last executing test programs: 1.681932515s ago: executing program 0 (id=2432): r0 = socket$inet6_tcp(0xa, 0x1, 0x0) bind$inet6(r0, &(0x7f0000000100)={0xa, 0x4e22}, 0x1c) listen(r0, 0x2) syz_emit_ethernet(0x66, &(0x7f0000000140)={@local, @empty, @void, {@ipv6={0x86dd, @tcp={0x0, 0x6, "0200", 0x30, 0x6, 0x0, @remote, @local, {[], {{0x0, 0x4e22, 0x41424344, 0x41424344, 0x0, 0x0, 0xc, 0x2, 0x0, 0x0, 0x0, {[@generic={0xfe, 0x3, "9c"}, @exp_fastopen={0xfe, 0x4}, @window={0x3, 0x3, 0x8}, @nop, @nop, @fastopen={0x22, 0xc, "704c4dac133095550ba4"}, @sack_perm={0x4, 0x2}]}}}}}}}}, 0x0) 1.667206727s ago: executing program 0 (id=2434): r0 = syz_open_dev$usbfs(&(0x7f0000000100), 0x75, 0x1a1281) ioctl$USBDEVFS_FREE_STREAMS(r0, 0x802c550a, &(0x7f0000000000)=ANY=[@ANYBLOB="02002303100007006000000002000020d3"]) syz_clone3(&(0x7f0000001280)={0x20000000, 0x0, 0x0, 0x0, {0x1c}, 0x0, 0x0, &(0x7f0000000240)=""/4096, &(0x7f0000001240)=[0x0], 0x1}, 0x58) ioctl$AUTOFS_IOC_FAIL(r0, 0x4004550c, 0x100000000000000) 1.613866312s ago: executing program 0 (id=2441): r0 = bpf$MAP_CREATE_CONST_STR(0x0, &(0x7f0000000340)={0x2, 0x4, 0x8, 0x1, 0x80, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_MAP_CONST_STR_FREEZE(0x16, &(0x7f0000000000)={r0}, 0x4) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x3, 0x11, &(0x7f00000003c0)=@framed={{}, [@call={0x85, 0x0, 0x0, 0x22}, @snprintf={{}, {}, {}, {}, {}, {}, {}, {}, {}, {0x18, 0x3, 0x2, 0x0, r0}}]}, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000080)={r1, 0x18000000000002a0, 0x36, 0x0, &(0x7f0000000640)="361703076003008cb89e08f086dde69d4c6b00da16d7ffe0b35e7cc9ced9c4fa3f6dbbbbdccf25da958cb5ae914eab2ef7614183f12f", 0x0, 0x3, 0x60000000, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.585660635s ago: executing program 0 (id=2454): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x1, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000001000000850000000f00000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000600)={&(0x7f00000005c0)='sys_enter\x00', r1}, 0x10) setgroups(0x0, 0x0) 1.515520571s ago: executing program 0 (id=2459): r0 = creat(&(0x7f0000000200)='./bus\x00', 0x0) fcntl$lock(r0, 0x26, &(0x7f0000000180)={0x1, 0x0, 0x0, 0x100}) r1 = creat(&(0x7f0000000200)='./bus\x00', 0x0) fcntl$lock(r1, 0x5, &(0x7f00000000c0)={0x0, 0x0, 0x7, 0xfffffffffffffffe}) 1.477005635s ago: executing program 0 (id=2463): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000040)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x94, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x2, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x7}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) openat2(0xffffffffffffff9c, 0x0, 0x0, 0x0) syz_usb_control_io$hid(r0, &(0x7f0000000b40)={0x24, 0x0, 0x0, &(0x7f00000004c0)=ANY=[@ANYBLOB='\x00\"\a'], 0x0}, 0x0) 428.019871ms ago: executing program 1 (id=2503): socket$inet6_icmp_raw(0xa, 0x3, 0x3a) r0 = socket$inet6(0xa, 0x3, 0x8000000003c) setsockopt$IP6T_SO_SET_REPLACE(r0, 0x29, 0x40, &(0x7f00000014c0)=@raw={'raw\x00', 0x8, 0x3, 0x528, 0x0, 0xffffffff, 0xffffffff, 0xd0, 0xffffffff, 0x458, 0xffffffff, 0xffffffff, 0x458, 0xffffffff, 0x3, 0x0, {[{{@ipv6={@private0, @mcast2, [], [], 'veth0_macvtap\x00', 'dvmrp1\x00'}, 0x0, 0xa8, 0xd0}, @common=@unspec=@NFQUEUE0={0x28}}, {{@ipv6={@empty, @ipv4={'\x00', '\xff\xff', @dev}, [], [], 'wg1\x00', 'gre0\x00', {}, {}, 0x62}, 0x0, 0x358, 0x388, 0x0, {}, [@common=@inet=@hashlimit3={{0x158}, {'veth0_to_hsr\x00', {0x4, 0x8, 0x20, 0x5e1b2d47, 0xf91, 0x5, 0x4, 0x9f7, 0x18}, {0x8}}}, @common=@inet=@hashlimit3={{0x158}, {'wg1\x00', {0x3, 0x0, 0x41, 0x0, 0x0, 0x1000, 0x6, 0x3}}}]}, @common=@unspec=@CONNMARK={0x30}}], {{'\x00', 0x0, 0xa8, 0xd0}, {0x28, '\x00', 0x7}}}}, 