last executing test programs: 7m49.31063084s ago: executing program 32 (id=834): r0 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000340)=@base={0x12, 0x2, 0x8, 0x2}, 0x48) bpf$BPF_PROG_QUERY(0x10, &(0x7f0000000280)={@map=r0, 0x7, 0x0, 0x8, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x40) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000840)={r1, &(0x7f00000004c0), 0x0}, 0x20) 7m20.960500409s ago: executing program 33 (id=863): r0 = socket$inet_udp(0x2, 0x2, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(r0, 0x89f1, &(0x7f0000000440)={'tunl0\x00', &(0x7f0000000400)={'syztnl0\x00', 0x0, 0x0, 0x0, 0x0, 0x0, {{0x5, 0x4, 0x0, 0x0, 0x14, 0xfffe, 0x0, 0x0, 0x0, 0x0, @loopback, @private=0xa010101}}}}) ioctl$sock_ipv4_tunnel_SIOCGETTUNNEL(r0, 0x89f3, &(0x7f0000000240)={'syztnl0\x00', &(0x7f0000000140)={'gretap0\x00', 0x0, 0x7800, 0x0, 0xc10, 0x8f2, {{0x5, 0x4, 0x0, 0x0, 0x14, 0x0, 0x0, 0x0, 0x0, 0x0, @local, @empty}}}}) 5m5.321865566s ago: executing program 34 (id=1738): r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) r1 = dup(r0) write$UHID_INPUT(r1, &(0x7f00000030c0)={0x18, {"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", 0x1000}}, 0x1006) 4m25.733148966s ago: executing program 35 (id=2389): r0 = socket$netlink(0x10, 0x3, 0x0) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f00000001c0)={0x0, 0x0}, &(0x7f0000000080)=0xc) sendmsg$netlink(r0, &(0x7f0000001280)={0x0, 0x0, &(0x7f0000000000)=[{&(0x7f00000004c0)={0x2c, 0x2c, 0x1, 0x0, 0x0, "", [@typed={0x8, 0x40, 0x0, 0x0, @uid=r1}, @nested={0xb, 0x2, 0x0, 0x1, [@generic="976b6408686030"]}, @nested={0x5, 0x1, 0x0, 0x1, [@generic="03"]}]}, 0x2c}], 0x1}, 0x0) 3m44.225210356s ago: executing program 36 (id=3756): pipe(&(0x7f0000000080)={0xffffffffffffffff, 0xffffffffffffffff}) write(r1, &(0x7f0000000340), 0x11000) vmsplice(r0, &(0x7f0000000000)=[{&(0x7f0000000500), 0x3528a9c0}], 0x1, 0x0) 2m31.226414406s ago: executing program 37 (id=5428): pipe(&(0x7f0000000000)={0xffffffffffffffff, 0xffffffffffffffff}) write$binfmt_script(r1, &(0x7f0000000080), 0xfdef) read(r0, &(0x7f0000000040)=""/3, 0xfdef) 2m17.078919115s ago: executing program 38 (id=5401): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000000800000000000000000000850000006d00000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x10) arch_prctl$ARCH_GET_XCOMP_GUEST_PERM(0x1024, &(0x7f00000000c0)) 2m14.953905017s ago: executing program 3 (id=5547): r0 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0300000004000000040000000a"], 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x3, 0x8, &(0x7f0000000d80)=ANY=[@ANYBLOB="1800000000000000000000000000000018020000", @ANYRES32=r0, @ANYBLOB="0000000000000000b703000000000000850000000d000000b70000000000000095"], &(0x7f00000000c0)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, @sched_cls, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000003c0)={r1, 0x0, 0xe, 0x0, &(0x7f0000000900)="c1dfb080cd21d308098ee6888100", 0x0, 0xadf0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 2m14.162121813s ago: executing program 3 (id=5554): r0 = syz_init_net_socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$nl802154(&(0x7f0000000b40), 0xffffffffffffffff) sendmsg$NL802154_CMD_SET_ACKREQ_DEFAULT(r0, &(0x7f0000001c80)={0x0, 0x0, &(0x7f0000001c40)={&(0x7f0000001c00)={0x14, r1, 0x1, 0x70bd2a, 0x25dfdbfe}, 0x14}}, 0x44) 2m14.101645214s ago: executing program 3 (id=5557): prctl$PR_SET_MM(0x23, 0xa, &(0x7f00002d5000/0x2000)=nil) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000001c0)='environ\x00') preadv(r0, &(0x7f0000001400)=[{&(0x7f0000000040)=""/113, 0x200000b1}], 0x1, 0x2000000, 0x0) 2m14.088758334s ago: executing program 3 (id=5560): r0 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) syz_mount_image$fuse(&(0x7f0000000000), &(0x7f00000000c0)='./file0\x00', 0x400, &(0x7f0000000340)={{'fd', 0x3d, r0}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) mount$bind(&(0x7f0000000240)='.\x00', &(0x7f0000000280)='./file0\x00', 0x0, 0x1005848, 0x0) 2m13.243100131s ago: executing program 3 (id=5578): capset(&(0x7f0000000040)={0x19980330}, &(0x7f0000000080)={0x0, 0x0, 0x5}) r0 = syz_open_dev$tty1(0xc, 0x4, 0x1) ioctl$KDSKBENT(r0, 0x4b47, &(0x7f00000002c0)={0x2, 0x0, 0x27f}) 2m13.138080563s ago: executing program 3 (id=5580): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00') preadv(r0, 0x0, 0x0, 0x6, 0x0) 2m13.076369714s ago: executing program 39 (id=5580): seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000140)={0x1, &(0x7f0000000000)=[{0x6, 0x0, 0x0, 0x7fff0000}]}) r0 = syz_open_procfs(0xffffffffffffffff, &(0x7f00000000c0)='net/arp\x00') preadv(r0, 0x0, 0x0, 0x6, 0x0) 2m6.802008948s ago: executing program 8 (id=5770): syz_mount_image$vfat(&(0x7f0000000300), &(0x7f0000000040)='./file0\x00', 0x0, &(0x7f0000000080)=ANY=[], 0x4, 0x1268, &(0x7f0000002500)="$eJzs3U9rI2UcB/Bf2vTv2qbquroL4oNeFCFue/DkpcguiAWl2gUVhFmbamialCYUIuLWkyfBlyHq0ZsgvoFevHgWBJFePO5BHGmT1aZJu7ptU5HP5zIPzzzfeWYyzMCE+TF7L32+sb7WLK9lrRgpFKK4ORbFuylSjMRodOzEc7d+/OnJN956+9XFpaUbyyndXHxz/sWU0uxT373z0ddPf9+6dOub2W8nYnfu3b3fFn7evbJ7de+Pr6LaTNVmqjdaKUu3G41WdrtWSavV5no5pddrlaxZSdV6s7LVs36t1tjcbKesvjozvblVaTZTVm+n9Uo7tQqptdVO2ftZtZ7K5XKamQ5OY+XLu3meR+T5WIxHnuf5VEzHpXgoZmI2SjEXD8cj8WhcjsfiSjweT8TVg1EXvd8AAAAAAAAAAAAAAAAAAADw/3Kf+v+C+n8AAAAAAAAAAAAAAAAAAAA4f0fr/4sRvv8PAAAAAAAAAAAAAAAAAAAAQ3af7/8fqf9/Xv0/AAAAAAAAAAAAAAAAAAAAnIfJzmI5pcmIjU+3V7ZXOstO/+JaVKMWlbgepfg9Dqr/Ozrtm68s3bieDszFCxt3uvk72yujvfn5sVLMFQbm5zv51JufiOnD+YUoxeXB8y8MzE/Gs8/s5z/p5MtRih/ei0bUYjWi0D36g/zH8ym9/NrSVG/+2v64Y42e82kBAACAs1ROf+l/ft/pDhq4vrOq+3yeuiMLJ/w/cOT5vBjXihd11NzTbH+4ntVqla0HbIwfv53x0225r1GIiCwO98xO/7K8P/mZTfGgjdGhTjp28phTnNMo/gd+zDNo/PrFoZ7JGO7sI91LIqvt3z//WSp28vxcd2zgxThxUur4e0ZhCPclhuPvk37RewIAAAAAAAAAAMC/MfDtv6mI6Hsf8IO+nnuvh/fG+7d8/OyfDeEIAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAA/mQHjgUAAAAAhPlbp9GxAQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAwFcBAAD///ME0UM=") statfs(&(0x7f0000000040)='./file1\x00', 0x0) mkdirat(0xffffffffffffff9c, &(0x7f00000001c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x61c28c7771d1cf6b) 2m6.610624162s ago: executing program 8 (id=5786): mmap(&(0x7f0000ff4000/0xc000)=nil, 0xc000, 0x1000003, 0x20031, 0xffffffffffffffff, 0xffffe000) mremap(&(0x7f0000ff7000/0x4000)=nil, 0x4000, 0x1000, 0x3, &(0x7f0000ffc000/0x1000)=nil) remap_file_pages(&(0x7f0000ffb000/0x4000)=nil, 0x4000, 0x0, 0x7, 0x80000) 2m6.540333653s ago: executing program 8 (id=5791): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000040)={0x0, 0x8001}, 0x4) syz_emit_ethernet(0x32, &(0x7f00000004c0)=ANY=[], 0x0) 2m6.502854214s ago: executing program 8 (id=5793): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0), 0xfc, 0x574, &(0x7f0000001980)="$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") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000680)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]}) 2m6.252733029s ago: executing program 8 (id=5805): r0 = syz_open_dev$usbfs(&(0x7f0000000240), 0xb, 0x101301) ioctl$USBDEVFS_IOCTL(r0, 0xc0105512, &(0x7f0000000200)) ioctl$USBDEVFS_SETCONFIGURATION(r0, 0x80045505, &(0x7f0000000000)=0x1) 2m5.619037782s ago: executing program 8 (id=5830): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000001fc0)={0xac, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@WGDEVICE_A_PEERS={0x84, 0x8, 0x0, 0x1, [{0x38, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x1000}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x48, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xffffffff, @rand_addr=' \x01\x00', 0x3}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0xac}, 0x1, 0x0, 0x0, 0x4010}, 0x4008020) 2m5.556666053s ago: executing program 40 (id=5830): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$wireguard(&(0x7f0000000300), 0xffffffffffffffff) sendmsg$WG_CMD_SET_DEVICE(r0, &(0x7f0000000d00)={0x0, 0x0, &(0x7f0000000cc0)={&(0x7f0000001fc0)={0xac, r1, 0x1, 0x70bd2d, 0x25dfdbfc, {}, [@WGDEVICE_A_PEERS={0x84, 0x8, 0x0, 0x1, [{0x38, 0x0, 0x0, 0x1, [@WGPEER_A_PERSISTENT_KEEPALIVE_INTERVAL={0x6, 0x5, 0x1000}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @c_g}, @WGPEER_A_PROTOCOL_VERSION={0x8}]}, {0x48, 0x0, 0x0, 0x1, [@WGPEER_A_ENDPOINT6={0x20, 0x4, {0xa, 0x4e21, 0xffffffff, @rand_addr=' \x01\x00', 0x3}}, @WGPEER_A_PUBLIC_KEY={0x24, 0x1, @a_g}]}]}, @WGDEVICE_A_IFNAME={0x14, 0x2, 'wg1\x00'}]}, 0xac}, 0x1, 0x0, 0x0, 0x4010}, 0x4008020) 2m4.450144104s ago: executing program 0 (id=5872): r0 = eventfd2(0x76, 0x1) r1 = epoll_create1(0x0) epoll_ctl$EPOLL_CTL_ADD(r1, 0x1, r0, &(0x7f0000000180)={0x10000000}) 2m4.431663875s ago: executing program 0 (id=5873): unshare(0x22020600) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000200)=@base={0x14, 0x4, 0x4, 0x12}, 0x50) bpf$BPF_GET_MAP_INFO(0xf, &(0x7f0000000380)={r0, 0xfffffffffffffe72, &(0x7f00000002c0)}, 0x10) 2m4.393002046s ago: executing program 0 (id=5874): syz_mount_image$vfat(&(0x7f0000000280), &(0x7f00000002c0)='./file0\x00', 0x10000, 0xffffffffffffffff, 0x0, 0x0, 0x0) mount(0x0, &(0x7f0000000180)='./file0\x00', &(0x7f0000000040)='devtmpfs\x00', 0x0, 0x0) mount$tmpfs(0x0, &(0x7f0000000000)='./file0\x00', 0x0, 0x2e40ab, &(0x7f0000000100)={[{@size={'size', 0x3d, [0x34, 0x65]}}]}) 2m4.368066206s ago: executing program 0 (id=5875): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f00000000c0), 0xfc, 0x574, &(0x7f0000001980)="$eJzs3c9rHFUcAPDvbJI2/aFJoRT1IIEerNRumsQfFTzUk4gWC3qvS7INJZtuyW5KEwu2B3vxIkUQsSB69+6x+A/4VxS0UKQEPXiJzGY2XZPZNNlumm3384Fp35uZzZvvvvm+fbOzywbQt8bSfwoRL0fEN0nESMu2wcg2jq3tt/Lw+nS6JLG6+ulfSSTZuub+Sfb/oazyUkT89lXEycLmdmtLy3OlSqW8kNXH6/NXxmtLy6cuzZdmy7Ply5NTU2fempp89523uxbr6+f/+f6Tux+e+fr4yne/3D9yO4mzcTjb1hrHE7jRWhmLsew5GYqzG3ac6EJjvSTZ6wOgIwNZng9FOgaMxECW9blWR57moQG77Ms0rYE+lch/6FPNeUDz2r5L18HPjAfvr10AbY5/cO29kRhuXBsdXEn+d2WUXu+OdqH9tI1f/7xzO12i3fsQ+7vQEMAGN25GxOnBwc3jX5KNf507vY19NrbRb68/sJfupvOfN/LmP4X1+U/kzH8O5eRuJx6f/4X7XWimrXT+917u/Hf9ptXoQFZ7oTHnG0ouXqqU07HtxYg4EUP70/pERHyQfxPk88LKvdV27bfO/9Ilbb85F8yO4/7ghvnfTKleevLI1zy4GfFK7vw3We//JKf/0+fj/DbbOFa+82q7bY+Pf3et/hTxWm7/P+rMZOv7k+ON82G8eVZs9vetY7+3a3+v40/7/+DW8Y8mrfdraztv48fhf8vttnV6/u9LPmuU92XrrpXq9YWJiH3Jx5vXTz56bLPe3D+N/8Txrce/vPP/QJrY24z/1tFbrbsO7yz+3ZXGP7Oj/t954d5HX/zQrv3t9f+bjdKJbM12xr/tHuCTPHcAAAAAAADQawoRcTiSQnG9XCgUi2uf7zgaBwuVaq1+8mJ18fJMNL4rOxpDhead7pGWz0NMZJ+HbdYnN9SnIuJIRHw7cKBRL05XKzN7HTwAAAAAAAAAAAAAAAAAAAD0iEMRw3nf/0/9MZD/mDargWfRFj/5DTzn2ud/tqUbv/QE9CSv/9C/5D/0L/kP/Uv+Q/+S/9C/5D/0L/kP/Wsn+f/zuV08EAAAAAAAAAAAAAAAAAAAAAAAAAAAAHg+nD93Ll1WVx5en07rM1eXFueqV0/NlGtzxfnF6eJ0deFKcbZana2Ui9PV+cf9vUq1emViMhavjdfLtfp4bWn5wnx18XL9wqX50mz5QnnoqUQFAAAAAAAAAAAAAAAAAAAAz5ba0vJcqVIpLygodFQY7I3D6MFCoTcOo8PCXo9MAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAPDIfwEAAP//wGE62g==") syz_mount_image$fuse(0x0, &(0x7f00000000c0)='./bus\x00', 0x3000009, 0x0, 0x1, 0x0, 0x0) mount$overlay(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000680)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, '.'}}, {@upperdir={'upperdir', 0x3d, './file0'}}, {@nfs_export_on}]}) 2m4.210211249s ago: executing program 0 (id=5880): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='cpuacct.usage_percpu_user\x00', 0x275a, 0x0) getdents64(r0, 0x0, 0x0) 2m3.576975692s ago: executing program 0 (id=5905): mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0) gettid() timer_create(0x8, 0x0, &(0x7f0000bbdffc)) 2m3.552770672s ago: executing program 41 (id=5905): mmap(&(0x7f0000000000/0xe7e000)=nil, 0xe7e000, 0xfffffffffefffff6, 0x20031, 0xffffffffffffffff, 0x0) gettid() timer_create(0x8, 0x0, &(0x7f0000bbdffc)) 1m8.980344139s ago: executing program 4 (id=7603): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000900)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000340)=@ipv6_newrule={0x4c, 0x20, 0x1, 0x0, 0x0, {0xa, 0x80, 0x14, 0x0, 0x0, 0x0, 0x0, 0x7, 0x10017}, [@FRA_SRC={0x14, 0x2, @private2={0xfc, 0x2, '\x00', 0x1}}, @FRA_DST={0x14, 0x1, @private2}, @FIB_RULE_POLICY=@FRA_FWMARK={0x8, 0xa, 0x98d8}]}, 0x4c}}, 0x40000) sendmsg$nl_route(r0, &(0x7f0000000080)={0x0, 0x0, &(0x7f0000000500)={&(0x7f00000002c0)=@newlink={0x5c, 0x10, 0x439, 0x0, 0x0, {}, [@IFLA_LINKINFO={0x3c, 0x12, 0x0, 0x1, @ipip6={{0xb}, {0x2c, 0x2, 0x0, 0x1, [@IFLA_IPTUN_REMOTE={0x14, 0x3, @rand_addr=' \x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01'}, @IFLA_IPTUN_LOCAL={0x14, 0x2, @private2}]}}}]}, 0x5c}}, 0x0) 1m8.92879999s ago: executing program 4 (id=7604): r0 = openat$uinput(0xffffffffffffff9c, &(0x7f0000000000), 0x2, 0x0) ioctl$UI_DEV_SETUP(r0, 0x405c5503, 0x0) ioctl$UI_GET_SYSNAME(r0, 0x8040552c, &(0x7f0000003700)) 1m8.91245889s ago: executing program 4 (id=7606): bpf$MAP_CREATE_CONST_STR(0x0, 0x0, 0x48) r0 = syz_open_dev$loop(&(0x7f0000000040), 0x9, 0x2402) ioctl$BLKRAGET(r0, 0x1263, &(0x7f0000000140)) 1m8.876225651s ago: executing program 4 (id=7608): capset(&(0x7f0000000080)={0x20080522}, &(0x7f0000000040)={0x1000, 0x10ffff, 0xfffffffd}) r0 = socket$inet6_udp(0xa, 0x2, 0x0) sendmmsg$sock(r0, &(0x7f00000008c0)=[{{&(0x7f0000000140)=@in6={0xa, 0x4e24, 0x1, @dev={0xfe, 0x80, '\x00', 0xa}}, 0x80, 0x0, 0x0, &(0x7f0000000000)=[@mark={{0x14, 0x1, 0x24, 0x6}}], 0x18}}], 0x1, 0x4000000) 1m8.853419151s ago: executing program 4 (id=7610): r0 = openat(0xffffffffffffff9c, &(0x7f0000000040)='.\x00', 0x0, 0x51) ioctl$FS_IOC_FSSETXATTR(r0, 0x401c5820, &(0x7f0000000080)={0x8}) symlinkat(&(0x7f0000000000)='.\x00', 0xffffffffffffff9c, &(0x7f0000000080)='./file1\x00') 1m8.838933221s ago: executing program 4 (id=7612): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x9}]}, 0x34}}, 0x0) 1m0.230095432s ago: executing program 7 (id=7863): symlink(0x0, &(0x7f0000000000)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000080)={0x1, 0x5, &(0x7f0000002d40)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0xfffffffffffffe89}, 0x48) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000002c00)={r0, 0x18000000000002a0, 0x42, 0x0, &(0x7f0000000500)="b9ff0300600d698cb89e14f008001f000c0cae0e4000632177fbac14140ee934a0a662079f4b4d2f87e5feca6aab845013f2325f1a39010108038da1924425181aa5", 0x0, 0x100, 0x60000000, 0x5c, 0xc0, &(0x7f0000000000), &(0x7f0000002c80)="8dc92a8ff39080a675b6565efa3ed46f2a2756e43abbfd8c44686c04d6a0c42f2599fc2b73f432c834dac249597b646035045af99decf86f5b32dc0404e599f56091e15e581ff6805ee283c0313298a5b8ba1c84f1850c217b5a2c2bc547eaf4585e5ba878d1660fa871a275fb61d1fec75942919083919f8d8fdad79615bc5d2d3fa40e054d38d49dfbebc2f137fc7110"}, 0x48) 1m0.148460873s ago: executing program 7 (id=7864): r0 = socket$inet_tcp(0x2, 0x1, 0x0) connect$inet(r0, &(0x7f0000000180)={0x2, 0x4e21, @local}, 0x10) setsockopt$inet_tcp_TCP_CONGESTION(r0, 0x6, 0xd, &(0x7f00000001c0)='reno\x00', 0x5) 1m0.122431714s ago: executing program 7 (id=7865): r0 = openat$ptmx(0xffffffffffffff9c, &(0x7f0000000000), 0x101a00, 0x0) mprotect(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1) fgetxattr(r0, &(0x7f00000002c0)=@known='security.selinux\x00', 0x0, 0x0) 1m0.087362874s ago: executing program 7 (id=7866): syz_mount_image$exfat(&(0x7f00000000c0), &(0x7f0000000000)='./file0\x00', 0x800, &(0x7f0000000280)={[{@iocharset={'iocharset', 0x3d, 'macgreek'}}, {@umask={'umask', 0x3d, 0x5}}, {@namecase}, {@namecase}, {@sys_tz}, {@gid}, {@keep_last_dots}, {@sys_tz}, {@sys_tz}, {@gid}]}, 0x1, 0x1528, &(0x7f00000037c0)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000100)='./file0\x00', 0x0) mount(0x0, &(0x7f0000000440)='./file0\x00', &(0x7f0000000200)='securityfs\x00', 0x0, 0x0) 59.967724807s ago: executing program 7 (id=7869): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000280)='sys_enter\x00', r0}, 0x10) fgetxattr(0xffffffffffffffff, 0x0, 0x0, 0x0) 59.905714508s ago: executing program 7 (id=7871): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'lo\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x70bd27, 0x25dfdbff, {0xa, 0x40, 0x0, 0x0, r1}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x7db3, 0x0, 0x7ff, 0x3}}]}, 0x40}, 0x1, 0x0, 0x0, 0xfd7823472026039e}, 0x0) 59.844990929s ago: executing program 42 (id=7871): r0 = socket(0x10, 0x803, 0x0) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000200)={'lo\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f00000002c0)=@ipv6_newaddr={0x40, 0x14, 0x9535393fea6295b5, 0x70bd27, 0x25dfdbff, {0xa, 0x40, 0x0, 0x0, r1}, [@IFA_LOCAL={0x14, 0x2, @loopback}, @IFA_CACHEINFO={0x14, 0x6, {0x7db3, 0x0, 0x7ff, 0x3}}]}, 0x40}, 0x1, 0x0, 0x0, 0xfd7823472026039e}, 0x0) 53.797518878s ago: executing program 43 (id=7612): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000240), 0xffffffffffffffff) sendmsg$ETHTOOL_MSG_LINKMODES_SET(r0, &(0x7f0000000280)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000140)={0x34, r1, 0x1, 0x0, 0x0, {}, [@ETHTOOL_A_LINKMODES_HEADER={0x18, 0x1, 0x0, 0x1, [@ETHTOOL_A_HEADER_DEV_NAME={0x14, 0x2, 'syz_tun\x00'}]}, @ETHTOOL_A_LINKMODES_DUPLEX={0x5, 0x6, 0x9}]}, 0x34}}, 0x0) 1.776735035s ago: executing program 9 (id=9360): r0 = getpgrp(0x0) r1 = syz_pidfd_open(r0, 0x0) process_madvise(r1, &(0x7f0000000100)=[{0x0}, {0x0}], 0x2, 0x4, 0x0) syz_usb_connect$uac1(0x2, 0xc2, &(0x7f0000000200)=ANY=[@ANYBLOB="12010003090000406b1d01014000010203010902b00003010e10040904000000010100000a24010100050201020c24070510b5c6a1cfd29608090401000001020000090401010101020000072401090600000c240201fe02090404d875b1082402011004060c0905010910005209060725010008ff01090402000001020000090402010101020000072401010801000d24020104020501ceb739b26b0724012b8a05000724010900071008240201000208a209058209fc"], &(0x7f0000000000)={0x0, 0x0, 0x0, 0x0}) 905.938352ms ago: executing program 2 (id=9380): r0 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000140)={0x0, 0x0, &(0x7f0000000240)={&(0x7f0000000200)=ANY=[@ANYBLOB="240000002000010300000000000000000210000400000084f1000100080001"], 0x24}, 0x1, 0x0, 0x0, 0x240480d4}, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r1, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000200)=ANY=[@ANYBLOB="280000002100012c"], 0x28}, 0x1, 0x0, 0x0, 0x99c0}, 0x0) 817.951024ms ago: executing program 2 (id=9382): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=ANY=[@ANYBLOB="0200000004000000020000000c"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000000000000850000007d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000010b704000000000000850000000300000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000380)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) bpf$BPF_BTF_LOAD(0x12, &(0x7f00000000c0)={&(0x7f0000000000)={{0xeb9f, 0x1, 0x0, 0x18, 0x0, 0x34, 0x34, 0x6, [@var={0x4, 0x0, 0x0, 0xe, 0x3}, @func_proto={0x0, 0x0, 0x0, 0xd, 0x3}, @ptr={0x0, 0x0, 0x0, 0x2, 0x4}, @volatile={0x0, 0x0, 0x0, 0xb, 0x2}]}, {0x0, [0x0, 0x0, 0x0, 0x61]}}, 0x0, 0x52}, 0x20) 741.790106ms ago: executing program 2 (id=9385): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f0000006680)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x8031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600002, 