ 148.472727][ T7468] XFS (loop3): Ending recovery (logdev: internal) [ 148.538212][ T5770] XFS (loop3): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 148.644460][ T23] usb 3-1: new full-speed USB device number 9 using dummy_hcd [ 148.713737][ T27] usb 2-1: new high-speed USB device number 12 using dummy_hcd [ 148.812076][ T7498] loop3: detected capacity change from 0 to 512 [ 148.844539][ T7498] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 148.860512][ T7498] ext4 filesystem being mounted at /169/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 148.877277][ T23] usb 3-1: New USB device found, idVendor=09c0, idProduct=0203, bcdDevice=d3.43 [ 148.893794][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 148.918011][ T23] usb 3-1: config 0 descriptor?? [ 148.923797][ T27] usb 2-1: Using ep0 maxpacket: 8 [ 148.942316][ T23] dvb-usb: found a 'Genpix SkyWalker-1 DVB-S receiver' in warm state. [ 148.952579][ T27] usb 2-1: New USB device found, idVendor=13d8, idProduct=0001, bcdDevice=30.62 [ 148.970592][ T27] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 148.982581][ T27] usb 2-1: Product: syz [ 148.987930][ T27] usb 2-1: Manufacturer: syz [ 148.993125][ T27] usb 2-1: SerialNumber: syz [ 149.011533][ T27] usb 2-1: config 0 descriptor?? [ 149.021823][ T7505] netlink: 201392 bytes leftover after parsing attributes in process `syz.0.623'. [ 149.038905][ T27] usb 2-1: selecting invalid altsetting 3 [ 149.050143][ T27] comedi comedi5: could not set alternate setting 3 in high speed [ 149.069211][ T27] usbdux 2-1:0.0: driver 'usbdux' failed to auto-configure device. [ 149.089089][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 149.114758][ T27] usbdux: probe of 2-1:0.0 failed with error -22 [ 149.311035][ T5810] usb 2-1: USB disconnect, device number 12 [ 149.341986][ T23] dvb-usb: This USB2.0 device cannot be run on a USB1.1 port. (it lacks a hardware PID filter) [ 149.364847][ T23] dvb-usb: Genpix SkyWalker-1 DVB-S receiver error while loading driver (-19) [ 149.546506][ T23] usb 3-1: USB disconnect, device number 9 [ 149.666482][ T28] audit: type=1326 audit(1774431866.827:35): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 149.714051][ T28] audit: type=1326 audit(1774431866.847:36): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 149.793667][ T28] audit: type=1326 audit(1774431866.857:37): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=283 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 149.829718][ T28] audit: type=1326 audit(1774431866.857:38): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 149.861279][ T28] audit: type=1326 audit(1774431866.857:39): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 149.944861][ T28] audit: type=1326 audit(1774431866.857:40): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=286 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 149.978996][ T28] audit: type=1326 audit(1774431866.857:41): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7518 comm="syz.3.631" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fe79f99c799 code=0x7ffc0000 [ 150.052173][ T7531] loop0: detected capacity change from 0 to 1024 [ 150.067776][ T7531] EXT4-fs: Ignoring removed nobh option [ 150.076038][ T7531] EXT4-fs (loop0): stripe (5) is not aligned with cluster size (16), stripe is disabled [ 150.139879][ T7531] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 150.203362][ T7535] loop2: detected capacity change from 0 to 512 [ 150.288371][ T7531] EXT4-fs error (device loop0): ext4_find_dest_de:2115: inode #12: block 7: comm syz.0.636: bad entry in directory: rec_len is too small for name_len - offset=16, inode=14, rec_len=40, size=56 fake=0 [ 150.353400][ T7535] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 150.372689][ T7535] ext4 filesystem being mounted at /153/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 150.394241][ T7531] EXT4-fs (loop0): Remounting filesystem read-only [ 150.486250][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.598950][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 150.730084][ T7550] loop2: detected capacity change from 0 to 256 [ 150.745944][ T7550] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 151.146997][ T7564] Cannot find set identified by id 0 to match [ 151.161773][ T7562] loop1: detected capacity change from 0 to 4096 [ 151.194250][ T7562] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 151.271381][ T7562] ntfs3: loop1: Failed to initialize $Extend/$ObjId. [ 151.377820][ T1333] ntfs3: loop1: ino=1e, ntfs3_write_inode failed, -22. [ 151.528499][ T7574] loop1: detected capacity change from 0 to 512 [ 151.565823][ T7574] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 151.584943][ T7574] ext4 filesystem being mounted at /142/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 151.671768][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 151.704226][ T787] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 151.727847][ T23] usb 4-1: new high-speed USB device number 4 using dummy_hcd [ 151.906037][ T787] usb 1-1: New USB device found, idVendor=1d50, idProduct=6089, bcdDevice=d0.1d [ 151.915302][ T787] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 151.923844][ T23] usb 4-1: Using ep0 maxpacket: 32 [ 151.932082][ T23] usb 4-1: config 0 has an invalid interface number: 51 but max is 0 [ 151.932637][ T787] usb 1-1: config 0 descriptor?? [ 151.941271][ T23] usb 4-1: config 0 has no interface number 0 [ 151.970824][ T23] usb 4-1: New USB device found, idVendor=061d, idProduct=c150, bcdDevice=ce.6f [ 151.985011][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 151.993370][ T23] usb 4-1: Product: syz [ 152.002341][ T23] usb 4-1: Manufacturer: syz [ 152.009638][ T23] usb 4-1: SerialNumber: syz [ 152.019333][ T23] usb 4-1: config 0 descriptor?? [ 152.036557][ T23] quatech2 4-1:0.51: Quatech 2nd gen USB to Serial Driver converter detected [ 152.248120][ T23] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB0 [ 152.291373][ T23] usb 4-1: Quatech 2nd gen USB to Serial Driver converter now attached to ttyUSB1 [ 152.351988][ T7593] loop2: detected capacity change from 0 to 4096 [ 152.383968][ T787] hackrf 1-1:0.0: Board ID: 00 [ 152.389015][ T787] hackrf 1-1:0.0: Firmware version: [ 152.428231][ T787] hackrf 1-1:0.0: Registered as swradio24 [ 152.448420][ T787] videodev: could not get a free minor [ 152.472686][ T787] hackrf 1-1:0.0: Failed to register as video device (-23) [ 152.507116][ T7593] ntfs3: loop2: ino=3, ntfs_set_state failed, -22. [ 152.519647][ T787] hackrf: probe of 1-1:0.0 failed with error -23 [ 152.528298][ T7593] ntfs3: loop2: Failed to initialize $Extend/$ObjId. [ 152.548837][ T7598] loop1: detected capacity change from 0 to 512 [ 152.593470][ T7593] ntfs3: loop2: ino=1e, "file1" attr_set_size [ 152.595073][ T7598] EXT4-fs: Ignoring removed oldalloc option [ 152.602906][ T28] audit: type=1800 audit(1774431869.737:42): pid=7593 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.663" name="file1" dev="loop2" ino=30 res=0 errno=0 [ 152.697647][ C1] usb 4-1: qt2_read_bulk_callback - non-zero urb status: -71 [ 152.710152][ T23] usb 4-1: USB disconnect, device number 4 [ 152.710391][ T7598] EXT4-fs (loop1): 1 truncate cleaned up [ 152.737009][ T23] quatech-serial ttyUSB0: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB0 [ 152.767948][ T7598] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 152.769266][ T787] usb 1-1: USB disconnect, device number 7 [ 152.793029][ T23] quatech-serial ttyUSB1: Quatech 2nd gen USB to Serial Driver converter now disconnected from ttyUSB1 [ 152.808233][ T23] quatech2 4-1:0.51: device disconnected [ 152.823453][ T48] ntfs3: loop2: ino=3, ntfs3_write_inode failed, -22. [ 152.877424][ T5771] ntfs3: loop2: ino=3, ntfs_set_state failed, -22. [ 152.894445][ T5771] ntfs3: loop2: Mark volume as dirty due to NTFS errors [ 152.910302][ T5771] ntfs3: loop2: ino=3, ntfs_set_state failed, -22. [ 152.918887][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 152.919603][ T48] ntfs3: loop2: ino=3, ntfs3_write_inode failed, -22. [ 153.155240][ T7606] netlink: 72 bytes leftover after parsing attributes in process `syz.2.669'. [ 153.556217][ T7616] loop3: detected capacity change from 0 to 4096 [ 153.588995][ T7616] ntfs3: loop3: ino=3, ntfs_set_state failed, -22. [ 153.603942][ T7616] ntfs3: loop3: Failed to initialize $Extend/$ObjId. [ 153.725230][ T7616] ntfs3: loop3: ino=1e, "file1" attr_set_size [ 153.731652][ T28] audit: type=1800 audit(1774431870.877:43): pid=7616 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.3.675" name="file1" dev="loop3" ino=30 res=0 errno=0 [ 153.884117][ T3500] ntfs3: loop3: ino=3, ntfs3_write_inode failed, -22. [ 153.901307][ T7609] loop1: detected capacity change