0x588) syz_emit_ethernet(0x46, &(0x7f0000000680)={@local, @remote, @void, {@ipv6={0x86dd, @icmpv6={0x4, 0x6, "8410dc", 0x10, 0x3a, 0xff, @private0, @local, {[@dstopts={0x2b}], @mlv2_report={0x8f, 0x0, 0x0, 0xfffd}}}}}}, 0x0) 406.057233ms ago: executing program 4 (id=2504): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007300000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000300)={&(0x7f00000002c0)='mm_page_alloc\x00', r0}, 0x10) r1 = syz_open_dev$usbmon(&(0x7f000000cec0), 0x0, 0x0) ioctl$MON_IOCT_RING_SIZE(r1, 0x9204, 0x4ade0) 385.928395ms ago: executing program 4 (id=2505): r0 = timerfd_create(0x8, 0x0) timerfd_settime(r0, 0x3, &(0x7f00000000c0)={{0x0, 0x989680}, {0x77359400}}, 0x0) clock_settime(0x0, &(0x7f0000003c80)={0x77359400}) timerfd_settime(r0, 0x3, &(0x7f0000000000)={{}, {0x77359400}}, 0x0) 300.108013ms ago: executing program 2 (id=2508): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x16, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r1, 0x2000000, 0xe, 0x0, &(0x7f0000000200)="63eced8e46dc3f0adf33c9f7b986", 0x0, 0x8001, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 299.864283ms ago: executing program 4 (id=2509): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000010000b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x40f00, 0x12, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_GET_PROG_INFO(0xa, &(0x7f0000000740)={r1, 0x0, 0x0}, 0x10) 267.900186ms ago: executing program 4 (id=2511): r0 = socket(0x840000000002, 0x3, 0xff) getsockopt$sock_cred(r0, 0x1, 0x11, &(0x7f0000000100)={0x0, 0x0, 0x0}, &(0x7f0000000280)=0xc) syz_mount_image$exfat(&(0x7f0000000400), &(0x7f0000000240)='./file0\x00', 0x2000084c, &(0x7f0000000540)=ANY=[@ANYBLOB='iocharset=ascii,discard,dmask=00000000000000000000007,uid=', @ANYRESHEX=r1, @ANYBLOB=',dmask=00000000000000000000152,fmask=00000000000000000000006,gid=', @ANYRESHEX=r2, @ANYBLOB=',uid=', @ANYRESHEX=0xee00, @ANYBLOB="2c646973636172642c00fb278330ab3b4884d36adf6908d11f57832035e96a1513231140da182ca77aeedc492bbc501d94f854a7e26909bde6e698d72a15ec808a86c25d"], 0x81, 0x14f5, &(0x7f0000001580)="$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") link(&(0x7f0000000040)='./file0\x00', &(0x7f0000000280)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') 219.24556ms ago: executing program 3 (id=2512): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000180000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000000000f0850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0x45e, 0x101701) ioctl$USBDEVFS_FREE_STREAMS(r1, 0x802c550a, &(0x7f0000000040)=ANY=[@ANYBLOB="0200ff03100005000500000002000020d3"]) 215.473281ms ago: executing program 2 (id=2513): setpriority(0x2, 0x0, 0x0) r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_fanout(r0, 0x107, 0x12, &(0x7f0000000540), 0x4) syz_emit_ethernet(0x3e, &(0x7f0000000100)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @generic={0x0, 0x6, "0200", 0x8, 0x0, 0x0, @local, @local, {[@srh={0x32}]}}}}}, 0x0) 207.231801ms ago: executing program 4 (id=2514): prctl$PR_SET_SYSCALL_USER_DISPATCH_ON(0x3b, 0x1, 0x0, 0x0, &(0x7f00000000c0)) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x200000d, 0x4008031, 0xffffffffffffffff, 0x0) madvise(&(0x7f0000000000/0x600000)=nil, 0x600000, 0x15) epoll_ctl$EPOLL_CTL_MOD(0xffffffffffffffff, 0x3, 0xffffffffffffffff, 0x0) 202.182172ms ago: executing program 2 (id=2516): r0 = socket$netlink(0x10, 0x3, 0x0) r1 = socket$nl_route(0x10, 0x3, 0x0) ioctl$ifreq_SIOCGIFINDEX_batadv_hard(r1, 0x8933, &(0x7f0000000b80)={'batadv_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000001c0)={0x0, 0x0, &(0x7f0000001140)={&(0x7f0000000000)=ANY=[@ANYBLOB="780000001000030500"/20, @ANYRES32=0x0, @ANYBLOB="00000000000000004800128009000100766c616e00000000380002800600010000000000280003806500010000000000000000000c00010000000000000000000c00010000000000000000000400048008000500", @ANYRES32=r2], 