0x9) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x1, &(0x7f0000000000)=[{0x6}]}) 657.824837ms ago: executing program 5 (id=9392): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='mnt\x00', 0x4, &(0x7f0000000000), 0x0, 0x236, &(0x7f0000000300)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x800, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x800c6613, &(0x7f00000000c0)=@v2={0x2, @aes256, 0xc, '\x00', @a}) 584.341079ms ago: executing program 5 (id=9395): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000b00)=ANY=[@ANYBLOB="1e0000000000000005000000ff"], 0x50) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0xfffffffd}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) 505.9855ms ago: executing program 5 (id=9397): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000001580)=ANY=[@ANYBLOB="0500000001000000ff0f000007"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000004c0)={0x0, 0x47, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x40f00, 0x8, '\x00', 0x0, @fallback=0x4cf68d79c8eac253, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1a, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f00000004c0)={r1}, 0xc) 505.74804ms ago: executing program 5 (id=9399): openat$tun(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000480)='fd/3\x00') io_setup(0x9, &(0x7f0000000180)=0x0) io_submit(r1, 0x1, &(0x7f0000000940)=[&(0x7f0000000040)={0x0, 0x0, 0x0, 0x7, 0x8, r0, 0x0}]) 426.059241ms ago: executing program 2 (id=9403): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000040)={0x11, 0x4, &(0x7f00000002c0)=ANY=[@ANYBLOB="18010000820004000000000000000c00850000000f00000095"], &(0x7f0000000180)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f00000000c0), 0x2, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 425.867201ms ago: executing program 1 (id=9404): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x18, 0xb, &(0x7f0000000380)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020000000000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1, '\x00', 0x0, 0x2}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x100000000000000, &(0x7f0000000440)=@base={0x7, 0x4, 0x8, 0x6, 0x0, 0x1}, 0x50) bpf$MAP_LOOKUP_ELEM(0x1, &(0x7f0000000200)={r1, &(0x7f0000000140), 0x0}, 0x20) 425.696692ms ago: executing program 2 (id=9405): syz_mount_image$vfat(&(0x7f00000020c0), &(0x7f00000000c0)='./file0\x00', 0x210800, &(0x7f00000002c0)={[{@rodir}, {@numtail}, {@shortname_winnt}, {@uni_xlate}, {@fat=@codepage={'codepage', 0x3d, '857'}}, {@fat=@discard}, {@shortname_lower}, {@utf8}, {@fat=@uid}, {@utf8no}, {@rodir}, {@uni_xlate}]}, 0x1, 0x271, &(0x7f0000002140)="$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") openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000080)='./file1\x00', 0x20081e, &(0x7f0000000000), 0x1, 0x503, &(0x7f0000000140)="$eJzs3c9vG1kdAPDvOL+cbHaTXfYACNiyLBRU1Unc3Wi1B1hOCKGVEHsEqRsSN4pix1HsLJvQQ/o/IFGJExz5Azj3xJ0LghuXckDiRwRqKnHwasaT1E3tJm0SO4o/H2k08+Y5830v7rxnf934BTC0rkXEXkSMR8QnETGTn0/yLT5sb+njHu3fXT7Yv7ucRKv18b+TrD49Fx0/k3olv2YxIn7yg4ifJ8/Gbezsri9Vq5WtdnFyrlnbnGvs7N5cqy2tVlYrG+Xy4sLi/Pu33iufW1/fqo3nR199+Ke97/wybdZ0fqazH+ep3fWxozip0Yj40UUEG4CRvD/jg24IL6UQEW9ExNvZ/T8TI9mzCQBcZa3WTLRmOssAwFVXyHJgSaGU5wKmo1Aoldo5vDdjqlCtN5o37tS3N1baubLZGCvcWatW5vNc4WyMJWl5ITt+Ui4fK9+KiNcj4lcTk1m5tFyvrgzyhQ8ADLFXjs3//5toz/8AwBVXHHQDAIC+M/8DwPAx/wPA8DH/A8DwMf8DwPAx/wPA8DH/A8BQ+fFHH6Vb6yD//uuVT3e21+uf3lypNNZLte3l0nJ9a7O0Wq+vZt/ZUzvpetV6fXPh3dj+bPa7m43mXGNn93atvr3RvJ19r/ftylhfegUAPM/rbz34axIRex9MZlt0rOVgroarrTDoBgADMzLoBgADc7TalwXcYOic4T2+9ABcEV2W6H1KMSImj59stVqti2sScMGuf0n+H4ZVR/7f/wKGISP/D8NrdNANAAam1UpOu+Z/nPaBAMDlJscP9Pj8/418//v8w4GfrRx/xP2LbBUAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABcbofr/5bytcCno1AolSJejYjZGEvurFUr8xHxWkT8ZWJsIi0vDLjNAMBZFf6R5Ot/XZ95Z/p47XjyeCLbR8QvfvPxrz9baja3/pye/89Ekp9v3s/PlwfSAQDgBIfzdLbveCP/aP/u8uHWz/b88/sRUWzHP9gfj4Oj+KMxmu2LMRYRU/9N8nJb0pG7OIu9exHxxW79T2I6y4G0Vz49Hj+N/Wpf4xeeil/I6tr79HfxhXNoCwybB+n482G3+68Q17J99/u/mI1QZ5ePf+mllg+yMfBJ/MPxb6TH+HfttDHe/eMP20eTz9bdi/jyaMRh7IOO8ecwftIj/junjP+3r3zt7V51rd9GXI/u8TtjzTVrm3ONnd2ba7Wl1cpqZaNcXlxYnH//1nvluSxHPdd7NvjXBzde61WX9n+qR/ziCf3/5in7/7v/f/LTrz8n/re/0S1+Id58Tvx0TvzWKeMvTf2h2Ksujb/So/8nPf83Thn/4d93n1k2HAAYnMbO7vpStVrZ6ufB4QuJvgZ18CIHI3G+F4yIvXO4Tvqv5lL8frocfK9fscbjhX6q1XqpWL1GjPPIugGXwdFNHxGPB90YAAAAAAAAAAAAAACgq378xdKg+wgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAMDV9XkAAAD///ogzOo=") unlinkat(0xffffffffffffff9c, &(0x7f0000000c40)='./file1\x00', 0x0) 425.559791ms ago: executing program 1 (id=9406): r0 = socket$inet6(0xa, 0x80003, 0x6) connect$inet6(r0, &(0x7f00000000c0)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg(r0, &(0x7f0000000480), 0x2e9, 0x0) bind$inet6(r0, &(0x7f0000000140)={0xa, 0x4e24, 0x3, @loopback, 0xae6}, 0x1c) 423.423902ms ago: executing program 5 (id=9407): mkdir(0x0, 0x0) chdir(0x0) symlink(&(0x7f00000016c0)='./file0\x00', &(0x7f0000001700)='./file0\x00') readlink(&(0x7f0000001840)='./file0\x00', 0x0, 0x2f) 400.748872ms ago: executing program 5 (id=9408): pipe2(&(0x7f0000000200)={0xffffffffffffffff}, 0x0) r1 = openat$fuse(0xffffffffffffff9c, &(0x7f0000000040), 0x2, 0x0) syz_mount_image$fuse(&(0x7f00000024c0), &(0x7f00000000c0)='./file0\x00', 0x0, &(0x7f0000002380)={{'fd', 0x3d, r1}, 0x2c, {'rootmode', 0x3d, 0x4000}}, 0x0, 0x0, 0x0) splice(r0, 0x0, r1, 0x0, 0x50, 0xc) 376.569242ms ago: executing program 9 (id=9409): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000200), 0x101000, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x800000000003) ioctl$KVM_CAP_HYPERV_DIRECT_TLBFLUSH(r2, 0x4068aea3, &(0x7f0000000400)) 314.088344ms ago: executing program 2 (id=9410): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) syz_usb_disconnect(0xffffffffffffffff) wait4(0x0, 0x0, 0x80000000, 0x0) ioprio_get$pid(0x2, r0) 313.887963ms ago: executing program 1 (id=9411): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@min_batch_time={'min_batch_time', 0x3d, 0xfff}}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x40}}, {@stripe={'stripe', 0x3d, 0x4000}}, {@errors_remount}, {@minixdf}]}, 0x3, 0x43a, &(0x7f0000000340)="$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") creat(&(0x7f0000000040)='./bus\x00', 0x0) io_setup(0x202, 0x0) mount$overlay(0x0, &(0x7f0000000340)='./bus\x00', &(0x7f0000000b80), 0x200008, &(0x7f0000000380)={[{@workdir={'workdir', 0x3d, './bus'}}, {@lowerdir={'lowerdir', 0x3d, './file1'}}, {@upperdir={'upperdir', 0x3d, './file0'}}]}) 305.350634ms ago: executing program 1 (id=9413): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000040)={0xa, 0x4e22, 0x0, @empty, 0x9}, 0x1c) listen(r0, 0x3) syz_emit_ethernet(0x56, &(0x7f0000000080)={@local, @link_local={0x1, 0x80, 0xc2, 0x0, 0x0, 0x1}, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "ab0001", 0x20, 0x6, 0x0, @remote, @local, {[], {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x2, 0x8, 0x2, 0xa388, 0x0, 0x0, {[@exp_smc={0xfe, 0x6}, @mss={0x2, 0x4}]}}}}}}}}, 0x0) 305.093934ms ago: executing program 9 (id=9414): bpf$PROG_LOAD(0x5, &(0x7f0000000380)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000000000000000850000000f00000018010000646c6c2500000000000000007b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000000600000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x41, '\x00', 0x0, @fallback=0x2e, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0}, 0x94) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x4, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r0}, 0x18) geteuid() 278.240625ms ago: executing program 1 (id=9416): r0 = socket$inet6_udp(0xa, 0x2, 0x0) setsockopt$inet6_int(r0, 0x29, 0x19, &(0x7f0000000080)=0x1b, 0x4) sendto$inet6(r0, &(0x7f00000000c0)="26a757208dfd7c", 0x7, 0x20000880, &(0x7f0000001740)={0xa, 0x4e1e, 0x2, @empty, 0x10004}, 0x1c) recvmmsg(r0, &(0x7f000000a100)=[{{0x0, 0x0, 0x0}, 0x5}], 0x1, 0x40002040, 0x0) 218.096546ms ago: executing program 9 (id=9418): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000200)={0x11, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="180000000000fbff000000000000001d8500000007000000850000002a00000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000002c0)={&(0x7f00000001c0)='kmem_cache_free\x00', r0}, 0x10) r1 = syz_clone(0x11, 0x0, 0x0, 0x0, 0x0, 0x0) waitid(0x0, r1, 0x0, 0x4, 0x0) 217.948185ms ago: executing program 1 (id=9419): syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='attr/prev\x00') exit(0xffff) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd/3\x00') write$FUSE_CREATE_OPEN(r0, 0x0, 0x0) 217.827606ms ago: executing program 6 (id=9420): unshare(0x22020600) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="0100000007000000e27f000003"], 0x50) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000040)=@base={0x3, 0x4, 0x4, 0x9, 0x0, r0, 0x3}, 0x50) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000900)={{r1}, &(0x7f0000000880), &(0x7f00000008c0)=r0}, 0x20) 217.739576ms ago: executing program 6 (id=9421): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000780)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x1c, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000100)={&(0x7f0000000180)='sys_enter\x00', r0}, 0x18) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='memory.stat\x00', 0x275a, 0x0) fdatasync(r1) 215.621046ms ago: executing program 6 (id=9422): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000280)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000080)=@newlink={0x3c, 0x10, 0x1, 0x70bd2a, 0x4, {0x0, 0x0, 0x0, 0x0, 0x2180, 0x4c40}, [@IFLA_IFNAME={0x14, 0x3, 'veth1\x00'}, @IFLA_MTU={0x8, 0x4, 0x40e}]}, 0x3c}}, 0x800) r0 = socket$nl_xfrm(0x10, 0x3, 0x6) sendmsg$nl_xfrm(r0, &(0x7f0000000100)={0x0, 0x0, &(0x7f00000000c0)={&(0x7f0000000000)=ANY=[@ANYBLOB="b8000000190001000000000000000000dc020078000000000000000000000000ff02000000000000e26ea7250000000100000000000000000a"], 0xb8}}, 0x0) sendmsg$nl_xfrm(r0, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000000)=ANY=[@ANYBLOB="650100001b"], 0x188}}, 0x0) 190.369386ms ago: executing program 6 (id=9423): unshare(0x6020400) r0 = syz_open_procfs$pagemap(0xffffffffffffffff, &(0x7f0000000000)) lseek(r0, 0x7ffffffffffffffe, 0x1) sendfile(r0, r0, &(0x7f0000000040)=0x7, 0x6) 176.306977ms ago: executing program 6 (id=9424): mkdir(&(0x7f00000000c0)='./bus\x00', 0x0) mount$incfs(&(0x7f00000007c0)='.\x00', &(0x7f0000000800)='./bus\x00', &(0x7f0000000840), 0x1004002, 0x0) chdir(&(0x7f00000001c0)='./bus\x00') rmdir(&(0x7f0000000000)='./bus\x00') 121.987778ms ago: executing program 6 (id=9425): r0 = openat$kvm(0xffffff9c, &(0x7f00000000c0), 0x101800, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_GET_MP_STATE(r2, 0x8004ae98, &(0x7f0000000300)) 71.405559ms ago: executing program 9 (id=9426): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f00000000c0)={0xa, 0x4e22, 0x9, @ipv4={'\x00', '\xff\xff', @remote}, 0x6}, 0x1c) listen(r0, 0x5) syz_emit_ethernet(0x4a, &(0x7f0000000180)={@local, @empty, @void, {@ipv4={0x800, @tcp={{0x6, 0x4, 0x2, 0x3, 0x3c, 0x64, 0x0, 0x7, 0x6, 0x0, @remote, @remote, {[@ra={0x94, 0x4, 0x3}]}}, {{0x4e22, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0x9, 0xc2, 0x6071, 0x0, 0x1ff, {[@fastopen={0x22, 0x2}, @timestamp={0x8, 0xa, 0x100, 0x3}, @window={0x3, 0x3, 0x96}]}}}}}}}, 0x0) 0s ago: executing program 9 (id=9427): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000640)={0x11, 0x7, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000f7ffffff000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000000001000850000008600000095"], &(0x7f00000000c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x41000, 0x8, '\x00', 0x0, @fallback=0x2b, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) inotify_init() kernel console output (not intermixed with test programs): 1th superblock, ret: 0 [ 718.902509][T18708] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6 [ 718.960346][ T1655] kworker/u4:5: attempt to access beyond end of device [ 718.960346][ T1655] loop9: rw=1, sector=45096, nr_sectors = 8 limit=40427 [ 718.974679][ T1655] kworker/u4:5: attempt to access beyond end of device [ 718.974679][ T1655] loop9: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 719.040162][T18731] loop5: detected capacity change from 0 to 4096 [ 719.052025][T18731] EXT4-fs: Ignoring removed mblk_io_submit option [ 719.075408][T18731] EXT4-fs (loop5): Test dummy encryption mode enabled [ 719.132063][ T28] audit: type=1400 audit(2000000000.330:1215): avc: denied { setattr } for pid=18739 comm="syz.9.8122" name="file0" dev="incremental-fs" ino=45 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 719.150438][T18742] loop6: detected capacity change from 0 to 256 [ 719.162045][T18731] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 719.172328][T18742] exFAT-fs (loop6): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 719.224082][T18731] EXT4-fs warning (device loop5): ext4_resize_fs:2028: can't read last block, resize aborted [ 719.299997][T13540] EXT4-fs (loop5): unmounting filesystem. [ 719.604910][T18765] loop5: detected capacity change from 0 to 40427 [ 719.618134][T18754] loop6: detected capacity change from 0 to 40427 [ 719.642185][T18765] F2FS-fs (loop5): heap/no_heap options were deprecated [ 719.643648][T18754] F2FS-fs (loop6): Insane cp_payload (553648128 >= 504) [ 719.656819][ T1710] usb 10-1: new high-speed USB device number 17 using dummy_hcd [ 719.663457][T18765] F2FS-fs (loop5): fault_injection options not supported [ 719.682140][T18765] F2FS-fs (loop5): fault_type options not supported [ 719.692372][T18776] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 719.704659][T18754] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock [ 719.709298][T18765] F2FS-fs (loop5): invalid crc value [ 719.736220][T18754] F2FS-fs (loop6): heap/no_heap options were deprecated [ 719.746445][T18765] F2FS-fs (loop5): Found nat_bits in checkpoint [ 719.754826][T18754] F2FS-fs (loop6): invalid crc value [ 719.785514][T18754] F2FS-fs (loop6): Found nat_bits in checkpoint [ 719.802723][T18765] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 719.854512][ T1710] usb 10-1: Using ep0 maxpacket: 32 [ 719.860989][ T1710] usb 10-1: config 0 has an invalid interface number: 67 but max is 0 [ 719.875241][ T1710] usb 10-1: config 0 has no interface number 0 [ 719.883853][T13540] syz-executor: attempt to access beyond end of device [ 719.883853][T13540] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 719.895104][ T1710] usb 10-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 719.907093][T18754] F2FS-fs (loop6): Start checkpoint disabled! [ 719.923659][ T1710] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 719.938300][T18754] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0 [ 719.954496][T18754] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e6 [ 719.962101][ T1710] usb 10-1: Product: syz [ 719.967154][ T1710] usb 10-1: Manufacturer: syz [ 719.984544][ T1710] usb 10-1: SerialNumber: syz [ 720.018596][ T1710] usb 10-1: config 0 descriptor?? [ 720.028486][ T1710] smsc95xx v2.0.0 [ 720.093240][ T351] kworker/u4:4: attempt to access beyond end of device [ 720.093240][ T351] loop6: rw=1, sector=45096, nr_sectors = 8 limit=40427 [ 720.141892][ T351] kworker/u4:4: attempt to access beyond end of device [ 720.141892][ T351] loop6: rw=2049, sector=40960, nr_sectors = 24 limit=40427 [ 720.156981][T18792] can0: slcan on ttyS3. [ 720.275161][T18791] can0 (unregistered): slcan off ttyS3. [ 720.414280][T18809] netlink: 80 bytes leftover after parsing attributes in process `syz.6.8149'. [ 720.602045][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 720.671636][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 720.730584][T12957] udevd[12957]: symlink '../../loop6' '/dev/disk/by-diskseq/1351.tmp-b7:6' failed: Read-only file system [ 720.747657][T12745] udevd[12745]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 720.831138][ T1710] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000030: -71 [ 720.853277][ T1710] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_CMD [ 720.859421][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1350.tmp-b7:5' failed: Read-only file system [ 720.874675][ T1710] smsc95xx 10-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 720.898297][T18861] netlink: 'syz.1.8170': attribute type 25 has an invalid length. [ 720.931058][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 720.932662][ T1710] smsc95xx: probe of 10-1:0.67 failed with error -71 [ 720.954534][T18861] netlink: 'syz.1.8170': attribute type 7 has an invalid length. [ 720.991362][ T1710] usb 10-1: USB disconnect, device number 17 [ 721.041606][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 721.107371][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 721.158870][T18885] Invalid ELF header magic: != ELF [ 721.172221][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1351.tmp-b7:6' failed: Read-only file system [ 721.185569][T18887] loop6: detected capacity change from 0 to 128 [ 721.199675][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 721.285143][ T28] audit: type=1326 audit(2000000002.490:1216): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=18893 comm="syz.6.8182" exe="/root/syz-executor" sig=9 arch=c000003e syscall=231 compat=0 ip=0x7f096818eba9 code=0x0 [ 721.371812][T18904] serio: Serial port ptm0 [ 721.487953][T18916] Invalid ELF header magic: != ELF [ 721.514660][ T28] audit: type=1400 audit(2000000002.710:1217): avc: denied { read write } for pid=18922 comm="syz.5.8193" name="file0" dev="tmpfs" ino=2991 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 721.548063][ T28] audit: type=1400 audit(2000000002.720:1218): avc: denied { open } for pid=18922 comm="syz.5.8193" path="/575/file0" dev="tmpfs" ino=2991 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 721.654704][ T1654] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 721.679028][ T1710] kernel write not supported for file /input/event2 (pid: 1710 comm: kworker/0:8) [ 721.844515][ T1654] usb 2-1: Using ep0 maxpacket: 8 [ 721.850715][ T1654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 721.882512][ T1654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 721.913079][ T1654] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 5 [ 721.934854][ T1654] usb 2-1: New USB device found, idVendor=046d, idProduct=c293, bcdDevice= 0.00 [ 721.946219][T18951] loop9: detected capacity change from 0 to 40427 [ 721.956003][ T1654] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 721.966480][T18951] F2FS-fs (loop9): invalid crc value [ 721.973260][T18951] F2FS-fs (loop9): Found nat_bits in checkpoint [ 721.994355][ T1654] usb 2-1: config 0 descriptor?? [ 722.016123][T18951] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 722.057024][T18666] syz-executor: attempt to access beyond end of device [ 722.057024][T18666] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 722.172086][T18957] loop5: detected capacity change from 0 to 40427 [ 722.187377][T18957] F2FS-fs (loop5): invalid crc value [ 722.203757][T18957] F2FS-fs (loop5): Found nat_bits in checkpoint [ 722.284715][T18957] F2FS-fs (loop5): Start checkpoint disabled! [ 722.298566][T18957] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 722.393906][ T351] kworker/u4:4: attempt to access beyond end of device [ 722.393906][ T351] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 722.412573][ T1654] logitech 0003:046D:C293.0062: unknown main item tag 0x0 [ 722.437070][T18963] loop6: detected capacity change from 0 to 40427 [ 722.444603][ T1654] logitech 0003:046D:C293.0062: unknown main item tag 0x0 [ 722.454926][ T1654] logitech 0003:046D:C293.0062: unknown main item tag 0x0 [ 722.462291][ T1654] logitech 0003:046D:C293.0062: unknown main item tag 0x0 [ 722.516285][ T1654] logitech 0003:046D:C293.0062: hidraw0: USB HID v0.00 Device [HID 046d:c293] on usb-dummy_hcd.1-1/input0 [ 722.532591][T18963] F2FS-fs (loop6): Found nat_bits in checkpoint [ 722.539198][T18968] loop9: detected capacity change from 0 to 40427 [ 722.554593][ T1654] logitech 0003:046D:C293.0062: no inputs found [ 722.562471][T18968] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12 [ 722.588507][T18968] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 722.621202][ T1654] usb 2-1: USB disconnect, device number 20 [ 722.625040][T18968] F2FS-fs (loop9): invalid crc value [ 722.639488][T18977] fido_id[18977]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/2-1/report_descriptor': No such file or directory [ 722.691799][T18963] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 722.699014][T18968] F2FS-fs (loop9): Found nat_bits in checkpoint [ 722.729413][T18963] syz.6.8210: attempt to access beyond end of device [ 722.729413][T18963] loop6: rw=2049, sector=53248, nr_sectors = 8 limit=40427 [ 722.743930][T18963] syz.6.8210: attempt to access beyond end of device [ 722.743930][T18963] loop6: rw=2051, sector=53248, nr_sectors = 8 limit=40427 [ 722.748433][T18968] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0 [ 722.765386][T18968] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 722.774741][T18500] syz-executor: attempt to access beyond end of device [ 722.774741][T18500] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 722.944498][ T290] usb 6-1: new high-speed USB device number 19 using dummy_hcd [ 723.141311][ T290] usb 6-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 723.163236][ T290] usb 6-1: New USB device found, idVendor=045e, idProduct=0283, bcdDevice=99.0b [ 723.186939][ T290] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 723.195413][ T290] usb 6-1: Product: syz [ 723.201413][ T290] usb 6-1: Manufacturer: syz [ 723.207025][ T290] usb 6-1: SerialNumber: syz [ 723.212666][ T290] usb 6-1: config 0 descriptor?? [ 723.239464][ T290] snd-usb-audio: probe of 6-1:0.0 failed with error -22 [ 723.290924][T19006] loop9: detected capacity change from 0 to 40427 [ 723.301847][T19006] F2FS-fs (loop9): fault_type options not supported [ 723.315746][T19006] F2FS-fs (loop9): invalid crc value [ 723.335290][T19006] F2FS-fs (loop9): Found nat_bits in checkpoint [ 723.428599][T19006] F2FS-fs (loop9): Start checkpoint disabled! [ 723.435670][T19006] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6 [ 723.437884][ T290] usb 6-1: USB disconnect, device number 19 [ 723.643321][T19052] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 723.809893][T19068] bridge0: port 1(bridge_slave_0) entered disabled state [ 724.030853][T19091] loop5: detected capacity change from 0 to 512 [ 724.050181][T19091] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 724.083813][T19091] EXT4-fs (loop5): 1 truncate cleaned up [ 724.090629][T19091] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 724.138377][T13540] EXT4-fs (loop5): unmounting filesystem. [ 724.197662][T19096] loop5: detected capacity change from 0 to 512 [ 724.754157][T19144] loop9: detected capacity change from 0 to 4096 [ 724.785050][T19144] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 724.830948][T19144] EXT4-fs: Can't set or change test_dummy_encryption on remount [ 724.848495][T18666] EXT4-fs (loop9): unmounting filesystem. [ 724.994583][ T1654] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 725.174477][ T1654] usb 2-1: Using ep0 maxpacket: 16 [ 725.181072][ T1654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 725.192062][ T1654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 725.201918][ T1654] usb 2-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00 [ 725.211064][ T1654] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 725.220073][ T1654] usb 2-1: config 0 descriptor?? [ 725.594493][T19151] loop9: detected capacity change from 0 to 256 [ 725.607408][T19151] FAT-fs (loop9): Directory bread(block 64) failed [ 725.611581][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1370.tmp-b7:9' failed: Read-only file system [ 725.614047][T19151] FAT-fs (loop9): Directory bread(block 65) failed [ 725.628716][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.635465][T19151] FAT-fs (loop9): Directory bread(block 66) failed [ 725.646048][T19151] FAT-fs (loop9): Directory bread(block 67) failed [ 725.649012][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1370.tmp-b7:9' failed: Read-only file system [ 725.664298][T19151] FAT-fs (loop9): Directory bread(block 68) failed [ 725.665465][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.671284][T19151] FAT-fs (loop9): Directory bread(block 69) failed [ 725.677869][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.691374][T19151] FAT-fs (loop9): Directory bread(block 70) failed [ 725.692608][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.704926][T19151] FAT-fs (loop9): Directory bread(block 71) failed [ 725.705046][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.718587][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.718711][T19151] FAT-fs (loop9): Directory bread(block 72) failed [ 725.725640][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.739152][T19151] FAT-fs (loop9): Directory bread(block 73) failed [ 725.749265][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.763922][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1370.tmp-b7:9' failed: Read-only file system [ 725.775636][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.782552][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.791480][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.798462][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.805808][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.812715][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.820484][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.829205][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1370.tmp-b7:9' failed: Read-only file system [ 725.840635][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.851970][T12745] udevd[12745]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 725.855464][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1370.tmp-b7:9' failed: Read-only file system [ 725.863684][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.879547][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1371.tmp-b7:9' failed: Read-only file system [ 725.883204][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.900380][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.908061][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.915049][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.931875][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.948862][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1367.tmp-b7:5' failed: Read-only file system [ 725.951217][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.984491][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 725.988555][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1371.tmp-b7:9' failed: Read-only file system [ 725.991612][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.050414][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.060502][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.078108][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.094516][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.104632][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.111542][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.139013][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.154499][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.161545][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.178793][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.194484][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.204625][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.221926][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.226047][T19161] loop9: detected capacity change from 0 to 40427 [ 726.232046][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.244319][T19161] F2FS-fs (loop9): Small segment_count (9 < 1 * 24) [ 726.252417][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.258831][T19161] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 726.266987][T12745] udevd[12745]: symlink '../../loop5' '/dev/disk/by-diskseq/1367.tmp-b7:5' failed: Read-only file system [ 726.280310][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.288222][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.290137][T19161] F2FS-fs (loop9): Found nat_bits in checkpoint [ 726.295741][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.309258][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.316384][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.323374][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.330602][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.337889][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.341006][T19161] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0 [ 726.345217][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.352079][T19161] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 726.359372][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.394152][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.412188][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.426885][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.442638][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.457313][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.471770][T19179] loop5: detected capacity change from 0 to 1024 [ 726.471883][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.471913][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.471937][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.471961][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.471985][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472010][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472033][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472057][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472081][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472104][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472126][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472150][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472173][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.472198][ T1654] apple 0003:05AC:024B.0063: unknown main item tag 0x0 [ 726.477335][T18666] bio_check_eod: 2 callbacks suppressed [ 726.477356][T18666] syz-executor: attempt to access beyond end of device [ 726.477356][T18666] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 726.598127][ T1654] apple 0003:05AC:024B.0063: hidraw0: USB HID v0.00 Device [HID 05ac:024b] on usb-dummy_hcd.1-1/input0 [ 726.601365][ T1654] usb 2-1: USB disconnect, device number 21 [ 726.624362][T19179] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 726.667939][T19183] fido_id[19183]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.1/usb2/report_descriptor': No such file or directory [ 726.672842][ T28] audit: type=1400 audit(2000000007.870:1219): avc: denied { map } for pid=19176 comm="syz.5.8297" path="/595/file1/file1" dev="loop5" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 726.723187][T13540] EXT4-fs (loop5): unmounting filesystem. [ 726.767973][ T28] audit: type=1326 audit(2000000007.970:1220): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 726.804295][ T28] audit: type=1326 audit(2000000007.970:1221): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=56 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 726.842085][T19194] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 726.886237][ T28] audit: type=1326 audit(2000000007.970:1222): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 726.914529][T19194] overlayfs: filesystem on './bus' not supported as upperdir [ 726.922978][ T28] audit: type=1326 audit(2000000007.970:1223): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 726.960871][ T28] audit: type=1326 audit(2000000007.970:1224): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 727.015809][ T28] audit: type=1326 audit(2000000007.970:1225): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 727.025155][T19214] loop5: detected capacity change from 0 to 512 [ 727.046273][ T28] audit: type=1326 audit(2000000007.970:1226): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=101 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 727.052710][T19204] loop9: detected capacity change from 0 to 8192 [ 727.074227][ T28] audit: type=1326 audit(2000000007.970:1227): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19186 comm="syz.2.8303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f4a0c38eba9 code=0x7ffc0000 [ 727.111022][T19214] EXT4-fs (loop5): feature flags set on rev 0 fs, running e2fsck is recommended [ 727.132900][ T28] audit: type=1400 audit(2000000008.330:1228): avc: denied { create } for pid=19218 comm="syz.6.8314" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=qipcrtr_socket permissive=1 [ 727.185530][T19214] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 727.217712][T19214] EXT4-fs (loop5): re-mounted. Quota mode: writeback. [ 727.223339][T19227] loop9: detected capacity change from 0 to 512 [ 727.242731][T13540] EXT4-fs (loop5): unmounting filesystem. [ 727.280234][T19227] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a802e01c, mo2=0002] [ 727.290958][T19227] System zones: 1-12 [ 727.295777][T19227] EXT4-fs (loop9): orphan cleanup on readonly fs [ 727.302511][T19227] EXT4-fs error (device loop9): ext4_get_branch:178: inode #11: block 33261: comm syz.9.8316: invalid block [ 727.335502][T19227] EXT4-fs error (device loop9): ext4_free_branches:1030: inode #11: comm syz.9.8316: invalid indirect mapped block 8 (level 2) [ 727.349219][T19227] EXT4-fs (loop9): 1 truncate cleaned up [ 727.354988][T19227] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none. [ 727.382391][T18666] EXT4-fs (loop9): unmounting filesystem. [ 727.430242][T19247] serio: Serial port ttyS3 [ 727.438322][T19249] loop6: detected capacity change from 0 to 256 [ 727.458909][T12746] I/O error, dev loop6, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 727.466234][T19249] tipc: Started in network mode [ 727.473385][T19249] tipc: Node identity -, cluster identity 4711 [ 727.585679][T19264] binder: 19263:19264 ioctl c018620c 200000000200 returned -1 [ 727.616072][T19271] syz.6.8337[19271] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 727.616202][T19271] syz.6.8337[19271] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 727.707404][T19288] loop9: detected capacity change from 0 to 512 [ 727.725722][ T290] usb 6-1: new high-speed USB device number 20 using dummy_hcd [ 727.739036][T19292] netlink: 104 bytes leftover after parsing attributes in process `syz.1.8347'. [ 727.749721][T19288] EXT4-fs: Ignoring removed nobh option [ 727.776568][T19288] EXT4-fs error (device loop9): ext4_orphan_get:1400: inode #15: comm syz.9.8345: iget: bad i_size value: 38620345925642 [ 727.795409][T19288] EXT4-fs error (device loop9): ext4_orphan_get:1405: comm syz.9.8345: couldn't read orphan inode 15 (err -117) [ 727.801965][T19299] pim6reg0: tun_chr_ioctl cmd 1074025681 [ 727.817125][T19288] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 727.914814][T19312] EXT4-fs error (device loop9): ext4_validate_block_bitmap:429: comm syz.9.8345: bg 0: block 5: invalid block bitmap [ 727.933540][ T290] usb 6-1: Using ep0 maxpacket: 16 [ 727.940219][ T290] usb 6-1: config 0 has no interfaces? [ 727.945272][T19312] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 28 [ 727.956223][ T290] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 727.959950][T19312] EXT4-fs (loop9): This should not happen!! Data will be lost [ 727.959950][T19312] [ 727.988040][ T290] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 727.996307][T19312] EXT4-fs (loop9): Total free blocks count 0 [ 728.004848][T19312] EXT4-fs (loop9): Free/Dirty block details [ 728.012778][ T290] usb 6-1: config 0 descriptor?? [ 728.017877][T19312] EXT4-fs (loop9): free_blocks=0 [ 728.022865][T19312] EXT4-fs (loop9): dirty_blocks=2884 [ 728.043943][T19312] EXT4-fs (loop9): Block reservation details [ 728.053735][T19312] EXT4-fs (loop9): i_reserved_data_blocks=2884 [ 728.112205][ T351] EXT4-fs (loop9): Delayed block allocation failed for inode 18 at logical offset 2052 with max blocks 832 with error 28 [ 728.203096][T19353] xt_hashlimit: size too large, truncated to 1048576 [ 728.223250][ T1654] usb 6-1: USB disconnect, device number 20 [ 728.372704][T19355] loop9: detected capacity change from 0 to 40427 [ 728.387578][T19355] F2FS-fs (loop9): heap/no_heap options were deprecated [ 728.403866][T19355] F2FS-fs (loop9): fault_injection options not supported [ 728.411181][T19355] F2FS-fs (loop9): fault_type options not supported [ 728.418609][T19355] F2FS-fs (loop9): invalid crc value [ 728.426043][T19355] F2FS-fs (loop9): Found nat_bits in checkpoint [ 728.470978][T19355] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 728.520838][T19355] syz.9.8377: attempt to access beyond end of device [ 728.520838][T19355] loop9: rw=2049, sector=45096, nr_sectors = 88 limit=40427 [ 728.538423][T19355] syz.9.8377: attempt to access beyond end of device [ 728.538423][T19355] loop9: rw=2049, sector=45184, nr_sectors = 8 limit=40427 [ 728.560709][T18666] syz-executor: attempt to access beyond end of device [ 728.560709][T18666] loop9: rw=2049, sector=45192, nr_sectors = 8 limit=40427 [ 728.980537][T19414] loop6: detected capacity change from 0 to 512 [ 729.006643][T19414] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 729.015870][T19414] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 