from 0 to 32768 [ 153.916740][ T5770] ntfs3: loop3: ino=3, ntfs_set_state failed, -22. [ 153.923419][ T5770] ntfs3: loop3: Mark volume as dirty due to NTFS errors [ 153.945063][ T5770] ntfs3: loop3: ino=3, ntfs_set_state failed, -22. [ 153.961430][ T48] ntfs3: loop3: ino=3, ntfs3_write_inode failed, -22. [ 153.981793][ T7609] XFS (loop1): DAX unsupported by block device. Turning off DAX. [ 153.999218][ T7632] loop0: detected capacity change from 0 to 512 [ 154.014592][ T7609] XFS (loop1): Mounting V5 Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 154.085428][ T7632] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: none. [ 154.177375][ T7609] XFS (loop1): Ending clean mount [ 154.192213][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 154.267551][ T7609] XFS (loop1): Quotacheck needed: Please wait. [ 154.465444][ T7609] XFS (loop1): Quotacheck: Done. [ 154.485510][ T7647] netlink: 12 bytes leftover after parsing attributes in process `syz.3.684'. [ 154.531724][ T7647] vlan2: entered allmulticast mode [ 154.561988][ T7647] vlan1: entered allmulticast mode [ 154.572301][ T7647] veth0_vlan: entered allmulticast mode [ 154.639458][ T5768] XFS (loop1): Unmounting Filesystem c496e05e-540d-4c72-b591-04d79d8b4eeb [ 154.721743][ T7652] loop2: detected capacity change from 0 to 256 [ 154.745712][ T7652] exfat: Deprecated parameter 'namecase' [ 154.802216][ T7652] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x5441951d, utbl_chksum : 0xe619d30d) [ 155.308255][ T7668] loop2: detected capacity change from 0 to 256 [ 155.371535][ T787] IPVS: starting estimator thread 0... [ 155.416203][ T7675] capability: warning: `syz.3.696' uses 32-bit capabilities (legacy support in use) [ 155.484125][ T7673] IPVS: using max 18 ests per chain, 43200 per kthread [ 155.883734][ T28] audit: type=1326 audit(1774431873.037:44): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7691 comm="syz.1.706" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7efc4639c799 code=0x0 [ 156.092653][ T7701] loop2: detected capacity change from 0 to 512 [ 156.125585][ T7701] EXT4-fs: Ignoring removed orlov option [ 156.145013][ T7701] EXT4-fs (loop2): mounting ext3 file system using the ext4 subsystem [ 156.195375][ T7701] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=8002c119, mo2=0002] [ 156.211417][ T7701] EXT4-fs error (device loop2): ext4_iget_extra_inode:4732: inode #15: comm syz.2.710: corrupted in-inode xattr: e_value size too large [ 156.237430][ T7701] EXT4-fs error (device loop2): ext4_orphan_get:1403: comm syz.2.710: couldn't read orphan inode 15 (err -117) [ 156.266669][ T7701] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 156.543448][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 156.637477][ T7709] loop2: detected capacity change from 0 to 64 [ 157.018982][ T7720] loop0: detected capacity change from 0 to 4096 [ 157.055136][ T7720] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 157.247942][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 157.413810][ T787] usb 2-1: new high-speed USB device number 13 using dummy_hcd [ 157.518039][ T7739] loop3: detected capacity change from 0 to 24 [ 157.544916][ T7739] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 157.574511][ T7739] romfs: Mounting image 'rom 637cf1fa' through the block layer [ 157.610410][ T787] usb 2-1: New USB device found, idVendor=1604, idProduct=8001, bcdDevice=44.1f [ 157.646960][ T787] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 157.677525][ T787] usb 2-1: Product: syz [ 157.682397][ T787] usb 2-1: Manufacturer: syz [ 157.688896][ T787] usb 2-1: SerialNumber: syz [ 157.705646][ T787] usb 2-1: config 0 descriptor?? [ 157.711485][ T7743] loop0: detected capacity change from 0 to 512 [ 157.757069][ T7743] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 157.789796][ T7743] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8842c018, mo2=0002] [ 157.805278][ T7743] EXT4-fs (loop0): orphan cleanup on readonly fs [ 157.851830][ T7743] EXT4-fs warning (device loop0): ext4_enable_quotas:7184: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 157.895680][ T7743] EXT4-fs (loop0): Cannot turn on quotas: error -22 [ 157.926692][ T7743] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #13: comm syz.0.729: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 158.015629][ T7750] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 158.022666][ T7750] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 158.026613][ T7743] EXT4-fs error (device loop0): ext4_orphan_get:1403: comm syz.0.729: couldn't read orphan inode 13 (err -117) [ 158.045417][ T7750] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 158.052548][ T7750] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 158.085509][ T7750] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 158.096644][ T787] usb 2-1: USB disconnect, device number 13 [ 158.109165][ T7750] comedi comedi3: 8255: I/O port conflict (0x12,4) [ 158.130459][ T7750] comedi comedi3: 8255: I/O port conflict (0x11,4) [ 158.144176][ T7750] comedi comedi3: 8255: I/O port conflict (0x81,4) [ 158.144860][ T7743] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 158.151297][ T7750] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffc,4) [ 158.235076][ T7750] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 158.242232][ T7750] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4) [ 158.259174][ T7743] EXT4-fs: Journaled quota options ignored when QUOTA feature is enabled [ 158.268846][ T7743] EXT4-fs (loop0): warning: mounting fs with errors, running e2fsck is recommended [ 158.279372][ T7750] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 158.286642][ T7750] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 158.293198][ T7743] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=2842c09c, mo2=0002] [ 158.301805][ T7750] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 158.309106][ T7750] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 158.317253][ T7750] comedi comedi3: 8255: I/O port conflict (0x400009,4) [ 158.324772][ T7743] System zones: 0-2, 18-18, 34-34 [ 158.330546][ T7743] EXT4-fs warning (device loop0): ext4_enable_quotas:7184: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 158.333999][ T7750] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 158.373782][ T7750] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 158.380583][ T7750] comedi comedi3: 8255: I/O port conflict (0x80,4) [ 158.391646][ T5769] EXT4-fs (loop0): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 158.403760][ T7750] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 158.410472][ T7750] comedi comedi3: 8255: I/O port conflict (0x2000e67,4) [ 158.419271][ T7750] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 158.425902][ T7750] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4) [ 158.638353][ T7757] loop3: detected capacity change from 0 to 512 [ 158.684049][ T7757] EXT4-fs (loop3): can't mount with data=, fs mounted w/o journal [ 158.741651][ T28] audit: type=1800 audit(1774431875.897:45): pid=7752 uid=0 auid=4294967295 ses=4294967295 subj=unconfined op=collect_data cause=failed(directio) comm="syz.2.733" name="file1" dev="loop2" ino=7 res=0 errno=0 [ 158.769573][ T7759] EXT4-fs: Ignoring removed nobh option [ 158.821082][ T7759] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 158.855757][ T7759] ext4 filesystem being mounted at /189/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 159.034996][ T5769] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 159.822225][ T7778] set_capacity_and_notify: 2 callbacks suppressed [ 159.822240][ T7778] loop0: detected capacity change from 0 to 1024 [ 159.855359][ T7764] loop1: detected capacity change from 0 to 32768 [ 159.914599][ T7768] loop2: detected capacity change from 0 to 40427 [ 159.926552][ T7768] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 159.945766][ T7768] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 159.980283][ T7768] F2FS-fs (loop2): invalid crc value [ 160.033742][ T7768] F2FS-fs (loop2): Found nat_bits in checkpoint [ 160.061231][ T7778] hfsplus: bad catalog entry type [ 160.086484][ T7764] UFO tlock:0xffffc900027fa090 [ 160.175642][ T7764] MetaData crosses page boundary!! [ 160.181613][ T7764] lblock = 6300000010, size = -820051968 [ 160.191524][ T1333] hfsplus: b-tree write err: -5, ino 25 [ 160.207722][ T7764] CPU: 1 PID: 7764 Comm: syz.1.740 Not tainted syzkaller #0 [ 160.215348][ T7764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 160.226157][ T7764] Call Trace: [ 160.229589][ T7764] [ 160.232534][ T7764] dump_stack_lvl+0x18c/0x250 [ 160.237443][ T7764] ? show_regs_print_info+0x20/0x20 [ 160.243164][ T7764] ? load_image+0x400/0x400 [ 160.248154][ T7764] ? folio_unlock+0x118/0x2e0 [ 160.253283][ T7764] __get_metapage+0xaac/0xfa0 [ 160.258168][ T7764] dtSearch+0x591/0x21b0 [ 160.262570][ T7764] jfs_lookup+0x1b1/0x420 [ 160.267110][ T7764] ? jfs_get_parent+0xb0/0xb0 [ 160.271933][ T7764] ? d_alloc_parallel+0x13f6/0x1530 [ 160.277244][ T7764] ? lockdep_softirqs_off+0x430/0x430 [ 160.282921][ T7764] ? d_hash_and_lookup+0x1b0/0x1b0 [ 160.288097][ T7764] ? __init_waitqueue_head+0xa9/0x150 [ 160.293684][ T7764] __lookup_slow+0x2a1/0x400 [ 160.298585][ T7764] ? lookup_one_len+0x2e0/0x2e0 [ 160.304384][ T7764] ? try_to_unlazy+0x34c/0x5a0 [ 160.309934][ T7764] ? down_read+0x1ac/0x2e0 [ 160.314969][ T7764] lookup_slow+0x53/0x70 [ 160.319334][ T7764] walk_component+0x2be/0x3f0 [ 160.324114][ T7764] ? path_lookupat+0x15c/0x440 [ 160.329448][ T7764] path_lookupat+0x169/0x440 [ 160.334263][ T7764] filename_lookup+0x228/0x560 [ 160.339581][ T7764] ? hashlen_string+0x110/0x110 [ 160.344635][ T7764] ? strncpy_from_user+0x197/0x2d0 [ 160.349867][ T7764] ? getname_flags+0x20a/0x500 [ 160.354806][ T7764] user_path_at_empty+0x42/0x60 [ 160.359769][ T7764] __se_sys_mount+0x2a8/0x3d0 [ 160.364676][ T7764] ? __x64_sys_mount+0xc0/0xc0 [ 160.369527][ T7764] ? lockdep_hardirqs_on+0x98/0x150 [ 160.374855][ T7764] ? __x64_sys_mount+0x20/0xc0 [ 160.379862][ T7764] do_syscall_64+0x55/0xa0 [ 160.384380][ T7764] ? clear_bhb_loop+0x40/0x90 [ 160.389586][ T7764] ? clear_bhb_loop+0x40/0x90 [ 160.394675][ T7764] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 160.400908][ T7764] RIP: 0033:0x7efc4639c799 [ 160.405423][ T7764] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 160.425758][ T7764] RSP: 002b:00007efc47247028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 160.434420][ T7764] RAX: ffffffffffffffda RBX: 00007efc46615fa0 RCX: 00007efc4639c799 [ 160.443018][ T7764] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000000 [ 160.451528][ T7764] RBP: 00007efc46432c99 R08: 0000000000000000 R09: 0000000000000000 [ 160.460147][ T7764] R10: 0000000001800013 R11: 0000000000000246 R12: 0000000000000000 [ 160.468643][ T7764] R13: 00007efc46616038 R14: 00007efc46615fa0 R15: 00007ffd04866018 [ 160.477050][ T7764] [ 160.482780][ T1333] hfsplus: b-tree write err: -5, ino 4 [ 160.493121][ T1333] hfsplus: b-tree write err: -5, ino 2 [ 160.551167][ T7768] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 160.559166][ T7768] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 160.633891][ T7764] bread failed! [ 160.638430][ T7764] jfs_lookup: dtSearch returned -5 [ 160.674416][ T7768] syz.2.738: attempt to access beyond end of device [ 160.674416][ T7768] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 160.705849][ T7785] process 'syz.0.746' launched './file0' with NULL argv: empty string added [ 161.076281][ T5771] syz-executor: attempt to access beyond end of device [ 161.076281][ T5771] loop2: rw=2051, sector=45096, nr_sectors = 8 limit=40427 [ 161.098294][ T5771] F2FS-fs (loop2): Issue discard(5637, 5637, 1) failed, ret: -5 [ 161.168374][ T7793] loop3: detected capacity change from 0 to 512 [ 161.188372][ T7793] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 161.225071][ T23] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 161.267098][ T7793] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 161.300025][ T7793] ext4 filesystem being mounted at /208/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 161.357147][ T7793] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #2: comm syz.3.751: corrupted inode contents [ 161.417173][ T7793] EXT4-fs error (device loop3): ext4_dirty_inode:6124: inode #2: comm syz.3.751: mark_inode_dirty error [ 161.431582][ T7793] EXT4-fs error (device loop3): ext4_do_update_inode:5248: inode #2: comm syz.3.751: corrupted inode contents [ 161.445272][ T23] usb 1-1: Using ep0 maxpacket: 16 [ 161.456001][ T7793] EXT4-fs error (device loop3): __ext4_ext_dirty:202: inode #2: comm syz.3.751: mark_inode_dirty error [ 161.468566][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 161.481915][ T23] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 161.494718][ T23] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 161.531045][ T7800] netlink: 8 bytes leftover after parsing attributes in process `syz.2.752'. [ 161.549750][ T23] usb 1-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 161.612672][ T23] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 161.646553][ T23] usb 1-1: config 0 descriptor?? [ 161.672128][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 162.094488][ T23] microsoft 0003:045E:07DA.0014: No inputs registered, leaving [ 162.129425][ T23] microsoft 0003:045E:07DA.0014: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.0-1/input0 [ 162.168324][ T23] microsoft 0003:045E:07DA.0014: no inputs found [ 162.187674][ T23] microsoft 0003:045E:07DA.0014: could not initialize ff, continuing anyway [ 162.342173][ T23] usb 1-1: USB disconnect, device number 8 [ 162.455540][ T7825] tipc: Started in network mode [ 162.460745][ T7825] tipc: Node identity fe80000000000000000000000000001, cluster identity 4711 [ 162.482259][ T7825] tipc: Enabled bearer , priority 10 [ 162.756557][ T7819] loop2: detected capacity change from 0 to 32768 [ 162.815775][ T7819] JBD2: Ignoring recovery information on journal [ 162.947821][ T7819] ocfs2: Mounting device (7,2) on (node local, slot 0) with writeback data mode. [ 163.059360][ T28] audit: type=1326 audit(1774431880.217:46): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7840 comm="syz.3.771" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7fe79f99c799 code=0x0 [ 163.193167][ T5771] ocfs2: Unmounting device (7,2) on (node local) [ 163.368311][ T7850] loop1: detected capacity change from 0 to 1024 [ 163.401068][ T7850] EXT4-fs: Ignoring removed orlov option [ 163.460157][ T7850] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 163.574043][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 163.586402][ T787] tipc: Node number set to 4269801488 [ 163.756967][ T5828] usb 3-1: new high-speed USB device number 10 using dummy_hcd [ 163.973693][ T5828] usb 3-1: Using ep0 maxpacket: 16 [ 163.983299][ T5828] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 163.998631][ T7852] loop0: detected capacity change from 0 to 40427 [ 164.007189][ T5828] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 164.027949][ T5828] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 164.046113][ T7852] F2FS-fs (loop0): invalid crc value [ 164.076321][ T5828] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 164.119070][ T7852] F2FS-fs (loop0): Found nat_bits in checkpoint [ 164.161836][ T5828] usb 3-1: config 0 descriptor?? [ 164.251612][ T7852] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 164.261622][ T7873] loop1: detected capacity change from 0 to 256 [ 164.470915][ T5769] syz-executor: attempt to access beyond end of device [ 164.470915][ T5769] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 164.506477][ T5769] F2FS-fs (loop0): Stopped filesystem due to reason: 3 [ 164.630643][ T5828] hid-multitouch 0003:1FD2:6007.0015: item fetching failed at offset 1/5 [ 164.647830][ T5828] hid-multitouch: probe of 0003:1FD2:6007.0015 failed with error -22 [ 164.817889][ T28] audit: type=1326 audit(1774431881.977:47): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=7880 comm="syz.1.787" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7efc4639c799 code=0x0 [ 164.885968][ T5828] usb 3-1: USB disconnect, device number 10 [ 165.577849][ T7902] netlink: 16 bytes leftover after parsing attributes in process `syz.2.795'. [ 165.759087][ T5828] kernel write not supported for file /uhid (pid: 5828 comm: kworker/0:5) [ 165.964103][ T7911] syz.0.798[7911] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 165.964360][ T7911] syz.0.798[7911] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 165.976320][ T7899] loop3: detected capacity change from 0 to 32768 [ 166.047272][ T7899] ocfs2: Slot 0 on device (7,3) was already allocated to this node! [ 166.096406][ T7899] JBD2: Ignoring recovery information on journal [ 166.169757][ T7917] netlink: 8 bytes leftover after parsing attributes in process `syz.0.800'. [ 166.216648][ T7899] ocfs2: Mounting device (7,3) on (node local, slot 0) with ordered data mode. [ 166.251944][ T7907] loop1: detected capacity change from 0 to 32768 [ 166.474601][ T5770] ocfs2: Unmounting device (7,3) on (node local) [ 166.622291][ T7925] loop3: detected capacity change from 0 to 2048 [ 166.714855][ T27] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 166.774220][ T7925] EXT4-fs (loop3): mounted filesystem 00000000-0000-0000-0000-000000000900 r/w without journal. Quota mode: none. [ 166.875238][ T7935] loop2: detected capacity change from 0 to 128 [ 166.888555][ T7925] EXT4-fs