729.035725][T18500] EXT4-fs (loop6): unmounting filesystem. [ 729.071707][T19422] loop6: detected capacity change from 0 to 512 [ 729.089486][T19422] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 729.104544][T19422] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 729.118319][T19422] EXT4-fs error (device loop6): ext4_xattr_ibody_find:2195: inode #15: comm syz.6.8405: corrupted in-inode xattr [ 729.130724][T19422] EXT4-fs error (device loop6): ext4_orphan_get:1405: comm syz.6.8405: couldn't read orphan inode 15 (err -117) [ 729.143064][T19422] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 729.149462][T19427] loop5: detected capacity change from 0 to 512 [ 729.168144][T19427] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 729.179093][T18500] EXT4-fs (loop6): unmounting filesystem. [ 729.193689][T19427] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 729.203991][T19427] ext4 filesystem being mounted at /610/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 729.259754][T13540] EXT4-fs (loop5): unmounting filesystem. [ 729.478906][T19474] netlink: 36 bytes leftover after parsing attributes in process `syz.1.8427'. [ 729.884478][ T1654] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 730.084463][ T1654] usb 2-1: Using ep0 maxpacket: 32 [ 730.099846][ T1654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 730.120702][ T1654] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 730.141661][ T1654] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 730.171870][ T1654] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 730.183990][ T1654] usb 2-1: config 0 descriptor?? [ 730.190952][ T1654] hub 2-1:0.0: USB hub found [ 730.392238][ T1654] hub 2-1:0.0: config failed, can't read hub descriptor (err -90) [ 730.595177][ T1654] usbhid 2-1:0.0: can't add hid device: -71 [ 730.601294][ T1654] usbhid: probe of 2-1:0.0 failed with error -71 [ 730.634840][ T1654] usb 2-1: USB disconnect, device number 22 [ 731.091070][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.204036][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.230936][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.255747][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.282329][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.322787][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.347462][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.379596][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.410959][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.441755][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1393.tmp-b7:5' failed: Read-only file system [ 731.587212][T19597] loop5: detected capacity change from 0 to 128 [ 731.593976][T19597] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 731.606941][T19597] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 731.662851][T19603] netlink: 132 bytes leftover after parsing attributes in process `syz.5.8486'. [ 731.725086][T19611] loop5: detected capacity change from 0 to 512 [ 731.731824][T19611] ext4: Unknown parameter 'obj_type' [ 731.753085][T19613] loop5: detected capacity change from 0 to 128 [ 731.760348][T19613] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 731.772712][T19613] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 731.793159][ T351] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 732.204529][T16692] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 732.441126][T19639] loop9: detected capacity change from 0 to 40427 [ 732.458635][T19639] F2FS-fs (loop9): invalid crc value [ 732.472713][T19639] F2FS-fs (loop9): Found nat_bits in checkpoint [ 732.533705][T19639] F2FS-fs (loop9): Start checkpoint disabled! [ 732.535719][T19657] netlink: 'syz.6.8512': attribute type 4 has an invalid length. [ 732.548070][T19657] netlink: 17 bytes leftover after parsing attributes in process `syz.6.8512'. [ 732.550390][T19639] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e6 [ 732.617522][ T28] kauditd_printk_skb: 11 callbacks suppressed [ 732.617540][ T28] audit: type=1400 audit(2000000014.812:1240): avc: denied { attach_queue } for pid=19661 comm="syz.5.8514" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tun_socket permissive=1 [ 732.724346][ T351] kworker/u4:4: attempt to access beyond end of device [ 732.724346][ T351] loop9: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 732.836735][T19681] overlayfs: conflicting lowerdir path [ 732.878850][T19685] loop5: detected capacity change from 0 to 128 [ 732.902801][T19685] FAT-fs (loop5): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 732.928588][T19685] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 732.982354][ T1655] FAT-fs (loop5): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 733.176866][T19708] loop6: detected capacity change from 0 to 512 [ 733.199952][T19712] input: syz1 as /devices/virtual/input/input53 [ 733.215494][T19708] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 733.287019][T19708] EXT4-fs (loop6): 1 truncate cleaned up [ 733.292730][T19708] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 733.305693][T19698] loop9: detected capacity change from 0 to 40427 [ 733.322969][T19698] F2FS-fs (loop9): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 733.331236][T19698] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 733.331977][T19721] SELinux: ebitmap: truncated map [ 733.339707][ T28] audit: type=1400 audit(2000000015.522:1241): avc: denied { load_policy } for pid=19718 comm="syz.5.8540" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:security_t tclass=security permissive=1 [ 733.366576][T18500] EXT4-fs (loop6): unmounting filesystem. [ 733.385078][T19698] F2FS-fs (loop9): invalid crc value [ 733.394699][T19721] SELinux: failed to load policy [ 733.415529][T19698] F2FS-fs (loop9): Found nat_bits in checkpoint [ 733.477535][T19733] device bridge0 entered promiscuous mode [ 733.536689][T19698] F2FS-fs (loop9): Try to recover 1th superblock, ret: -30 [ 733.564849][T19698] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 733.622413][ T28] audit: type=1400 audit(2000000015.812:1242): avc: denied { getattr } for pid=19755 comm="syz.1.8554" name="/" dev="dax" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 733.669001][T19698] F2FS-fs (loop9): Corrupted max_depth of 3: 1537 [ 733.809480][ T28] audit: type=1326 audit(2000000016.002:1243): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f096818eba9 code=0x7ffc0000 [ 733.881946][ T28] audit: type=1326 audit(2000000016.002:1244): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f096818eba9 code=0x7ffc0000 [ 733.941838][ T28] audit: type=1326 audit(2000000016.032:1245): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=41 compat=0 ip=0x7f0968190ac7 code=0x7ffc0000 [ 733.969115][ T28] audit: type=1326 audit(2000000016.032:1246): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=44 compat=0 ip=0x7f0968190a3c code=0x7ffc0000 [ 734.025679][ T28] audit: type=1326 audit(2000000016.032:1247): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0968190974 code=0x7ffc0000 [ 734.071864][ T28] audit: type=1326 audit(2000000016.032:1248): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=45 compat=0 ip=0x7f0968190974 code=0x7ffc0000 [ 734.137161][ T28] audit: type=1326 audit(2000000016.032:1249): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=19774 comm="syz.6.8565" exe="/root/syz-executor" sig=0 arch=c000003e syscall=3 compat=0 ip=0x7f096818d80a code=0x7ffc0000 [ 734.223752][T19805] loop9: detected capacity change from 0 to 8192 [ 734.392891][T19825] loop5: detected capacity change from 0 to 256 [ 734.430088][T19825] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 734.765285][ T1710] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 734.956279][ T1710] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 734.967678][ T1710] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 734.977595][ T1710] usb 2-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 734.986721][ T1710] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 734.994863][ T1710] usb 2-1: SerialNumber: syz [ 735.094475][ T6] usb 10-1: new high-speed USB device number 18 using dummy_hcd [ 735.203154][ T1710] usb 2-1: 0:2 : does not exist [ 735.214064][ T1710] usb 2-1: USB disconnect, device number 23 [ 735.284496][ T6] usb 10-1: Using ep0 maxpacket: 16 [ 735.291053][ T6] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 735.303179][ T6] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 735.313082][ T6] usb 10-1: New USB device found, idVendor=05ac, idProduct=024b, bcdDevice= 0.00 [ 735.322285][ T6] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 735.331619][ T6] usb 10-1: config 0 descriptor?? [ 735.715645][T19884] netlink: 'syz.2.8614': attribute type 49 has an invalid length. [ 735.741835][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.756878][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.763930][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.777919][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.785808][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.796930][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.803871][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.811187][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.818296][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.825393][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.832303][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.839538][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.846640][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.853570][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.860647][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.867647][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.874583][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.881510][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.888636][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.895771][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.903208][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.910345][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.917469][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.924394][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.931641][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.938770][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.946639][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.955076][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.962096][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.969786][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.977926][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.985069][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 735.992594][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.004557][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.011697][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.019162][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.030786][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.038151][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.045574][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.053351][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.061468][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.068706][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.075886][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.076673][T19908] syzkaller0: tun_chr_ioctl cmd 2147767521 [ 736.083250][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.096670][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.103614][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.110840][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.118082][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.125519][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.132533][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.139476][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.146953][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.154124][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.161072][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.168333][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.172588][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 736.182831][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.194515][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.201457][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.208574][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.215728][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.222665][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.230075][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.237027][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.244002][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.251403][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.258363][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.265354][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.273548][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.280492][ T6] apple 0003:05AC:024B.0064: unknown main item tag 0x0 [ 736.288061][ T6] apple 0003:05AC:024B.0064: hidraw0: USB HID v0.00 Device [HID 05ac:024b] on usb-dummy_hcd.9-1/input0 [ 736.301659][ T6] usb 10-1: USB disconnect, device number 18 [ 736.324182][T19912] fido_id[19912]: Failed to open report descriptor at '/sys/devices/platform/dummy_hcd.9/usb10/report_descriptor': No such file or directory [ 736.359635][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 736.396584][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 736.418571][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1411.tmp-b7:5' failed: Read-only file system [ 736.436891][T19921] SELinux: Context system_u:object_r:dhcp_state_t:s0 is not valid (left unmapped). [ 736.455444][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 736.483533][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1411.tmp-b7:5' failed: Read-only file system [ 736.508028][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 736.569060][T12746] udevd[12746]: symlink '../../loop9' '/dev/disk/by-diskseq/1410.tmp-b7:9' failed: Read-only file system [ 736.634265][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1411.tmp-b7:5' failed: Read-only file system [ 736.677406][T12746] udevd[12746]: symlink '../../loop9' '/dev/disk/by-diskseq/1410.tmp-b7:9' failed: Read-only file system [ 736.956462][T19962] loop5: detected capacity change from 0 to 256 [ 737.226180][T19968] loop9: detected capacity change from 0 to 40427 [ 737.236309][T19968] F2FS-fs (loop9): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 737.244014][T19968] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 737.254486][T19968] F2FS-fs (loop9): invalid crc value [ 737.266098][T19968] F2FS-fs (loop9): Found nat_bits in checkpoint [ 737.334141][T19968] F2FS-fs (loop9): Try to recover 1th superblock, ret: -30 [ 737.344143][T19968] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4 [ 737.410021][T19968] F2FS-fs (loop9): Try to recover all the superblocks, ret: 0 [ 737.932292][T20039] loop5: detected capacity change from 0 to 512 [ 737.955725][T20039] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 737.960310][T20041] loop6: detected capacity change from 0 to 512 [ 737.992205][T20039] EXT4-fs error (device loop5): ext4_xattr_inode_iget:404: comm syz.5.8680: inode #255: comm syz.5.8680: iget: illegal inode # [ 738.006365][T20039] EXT4-fs error (device loop5): ext4_xattr_inode_iget:409: comm syz.5.8680: error while reading EA inode 255 err=-117 [ 738.007279][T20041] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 738.025892][ T28] kauditd_printk_skb: 9 callbacks suppressed [ 738.025912][ T28] audit: type=1400 audit(2000000020.222:1259): avc: denied { create } for pid=20045 comm="syz.1.8682" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ax25_socket permissive=1 [ 738.029297][T20041] ext4 filesystem being mounted at /107/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 738.034301][T20039] EXT4-fs (loop5): 1 orphan inode deleted [ 738.072115][T20039] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 738.094980][T20039] EXT4-fs (loop5): shut down requested (1) [ 738.102396][T20041] EXT4-fs (loop6): shut down requested (1) [ 738.110175][ T28] audit: type=1400 audit(2000000020.312:1260): avc: denied { read } for pid=84 comm="syslogd" name="log" dev="sda1" ino=2010 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 738.133598][T13540] EXT4-fs (loop5): unmounting filesystem. [ 738.134460][ T28] audit: type=1400 audit(2000000020.312:1261): avc: denied { search } for pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 738.161673][T18500] EXT4-fs (loop6): unmounting filesystem. [ 738.163102][ T28] audit: type=1400 audit(2000000020.312:1262): avc: denied { write } for pid=84 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 738.221627][T20051] loop6: detected capacity change from 0 to 128 [ 738.249810][ T28] audit: type=1400 audit(2000000020.312:1263): avc: denied { add_name } for pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 738.290759][T20051] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 738.309643][T20051] ext4 filesystem being mounted at /108/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 738.325626][ T28] audit: type=1400 audit(2000000020.312:1264): avc: denied { create } for pid=84 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 738.346510][ T28] audit: type=1400 audit(2000000020.312:1265): avc: denied { append open } for pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 738.370409][ T28] audit: type=1400 audit(2000000020.312:1266): avc: denied { getattr } for pid=84 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=5 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 738.372019][T18500] EXT4-fs (loop6): unmounting filesystem. [ 738.403072][ T28] audit: type=1400 audit(2000000020.312:1267): avc: denied { link } for pid=20040 comm="syz.6.8681" name="file2" dev="loop6" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 738.415962][T20067] xt_hashlimit: size too large, truncated to 1048576 [ 738.481845][ T28] audit: type=1326 audit(2000000020.492:1268): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20060 comm="syz.9.8688" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7ffaaef8eba9 code=0x7ffc0000 [ 738.544760][T20074] loop9: detected capacity change from 0 to 1024 [ 738.580221][T20074] EXT4-fs: Ignoring removed mblk_io_submit option [ 738.591143][T20074] EXT4-fs: Ignoring removed bh option [ 738.626358][T20074] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 738.698713][T20074] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 738.746748][T18666] EXT4-fs (loop9): unmounting