error (device loop3): ext4_iget_extra_inode:4732: inode #12: comm syz.3.803: corrupted in-inode xattr: invalid size in ea xattr [ 166.926440][ T7935] FAT-fs (loop2): Invalid FSINFO signature: 0x41000006, 0x61417272 (sector = 1) [ 166.936083][ T27] usb 1-1: Using ep0 maxpacket: 32 [ 166.957173][ T27] usb 1-1: config 0 has an invalid interface number: 196 but max is 0 [ 166.968110][ T5770] EXT4-fs (loop3): unmounting filesystem 00000000-0000-0000-0000-000000000900. [ 166.983946][ T27] usb 1-1: config 0 has no interface number 0 [ 166.994697][ T27] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x2 has invalid maxpacket 528 [ 167.022892][ T27] usb 1-1: config 0 interface 196 altsetting 1 endpoint 0x82 has invalid wMaxPacketSize 0 [ 167.042898][ T27] usb 1-1: config 0 interface 196 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 0 [ 167.073806][ T27] usb 1-1: config 0 interface 196 has no altsetting 0 [ 167.097007][ T27] usb 1-1: New USB device found, idVendor=05ac, idProduct=7700, bcdDevice=eb.3a [ 167.122230][ T27] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 167.133321][ T27] usb 1-1: Product: syz [ 167.155977][ T27] usb 1-1: Manufacturer: syz [ 167.164118][ T27] usb 1-1: SerialNumber: syz [ 167.179462][ T27] usb 1-1: config 0 descriptor?? [ 167.191785][ T7921] raw-gadget.0 gadget.0: fail, usb_ep_enable returned -22 [ 167.454395][ T7947] netlink: 20 bytes leftover after parsing attributes in process `syz.2.812'. [ 167.611359][ T7940] loop3: detected capacity change from 0 to 32768 [ 167.677736][ T7940] UFO tlock:0xffffc900027fa090 [ 167.698390][ T7940] MetaData crosses page boundary!! [ 167.724422][ T7940] lblock = 6300000010, size = -820051968 [ 167.743542][ T7940] CPU: 0 PID: 7940 Comm: syz.3.809 Not tainted syzkaller #0 [ 167.751733][ T7940] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 167.762082][ T7940] Call Trace: [ 167.765536][ T7940] [ 167.768591][ T7940] dump_stack_lvl+0x18c/0x250 [ 167.773429][ T7940] ? show_regs_print_info+0x20/0x20 [ 167.779382][ T7940] ? load_image+0x400/0x400 [ 167.784020][ T7940] ? folio_unlock+0x118/0x2e0 [ 167.788922][ T7940] __get_metapage+0xaac/0xfa0 [ 167.793654][ T7940] dtSearch+0x591/0x21b0 [ 167.798411][ T7940] jfs_lookup+0x1b1/0x420 [ 167.802795][ T7940] ? jfs_get_parent+0xb0/0xb0 [ 167.807787][ T7940] ? d_alloc_parallel+0x13f6/0x1530 [ 167.813138][ T7940] ? lockdep_softirqs_off+0x430/0x430 [ 167.818841][ T7940] ? d_hash_and_lookup+0x1b0/0x1b0 [ 167.824099][ T7940] ? __init_waitqueue_head+0xa9/0x150 [ 167.829890][ T7940] __lookup_slow+0x2a1/0x400 [ 167.834567][ T7940] ? lookup_one_len+0x2e0/0x2e0 [ 167.839501][ T7940] ? try_to_unlazy+0x34c/0x5a0 [ 167.844355][ T7940] ? down_read+0x1ac/0x2e0 [ 167.845254][ T27] ipheth 1-1:0.196: ipheth_enable_ncm: usb_control_msg: -71 [ 167.848901][ T7940] lookup_slow+0x53/0x70 [ 167.848986][ T7940] walk_component+0x2be/0x3f0 [ 167.865501][ T7940] ? path_lookupat+0x15c/0x440 [ 167.870507][ T7940] path_lookupat+0x169/0x440 [ 167.875190][ T7940] filename_lookup+0x228/0x560 [ 167.880007][ T7940] ? hashlen_string+0x110/0x110 [ 167.884922][ T7940] ? strncpy_from_user+0x197/0x2d0 [ 167.890090][ T7940] ? getname_flags+0x20a/0x500 [ 167.891584][ T27] ipheth 1-1:0.196: Apple iPhone USB Ethernet device attached [ 167.894969][ T7940] user_path_at_empty+0x42/0x60 [ 167.895008][ T7940] __se_sys_mount+0x2a8/0x3d0 [ 167.895032][ T7940] ? __x64_sys_mount+0xc0/0xc0 [ 167.895052][ T7940] ? lockdep_hardirqs_on+0x98/0x150 [ 167.895071][ T7940] ? __x64_sys_mount+0x20/0xc0 [ 167.895089][ T7940] do_syscall_64+0x55/0xa0 [ 167.895111][ T7940] ? clear_bhb_loop+0x40/0x90 [ 167.895132][ T7940] ? clear_bhb_loop+0x40/0x90 [ 167.895150][ T7940] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 167.895168][ T7940] RIP: 0033:0x7fe79f99c799 [ 167.895194][ T7940] Code: ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 167.895209][ T7940] RSP: 002b:00007fe79dbf6028 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 167.895230][ T7940] RAX: ffffffffffffffda RBX: 00007fe79fc15fa0 RCX: 00007fe79f99c799 [ 167.895244][ T7940] RDX: 0000000000000000 RSI: 00002000000001c0 RDI: 0000000000000000 [ 167.895257][ T7940] RBP: 00007fe79fa32c99 R08: 0000000000000000 R09: 0000000000000000 [ 167.895269][ T7940] R10: 0000000001800013 R11: 0000000000000246 R12: 0000000000000000 [ 167.895281][ T7940] R13: 00007fe79fc16038 R14: 00007fe79fc15fa0 R15: 00007ffcb1809e98 [ 167.895310][ T7940] [ 168.029986][ T7940] bread failed! [ 168.033532][ T7940] jfs_lookup: dtSearch returned -5 [ 168.063833][ T27] usb 1-1: USB disconnect, device number 9 [ 168.155965][ T27] ipheth 1-1:0.196: Apple iPhone USB Ethernet now disconnected [ 168.323680][ T23] usb 3-1: new high-speed USB device number 11 using dummy_hcd [ 168.452165][ T7957] loop1: detected capacity change from 0 to 32768 [ 168.470529][ T7957] XFS (loop1): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 168.530512][ T7957] XFS (loop1): Ending clean mount [ 168.537529][ T23] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 168.561149][ T23] usb 3-1: New USB device found, idVendor=0471, idProduct=0304, bcdDevice=e4.df [ 168.569332][ T7957] XFS (loop1): Quotacheck needed: Please wait. [ 168.571170][ T23] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 168.590222][ T23] usb 3-1: config 0 descriptor?? [ 168.619521][ T23] pwc: Askey VC010 type 2 USB webcam detected. [ 168.681398][ T7957] XFS (loop1): Quotacheck: Done. [ 168.742603][ T5768] XFS (loop1): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 168.953681][ T5828] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 169.085224][ T7971] loop3: detected capacity change from 0 to 128 [ 169.174396][ T5828] usb 1-1: Using ep0 maxpacket: 32 [ 169.204794][ T5828] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 169.236828][ T5828] usb 1-1: New USB device found, idVendor=22b8, idProduct=6027, bcdDevice=c2.80 [ 169.256620][ T5828] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 169.271157][ T23] pwc: recv_control_msg error -71 req 02 val 2700 [ 169.278343][ T5828] usb 1-1: Product: syz [ 169.278363][ T5828] usb 1-1: Manufacturer: syz [ 169.278376][ T5828] usb 1-1: SerialNumber: syz [ 169.280896][ T5828] usb 1-1: config 0 descriptor?? [ 169.296144][ T23] pwc: recv_control_msg error -71 req 02 val 2c00 [ 169.343831][ T23] pwc: recv_control_msg error -71 req 04 val 1000 [ 169.347553][ T5828] usb 1-1: bad CDC descriptors [ 169.361459][ T23] pwc: recv_control_msg error -71 req 04 val 1300 [ 169.365522][ T5828] usb 1-1: unsupported MDLM descriptors [ 169.384362][ T7975] warning: `syz.1.822' uses wireless extensions which will stop working for Wi-Fi 7 hardware; use nl80211 [ 169.407006][ T23] pwc: recv_control_msg error -71 req 04 val 1400 [ 169.444284][ T23] pwc: recv_control_msg error -71 req 02 val 2000 [ 169.456782][ T23] pwc: recv_control_msg error -71 req 02 val 2100 [ 169.474386][ T23] pwc: recv_control_msg error -71 req 04 val 1500 [ 169.483116][ T23] pwc: recv_control_msg error -71 req 02 val 2500 [ 169.490955][ T23] pwc: recv_control_msg error -71 req 02 val 2400 [ 169.535871][ T23] pwc: recv_control_msg error -71 req 02 val 2600 [ 169.553740][ T23] pwc: recv_control_msg error -71 req 02 val 2900 [ 169.564280][ T23] pwc: recv_control_msg error -71 req 02 val 2800 [ 169.577938][ T23] pwc: recv_control_msg error -71 req 04 val 1100 [ 169.611573][ T23] pwc: recv_control_msg error -71 req 04 val 1200 [ 169.637518][ T23] pwc: Registered as video103. [ 169.663168][ T23] input: PWC snapshot button as /devices/platform/dummy_hcd.2/usb3/3-1/input/input8 [ 169.717991][ T23] usb 3-1: USB disconnect, device number 11 [ 169.816782][ T787] usb 1-1: USB disconnect, device number 10 [ 169.933968][ T5828] usb 4-1: new high-speed USB device number 5 using dummy_hcd [ 170.137091][ T5828] usb 4-1: Using ep0 maxpacket: 16 [ 170.146833][ T5828] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x82 has invalid maxpacket 16 [ 170.167387][ T5828] usb 4-1: config 1 interface 1 altsetting 1 bulk endpoint 0x3 has invalid maxpacket 8 [ 170.190472][ T5828] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 170.203160][ T5828] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 170.211906][ T5828] usb 4-1: Product: syz [ 170.216298][ T5828] usb 4-1: Manufacturer: syz [ 170.221220][ T5828] usb 4-1: SerialNumber: syz [ 170.470023][ T5828] cdc_ncm 4-1:1.0: bind() failure [ 170.480026][ T5828] cdc_ncm 4-1:1.1: CDC Union missing and no IAD found [ 170.487871][ T5828] cdc_ncm 4-1:1.1: bind() failure [ 170.497737][ T5828] usb 4-1: USB disconnect, device number 5 [ 170.550532][ T7999] loop2: detected capacity change from 0 to 64 [ 170.647570][ T7997] loop0: detected capacity change from 0 to 4096 [ 170.731650][ T7991] loop1: detected capacity change from 0 to 40427 [ 170.744143][ T8000] NILFS (loop0): segctord starting. Construction interval = 5 seconds, CP frequency < 30 seconds [ 170.763548][ T7991] F2FS-fs (loop1): build fault injection attr: rate: 690, type: 0x7ffff [ 170.802285][ T7991] F2FS-fs (loop1): heap/no_heap options were deprecated [ 170.825903][ T7991] F2FS-fs (loop1): invalid crc value [ 170.859173][ T7991] F2FS-fs (loop1): Found nat_bits in checkpoint [ 170.862248][ T7997] syz.0.832: attempt to access beyond end of device [ 170.862248][ T7997] loop0: rw=0, sector=8589934592, nr_sectors = 2 limit=4096 [ 170.906037][ T7997] NILFS (loop0): I/O error reading data block for GC (ino=9, vblocknr=42075) [ 170.945428][ T7997] NILFS (loop0): error -5 preparing GC: cannot read source blocks [ 171.053947][ T7991] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 171.211863][ T7991] syz.1.829: attempt to access beyond end of device [ 171.211863][ T7991] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 171.294349][ T7991] F2FS-fs (loop1): inject lock_op in f2fs_trylock_op of f2fs_write_single_data_page+0x99c/0x1a00 [ 171.368487][ T7991] syz.1.829: attempt to access beyond end of device [ 171.368487][ T7991] loop1: rw=2049, sector=45136, nr_sectors = 32 limit=40427 [ 171.482754][ T7991] syz.1.829: attempt to access beyond end of device [ 171.482754][ T7991] loop1: rw=2049, sector=45184, nr_sectors = 16 limit=40427 [ 171.557887][ T7991] syz.1.829: attempt to access beyond end of device [ 171.557887][ T7991] loop1: rw=2049, sector=45208, nr_sectors = 24 limit=40427 [ 171.608507][ T7991] syz.1.829: attempt to access beyond end of device [ 171.608507][ T7991] loop1: rw=2049, sector=45264, nr_sectors = 16 limit=40427 [ 171.622138][ T8007] loop2: detected capacity change from 0 to 65536 [ 171.689501][ T8007] XFS (loop2): Mounting V5 Filesystem 9b7348e5-2fa0-41a5-9526-c53a678b01f3 [ 171.769061][ T8027] syz_tun: entered promiscuous mode [ 171.776284][ T5768] syz-executor: attempt to access beyond end of device [ 171.776284][ T5768] loop1: rw=2049, sector=45312, nr_sectors = 8 limit=40427 [ 171.791248][ T8027] macsec1: entered promiscuous mode [ 171.796891][ T8027] macsec1: entered allmulticast mode [ 171.802363][ T8027] syz_tun: entered allmulticast mode [ 171.806458][ T5768] F2FS-fs (loop1): Stopped filesystem due to reason: 3 [ 171.831213][ T8007] XFS (loop2): Internal error !xlog_verify_bno(log, 0, nbblks) at line 81 of file fs/xfs/xfs_log_recover.c. Caller xlog_alloc_buffer+0x118/0x200 [ 171.847398][ T8007] CPU: 1 PID: 8007 Comm: syz.2.835 Not tainted syzkaller #0 [ 171.854822][ T8007] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 171.864912][ T8007] Call Trace: [ 171.868213][ T8007] [ 171.871160][ T8007] dump_stack_lvl+0x18c/0x250 [ 171.875880][ T8007] ? show_regs_print_info+0x20/0x20 [ 171.881378][ T8007] ? __phys_addr+0xba/0x170 [ 171.885932][ T8007] ? __kasan_kmalloc_large+0x8b/0xa0 [ 171.891275][ T8007] xfs_corruption_error+0x122/0x170 [ 171.896605][ T8007] ? xlog_alloc_buffer+0x118/0x200 [ 171.901814][ T8007] xlog_alloc_buffer+0x159/0x200 [ 171.906827][ T8007] ? xlog_alloc_buffer+0x118/0x200 [ 171.912004][ T8007] xlog_do_recovery_pass+0x1de/0xdb0 [ 171.917351][ T8007] ? lock_chain_count+0x20/0x20 [ 171.922239][ T8007] ? xlog_do_io+0x360/0x360 [ 171.926802][ T8007] ? xlog_verify_head+0xea/0x430 [ 171.931880][ T8007] ? __kmem_cache_free+0xba/0x1e0 [ 171.937040][ T8007] xlog_verify_head+0x137/0x430 [ 171.942015][ T8007] xlog_find_tail+0x6c4/0xa00 [ 171.946744][ T8007] xlog_recover+0x4c/0x440 [ 171.951305][ T8007] xfs_log_mount+0x2c2/0x470 [ 171.955950][ T8007] xfs_mountfs+0xc58/0x1d40 [ 171.960492][ T8007] ? lockdep_softirqs_off+0x430/0x430 [ 171.966612][ T8007] ? xfs_default_resblks+0x70/0x70 [ 171.972065][ T8007] ? init_timer_key+0x161/0x2a0 [ 171.976969][ T8007] ? rcu_is_watching+0x15/0xb0 [ 171.981958][ T8007] ? trace_xfs_inode_timestamp_range+0x84/0x1d0 [ 171.988245][ T8007] xfs_fs_fill_super+0x112f/0x13a0 [ 171.993601][ T8007] get_tree_bdev+0x3f3/0x520 [ 171.998342][ T8007] ? vfs_parse_fs_string+0x170/0x170 [ 172.003768][ T8007] ? xfs_mount_set_dax_mode+0x100/0x100 [ 172.009370][ T8007] ? setup_bdev_super+0x660/0x660 [ 172.014662][ T8007] ? apparmor_capable+0x137/0x1a0 [ 172.019757][ T8007] ? bpf_lsm_capable+0x9/0x10 [ 172.024509][ T8007] ? security_capable+0x89/0xb0 [ 172.029601][ T8007] vfs_get_tree+0x8c/0x280 [ 172.034092][ T8007] do_new_mount+0x24b/0xa40 [ 172.038657][ T8007] __se_sys_mount+0x2e7/0x3d0 [ 172.043467][ T8007] ? __x64_sys_mount+0xc0/0xc0 [ 172.048370][ T8007] ? lockdep_hardirqs_on+0x98/0x150 [ 172.053616][ T8007] ? __x64_sys_mount+0x20/0xc0 [ 172.058432][ T8007] do_syscall_64+0x55/0xa0 [ 172.062904][ T8007] ? clear_bhb_loop+0x40/0x90 [ 172.067616][ T8007] ? clear_bhb_loop+0x40/0x90 [ 172.072332][ T8007] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 172.078346][ T8007] RIP: 0033:0x7f99e759da0a [ 172.082797][ T8007] Code: 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 ff ff ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 49 89 ca b8 a5 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 e8 ff ff ff f7 d8 64 89 01 48 [ 172.102451][ T8007] RSP: 002b:00007f99e854ae58 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 172.110923][ T8007] RAX: ffffffffffffffda RBX: 00007f99e854aee0 RCX: 00007f99e759da0a [ 172.118944][ T8007] RDX: 0000200000000800 RSI: 0000200000000000 RDI: 00007f99e854aea0 [ 172.126953][ T8007] RBP: 0000200000000800 R08: 00007f99e854aee0 R09: 0000000003000010 [ 172.134949][ T8007] R10: 0000000003000010 R11: 0000000000000246 R12: 0000200000000000 [ 172.142953][ T8007] R13: 00007f99e854aea0 R14: 000000000000b9aa R15: 0000200000000040 [ 172.150966][ T8007] [ 172.154067][ C1] vkms_vblank_simulate: vblank timer overrun [ 172.155089][ T8027] syz_tun: left allmulticast mode [ 172.161750][ T8007] XFS (loop2): Corruption detected. Unmount and run xfs_repair [ 172.175632][ T8007] XFS (loop2): Invalid block length (0x20040) for buffer [ 172.184442][ T8007] XFS (loop2): failed to locate log tail [ 172.190108][ T8007] XFS (loop2): log mount/recovery failed: error -12 [ 172.210627][ T8007] XFS (loop2): log mount failed [ 172.218722][ T8027] syz_tun: left promiscuous mode [ 172.777786][ T8037] sch_tbf: burst 0 is lower than device veth1_virt_wifi mtu (1514) ! [ 172.973227][ T8046] loop2: detected capacity change from 0 to 128 [ 173.029917][ T8052] Bluetooth: MGMT ver 1.22 [ 173.278856][ T8058] netlink: 'syz.3.854': attribute type 2 has an invalid length. [ 173.322190][ T8058] netlink: 16 bytes leftover after parsing attributes in process `syz.3.854'. [ 173.344222][ T8058] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check. [ 173.555046][ T8068] sp0: Synchronizing with TNC [ 173.591652][ T8066] [U] è [ 173.822577][ T8079] loop0: detected capacity change from 0 to 128 [ 173.895598][ T8079] EXT4-fs (loop0): mounted filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09 r/w without journal. Quota mode: none. [ 173.956716][ T8079] ext4 filesystem being mounted at /219/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 174.122211][ T5769] EXT4-fs (loop0): unmounting filesystem 76b65be2-f6da-4727-8c75-0525a5b65a09. [ 174.299514][ T8099] loop1: detected capacity change from 0 to 512 [ 174.338638][ T8104] comedi comedi3: 8255: I/O port conflict (0xb,4) [ 174.348657][ T8104] comedi comedi3: 8255: I/O port conflict (0x10000,4) [ 174.358261][ T8104] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 174.365360][ T8099] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 174.378162][ T8099] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 174.388520][ T8099] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.873: Failed to acquire dquot type 1 [ 174.402837][ T8104] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 174.412152][ T8099] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 174.424015][ T8104] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 174.431267][ T8104] comedi comedi3: 8255: I/O port conflict (0x85,4) [ 174.438348][ T8099] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 174.448776][ T8099] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.873: Failed to acquire dquot type 1 [ 174.460392][ T8104] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 174.467566][ T8104] comedi comedi3: 8255: I/O port conflict (0xa,4) [ 174.474396][ T8104] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 174.481532][ T8104] comedi comedi3: 8255: I/O port conflict (0x9,4) [ 174.486431][ T8099] EXT4-fs error (device loop1): ext4_validate_block_bitmap:439: comm syz.1.873: bg 0: block 248: padding at end of block bitmap is not set [ 174.488837][ T8104] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 174.510496][ T8104] comedi comedi3: 8255: I/O port conflict (0x6,4) [ 174.517310][ T8104] comedi comedi3: 8255: I/O port conflict (0x78b4042d,4) [ 174.527426][ T8099] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6651: Corrupt filesystem [ 174.548933][ T8099] Quota error (device loop1): do_check_range: Getting dqdh_prev_free 1536 out of range 0-5 [ 174.571513][ T8099] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 174.602906][ T8099] EXT4-fs error (device loop1): ext4_acquire_dquot:6949: comm syz.1.873: Failed to acquire dquot type 1 [ 174.644655][ T28] audit: type=1326 audit(1774431891.807:48): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.0.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 174.667245][ T8099] EXT4-fs (loop1): 1 orphan inode deleted [ 174.676554][ T28] audit: type=1326 audit(1774431891.807:49): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.0.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 174.678539][ T8099] EXT4-fs (loop1): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [ 174.707655][ T28] audit: type=1326 audit(1774431891.837:50): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.0.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=39 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 174.751139][ T28] audit: type=1326 audit(1774431891.837:51): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=unconfined pid=8109 comm="syz.0.884" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f5fc199c799 code=0x7ffc0000 [ 174.752052][ T8099] ext4 filesystem being mounted at /200/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 174.898107][ T8115] loop2: detected capacity change from 0 to 2048 [ 174.976458][ T8115] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 175.037771][ T5768] EXT4-fs (loop1): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.112808][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 175.160385][ T8123] loop3: detected capacity change from 0 to 128 [ 175.275949][ T8123] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 175.310095][ T8123] hpfs: filesystem error: improperly stopped [ 175.318398][ T8123] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 175.330507][ T8123] hpfs: You really don't want any checks? You are crazy... [ 175.376135][ T8123] hpfs: Code page index out of array [ 175.382055][ T8123] hpfs: code page support is disabled [ 175.398854][ T8130] loop1: detected capacity change from 0 to 256 [ 175.411005][ T8123] hpfs: hpfs_map_4sectors(): unaligned read [ 175.419106][ T8130] exfat: Deprecated parameter 'namecase' [ 175.434560][ T8130] exfat: Deprecated parameter 'utf8' [ 175.473912][ T8123] hpfs: hpfs_map_4sectors(): unaligned read [ 175.480244][ T8123] hpfs: filesystem error: unable to find root dir [ 175.547698][ T8130] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0x22785e93, utbl_chksum : 0xe619d30d) [ 175.790620][ T8134] loop2: detected capacity change from 0 to 1024 [ 175.838607][ T8134] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 175.925693][ T8134] EXT4-fs (loop2): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: none. [ 176.013425][ T8143] batman_adv: The newly added mac address (aa:00:00:00:00:00) already exists on: batadv_slave_1 [ 176.053720][ T8143] batman_adv: It is strongly recommended to keep mac addresses unique to avoid problems! [ 176.070780][ T8143] netlink: 'syz.1.888': attribute type 2 has an invalid length. [ 176.092573][ T8143] netlink: 16 bytes leftover after parsing attributes in process `syz.1.888'. [ 176.108852][ T8143] A link change request failed with some changes committed already. Interface batadv_slave_1 may have been left with an inconsistent configuration, please check. [ 176.108886][ T8122] loop0: detected capacity change from 0 to 32768 [ 176.167700][ T8122] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 176.198998][ T5771] EXT4-fs (loop2): unmounting filesystem 00000000-0000-0000-0000-000000000000. [ 176.307404][ T8122] XFS (loop0): Ending clean mount [ 176.353735][ T23] usb 4-1: new high-speed USB device number 6 using dummy_hcd [ 176.460901][ T5769] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 176.569130][ T23] usb 4-1: Using ep0 maxpacket: 8 [ 176.612116][ T23] usb 4-1: config index 0 descriptor too short (expected 30, got 18) [ 176.641072][ T23] usb 4-1: New USB device found, idVendor=1660, idProduct=0932, bcdDevice=80.ea [ 176.656207][ T23] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 176.673933][ T9] usb 3-1: new high-speed USB device number 12 using dummy_hcd [ 176.681277][ T23] usb 4-1: Product: syz [ 176.686932][ T23] usb 4-1: Manufacturer: syz [ 176.691825][ T23] usb 4-1: SerialNumber: syz [ 176.702704][ T23] usb 4-1: config 0 descriptor?? [ 176.715565][ T23] dvb-usb: found a 'Medion MD95700 (MDUSBTV-HYBRID)' in warm state. [ 176.733295][ T23] usb 4-1: setting power ON [ 176.738928][ T23] dvb-usb: bulk message failed: -22 (2/0) [ 176.755632][ T23] dvb-usb: will pass the complete MPEG2 transport stream to the software demuxer. [ 176.765801][ T23] dvbdev: DVB: registering new adapter (Medion MD95700 (MDUSBTV-HYBRID)) [ 176.768712][ T8165] loop0: detected capacity change from 0 to 1024 [ 176.775069][ T23] usb 4-1: media controller created [ 176.842937][ T23] dvbdev: dvb_create_media_entity: media entity 'dvb-demux' registered. [ 176.863837][ T787] usb 2-1: new high-speed USB device number 14 using dummy_hcd [ 176.885196][ T9] usb 3-1: Using ep0 maxpacket: 32 [ 176.893935][ T9] usb 3-1: config 0 has an invalid interface number: 132 but max is 0 [ 176.905511][ T9] usb 3-1: config 0 has no interface number 0 [ 176.911715][ T9] usb 3-1: config 0 interface 132 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 176.936323][ T23] usb 4-1: selecting invalid altsetting 6 [ 176.948515][ T9] usb 3-1: New USB device found, idVendor=0413, idProduct=6023, bcdDevice=ec.e5 [ 176.958120][ T23] usb 4-1: digital interface selection failed (-22) [ 176.958207][ T23] dvb-usb: no frontend was attached by 'Medion MD95700 (MDUSBTV-HYBRID)' [ 176.961834][ T23] usb 4-1: setting power OFF [ 176.968376][ T8145] dvb-usb: bulk message failed: -22 (3/0) [ 176.989253][ T9] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 177.001263][ T8145] cxusb: i2c rd: len=147 is too big! [ 177.001263][ T8145] [ 177.006025][ T23] dvb-usb: bulk message failed: -22 (2/0) [ 177.009986][ T9] usb 3-1: Product: syz [ 177.019852][ T9] usb 3-1: Manufacturer: syz [ 177.040504][ T23] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully initialized and connected. [ 177.045092][ T9] usb 3-1: SerialNumber: syz [ 177.064554][ T23] (NULL device *): no alternate interface [ 177.080551][ T9] usb 3-1: config 0 descriptor?? [ 177.094054][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 177.120375][ T787] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 177.134382][ T9] em28xx 3-1:0.132: New device syz syz @ 480 Mbps (0413:6023, interface 132, class 132) [ 177.145231][ T787] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 177.160552][ T9] em28xx 3-1:0.132: Video interface 132 found: [ 177.171113][ T23] dvb-usb: Medion MD95700 (MDUSBTV-HYBRID) successfully deinitialized and disconnected. [ 177.171454][ T787] usb 2-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 177.198309][ T23] usb 4-1: USB disconnect, device number 6 [ 177.209267][ T787] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 177.226572][ T787] usb 2-1: config 0 descriptor?? [ 177.539099][ T9] em28xx 3-1:0.132: chip ID is em2710/2820 [ 177.646114][ T787] plantronics 0003:047F:FFFF.0016: unbalanced delimiter at end of report description [ 177.661611][ T787] plantronics 0003:047F:FFFF.0016: parse failed [ 177.663987][ T8172] loop0: detected capacity change from 0 to 32768 [ 177.669360][ T787] plantronics: probe of 0003:047F:FFFF.0016 failed with error -22 [ 177.720192][ T8172] XFS (loop0): Mounting V5 Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 177.775395][ T8180] loop3: detected capacity change from 0 to 64 [ 177.839890][ T9] em28xx 3-1:0.132: failed to trigger read from i2c address 0xa0 (error=-5) [ 177.872495][ T9] em28xx 3-1:0.132: board has no eeprom [ 177.881919][ T8172] XFS (loop0): Ending clean mount [ 177.891248][ T8172] XFS (loop0): Quotacheck needed: Please wait. [ 177.891591][ T5828] usb 2-1: USB disconnect, device number 14 [ 177.972854][ T8172] XFS (loop0): Quotacheck: Done. [ 177.990376][ T9] em28xx 3-1:0.132: Identified as Leadtek Winfast USB II (card=7) [ 177.999464][ T9] em28xx 3-1:0.132: analog set to bulk mode. [ 178.006210][ T787] em28xx 3-1:0.132: Registering V4L2 extension [ 178.091870][ T787] em28xx 3-1:0.132: failed to trigger read from i2c address 0x4a (error=-5) [ 178.108655][ T9] usb 3-1: USB disconnect, device number 12 [ 178.117909][ T9] em28xx 3-1:0.132: Disconnecting em28xx [ 178.226429][ T5769] XFS (loop0): Unmounting Filesystem