filesystem. [ 738.780366][T20092] sch_fq: defrate 0 ignored. [ 738.929131][T20107] tap0: tun_chr_ioctl cmd 1074025677 [ 738.960256][T20107] tap0: linktype set to 804 [ 739.015760][T20115] loop5: detected capacity change from 0 to 512 [ 739.026110][T20115] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 739.063571][T20115] EXT4-fs (loop5): 1 truncate cleaned up [ 739.069417][T20115] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 739.082368][T20115] EXT4-fs error (device loop5): ext4_find_extent:900: inode #15: comm syz.5.8712: inode has invalid extent depth: 25964 [ 739.105299][T20115] EXT4-fs (loop5): Remounting filesystem read-only [ 739.111896][T20115] fs-verity (loop5, inode 15): Error -117 getting verity descriptor size [ 739.140554][T13540] EXT4-fs (loop5): unmounting filesystem. [ 739.177523][T20126] loop5: detected capacity change from 0 to 512 [ 739.198939][T20126] EXT4-fs: Ignoring removed nobh option [ 739.235234][T20126] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 739.302419][T13540] EXT4-fs (loop5): unmounting filesystem. [ 739.325007][T20113] loop9: detected capacity change from 0 to 40427 [ 739.355016][T20113] F2FS-fs (loop9): Invalid log_blocksize (268), supports only 12 [ 739.362809][T20113] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 739.389958][T20113] F2FS-fs (loop9): invalid crc value [ 739.424285][T20113] F2FS-fs (loop9): Found nat_bits in checkpoint [ 739.497214][T20113] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0 [ 739.510368][T20113] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 739.597419][T20168] input: syz0 as /devices/virtual/input/input56 [ 739.688806][T20177] loop5: detected capacity change from 0 to 128 [ 739.731645][T20177] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 739.749027][T20177] ext4 filesystem being mounted at /708/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 739.841353][T20195] loop9: detected capacity change from 0 to 256 [ 739.895671][T13540] EXT4-fs (loop5): unmounting filesystem. [ 739.940918][T20206] loop9: detected capacity change from 0 to 512 [ 739.953710][T20206] EXT4-fs: Ignoring removed mblk_io_submit option [ 739.961980][T20210] pim6reg0: tun_chr_ioctl cmd 1074025677 [ 739.982272][T20210] pim6reg0: linktype set to 270 [ 739.993528][T20214] xt_hashlimit: size too large, truncated to 1048576 [ 740.000336][T20206] EXT4-fs: Ignoring removed bh option [ 740.000774][T20206] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 740.033563][T20206] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 740.066369][T20206] EXT4-fs (loop9): 1 truncate cleaned up [ 740.084538][T20206] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 740.153617][T20232] loop5: detected capacity change from 0 to 8192 [ 740.172787][T20232] FAT-fs (loop5): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 740.189071][T20232] binder: 20231:20232 ioctl c0306201 200000000080 returned -14 [ 740.257226][T18666] EXT4-fs (loop9): unmounting filesystem. [ 740.343879][T20248] loop9: detected capacity change from 0 to 512 [ 740.372640][T20248] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 740.435418][T20248] EXT4-fs (loop9): 1 truncate cleaned up [ 740.444553][T20248] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 740.494110][T20248] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2195: inode #15: comm syz.9.8769: corrupted in-inode xattr [ 740.507066][ T290] usb 6-1: new high-speed USB device number 21 using dummy_hcd [ 740.521016][T20248] EXT4-fs (loop9): Remounting filesystem read-only [ 740.532361][T20248] EXT4-fs warning (device loop9): ext4_xattr_set_entry:1732: inode #15: comm syz.9.8769: unable to update i_inline_off [ 740.557821][T20258] EXT4-fs error (device loop9): ext4_xattr_ibody_list:748: inode #15: comm syz.9.8769: corrupted in-inode xattr [ 740.580109][T20258] EXT4-fs (loop9): Remounting filesystem read-only [ 740.634924][T20262] loop6: detected capacity change from 0 to 512 [ 740.646399][T20262] EXT4-fs: Ignoring removed oldalloc option [ 740.653022][T18666] EXT4-fs (loop9): unmounting filesystem. [ 740.689230][T20262] EXT4-fs (loop6): 1 truncate cleaned up [ 740.695140][ T290] usb 6-1: Using ep0 maxpacket: 8 [ 740.702201][ T290] usb 6-1: config 1 interface 0 altsetting 0 bulk endpoint 0x1 has invalid maxpacket 125 [ 740.727006][ T290] usb 6-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 740.759313][T20262] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 740.768583][ T290] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 740.797932][ T290] usb 6-1: Product: syz [ 740.826421][ T290] usb 6-1: Manufacturer: syz [ 740.831107][ T290] usb 6-1: SerialNumber: syz [ 740.832382][T18500] EXT4-fs (loop6): unmounting filesystem. [ 740.841791][T20277] loop9: detected capacity change from 0 to 512 [ 740.867940][T20239] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 740.902592][T20277] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 740.926573][T20277] ext4 filesystem being mounted at /107/file2 supports timestamps until 2038-01-19 (0x7fffffff) [ 740.944235][T20289] loop6: detected capacity change from 0 to 1024 [ 740.956376][T20289] EXT4-fs: Ignoring removed i_version option [ 740.966597][T20289] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 740.980586][T20293] xt_hashlimit: size too large, truncated to 1048576 [ 740.995048][T18666] EXT4-fs (loop9): unmounting filesystem. [ 741.056031][T20289] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 741.091065][ T290] usblp 6-1:1.0: usblp0: USB Unidirectional printer dev 21 if 0 alt 0 proto 1 vid 0x0525 pid 0xA4A8 [ 741.147631][T20289] EXT4-fs error (device loop6): ext4_mb_mark_diskspace_used:3841: comm syz.6.8785: Allocating blocks 497-513 which overlap fs metadata [ 741.192613][T20289] EXT4-fs (loop6): pa ffff88811235e5e8: logic 256, phys. 385, len 8 [ 741.200730][T20289] EXT4-fs error (device loop6): ext4_mb_release_inode_pa:4881: group 0, free 0, pa_free 1 [ 741.264398][T20305] EXT4-fs error (device loop6): mb_free_blocks:1815: group 0, inode 15: block 129:freeing already freed block (bit 8); block bitmap corrupt. [ 741.289259][ T1654] usb 6-1: USB disconnect, device number 21 [ 741.305514][ T1654] usblp0: removed [ 741.335556][T18500] EXT4-fs (loop6): unmounting filesystem. [ 741.453867][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:6' failed: Read-only file system [ 741.470547][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1443.tmp-b7:6' failed: Read-only file system [ 741.491712][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1443.tmp-b7:6' failed: Read-only file system [ 741.517705][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1445.tmp-b7:6' failed: Read-only file system [ 741.721426][T20313] loop6: detected capacity change from 0 to 40427 [ 741.743395][T20313] F2FS-fs (loop6): Invalid log_blocksize (268), supports only 12 [ 741.765797][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1446.tmp-b7:6' failed: Read-only file system [ 741.779414][T20313] F2FS-fs (loop6): Can't find valid F2FS filesystem in 1th superblock [ 741.795139][T20297] loop9: detected capacity change from 0 to 131072 [ 741.798515][T20313] F2FS-fs (loop6): invalid crc value [ 741.820901][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1436.tmp-b7:5' failed: Read-only file system [ 741.832632][T20324] loop5: detected capacity change from 0 to 512 [ 741.839143][T20297] F2FS-fs (loop9): Invalid log sectorsize (67108873) [ 741.845938][T20297] F2FS-fs (loop9): Can't find valid F2FS filesystem in 1th superblock [ 741.857810][T20324] EXT4-fs (loop5): Test dummy encryption mode enabled [ 741.867368][T20324] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 741.879190][T20297] F2FS-fs (loop9): invalid crc value [ 741.898983][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1448.tmp-b7:5' failed: Read-only file system [ 741.900654][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1447.tmp-b7:9' failed: Read-only file system [ 741.921934][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 741.926599][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-uuid/ae71b7fd-767a-4c88-a53b-ea5e39a5f101.tmp-b7:9' failed: Read-only file system [ 741.949611][T20324] EXT4-fs error (device loop5): ext4_orphan_get:1426: comm syz.5.8798: bad orphan inode 131083 [ 741.974670][T20324] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 741.984806][T20313] F2FS-fs (loop6): Found nat_bits in checkpoint [ 741.984821][T20297] F2FS-fs (loop9): Found nat_bits in checkpoint [ 742.056883][T20313] F2FS-fs (loop6): Try to recover 1th superblock, ret: 0 [ 742.064232][T20313] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 742.084631][T20297] F2FS-fs (loop9): Try to recover 1th superblock, ret: 0 [ 742.094628][T20297] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e4 [ 742.114948][T20346] netlink: 128 bytes leftover after parsing attributes in process `syz.1.8805'. [ 742.124156][T20346] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8805'. [ 742.133841][T20297] fscrypt (loop9, inode 8): Error -61 getting encryption context [ 742.135923][T20346] netlink: 20 bytes leftover after parsing attributes in process `syz.1.8805'. [ 742.256216][T20313] syz.6.8790: attempt to access beyond end of device [ 742.256216][T20313] loop6: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 742.394220][T20360] loop9: detected capacity change from 0 to 512 [ 742.411962][T20360] EXT4-fs (loop9): Test dummy encryption mode enabled [ 742.418953][T20360] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 742.430339][T20360] EXT4-fs (loop9): 1 truncate cleaned up [ 742.442310][T20360] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none. [ 742.462438][T20360] EXT4-fs warning (device loop9): __ext4fs_dirhash:270: inode #12: comm syz.9.8813: Siphash requires key [ 742.483142][T18666] EXT4-fs (loop9): unmounting filesystem. [ 742.518287][T20367] loop6: detected capacity change from 0 to 256 [ 742.584513][ T1116] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 742.624317][T20381] loop9: detected capacity change from 0 to 512 [ 742.626830][T20383] loop6: detected capacity change from 0 to 512 [ 742.640592][T20383] EXT4-fs: Ignoring removed nobh option [ 742.652737][T20383] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 742.673117][T20381] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 742.682728][T20324] EXT4-fs (loop5): unmounting filesystem. [ 742.682975][T20381] ext4 filesystem being mounted at /116/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 742.702257][T18500] EXT4-fs (loop6): unmounting filesystem. [ 742.708841][T20381] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #2: comm syz.9.8822: corrupted inode contents [ 742.735124][T20381] EXT4-fs error (device loop9): ext4_dirty_inode:6121: inode #2: comm syz.9.8822: mark_inode_dirty error [ 742.750393][T20381] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #2: comm syz.9.8822: corrupted inode contents [ 742.766678][T20381] EXT4-fs error (device loop9): __ext4_ext_dirty:202: inode #2: comm syz.9.8822: mark_inode_dirty error [ 742.772350][T20393] netlink: 276 bytes leftover after parsing attributes in process `syz.6.8826'. [ 742.779881][ T1116] usb 2-1: config 0 has an invalid interface number: 99 but max is 0 [ 742.788054][T20393] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8826'. [ 742.795543][ T1116] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 742.805763][T20391] EXT4-fs error (device loop9): ext4_get_first_dir_block:3594: inode #19: comm syz.9.8822: directory missing '.' [ 742.815145][ T1116] usb 2-1: config 0 has no interface number 0 [ 742.833080][ T1116] usb 2-1: config 0 interface 99 altsetting 116 has 0 endpoint descriptors, different from the interface descriptor's value: 13 [ 742.846670][ T1116] usb 2-1: config 0 interface 99 has no altsetting 0 [ 742.853910][ T1116] usb 2-1: New USB device found, idVendor=13e5, idProduct=0001, bcdDevice=4e.53 [ 742.863384][ T1116] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 742.877358][ T1116] usb 2-1: config 0 descriptor?? [ 742.890908][T20393] netlink: 276 bytes leftover after parsing attributes in process `syz.6.8826'. [ 742.900258][T20393] netlink: 8 bytes leftover after parsing attributes in process `syz.6.8826'. [ 742.929980][T18666] EXT4-fs (loop9): unmounting filesystem. [ 742.979022][ T6] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=65380 sclass=netlink_route_socket pid=6 comm=kworker/0:0 [ 743.085120][ T1116] usb 2-1: string descriptor 0 read error: -71 [ 743.098551][ T1116] usb 2-1: selecting invalid altsetting 0 [ 743.132493][ T1116] usb 2-1: USB disconnect, device number 24 [ 743.160952][ T28] kauditd_printk_skb: 17 callbacks suppressed [ 743.160967][ T28] audit: type=1326 audit(2000000025.352:1286): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20417 comm="syz.2.8838" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f4a0c38eba9 code=0x0 [ 743.190320][T20401] loop5: detected capacity change from 0 to 40427 [ 743.206005][T20401] F2FS-fs (loop5): fault_injection options not supported [ 743.214767][ T28] audit: type=1326 audit(2000000025.402:1287): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=20417 comm="syz.2.8838" exe="/root/syz-executor" sig=31 arch=c000003e syscall=436 compat=0 ip=0x7f4a0c38eba9 code=0x0 [ 743.263718][T20401] F2FS-fs (loop5): invalid crc value [ 743.295132][T20401] F2FS-fs (loop5): Found nat_bits in checkpoint [ 743.335304][T20401] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 743.373769][T13540] syz-executor: attempt to access beyond end of device [ 743.373769][T13540] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 743.493842][T20440] loop5: detected capacity change from 0 to 512 [ 743.500846][T20440] EXT4-fs: Ignoring removed mblk_io_submit option [ 743.507871][T20440] EXT4-fs: Ignoring removed bh option [ 743.513758][T20440] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 743.525419][T20440] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 743.545666][T20440] EXT4-fs (loop5): 1 truncate cleaned up [ 743.551426][T20440] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 743.618277][T13540] EXT4-fs (loop5): unmounting filesystem. [ 743.936727][T20469] overlayfs: unrecognized mount option " 3100 kB [ 743.936727][T20469] SecPageTables: 0 kB [ 743.936727][T20469] NFS_Unstable: 0 kB [ 743.936727][T20469] Bounce: 0 kB [ 743.936727][T20469] WritebackTmp: 0 kB [ 743.936727][T20469] CommitLimit: 3625424 kB [ 743.936727][T20469] Committed_AS: 634200 kB [ 743.936727][T20469] VmallocTotal: 34359738367 kB [ 743.936727][T20469] VmallocUsed: 251132 kB [ 743.936727][T20469] VmallocChunk: 0 kB [ 743.936727][T20469] Percpu: 2592 kB [ 743.936727][T20469] AnonHugePages: 0 kB [ 743.936727][T20469] ShmemHugePages: 0 kB [ 743.936727][T20469] ShmemPmdMapped: 0 kB [ 743.936727][T20469] FileHugePages: 0 kB [ 743.936727][T20469] FilePmdMapped: 0 kB [ 743.936727][T20469] CmaTotal: 0 kB [ 743.936727][T20469] CmaFree: 0 kB [ 743.936727][T20469] DirectMap4k: 34804 kB [ 744.381040][T20497] loop9: detected capacity change from 0 to 512 [ 744.404701][T20497] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 744.416672][T20497] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 744.431995][T20497] EXT4-fs error (device loop9): ext4_xattr_ibody_find:2195: inode #15: comm syz.9.8872: corrupted in-inode xattr [ 744.444226][T20497] EXT4-fs error (device loop9): ext4_orphan_get:1405: comm syz.9.8872: couldn't read orphan inode 15 (err -117) [ 744.457185][T20497] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 744.473886][ T28] audit: type=1400 audit(2000000026.662:1288): avc: denied { create } for pid=20496 comm="syz.9.8872" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1 [ 744.504002][ T28] audit: type=1400 audit(2000000026.692:1289): avc: denied { link } for pid=20496 comm="syz.9.8872" name="file1" dev="loop9" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=chr_file permissive=1 [ 744.505005][T18666] EXT4-fs (loop9): unmounting filesystem. [ 744.598741][T20504] bridge0: port 3(syz_tun) entered blocking state [ 744.610563][T20504] bridge0: port 3(syz_tun) entered disabled state [ 744.618838][T20504] device syz_tun entered promiscuous mode [ 744.624928][T20504] bridge0: port 3(syz_tun) entered blocking state [ 744.631419][T20504] bridge0: port 3(syz_tun) entered forwarding state [ 745.183301][T20571] loop9: detected capacity change from 0 to 256 [ 745.198248][T20571] FAT-fs (loop9): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 745.330400][T20588] bridge0: port 3(syz_tun) entered blocking state [ 745.337113][T20588] bridge0: port 3(syz_tun) entered disabled state [ 745.344039][T20588] device syz_tun entered promiscuous mode [ 745.350167][T20588] bridge0: port 3(syz_tun) entered blocking state [ 745.356736][T20588] bridge0: port 3(syz_tun) entered forwarding state [ 745.468192][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.476458][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.484041][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.491927][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.499564][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.508516][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.516110][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.523522][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.531241][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.538834][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.546419][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.554011][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.562793][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.570532][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.578233][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.585856][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.593294][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.602185][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.609824][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.617429][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.625036][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.632466][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.641637][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.649628][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.657240][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.664832][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.672251][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.681151][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.688760][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.696342][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.703770][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.711422][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.720154][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.728091][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.736002][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.743446][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.751113][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.758792][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.766385][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.773882][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.782491][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.789982][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.797475][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.804934][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.812430][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.819868][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.827301][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.834731][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.842139][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.849572][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.857010][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.864503][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.872009][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.879480][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.887082][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.894523][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.902465][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.910200][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.917703][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.929679][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.937181][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.944614][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.952067][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.959552][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.966995][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.974635][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.976620][T20612] loop5: detected capacity change from 0 to 256 [ 745.982173][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982202][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982223][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982244][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982264][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982285][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982308][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982338][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.982360][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 745.992777][T20612] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xb89b369d, utbl_chksum : 0xe619d30d) [ 745.997188][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 746.011523][T20612] exFAT-fs (loop5): hint_cluster is invalid (1) [ 746.018703][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 746.026535][T20612] syz.5.8922: attempt to access beyond end of device [ 746.026535][T20612] loop5: rw=2049, sector=34359738488, nr_sectors = 8 limit=256 [ 746.033643][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 746.049790][T20612] syz.5.8922: attempt to access beyond end of device [ 746.049790][T20612] loop5: rw=2049, sector=34359738488, nr_sectors = 1 limit=256 [ 746.056154][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 746.067909][T20612] Buffer I/O error on dev loop5, logical block 34359738488, lost async page write [ 746.075682][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 746.149557][ T6] hid-generic 0000:0000:0000.0065: unknown main item tag 0x0 [ 746.157562][ T6] hid-generic 0000:0000:0000.0065: hidraw0: HID v0.03 Device [syz1] on syz1 [ 746.236922][T20623] loop6: detected capacity change from 0 to 512 [ 746.250548][T20617] fido_id[20617]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 746.303455][T20623] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 746.322658][T20623] ext4 filesystem being mounted at /145/bus supports timestamps until 2038-01-19 (0x7fffffff) [ 746.352203][T20623] EXT4-fs error (device loop6): ext4_validate_block_bitmap:438: comm syz.6.8927: bg 0: block 145: padding at end of block bitmap is not set [ 746.371866][T20623] EXT4-fs error (device loop6) in ext4_mb_clear_bb:6170: Corrupt filesystem [ 746.393429][T18500] EXT4-fs (loop6): unmounting filesystem. [ 746.465221][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1469.tmp-b7:5' failed: Read-only file system [ 746.504764][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1471.tmp-b7:6' failed: Read-only file system [ 746.518014][T20657] input: syz0 as /devices/virtual/input/input57 [ 746.535975][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1469.tmp-b7:5' failed: Read-only file system [ 746.600706][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1469.tmp-b7:5' failed: Read-only file system [ 746.621068][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1471.tmp-b7:6' failed: Read-only file system [ 746.638197][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1469.tmp-b7:5' failed: Read-only file system [ 746.760088][ T28] audit: type=1400 audit(2000000028.952:1290): avc: denied { write } for pid=20670 comm="syz.6.8947" laddr=172.20.20.10 lport=250 faddr=172.20.20.187 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 746.857107][ T28] audit: type=1400 audit(2000000029.052:1291): avc: denied { read write } for pid=20682 comm="syz.1.8952" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 746.857199][ T28] audit: type=1400 audit(2000000029.052:1292): avc: denied { open } for pid=20682 comm="syz.1.8952" path="/dev/kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 746.882056][ T28] audit: type=1400 audit(2000000029.082:1293): avc: denied { ioctl } for pid=20682 comm="syz.1.8952" path="/dev/kvm" dev="devtmpfs" ino=83 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 746.932434][T20673] loop5: detected capacity change from 0 to 40427 [ 746.949502][ T28] audit: type=1400 audit(2000000029.122:1294): avc: denied { read write } for pid=20672 comm="syz.5.8948" name="loop5" dev="devtmpfs" ino=123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 746.949544][ T28] audit: type=1400 audit(2000000029.122:1295): avc: denied { open } for pid=20672 comm="syz.5.8948" path="/dev/loop5" dev="devtmpfs" ino=123 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 746.965553][T20673] F2FS-fs (loop5): invalid crc value [ 747.020464][T12957] udevd[12957]: symlink '../../loop6' '/dev/disk/by-diskseq/1471.tmp-b7:6' failed: Read-only file system [ 747.041804][T12957] udevd[12957]: symlink '../../loop6' '/dev/disk/by-diskseq/1471.tmp-b7:6' failed: Read-only file system [ 747.043549][T20673] F2FS-fs (loop5): Found nat_bits in checkpoint [ 747.050247][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1472.tmp-b7:5' failed: Read-only file system [ 747.051005][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-uuid/922c7623-35ee-4af3-bdd7-07040bb1b7db.tmp-b7:5' failed: Read-only file system [ 747.114568][T20673] F2FS-fs (loop5): Start checkpoint disabled! [ 747.115723][T20673] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e6 [ 747.188282][ T43] kworker/u4:2: attempt to access beyond end of device [ 747.188282][ T43] loop5: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 747.647444][T20734] netlink: 8 bytes leftover after parsing attributes in process `syz.9.8974'. [ 747.826235][T20722] loop6: detected capacity change from 0 to 40427 [ 747.901908][T20722] F2FS-fs (loop6): Found nat_bits in checkpoint [ 747.934144][T20756] af_packet: tpacket_rcv: packet too big, clamped from 108 to 4294967272. macoff=96 [ 748.071114][T20722] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 748.174685][ T28] kauditd_printk_skb: 42 callbacks suppressed [ 748.174701][ T28] audit: type=1400 audit(2000000030.372:1338): avc: denied { create } for pid=20721 comm="syz.6.8968" name="file1" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 748.203276][T20722] syz.6.8968: attempt to access beyond end of device [ 748.203276][T20722] loop6: rw=2049, sector=77824, nr_sectors = 136 limit=40427 [ 748.263538][ T28] audit: type=1400 audit(2000000030.402:1339): avc: denied { write open } for pid=20721 comm="syz.6.8968" path="/156/file0/file1" dev="loop6" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 748.294006][T18500] syz-executor: attempt to access beyond end of device [ 748.294006][T18500] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 748.364521][ T28] audit: type=1400 audit(2000000030.442:1340): avc: denied { ioctl } for pid=20721 comm="syz.6.8968" path="/156/file0/file1" dev="loop6" ino=10 ioctlcmd=0x5829 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 748.420631][ T28] audit: type=1400 audit(2000000030.552:1341): avc: denied { read write } for pid=20778 comm="syz.2.8994" name="raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 748.453784][T20768] loop5: detected capacity change from 0 to 40427 [ 748.474570][ T28] audit: type=1400 audit(2000000030.552:1342): avc: denied { open } for pid=20778 comm="syz.2.8994" path="/dev/raw-gadget" dev="devtmpfs" ino=258 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 748.503069][ T28] audit: type=1400 audit(2000000030.562:1343): avc: denied { ioctl } for pid=20778 comm="syz.2.8994" path="/dev/raw-gadget" dev="devtmpfs" ino=258 ioctlcmd=0x5500 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 748.534866][T20768] F2FS-fs (loop5): invalid crc value [ 748.559640][T20768] F2FS-fs (loop5): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 10241044815247771109) [ 748.625842][T20768] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 748.673299][T13540] syz-executor: attempt to access beyond end of device [ 748.673299][T13540] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 748.863172][ T28] audit: type=1400 audit(2000000031.052:1344): avc: denied { read write } for pid=20793 comm="syz.5.8998" name="event0" dev="devtmpfs" ino=260 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 748.917361][ T28] audit: type=1400 audit(2000000031.082:1345): avc: denied { open } for pid=20793 comm="syz.5.8998" path="/dev/input/event0" dev="devtmpfs" ino=260 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 748.972392][ T28] audit: type=1400 audit(2000000031.152:1346): avc: denied { ioctl } for pid=20793 comm="syz.5.8998" path="/dev/input/event0" dev="devtmpfs" ino=260 ioctlcmd=0x4591 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:event_device_t tclass=chr_file permissive=1 [ 749.020694][ T28] audit: type=1400 audit(2000000031.212:1347): avc: denied { module_request } for pid=20796 comm="syz.9.8999" kmod="tty-ldisc-14" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 749.777061][T20853] loop9: detected capacity change from 0 to 512 [ 749.816769][T20853] EXT4-fs (loop9): Test dummy encryption mode enabled [ 749.830369][T20853] EXT4-fs (loop9): encrypted files will use data=ordered instead of data journaling mode [ 749.846052][T20855] loop6: detected capacity change from 0 to 128 [ 749.865228][T20853] EXT4-fs error (device loop9): ext4_orphan_get:1426: comm syz.9.9021: bad orphan inode 131083 [ 749.883970][T20855] EXT4-fs: Ignoring removed nobh option [ 749.898781][T20853] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: none. [ 749.910098][T20855] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 749.928513][T20855] ext4 filesystem being mounted at /165/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 749.969344][T18500] EXT4-fs (loop6): unmounting filesystem. [ 750.121991][T20864] loop6: detected capacity change from 0 to 256 [ 750.134814][T20864] exfat: Deprecated parameter 'namecase' [ 750.140920][T20864] exfat: Deprecated parameter 'utf8' [ 750.149612][T20864] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x36dfe6b4, utbl_chksum : 0xe619d30d) [ 750.247771][ T1116] hid-generic F669:0002:0004.0066: hidraw0: HID v0.08 Device [syz1] on syz0 [ 750.298704][T20882] loop6: detected capacity change from 0 to 256 [ 750.313674][T20876] fido_id[20876]: Failed to open report descriptor at '/sys/devices/virtual/misc/uhid/report_descriptor': No such file or directory [ 750.378528][T20888] device sit0 entered promiscuous mode [ 750.389333][T20888] netlink: 'syz.6.9037': attribute type 1 has an invalid length. [ 750.404142][T20888] netlink: 1 bytes leftover after parsing attributes in process `syz.6.9037'. [ 750.489109][T20902] netem: incorrect ge model size [ 750.494107][T20902] netem: change failed [ 750.514873][T20904] netlink: 'syz.1.9045': attribute type 13 has an invalid length. [ 750.528755][T20904] gretap0: refused to change device tx_queue_len [ 750.535276][T20904] A link change request failed with some changes committed already. Interface gretap0 may have been left with an inconsistent configuration, please check. [ 750.611442][T20853] EXT4-fs (loop9): unmounting filesystem. [ 750.619239][T20915] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9050'. [ 750.628544][ T1654] usb 6-1: new high-speed USB device number 22 using dummy_hcd [ 750.675278][T20919] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 750.769878][T20908] loop6: detected capacity change from 0 to 40427 [ 750.805580][T20908] F2FS-fs (loop6): Found nat_bits in checkpoint [ 750.814449][ T1654] usb 6-1: Using ep0 maxpacket: 16 [ 750.829869][ T1654] usb 6-1: config 0 interface 0 has no altsetting 0 [ 750.848617][ T1654] usb 6-1: New USB device found, idVendor=056a, idProduct=0331, bcdDevice= 0.00 [ 750.872513][T20932] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 750.883730][T20917] loop9: detected capacity change from 0 to 40427 [ 750.886736][ T1654] usb 6-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 750.890912][T20908] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 750.915445][ T1654] usb 6-1: config 0 descriptor?? [ 750.917888][T20917] F2FS-fs (loop9): fault_injection options not supported [ 750.937958][T20917] F2FS-fs (loop9): fault_type options not supported [ 750.955346][T20917] F2FS-fs (loop9): invalid crc value [ 750.981764][T20917] F2FS-fs (loop9): Found nat_bits in checkpoint [ 750.988536][T18500] syz-executor: attempt to access beyond end of device [ 750.988536][T18500] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 751.037823][T20917] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 751.081055][T18666] syz-executor: attempt to access beyond end of device [ 751.081055][T18666] loop9: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 751.324095][ T1654] hid (null): unknown global tag 0xc [ 751.329589][ T1654] hid (null): report_id 0 is invalid [ 751.335036][ T1654] hid (null): global environment stack underflow [ 751.341516][ T1654] hid (null): invalid report_size 4243 [ 751.347293][ T1654] hid (null): unknown global tag 0xe [ 751.421769][T20952] loop6: detected capacity change from 0 to 512 [ 751.454319][T20952] FAT-fs (loop6): Invalid FSINFO signature: 0x41615252, 0x61000000 (sector = 1) [ 751.492292][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1492.tmp-b7:6' failed: Read-only file system [ 751.548345][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 751.570788][T12745] udevd[12745]: symlink '../../loop9' '/dev/disk/by-diskseq/1491.tmp-b7:9' failed: Read-only file system [ 751.573755][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1492.tmp-b7:6' failed: Read-only file system [ 751.590511][ T1654] usb 6-1: USB disconnect, device number 22 [ 751.600311][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1492.tmp-b7:6' failed: Read-only file system [ 751.624813][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1493.tmp-b7:6' failed: Read-only file system [ 751.662629][T12746] udevd[12746]: symlink '../../loop9' '/dev/disk/by-diskseq/1491.tmp-b7:9' failed: Read-only file system [ 751.699357][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1493.tmp-b7:6' failed: Read-only file system [ 751.735565][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1493.tmp-b7:6' failed: Read-only file system [ 751.747479][T20974] loop6: detected capacity change from 0 to 512 [ 751.754171][T20974] EXT4-fs: Ignoring removed oldalloc option [ 751.762257][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1491.tmp-b7:9' failed: Read-only file system [ 751.777794][T20974] EXT4-fs (loop6): encrypted files will use data=ordered instead of data journaling mode [ 751.800832][T20974] EXT4-fs (loop6): 1 truncate cleaned up [ 751.812656][T20974] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: writeback. [ 751.842518][T20980] tap0: tun_chr_ioctl cmd 2148553947 [ 751.859824][T18500] EXT4-fs (loop6): unmounting filesystem. [ 751.999293][T20996] loop9: detected capacity change from 0 to 256 [ 752.544292][T21033] loop6: detected capacity change from 0 to 256 [ 752.576217][T21033] exFAT-fs (loop6): failed to load upcase table (idx : 0x00010000, chksum : 0x23633d53, utbl_chksum : 0xe619d30d) [ 752.803739][T21050] loop6: detected capacity change from 0 to 1024 [ 752.858435][T21050] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 752.873688][T21050] ext4 filesystem being mounted at /198/file1 supports timestamps until 2038-01-19 (0x7fffffff) [ 752.953328][T18500] EXT4-fs (loop6): unmounting filesystem. [ 753.226938][ T28] kauditd_printk_skb: 44 callbacks suppressed [ 753.226955][ T28] audit: type=1400 audit(2000000035.422:1392): avc: denied { read write } for pid=21078 comm="syz.2.9118" name="vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 753.258163][ T28] audit: type=1400 audit(2000000035.422:1393): avc: denied { open } for pid=21078 comm="syz.2.9118" path="/dev/vhost-vsock" dev="devtmpfs" ino=268 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 753.289385][ T28] audit: type=1400 audit(2000000035.422:1394): avc: denied { ioctl } for pid=21078 comm="syz.2.9118" path="/dev/vhost-vsock" dev="devtmpfs" ino=268 ioctlcmd=0xaf00 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:vhost_device_t tclass=chr_file permissive=1 [ 753.350373][T21090] netlink: 8 bytes leftover after parsing attributes in process `syz.1.9123'. [ 753.449487][ T28] audit: type=1400 audit(2000000035.642:1395): avc: denied { write } for pid=21102 comm="syz.6.9129" name="urandom" dev="devtmpfs" ino=8 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:urandom_device_t tclass=chr_file permissive=1 [ 753.546197][ T28] audit: type=1400 audit(2000000035.742:1396): avc: denied { create } for pid=21114 comm="syz.2.9135" name="file0" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 753.580319][ T28] audit: type=1400 audit(2000000035.772:1397): avc: denied { read } for pid=21114 comm="syz.2.9135" name="file0" dev="tmpfs" ino=3265 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 753.613188][ T28] audit: type=1400 