d7dc424e-7990-42cb-9f91-9cb7200a101d [ 178.306207][ T787] em28xx 3-1:0.132: Config register raw data: 0xffffffed [ 178.360931][ T787] em28xx 3-1:0.132: AC97 chip type couldn't be determined [ 178.385068][ T787] em28xx 3-1:0.132: No AC97 audio processor [ 178.478573][ T787] usb 3-1: Decoder not found [ 178.497543][ T787] em28xx 3-1:0.132: failed to create media graph [ 178.533722][ T787] em28xx 3-1:0.132: V4L2 device video103 deregistered [ 178.615057][ T787] em28xx 3-1:0.132: Remote control support is not available for this card. [ 178.642616][ T9] em28xx 3-1:0.132: Closing input extension [ 178.739596][ T9] em28xx 3-1:0.132: Freeing device [ 179.067274][ T8201] loop3: detected capacity change from 0 to 4096 [ 179.139822][ T8201] ntfs: volume version 3.1. [ 179.377149][ T8193] loop1: detected capacity change from 0 to 32768 [ 179.450588][ T8193] JBD2: Ignoring recovery information on journal [ 179.475460][ T8193] jbd2_journal_bmap: journal block not found at offset 32 on loop1-75 [ 179.499896][ T8193] JBD2: bad block at offset 32 [ 179.536149][ T8193] ocfs2: Mounting device (7,1) on (node local, slot 0) with ordered data mode. [ 179.607320][ T8193] OCFS2: ERROR (device loop1): int __ocfs2_find_path(struct ocfs2_caching_info *, struct ocfs2_extent_list *, u32, path_insert_t *, void *): Owner 65 has invalid tree depth 312 in extent list [ 179.640006][ T8193] On-disk corruption discovered. Please run fsck.ocfs2 once the filesystem is unmounted. [ 179.651852][ T8193] OCFS2: File system is now read-only. [ 179.665083][ T8193] (syz.1.905,8193,0):ocfs2_find_leaf:1941 ERROR: status = -30 [ 179.672703][ T8193] (syz.1.905,8193,0):ocfs2_get_clusters_nocache:421 ERROR: status = -30 [ 179.684636][ T8193] (syz.1.905,8193,0):ocfs2_fiemap:782 ERROR: status = -30 [ 179.772365][ T8215] loop3: detected capacity change from 0 to 64 [ 179.789878][ T5768] ocfs2: Unmounting device (7,1) on (node local) [ 179.799020][ T8215] MINIX-fs: mounting unchecked file system, running fsck is recommended [ 179.870468][ T8215] MINIX-fs warning: remounting unchecked fs, running fsck is recommended [ 180.178135][ T8225] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 180.208811][ T8225] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 180.247516][ T8225] comedi comedi3: 8255: I/O port conflict (0x4,4) [ 180.261156][ T8225] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 180.291176][ T8225] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 180.310055][ T8225] comedi comedi3: 8255: I/O port conflict (0x12,4) [ 180.328422][ T8225] comedi comedi3: 8255: I/O port conflict (0x11,4) [ 180.339414][ T8225] comedi comedi3: 8255: I/O port conflict (0x81,4) [ 180.346760][ T8225] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffc,4) [ 180.390930][ T8225] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 180.410070][ T8225] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4) [ 180.429410][ T8225] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 180.454336][ T8225] comedi comedi3: 8255: I/O port conflict (0x1,4) [ 180.460955][ T8225] comedi comedi3: 8255: I/O port conflict (0x2,4) [ 180.474258][ T8225] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 180.482606][ T8225] comedi comedi3: 8255: I/O port conflict (0x400009,4) [ 180.522072][ T8225] comedi comedi3: 8255: I/O port conflict (0x3,4) [ 180.544416][ T8225] comedi comedi3: 8255: I/O port conflict (0x5,4) [ 180.554322][ T2130] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 180.557029][ T8225] comedi comedi3: 8255: I/O port conflict (0x80,4) [ 180.584632][ T8225] comedi comedi3: 8255: I/O port conflict (0x7,4) [ 180.591685][ T8225] comedi comedi3: 8255: I/O port conflict (0x2000e67,4) [ 180.615238][ T8225] comedi comedi3: 8255: I/O port conflict (0x8,4) [ 180.621949][ T8225] comedi comedi3: 8255: I/O port conflict (0xfffffffffffffffe,4) [ 180.687362][ T8241] damon-dbgfs: DAMON debugfs interface is deprecated, so users should move to DAMON_SYSFS. If you cannot, please report your usecase to damon@lists.linux.dev and linux-mm@kvack.org. [ 180.753832][ T2130] usb 1-1: Using ep0 maxpacket: 8 [ 180.787173][ T2130] usb 1-1: New USB device found, idVendor=2770, idProduct=930c, bcdDevice=8d.6a [ 180.811595][ T2130] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 180.811824][ T8245] netlink: 68 bytes leftover after parsing attributes in process `syz.1.928'. [ 180.843845][ T2130] usb 1-1: Product: syz [ 180.848663][ T2130] usb 1-1: Manufacturer: syz [ 180.853295][ T2130] usb 1-1: SerialNumber: syz [ 180.872805][ T8245] netlink: 16 bytes leftover after parsing attributes in process `syz.1.928'. [ 180.898340][ T2130] usb 1-1: config 0 descriptor?? [ 180.920354][ T8247] loop3: detected capacity change from 0 to 512 [ 180.931199][ T2130] gspca_main: sq930x-2.14.0 probing 2770:930c [ 180.932596][ T8249] loop2: detected capacity change from 0 to 128 [ 180.995563][ T8247] EXT4-fs (loop3): mounted filesystem 00800000-0000-0000-0000-000000000000 ro without journal. Quota mode: writeback. [ 181.031556][ T8249] hpfs: filesystem error: invalid number of hotfixes: 2066844986, used: 2066844985; already mounted read-only [ 181.081059][ T8249] hpfs: filesystem error: improperly stopped [ 181.101476][ T8249] hpfs: filesystem error: warning: spare dnodes used, try chkdsk [ 181.110298][ T8249] hpfs: You really don't want any checks? You are crazy... [ 181.122089][ T8249] hpfs: Code page index out of array [ 181.128118][ T8249] hpfs: code page support is disabled [ 181.135045][ T8249] hpfs: hpfs_map_4sectors(): unaligned read [ 181.144969][ T8249] hpfs: hpfs_map_4sectors(): unaligned read [ 181.158437][ T8249] hpfs: filesystem error: unable to find root dir [ 181.176570][ T5770] EXT4-fs (loop3): unmounting filesystem 00800000-0000-0000-0000-000000000000. [ 181.449570][ T23] usb 2-1: new high-speed USB device number 15 using dummy_hcd [ 181.602437][ T8266] netlink: 'syz.2.938': attribute type 280 has an invalid length. [ 181.612363][ T2130] gspca_sq930x: reg_w 0305 fd00 failed -71 [ 181.623932][ T2130] sq930x: probe of 1-1:0.0 failed with error -71 [ 181.645622][ T2130] usb 1-1: USB disconnect, device number 11 [ 181.651958][ T23] usb 2-1: Using ep0 maxpacket: 8 [ 181.659145][ T6935] udevd[6935]: setting mode of /dev/bus/usb/001/011 to 020664 failed: No such file or directory [ 181.664497][ T23] usb 2-1: unable to get BOS descriptor or descriptor too short [ 181.678271][ T6935] udevd[6935]: setting owner of /dev/bus/usb/001/011 to uid=0, gid=0 failed: No such file or directory [ 181.702941][ T23] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 181.716818][ T23] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 181.743490][ T23] usb 2-1: New USB device found, idVendor=0e41, idProduct=414a, bcdDevice= 0.40 [ 181.757557][ T8268] [U]  [ 181.762421][ T23] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 181.775177][ T23] usb 2-1: Product: syz [ 181.779502][ T23] usb 2-1: Manufacturer: syz [ 181.784773][ T23] usb 2-1: SerialNumber: syz [ 181.843048][ T8271] loop2: detected capacity change from 0 to 64 [ 181.986460][ T8273] loop2: detected capacity change from 0 to 512 [ 182.017954][ T8273] FAT-fs (loop2): Directory bread(block 199916) failed [ 182.039645][ T8273] FAT-fs (loop2): Directory bread(block 199917) failed [ 182.040509][ T23] usb 2-1: Quirk or no altest; falling back to MIDI 1.0 [ 182.048530][ T8273] FAT-fs (loop2): Directory bread(block 199918) failed [ 182.056893][ T23] usb 2-1: MIDIStreaming interface descriptor not found [ 182.069325][ T8273] FAT-fs (loop2): Directory bread(block 199919) failed [ 182.069366][ T8273] FAT-fs (loop2): Directory bread(block 199920) failed [ 182.069388][ T8273] FAT-fs (loop2): Directory bread(block 199921) failed [ 182.069411][ T8273] FAT-fs (loop2): Directory bread(block 199922) failed [ 182.069433][ T8273] FAT-fs (loop2): Directory bread(block 199923) failed [ 182.164831][ T23] usb 2-1: 0:2 : does not exist [ 182.304542][ T23] usb 2-1: USB disconnect, device number 15 [ 182.471586][ T5759] udevd[5759]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card3/controlC3/../uevent} for writing: No such file or directory [ 182.843842][ T9] usb 1-1: new full-speed USB device number 12 using dummy_hcd [ 182.991114][ T8296] loop1: detected capacity change from 0 to 4096 [ 183.008395][ T8296] ntfs3: loop1: Different NTFS sector size (1024) and media sector size (512). [ 183.041162][ T9] usb 1-1: too many endpoints for config 0 interface 0 altsetting 4: 129, using maximum allowed: 30 [ 183.069637][ T9] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has an invalid bInterval 0, changing to 10 [ 183.114638][ T9] usb 1-1: config 0 interface 0 altsetting 4 endpoint 0x81 has invalid wMaxPacketSize 0 [ 183.136583][ T9] usb 1-1: config 0 interface 0 altsetting 4 