audit(2000000035.772:1398): avc: denied { open } for pid=21114 comm="syz.2.9135" path="/634/file0" dev="tmpfs" ino=3265 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 753.659850][ T28] audit: type=1400 audit(2000000035.772:1399): avc: denied { ioctl } for pid=21114 comm="syz.2.9135" path="/634/file0" dev="tmpfs" ino=3265 ioctlcmd=0x127c scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 753.711073][ T28] audit: type=1400 audit(2000000035.772:1400): avc: denied { unlink } for pid=12967 comm="syz-executor" name="file0" dev="tmpfs" ino=3265 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=blk_file permissive=1 [ 753.738756][ T28] audit: type=1400 audit(2000000035.802:1401): avc: denied { bind } for pid=21119 comm="syz.2.9137" lport=255 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 756.377495][T21180] loop5: detected capacity change from 0 to 512 [ 756.406099][T21180] EXT4-fs (loop5): encrypted files will use data=ordered instead of data journaling mode [ 756.486654][T21180] EXT4-fs (loop5): 1 truncate cleaned up [ 756.494668][T21180] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 756.510089][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1502.tmp-b7:5' failed: Read-only file system [ 756.532061][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 756.546129][T13540] EXT4-fs (loop5): unmounting filesystem. [ 756.547381][T12957] udevd[12957]: symlink '../../loop6' '/dev/disk/by-diskseq/1501.tmp-b7:6' failed: Read-only file system [ 756.578873][T12745] udevd[12745]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 756.630529][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:5' failed: Read-only file system [ 756.673222][T12957] udevd[12957]: symlink '../../loop9' '/dev/disk/by-diskseq/1497.tmp-b7:9' failed: Read-only file system [ 756.674361][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1502.tmp-b7:5' failed: Read-only file system [ 756.749877][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 756.755358][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1502.tmp-b7:5' failed: Read-only file system [ 757.069743][T12746] udevd[12746]: symlink '../../loop9' '/dev/disk/by-diskseq/1497.tmp-b7:9' failed: Read-only file system [ 757.184520][T13854] usb 6-1: new high-speed USB device number 23 using dummy_hcd [ 757.372030][T21245] loop9: detected capacity change from 0 to 4096 [ 757.374503][T13854] usb 6-1: Using ep0 maxpacket: 16 [ 757.393715][T13854] usb 6-1: config 1 has an invalid interface number: 214 but max is 0 [ 757.417120][T13854] usb 6-1: config 1 has no interface number 0 [ 757.428090][T21245] EXT4-fs (loop9): mounted filesystem without journal. Quota mode: writeback. [ 757.433405][T13854] usb 6-1: config 1 interface 214 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 757.447101][T13854] usb 6-1: config 1 interface 214 altsetting 2 bulk endpoint 0x81 has invalid maxpacket 64 [ 757.457602][T13854] usb 6-1: config 1 interface 214 has no altsetting 0 [ 757.466259][T13854] usb 6-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02 [ 757.475441][T13854] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 757.483471][T13854] usb 6-1: Product: syz [ 757.487917][T13854] usb 6-1: Manufacturer: syz [ 757.492810][T13854] usb 6-1: SerialNumber: syz [ 757.496343][T21245] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #15: comm syz.9.9191: corrupted inode contents [ 757.514966][T21226] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 757.524757][T21226] raw-gadget.0 gadget.5: fail, usb_ep_enable returned -22 [ 757.532747][T13854] ums-alauda 6-1:1.214: USB Mass Storage device detected [ 757.538969][T21245] EXT4-fs error (device loop9): ext4_dirty_inode:6121: inode #15: comm syz.9.9191: mark_inode_dirty error [ 757.571571][T21245] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #15: comm syz.9.9191: corrupted inode contents [ 757.586227][T13854] scsi host1: usb-storage 6-1:1.214 [ 757.633853][T21245] EXT4-fs error (device loop9): __ext4_ext_dirty:202: inode #15: comm syz.9.9191: mark_inode_dirty error [ 757.703149][T21245] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #15: comm syz.9.9191: corrupted inode contents [ 757.749872][T21263] device ip6gretap0 entered promiscuous mode [ 757.765009][T13854] usb 6-1: USB disconnect, device number 23 [ 757.784344][T21245] EXT4-fs error (device loop9): __ext4_ext_dirty:202: inode #15: comm syz.9.9191: mark_inode_dirty error [ 757.824535][T21245] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #15: comm syz.9.9191: corrupted inode contents [ 757.850400][T21245] EXT4-fs error (device loop9): ext4_truncate:4314: inode #15: comm syz.9.9191: mark_inode_dirty error [ 757.885517][T21245] EXT4-fs error (device loop9) in ext4_setattr:5660: Corrupt filesystem [ 757.914648][T21254] EXT4-fs error (device loop9): ext4_do_update_inode:5256: inode #15: comm syz.9.9191: corrupted inode contents [ 757.980230][T21272] netlink: 16 bytes leftover after parsing attributes in process `syz.6.9201'. [ 757.991477][T18666] EXT4-fs (loop9): unmounting filesystem. [ 758.011840][T21274] loop6: detected capacity change from 0 to 256 [ 758.220344][T21294] SELinux: failed to load policy [ 758.238306][T21300] loop6: detected capacity change from 0 to 512 [ 758.260342][T21300] EXT4-fs (loop6): feature flags set on rev 0 fs, running e2fsck is recommended [ 758.289527][T21300] EXT4-fs (loop6): mounting ext2 file system using the ext4 subsystem [ 758.310191][T21300] EXT4-fs (loop6): warning: mounting unchecked fs, running e2fsck is recommended [ 758.329937][T21300] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=a002e01c, mo2=0006] [ 758.341771][ T28] kauditd_printk_skb: 46 callbacks suppressed [ 758.341787][ T28] audit: type=1400 audit(2000000040.532:1448): avc: denied { read } for pid=21308 comm="syz.5.9218" dev="nsfs" ino=4026532317 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 758.344761][T21300] System zones: [ 758.348279][ T28] audit: type=1400 audit(2000000040.532:1449): avc: denied { open } for pid=21308 comm="syz.5.9218" path="net:[4026532317]" dev="nsfs" ino=4026532317 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:nsfs_t tclass=file permissive=1 [ 758.397841][ T28] audit: type=1400 audit(2000000040.582:1450): avc: denied { create } for pid=21308 comm="syz.5.9218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 758.418522][ T28] audit: type=1400 audit(2000000040.592:1451): avc: denied { write } for pid=21308 comm="syz.5.9218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 758.444524][T21300] 0-2, 18-18, 34-35 [ 758.449090][T21300] EXT4-fs (loop6): mounted filesystem without journal. Quota mode: none. [ 758.457898][ T28] audit: type=1400 audit(2000000040.592:1452): avc: denied { read } for pid=21308 comm="syz.5.9218" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 758.524536][ T28] audit: type=1400 audit(2000000040.712:1453): avc: denied { ioctl } for pid=21318 comm="syz.1.9222" path="socket:[94600]" dev="sockfs" ino=94600 ioctlcmd=0x8933 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 758.568869][T18500] EXT4-fs (loop6): unmounting filesystem. [ 758.585980][ T28] audit: type=1400 audit(2000000040.782:1454): avc: denied { create } for pid=21324 comm="syz.1.9225" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 758.612683][ T28] audit: type=1400 audit(2000000040.782:1455): avc: denied { ioctl } for pid=21324 comm="syz.1.9225" path="socket:[93666]" dev="sockfs" ino=93666 ioctlcmd=0x8946 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=packet_socket permissive=1 [ 758.638118][ T28] audit: type=1400 audit(2000000040.812:1456): avc: denied { read write } for pid=21328 comm="syz.6.9226" name="ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 758.661611][ T28] audit: type=1400 audit(2000000040.812:1457): avc: denied { open } for pid=21328 comm="syz.6.9226" path="/dev/ppp" dev="devtmpfs" ino=158 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:ppp_device_t tclass=chr_file permissive=1 [ 758.844801][T21346] netlink: 28 bytes leftover after parsing attributes in process `syz.6.9235'. [ 758.964558][ T1710] usb 2-1: new high-speed USB device number 25 using dummy_hcd [ 759.144495][ T1710] usb 2-1: Using ep0 maxpacket: 16 [ 759.150837][ T1710] usb 2-1: config 1 has an invalid interface number: 214 but max is 0 [ 759.170580][ T1710] usb 2-1: config 1 has no interface number 0 [ 759.177111][T21376] bridge0: port 1(bridge_slave_0) entered blocking state [ 759.184514][T21376] bridge0: port 1(bridge_slave_0) entered forwarding state [ 759.184822][ T1710] usb 2-1: config 1 interface 214 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 759.214600][ T1710] usb 2-1: config 1 interface 214 altsetting 2 bulk endpoint 0x81 has invalid maxpacket 64 [ 759.230428][ T1710] usb 2-1: config 1 interface 214 has no altsetting 0 [ 759.258774][ T1710] usb 2-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02 [ 759.268130][ T1710] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 759.277374][ T1710] usb 2-1: Product: syz [ 759.281670][ T1710] usb 2-1: Manufacturer: syz [ 759.286540][ T1710] usb 2-1: SerialNumber: syz [ 759.292575][T21332] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 759.304988][T21332] raw-gadget.1 gadget.1: fail, usb_ep_enable returned -22 [ 759.315168][ T1710] ums-alauda 2-1:1.214: USB Mass Storage device detected [ 759.331536][ T1710] scsi host1: usb-storage 2-1:1.214 [ 759.437326][T21398] loop6: detected capacity change from 0 to 16 [ 759.446996][T21398] erofs: (device loop6): mounted with root inode @ nid 36. [ 759.456297][T21398] erofs: (device loop6): erofs_readdir: invalid de[0].nameoff 0 @ nid 36 [ 759.521132][ T290] usb 2-1: USB disconnect, device number 25 [ 759.674500][T13854] usb 10-1: new high-speed USB device number 19 using dummy_hcd [ 759.855753][T13854] usb 10-1: config 0 has no interfaces? [ 759.861442][T13854] usb 10-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 759.870831][T13854] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 759.879837][T13854] usb 10-1: config 0 descriptor?? [ 760.090172][ T1710] usb 10-1: USB disconnect, device number 19 [ 760.604520][T16692] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 761.402387][T21443] loop5: detected capacity change from 0 to 1024 [ 761.417952][T21443] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 761.427285][T21445] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 761.438625][T13540] EXT4-fs (loop5): unmounting filesystem. [ 761.446675][T21445] bridge0: port 1(bridge_slave_0) entered blocking state [ 761.453804][T21445] bridge0: port 1(bridge_slave_0) entered forwarding state [ 761.481763][T21449] IPv6: ADDRCONF(NETDEV_CHANGE): vcan0: link becomes ready [ 761.499421][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_0: link becomes ready [ 761.508482][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready [ 761.517789][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): bond_slave_1: link becomes ready [ 761.526267][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready [ 761.534908][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready [ 761.543318][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready [ 761.556639][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1513.tmp-b7:5' failed: Read-only file system [ 761.560993][T21453] loop5: detected capacity change from 0 to 128 [ 761.575464][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready [ 761.582672][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1514.tmp-b7:5' failed: Read-only file system [ 761.593392][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 761.607672][T21453] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 761.611617][T21445] syz.2.9278 (21445) used greatest stack depth: 20832 bytes left [ 761.616685][T21453] ext4 filesystem being mounted at /796/file0 supports timestamps until 2038-01-19 (0x7fffffff) [ 761.626884][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-uuid/76b65be2-f6da-4727-8c75-0525a5b65a09.tmp-b7:5' failed: Read-only file system [ 761.649543][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready [ 761.649594][T13540] EXT4-fs (loop5): unmounting filesystem. [ 761.657646][ T19] usb 2-1: new high-speed USB device number 26 using dummy_hcd [ 761.668119][ T334] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 761.671160][ T1710] usb 10-1: new high-speed USB device number 20 using dummy_hcd [ 761.697800][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1514.tmp-b7:5' failed: Read-only file system [ 761.725508][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 761.752127][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1514.tmp-b7:5' failed: Read-only file system [ 761.767378][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1515.tmp-b7:5' failed: Read-only file system [ 761.843969][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 761.864615][ T1710] usb 10-1: Using ep0 maxpacket: 16 [ 761.871313][ T19] usb 2-1: config 0 has no interfaces? [ 761.877122][ T1710] usb 10-1: config 1 has an invalid interface number: 214 but max is 0 [ 761.886157][ T19] usb 2-1: New USB device found, idVendor=9710, idProduct=7730, bcdDevice=96.33 [ 761.895538][ T1710] usb 10-1: config 1 has no interface number 0 [ 761.901878][ T19] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 761.910219][ T1710] usb 10-1: config 1 interface 214 altsetting 2 bulk endpoint 0x4 has invalid maxpacket 16 [ 761.924252][ T19] usb 2-1: config 0 descriptor?? [ 761.929811][ T1710] usb 10-1: config 1 interface 214 altsetting 2 bulk endpoint 0x81 has invalid maxpacket 64 [ 761.938693][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 761.941582][ T1710] usb 10-1: config 1 interface 214 has no altsetting 0 [ 762.023634][ T1710] usb 10-1: New USB device found, idVendor=07b4, idProduct=010a, bcdDevice= 1.02 [ 762.036172][ T1710] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 762.044494][ T1710] usb 10-1: Product: syz [ 762.048884][ T1710] usb 10-1: Manufacturer: syz [ 762.053698][ T1710] usb 10-1: SerialNumber: syz [ 762.060221][T21439] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22 [ 762.077156][T21439] raw-gadget.1 gadget.9: fail, usb_ep_enable returned -22 [ 762.086230][ T1710] ums-alauda 10-1:1.214: USB Mass Storage device detected [ 762.095841][ T1710] scsi host1: usb-storage 10-1:1.214 [ 762.096395][T21469] loop5: detected capacity change from 0 to 2048 [ 762.126172][T21469] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 762.152263][ T43] EXT4-fs error (device loop5): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4128793 free clusters [ 762.206257][ T43] EXT4-fs (loop5): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 1 with error 28 [ 762.228482][ T43] EXT4-fs (loop5): This should not happen!! Data will be lost [ 762.228482][ T43] [ 762.247444][ T43] EXT4-fs (loop5): Total free blocks count 0 [ 762.265542][ T43] EXT4-fs (loop5): Free/Dirty block details [ 762.271543][ T43] EXT4-fs (loop5): free_blocks=66060288 [ 762.280085][ T43] EXT4-fs (loop5): dirty_blocks=16 [ 762.285821][ T43] EXT4-fs (loop5): Block reservation details [ 762.292006][ T43] EXT4-fs (loop5): i_reserved_data_blocks=1 [ 762.305223][T13540] EXT4-fs (loop5): unmounting filesystem. [ 762.341264][ T1710] usb 10-1: USB disconnect, device number 20 [ 762.364800][T13854] usb 2-1: USB disconnect, device number 26 [ 762.634482][ T290] usb 6-1: new high-speed USB device number 24 using dummy_hcd [ 762.657325][T21499] loop6: detected capacity change from 0 to 40427 [ 762.664565][T21499] F2FS-fs (loop6): heap/no_heap options were deprecated [ 762.671645][T21499] F2FS-fs (loop6): fault_injection options not supported [ 762.678878][T21499] F2FS-fs (loop6): fault_type options not supported [ 762.686695][T21499] F2FS-fs (loop6): invalid crc value [ 762.701160][T21499] F2FS-fs (loop6): Found nat_bits in checkpoint [ 762.731021][T21499] F2FS-fs (loop6): Mounted with checkpoint version = 48b305e5 [ 762.766750][T18500] syz-executor: attempt to access beyond end of device [ 762.766750][T18500] loop6: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 762.835830][ T290] usb 6-1: config 220 has an invalid interface number: 76 but max is 2 [ 762.844216][ T290] usb 6-1: config 220 contains an unexpected descriptor of type 0x2, skipping [ 762.853634][ T290] usb 6-1: config 220 has an invalid descriptor of length 0, skipping remainder of the config [ 762.854550][ T19] usb 2-1: new high-speed USB device number 27 using dummy_hcd [ 762.864851][ T290] usb 6-1: config 220 has no interface number 2 [ 762.889108][T21516] xt_hashlimit: max too large, truncated to 1048576 [ 762.896381][ T290] usb 6-1: config 220 interface 1 altsetting 5 has 0 endpoint descriptors, different from the interface descriptor's value: 12 [ 762.914615][ T290] usb 6-1: config 220 interface 0 has no altsetting 0 [ 762.923594][ T290] usb 6-1: config 220 interface 76 has no altsetting 0 [ 762.930926][ T290] usb 6-1: config 220 interface 1 has no altsetting 0 [ 762.950699][ T290] usb 6-1: New USB device found, idVendor=8086, idProduct=0b07, bcdDevice=6c.b9 [ 762.960185][ T290] usb 6-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 762.974789][ T290] usb 6-1: Product: syz [ 762.979038][ T290] usb 6-1: Manufacturer: syz [ 762.989488][ T290] usb 6-1: SerialNumber: syz [ 763.065639][ T19] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 763.074728][ T19] usb 2-1: config 1 has an invalid descriptor of length 32, skipping remainder of the config [ 763.085265][ T19] usb 2-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 763.094279][ T19] usb 2-1: config 1 has no interface number 1 [ 763.100522][ T19] usb 2-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 763.114942][ T19] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 763.124105][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 763.132304][ T19] usb 2-1: Product: syz [ 763.136597][ T19] usb 2-1: Manufacturer: syz [ 763.141211][ T19] usb 2-1: SerialNumber: syz [ 763.215042][ T290] usb 6-1: Found UVC 7.01 device syz (8086:0b07) [ 763.221497][ T290] usb 6-1: No valid video chain found. [ 763.227102][ T290] usb 6-1: selecting invalid altsetting 0 [ 763.240052][ T290] usb 6-1: USB disconnect, device number 24 [ 763.354513][ T19] usb 2-1: USB disconnect, device number 27 [ 763.841012][T21543] loop5: detected capacity change from 0 to 40427 [ 763.849885][T21543] F2FS-fs (loop5): heap/no_heap options were deprecated [ 763.872294][T21543] F2FS-fs (loop5): fault_injection options not supported [ 763.879836][T21543] F2FS-fs (loop5): fault_type options not supported [ 763.897118][T21543] F2FS-fs (loop5): invalid crc value [ 763.904875][T21543] F2FS-fs (loop5): Found nat_bits in checkpoint [ 763.967637][T21543] F2FS-fs (loop5): Mounted with checkpoint version = 48b305e5 [ 763.999366][ T28] kauditd_printk_skb: 76 callbacks suppressed [ 763.999383][ T28] audit: type=1400 audit(2000000046.192:1534): avc: denied { read write } for pid=21559 comm="syz.1.9324" name="fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 764.030170][ T28] audit: type=1400 audit(2000000046.212:1535): avc: denied { open } for pid=21559 comm="syz.1.9324" path="/dev/fuse" dev="devtmpfs" ino=93 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fuse_device_t tclass=chr_file permissive=1 [ 764.036257][T13540] syz-executor: attempt to access beyond end of device [ 764.036257][T13540] loop5: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 764.054243][ T28] audit: type=1400 audit(2000000046.222:1536): avc: denied { mount } for pid=21559 comm="syz.1.9324" name="/" dev="fuse" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 764.089688][ T28] audit: type=1400 audit(2000000046.222:1537): avc: denied { remount } for pid=21559 comm="syz.1.9324" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 764.114729][ T28] audit: type=1400 audit(2000000046.232:1538): avc: denied { unmount } for pid=12761 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 764.229241][T21572] loop9: detected capacity change from 0 to 256 [ 764.250003][T21572] FAT-fs (loop9): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 764.262862][ T28] audit: type=1400 audit(2000000046.452:1539): avc: denied { mount } for pid=21571 comm="syz.9.9331" name="/" dev="loop9" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 764.303425][T21579] loop5: detected capacity change from 0 to 512 [ 764.306154][ T28] audit: type=1400 audit(2000000046.492:1540): avc: denied { unmount } for pid=18666 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [ 764.321144][T21579] EXT4-fs: Ignoring removed nobh option [ 764.345408][T21579] EXT4-fs (loop5): Cannot turn on journaled quota: type 0: error -2 [ 764.355392][T21579] EXT4-fs error (device loop5): ext4_free_branches:1030: inode #13: comm syz.5.9325: invalid indirect mapped block 2683928664 (level 1) [ 764.369910][T21579] EXT4-fs (loop5): 1 truncate cleaned up [ 764.375647][T21579] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: writeback. [ 764.397068][T13540] EXT4-fs (loop5): unmounting filesystem. [ 764.398706][ T28] audit: type=1400 audit(2000000046.592:1541): avc: denied { read write } for pid=21583 comm="syz.1.9345" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 764.429344][ T28] audit: type=1400 audit(2000000046.592:1542): avc: denied { open } for pid=21583 comm="syz.1.9345" path="/dev/vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 764.614521][ T1667] usb 10-1: new high-speed USB device number 21 using dummy_hcd [ 764.795775][ T1667] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 764.807253][ T1667] usb 10-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 764.817231][ T1667] usb 10-1: New USB device found, idVendor=2006, idProduct=0118, bcdDevice= 0.00 [ 764.826500][ T1667] usb 10-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 764.835426][ T1667] usb 10-1: config 0 descriptor?? [ 764.841556][ T1667] usbhid 10-1:0.0: can't add hid device: -22 [ 764.848061][ T1667] usbhid: probe of 10-1:0.0 failed with error -22 [ 765.042990][ T290] usb 10-1: USB disconnect, device number 21 [ 765.577221][T21593] kvm [21591]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled rdmsr: 0x40000018 [ 765.645253][T21600] caif0: tun_chr_ioctl cmd 2147767511 [ 765.724552][T21595] loop9: detected capacity change from 0 to 40427 [ 765.743721][T21595] F2FS-fs (loop9): heap/no_heap options were deprecated [ 765.752294][T21595] F2FS-fs (loop9): fault_injection options not supported [ 765.763596][T21595] F2FS-fs (loop9): fault_type options not supported [ 765.774018][T21609] netlink: 4 bytes leftover after parsing attributes in process `syz.1.9346'. [ 765.782456][T21595] F2FS-fs (loop9): invalid crc value [ 765.783637][T21611] syz.2.9347[21611] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 765.788329][T21611] syz.2.9347[21611] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 765.816216][T21595] F2FS-fs (loop9): Found nat_bits in checkpoint [ 765.899836][T21626] netlink: 'syz.2.9353': attribute type 5 has an invalid length. [ 765.909034][T21626] netlink: 24 bytes leftover after parsing attributes in process `syz.2.9353'. [ 765.922945][T21595] F2FS-fs (loop9): Mounted with checkpoint version = 48b305e5 [ 765.965614][T18666] syz-executor: attempt to access beyond end of device [ 765.965614][T18666] loop9: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 766.256413][ T28] audit: type=1400 audit(2000000048.452:1543): avc: denied { create } for pid=21648 comm="syz.2.9362" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=ieee802154_socket permissive=1 [ 766.272977][T21651] netlink: 24 bytes leftover after parsing attributes in process `syz.2.9363'. [ 766.384472][ T1710] usb 10-1: new full-speed USB device number 22 using dummy_hcd [ 766.572554][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 766.592803][ T1710] usb 10-1: unable to get BOS descriptor or descriptor too short [ 766.604720][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1525.tmp-b7:5' failed: Read-only file system [ 766.624971][ T1710] usb 10-1: not running at top speed; connect to a high speed hub [ 766.640980][ T1710] usb 10-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 766.661469][ T1710] usb 10-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 766.681141][ T1710] usb 10-1: config 1 has no interface number 1 [ 766.694631][ T1710] usb 10-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 766.717799][ T1710] usb 10-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 4 [ 766.747471][ T1710] usb 10-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 766.756947][ T1710] usb 10-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 766.765480][ T1710] usb 10-1: Product: syz [ 766.769870][ T1710] usb 10-1: Manufacturer: syz [ 766.774934][ T1710] usb 10-1: SerialNumber: syz [ 766.795993][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1519.tmp-b7:6' failed: Read-only file system [ 766.804755][T21671] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 766.811658][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1525.tmp-b7:5' failed: Read-only file system [ 766.832510][T12745] udevd[12745]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 766.844865][ C0] EXT4-fs (loop2): error count since last fsck: 3 [ 766.851366][ C0] EXT4-fs (loop2): last error at time 1758043765: ext4_lookup:1862: inode 2 [ 766.883994][ T1654] kernel write not supported for file /1695/net/sockstat6 (pid: 1654 comm: kworker/1:6) [ 766.900853][T12746] udevd[12746]: symlink '../../loop6' '/dev/disk/by-diskseq/1519.tmp-b7:6' failed: Read-only file system [ 766.918566][T12957] udevd[12957]: symlink '../../loop5' '/dev/disk/by-diskseq/1525.tmp-b7:5' failed: Read-only file system [ 766.956707][T12746] udevd[12746]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 766.981213][T12957] udevd[12957]: symlink '../../loop2' '/dev/disk/by-label/syzkaller.tmp-b7:2' failed: Read-only file system [ 766.994283][ T1710] hub 10-1:1.0: Invalid hub with more than one config or interface [ 767.014579][ T1710] hub: probe of 10-1:1.0 failed with error -22 [ 767.017100][T12746] udevd[12746]: symlink '../../loop5' '/dev/disk/by-diskseq/1525.tmp-b7:5' failed: Read-only file system [ 767.023478][ T1710] usb 10-1: 2:1 : no or invalid class specific endpoint descriptor [ 767.040665][T21689] netlink: 4 bytes leftover after parsing attributes in process `syz.2.9380'. [ 767.063244][ T1710] usb 10-1: USB disconnect, device number 22 [ 767.244362][T21719] loop5: detected capacity change from 0 to 128 [ 767.266555][T21719] EXT4-fs (loop5): mounted filesystem without journal. Quota mode: none. [ 767.276114][T21719] ext4 filesystem being mounted at /816/mnt supports timestamps until 2038-01-19 (0x7fffffff) [ 767.288917][T21719] fscrypt (loop5, inode 12): Mutually exclusive encryption flags (0x0c) [ 767.305530][T13540] EXT4-fs (loop5): unmounting filesystem. [ 767.566665][T21761] overlayfs: failed to resolve './file0': -2 [ 767.682236][T21785] netlink: 165 bytes leftover after parsing attributes in process `syz.6.9422'. [ 767.725175][T18500] ------------[ cut here ]------------ [ 767.730699][T18500] WARNING: CPU: 0 PID: 18500 at fs/inode.c:332 drop_nlink+0xc5/0x110 [ 767.739199][T18500] Modules linked in: [ 767.743188][T18500] CPU: 0 PID: 18500 Comm: syz-executor Not tainted syzkaller #0 [ 767.751062][T18500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 767.761230][T18500] RIP: 0010:drop_nlink+0xc5/0x110 [ 767.766512][T18500] Code: 1b 48 8d bb b8 04 00 00 be 08 00 00 00 e8 03 ea f0 ff f0 48 ff 83 b8 04 00 00 5b 41 5c 41 5d 41 5e 41 5f 5d c3 e8 5b 81 ac ff <0f> 0b eb 86 44 89 f1 80 e1 07 80 c1 03 38 c1 0f 8c 5e ff ff ff 4c [ 767.786594][T18500] RSP: 0018:ffffc900007afc38 EFLAGS: 00010293 [ 767.792760][T18500] RAX: ffffffff81c38805 RBX: ffff888116248448 RCX: ffff88812cee5100 [ 767.800808][T18500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 767.808949][T18500] RBP: ffffc900007afc60 R08: 0000000000000004 R09: 0000000000000003 [ 767.817098][T18500] R10: fffff520000f5f78 R11: 1ffff920000f5f78 R12: dffffc0000000000 [ 767.825153][T18500] R13: 1ffff11022c49092 R14: ffff888116248490 R15: 0000000000000000 [ 767.833163][T18500] FS: 000055555d76a500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 767.842187][T18500] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 767.848851][T18500] CR2: 000055555d78d4e8 CR3: 0000000103589000 CR4: 00000000003506b0 [ 767.856971][T18500] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 767.864982][T18500] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 767.873343][T18500] Call Trace: [ 767.876760][T18500] [ 767.879794][T18500] shmem_rmdir+0x5b/0x90 [ 767.884308][T18500] vfs_rmdir+0x393/0x500 [ 767.888753][T18500] incfs_kill_sb+0x105/0x220 [ 767.893528][T18500] deactivate_locked_super+0xb5/0x120 [ 767.899178][T18500] deactivate_super+0xaf/0xe0 [ 767.903903][T18500] cleanup_mnt+0x45f/0x4e0 [ 767.909011][T18500] __cleanup_mnt+0x19/0x20 [ 767.913477][T18500] task_work_run+0x1db/0x240 [ 767.918235][T18500] ? __cfi_task_work_run+0x10/0x10 [ 767.923386][T18500] ? __x64_sys_umount+0x125/0x160 [ 767.928471][T18500] ? __cfi___x64_sys_umount+0x10/0x10 [ 767.933973][T18500] exit_to_user_mode_loop+0x9b/0xb0 [ 767.939464][T18500] exit_to_user_mode_prepare+0x5a/0xa0 [ 767.944996][T18500] syscall_exit_to_user_mode+0x1a/0x30 [ 767.951211][T18500] do_syscall_64+0x58/0xa0 [ 767.955978][T18500] ? clear_bhb_loop+0x30/0x80 [ 767.960816][T18500] ? clear_bhb_loop+0x30/0x80 [ 767.965793][T18500] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 767.971884][T18500] RIP: 0033:0x7f096818fed7 [ 767.976511][T18500] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 767.996203][T18500] RSP: 002b:00007ffdd3dff4b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 768.004976][T18500] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f096818fed7 [ 768.013236][T18500] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdd3dff570 [ 768.021349][T18500] RBP: 00007ffdd3dff570 R08: 0000000000000000 R09: 0000000000000000 [ 768.029391][T18500] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdd3e00600 [ 768.037623][T18500] R13: 00007f0968211c05 R14: 00000000000bb6d6 R15: 00007ffdd3e00640 [ 768.045662][T18500] [ 768.048707][T18500] ---[ end trace 0000000000000000 ]--- [ 768.054693][T18500] ================================================================== [ 768.063164][T18500] BUG: KASAN: null-ptr-deref in ihold+0x20/0x60 [ 768.069539][T18500] Write of size 4 at addr 0000000000000170 by task syz-executor/18500 [ 768.077784][T18500] [ 768.080200][T18500] CPU: 1 PID: 18500 Comm: syz-executor Tainted: G W syzkaller #0 [ 768.089410][T18500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 768.099564][T18500] Call Trace: [ 768.102890][T18500] [ 768.105867][T18500] __dump_stack+0x21/0x24 [ 768.110293][T18500] dump_stack_lvl+0xee/0x150 [ 768.114989][T18500] ? __cfi_dump_stack_lvl+0x8/0x8 [ 768.120040][T18500] ? ihold+0x20/0x60 [ 768.123957][T18500] ? ihold+0x20/0x60 [ 768.127952][T18500] print_report+0x3d/0x60 [ 768.132370][T18500] kasan_report+0x122/0x150 [ 768.136942][T18500] ? ihold+0x20/0x60 [ 768.140861][T18500] kasan_check_range+0x280/0x290 [ 768.145817][T18500] __kasan_check_write+0x14/0x20 [ 768.151003][T18500] ihold+0x20/0x60 [ 768.154870][T18500] vfs_rmdir+0x25f/0x500 [ 768.159624][T18500] incfs_kill_sb+0x105/0x220 [ 768.164337][T18500] deactivate_locked_super+0xb5/0x120 [ 768.169928][T18500] deactivate_super+0xaf/0xe0 [ 768.174716][T18500] cleanup_mnt+0x45f/0x4e0 [ 768.179202][T18500] __cleanup_mnt+0x19/0x20 [ 768.183656][T18500] task_work_run+0x1db/0x240 [ 768.188266][T18500] ? __cfi_task_work_run+0x10/0x10 [ 768.193416][T18500] ? __x64_sys_umount+0x125/0x160 [ 768.198650][T18500] ? __cfi___x64_sys_umount+0x10/0x10 [ 768.204563][T18500] exit_to_user_mode_loop+0x9b/0xb0 [ 768.209861][T18500] exit_to_user_mode_prepare+0x5a/0xa0 [ 768.215332][T18500] syscall_exit_to_user_mode+0x1a/0x30 [ 768.220810][T18500] do_syscall_64+0x58/0xa0 [ 768.225257][T18500] ? clear_bhb_loop+0x30/0x80 [ 768.229943][T18500] ? clear_bhb_loop+0x30/0x80 [ 768.234652][T18500] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 768.240557][T18500] RIP: 0033:0x7f096818fed7 [ 768.245007][T18500] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 768.264889][T18500] RSP: 002b:00007ffdd3dff4b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 768.273494][T18500] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f096818fed7 [ 768.281484][T18500] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdd3dff570 [ 768.289475][T18500] RBP: 00007ffdd3dff570 R08: 0000000000000000 R09: 0000000000000000 [ 768.297546][T18500] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdd3e00600 [ 768.305525][T18500] R13: 00007f0968211c05 R14: 00000000000bb6d6 R15: 00007ffdd3e00640 [ 768.313733][T18500] [ 768.316767][T18500] ================================================================== [ 768.327191][T18500] Disabling lock debugging due to kernel taint [ 768.333434][T18500] BUG: kernel NULL pointer dereference, address: 0000000000000170 [ 768.341260][T18500] #PF: supervisor write access in kernel mode [ 768.347352][T18500] #PF: error_code(0x0002) - not-present page [ 768.353456][T18500] PGD 12eeb3067 P4D 12eeb3067 PUD 0 [ 768.358771][T18500] Oops: 0002 [#1] PREEMPT SMP KASAN [ 768.364154][T18500] CPU: 0 PID: 18500 Comm: syz-executor Tainted: G B W syzkaller #0 [ 768.373356][T18500] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025 [ 768.383426][T18500] RIP: 0010:ihold+0x26/0x60 [ 768.387987][T18500] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 c1 78 ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 40 e1 f0 ff 41 be 01 00 00 00 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 b1 [ 768.408944][T18500] RSP: 0018:ffffc900007afc78 EFLAGS: 00010246 [ 768.415073][T18500] RAX: ffff88812cee5100 RBX: 0000000000000000 RCX: ffff88812cee5100 [ 768.423229][T18500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 768.431206][T18500] RBP: ffffc900007afc88 R08: dffffc0000000000 R09: fffffbfff0f2d6fd [ 768.439273][T18500] R10: fffffbfff0f2d6fd R11: 1ffffffff0f2d6fc R12: ffff888116248454 [ 768.448490][T18500] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000 [ 768.457117][T18500] FS: 000055555d76a500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 768.466426][T18500] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 768.473043][T18500] CR2: 0000000000000170 CR3: 0000000103589000 CR4: 00000000003506b0 [ 768.481311][T18500] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 768.489394][T18500] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 768.497684][T18500] Call Trace: [ 768.501253][T18500] [ 768.504825][T18500] vfs_rmdir+0x25f/0x500 [ 768.509108][T18500] incfs_kill_sb+0x105/0x220 [ 768.513947][T18500] deactivate_locked_super+0xb5/0x120 [ 768.519655][T18500] deactivate_super+0xaf/0xe0 [ 768.524373][T18500] cleanup_mnt+0x45f/0x4e0 [ 768.528835][T18500] __cleanup_mnt+0x19/0x20 [ 768.533266][T18500] task_work_run+0x1db/0x240 [ 768.537867][T18500] ? __cfi_task_work_run+0x10/0x10 [ 768.543041][T18500] ? __x64_sys_umount+0x125/0x160 [ 768.548112][T18500] ? __cfi___x64_sys_umount+0x10/0x10 [ 768.553778][T18500] exit_to_user_mode_loop+0x9b/0xb0 [ 768.558997][T18500] exit_to_user_mode_prepare+0x5a/0xa0 [ 768.564553][T18500] syscall_exit_to_user_mode+0x1a/0x30 [ 768.570027][T18500] do_syscall_64+0x58/0xa0 [ 768.574453][T18500] ? clear_bhb_loop+0x30/0x80 [ 768.579444][T18500] ? clear_bhb_loop+0x30/0x80 [ 768.584247][T18500] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 768.590327][T18500] RIP: 0033:0x7f096818fed7 [ 768.594755][T18500] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 768.614380][T18500] RSP: 002b:00007ffdd3dff4b8 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 768.622814][T18500] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f096818fed7 [ 768.630812][T18500] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffdd3dff570 [ 768.638806][T18500] RBP: 00007ffdd3dff570 R08: 0000000000000000 R09: 0000000000000000 [ 768.646809][T18500] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffdd3e00600 [ 768.654796][T18500] R13: 00007f0968211c05 R14: 00000000000bb6d6 R15: 00007ffdd3e00640 [ 768.662786][T18500] [ 768.665824][T18500] Modules linked in: [ 768.669841][T18500] CR2: 0000000000000170 [ 768.673990][T18500] ---[ end trace 0000000000000000 ]--- [ 768.679629][T18500] RIP: 0010:ihold+0x26/0x60 [ 768.684168][T18500] Code: 33 36 7c df 55 48 89 e5 41 56 53 48 89 fb e8 c1 78 ac ff 48 8d bb 70 01 00 00 be 04 00 00 00 e8 40 e1 f0 ff 41 be 01 00 00 00 44 0f c1 b3 70 01 00 00 41 ff c6 bf 02 00 00 00 44 89 f6 e8 b1 [ 768.703893][T18500] RSP: 0018:ffffc900007afc78 EFLAGS: 00010246 [ 768.709982][T18500] RAX: ffff88812cee5100 RBX: 0000000000000000 RCX: ffff88812cee5100 [ 768.717973][T18500] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000 [ 768.726054][T18500] RBP: ffffc900007afc88 R08: dffffc0000000000 R09: fffffbfff0f2d6fd [ 768.734053][T18500] R10: fffffbfff0f2d6fd R11: 1ffffffff0f2d6fc R12: ffff888116248454 [ 768.742129][T18500] R13: dffffc0000000000 R14: 0000000000000001 R15: 0000000000000000 [ 768.750137][T18500] FS: 000055555d76a500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 768.759078][T18500] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 768.765678][T18500] CR2: 0000000000000170 CR3: 0000000103589000 CR4: 00000000003506b0 [ 768.773683][T18500] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 768.781676][T18500] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 768.790350][T18500] Kernel panic - not syncing: Fatal exception [ 768.796711][T18500] Kernel Offset: disabled [ 768.801298][T18500] Rebooting in 86400 seconds..