has 1 endpoint descriptor, different from the interface descriptor's value: 129 [ 183.181016][ T9] usb 1-1: config 0 interface 0 has no altsetting 0 [ 183.202563][ T9] usb 1-1: New USB device found, idVendor=056a, idProduct=0725, bcdDevice= 0.00 [ 183.219480][ T9] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 183.267356][ T8303] loop3: detected capacity change from 0 to 16 [ 183.287981][ T9] usb 1-1: config 0 descriptor?? [ 183.298800][ T8303] MTD: Attempt to mount non-MTD device "/dev/loop3" [ 183.346362][ T8292] loop2: detected capacity change from 0 to 32768 [ 183.398460][ T8292] [ 183.398460][ T8292] ... Log Wrap ... Log Wrap ... Log Wrap ... [ 183.398460][ T8292] [ 183.471818][ T8292] ERROR: (device loop2): dbReAlloc: the block is outside the filesystem [ 183.471818][ T8292] [ 183.513100][ T8292] ERROR: (device loop2): remounting filesystem as read-only [ 183.799812][ T9] wacom 0003:056A:0725.0017: unknown main item tag 0x0 [ 183.825501][ T9] wacom 0003:056A:0725.0017: Unknown device_type for 'HID 056a:0725'. Ignoring. [ 184.075703][ T8317] loop2: detected capacity change from 0 to 8192 [ 184.094335][ T787] usb 1-1: USB disconnect, device number 12 [ 184.100690][ T8317] REISERFS warning: read_super_block: reiserfs filesystem is deprecated and scheduled to be removed from the kernel in 2025 [ 184.129025][ T8317] REISERFS (device loop2): found reiserfs format "3.5" with non-standard journal [ 184.142760][ T8317] REISERFS (device loop2): using ordered data mode [ 184.151643][ T8317] reiserfs: using flush barriers [ 184.183051][ T8317] REISERFS (device loop2): journal params: device loop2, size 512, journal first block 18, max trans len 256, max batch 225, max commit age 30, max trans age 30 [ 184.204319][ T9] usb 4-1: new high-speed USB device number 7 using dummy_hcd [ 184.219422][ T8317] REISERFS (device loop2): checking transaction log (loop2) [ 184.239137][ T8317] REISERFS (device loop2): Using r5 hash to sort names [ 184.298233][ T8317] reiserfs: enabling write barrier flush mode [ 184.342387][ T8317] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 184.373747][ T8317] REISERFS error (device loop2): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 184.404074][ T8317] REISERFS (device loop2): Remounting filesystem read-only [ 184.423786][ T8317] REISERFS error (device loop2): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 184.424884][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x7 has invalid wMaxPacketSize 0 [ 184.460951][ T8317] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 184.471540][ T9] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x7 has invalid maxpacket 0 [ 184.490263][ T8317] REISERFS error (device loop2): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 184.500278][ T9] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 184.501901][ T8317] REISERFS error (device loop2): zam-7001 reiserfs_find_entry: io error [ 184.521291][ T9] usb 4-1: config 0 interface 0 altsetting 0 bulk endpoint 0x89 has invalid maxpacket 0 [ 184.524301][ T8317] REISERFS warning: reiserfs-5093 is_leaf: item entry count seems wrong *3.5*[2 1 0(1) DIR], item_len 35, item_location 3937, free_space(entry_count) 2 [ 184.549586][ T8317] REISERFS error (device loop2): vs-5150 search_by_key: invalid format found in block 531. Fsck? [ 184.561315][ T8317] REISERFS error (device loop2): vs-13050 reiserfs_update_sd_size: i/o failure occurred trying to update [2 1 0x0 SD] stat data [ 184.562765][ T9] usb 4-1: New USB device found, idVendor=2040, idProduct=4900, bcdDevice=4d.8b [ 184.575735][ T8317] REISERFS warning (device loop2): jdm-20006 create_privroot: xattrs/ACLs enabled and couldn't find/create .reiserfs_priv. Failing mount. [ 184.604674][ T9] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 184.624005][ T9] usb 4-1: config 0 descriptor?? [ 184.640589][ T5771] ------------[ cut here ]------------ [ 184.646435][ T5771] kernel BUG at fs/reiserfs/journal.c:1916! [ 184.659273][ T5771] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 184.665746][ T5771] CPU: 0 PID: 5771 Comm: syz-executor Not tainted syzkaller #0 [ 184.673483][ T5771] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2026 [ 184.684520][ T5771] RIP: 0010:do_journal_release+0x4e6/0x4f0 [ 184.690529][ T5771] Code: b5 ff e9 a8 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 06 fd ff ff 4c 89 ff e8 64 dc b5 ff e9 f9 fc ff ff e8 8a ad 5d ff <0f> 0b e8 83 ad 5d ff 0f 0b 90 66 0f 1f 00 41 57 41 56 53 48 89 f3 [ 184.711219][ T5771] RSP: 0018:ffffc9000459fb00 EFLAGS: 00010293 [ 184.717385][ T5771] RAX: ffffffff82296ed6 RBX: 1ffff920008b3f64 RCX: ffff88802b853c00 [ 184.725451][ T5771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 184.735129][ T5771] RBP: ffffc9000459fbf8 R08: ffffc9000459fb77 R09: 0000000000000000 [ 184.743192][ T5771] R10: ffffc9000459fb40 R11: fffff520008b3f6f R12: ffffc9000b7cf000 [ 184.751346][ T5771] R13: dffffc0000000000 R14: ffff888018aac630 R15: 0000000000000000 [ 184.759326][ T5771] FS: 0000555570440500(0000) GS:ffff8880b8e00000(0000) knlGS:0000000000000000 [ 184.768359][ T5771] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 184.775028][ T5771] CR2: 00007ffcad597ef0 CR3: 000000006168b000 CR4: 00000000003506f0 [ 184.783284][ T5771] Call Trace: [ 184.786650][ T5771] [ 184.789607][ T5771] ? journal_release+0x30/0x30 [ 184.794652][ T5771] journal_release+0x1f/0x30 [ 184.799274][ T5771] reiserfs_put_super+0x26b/0x510 [ 184.804567][ T5771] ? hook_inode_free_security+0xb0/0xb0 [ 184.810193][ T5771] ? evict_inodes+0x63c/0x6a0 [ 184.814871][ T5771] ? reiserfs_dirty_inode+0x270/0x270 [ 184.820240][ T5771] ? fscrypt_destroy_keyring+0x288/0x2a0 [ 184.826067][ T5771] ? reiserfs_dirty_inode+0x270/0x270 [ 184.831476][ T5771] generic_shutdown_super+0x134/0x2b0 [ 184.837057][ T5771] kill_block_super+0x44/0x90 [ 184.841793][ T5771] deactivate_locked_super+0x97/0x100 [ 184.847356][ T5771] cleanup_mnt+0x43b/0x4d0 [ 184.851805][ T5771] task_work_run+0x1d4/0x260 [ 184.856398][ T5771] ? task_work_cancel+0x220/0x220 [ 184.861440][ T5771] ? exit_to_user_mode_loop+0x3b/0x110 [ 184.866987][ T5771] exit_to_user_mode_loop+0xe6/0x110 [ 184.872266][ T5771] exit_to_user_mode_prepare+0xee/0x180 [ 184.877808][ T5771] syscall_exit_to_user_mode+0x1a/0x50 [ 184.883281][ T5771] do_syscall_64+0x61/0xa0 [ 184.887957][ T5771] ? clear_bhb_loop+0x40/0x90 [ 184.892655][ T5771] ? clear_bhb_loop+0x40/0x90 [ 184.897364][ T5771] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 184.903272][ T5771] RIP: 0033:0x7f99e759d9d7 [ 184.907786][ T5771] Code: a2 c7 05 1c fd 24 00 00 00 00 00 eb 96 e8 e1 12 00 00 90 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 e8 ff ff ff f7 d8 64 89 02 b8 [ 184.927587][ T5771] RSP: 002b:00007ffcad598548 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 184.936117][ T5771] RAX: 0000000000000000 RBX: 00007f99e7632050 RCX: 00007f99e759d9d7 [ 184.944315][ T5771] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcad598600 [ 184.952567][ T5771] RBP: 00007ffcad598600 R08: 00007ffcad599600 R09: 00000000ffffffff [ 184.960652][ T5771] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ffcad599690 [ 184.968824][ T5771] R13: 00007f99e7632050 R14: 000000000002d10d R15: 00007ffcad5996d0 [ 184.976984][ T5771] [ 184.979996][ T5771] Modules linked in: [ 184.984060][ T27] usb 2-1: new high-speed USB device number 16 using dummy_hcd [ 184.999089][ T9] hdpvr 4-1:0.0: firmware version 0x0 dated [ 185.003712][ T5771] ---[ end trace 0000000000000000 ]--- [ 185.005380][ T9] hdpvr 4-1:0.0: untested firmware, the driver might not work. [ 185.011017][ T5771] RIP: 0010:do_journal_release+0x4e6/0x4f0 [ 185.028301][ T5771] Code: b5 ff e9 a8 fc ff ff 44 89 f9 80 e1 07 80 c1 03 38 c1 0f 8c 06 fd ff ff 4c 89 ff e8 64 dc b5 ff e9 f9 fc ff ff e8 8a ad 5d ff <0f> 0b e8 83 ad 5d ff 0f 0b 90 66 0f 1f 00 41 57 41 56 53 48 89 f3 [ 185.049015][ T5771] RSP: 0018:ffffc9000459fb00 EFLAGS: 00010293 [ 185.056384][ T5771] RAX: ffffffff82296ed6 RBX: 1ffff920008b3f64 RCX: ffff88802b853c00 [ 185.064647][ T5771] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 185.072722][ T5771] RBP: ffffc9000459fbf8 R08: ffffc9000459fb77 R09: 0000000000000000 [ 185.081386][ T5771] R10: ffffc9000459fb40 R11: fffff520008b3f6f R12: ffffc9000b7cf000 [ 185.089799][ T5771] R13: dffffc0000000000 R14: ffff888018aac630 R15: 0000000000000000 [ 185.098080][ T5771] FS: 0000555570440500(0000) GS:ffff8880b8f00000(0000) knlGS:0000000000000000 [ 185.107850][ T5771] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 185.114779][ T5771] CR2: 00007f5fc1be92f8 CR3: 000000006168b000 CR4: 00000000003506e0 [ 185.122945][ T5771] Kernel panic - not syncing: Fatal exception [ 185.129683][ T5771] Kernel Offset: disabled [ 185.134089][ T5771] Rebooting in 86400 seconds..