0x78}}, 0x0) 170.650295ms ago: executing program 3 (id=2517): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f0000000680)=ANY=[@ANYBLOB="1b0000000000000000000000000004"], 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7020000111e6ca5b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000020000008500000085000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000a40)={&(0x7f0000000980)='sys_enter\x00', r1}, 0x10) request_key(0x0, 0x0, 0x0, 0xfffffffffffffffe) 137.350267ms ago: executing program 2 (id=2518): sched_setscheduler(0x0, 0x1, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000001180)=ANY=[@ANYBLOB="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"], &(0x7f0000000140)='GPL\x00', 0x0, 0xfffffe1f, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x49, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x12, 0xfffffffffffffd85, &(0x7f00000000c0)="61df712bc884fed5722780b688a8", 0x0, 0x739d, 0x0, 0x20}, 0x28) 129.453538ms ago: executing program 3 (id=2519): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0x8, 0xf, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x14, &(0x7f0000000280)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020646c2100000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000000850000001000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000080)={r1}, 0xc) 117.2426ms ago: executing program 1 (id=2520): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000007c0)={&(0x7f0000000080)='sys_enter\x00', r1}, 0x10) alarm(0x0) 112.04719ms ago: executing program 3 (id=2521): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000340)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000080850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r0}, 0x10) r1 = openat$selinux_user(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) write(r1, &(0x7f0000000280)="11523aee056782741daa2fef9c0c90", 0xf) 88.527572ms ago: executing program 1 (id=2522): r0 = socket$inet6(0xa, 0x2, 0x0) sendto$inet6(r0, 0x0, 0x0, 0x4098884, &(0x7f0000000240)={0xa, 0x4e20, 0x0, @mcast2}, 0x1c) sendto$inet6(r0, &(0x7f0000000300)='h', 0x1, 0x0, 0x0, 0x0) syz_extract_tcp_res(0x0, 0x7fff, 0x2) 76.403343ms ago: executing program 2 (id=2523): socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000000)={0xffffffffffffffff}) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x12, 0x2, 0x4, 0x6, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_ELEM(0x2, &(0x7f00000003c0)={r1, &(0x7f0000000200), 0x20000000}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000001c0)={{r1}, &(0x7f0000000040)=0x2, &(0x7f0000000180)=r0, 0x2}, 0x20) 72.893944ms ago: executing program 3 (id=2533): bpf$PROG_LOAD(0x5, &(0x7f00000054c0)={0x16, 0x16, &(0x7f00000004c0)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @flow_dissector, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xb, &(0x7f00000002c0)=ANY=[@ANYBLOB="18020000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb703000008000000b703000000000020850000007200000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x1f, 0xb, &(0x7f00000002c0)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x1d, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000000)={r0, 0xffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 66.151044ms ago: executing program 1 (id=2524): sendmsg$inet(0xffffffffffffffff, &(0x7f00000000c0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000000040)=ANY=[@ANYBLOB="18000000000000000000000007000000890704"], 0x68}, 0x0) r0 = socket$inet_udplite(0x2, 0x2, 0x88) setsockopt$inet_buf(r0, 0x0, 0x4, &(0x7f0000000040)="440910bc996c301c8107070400", 0x28) getsockopt$inet_opts(r0, 0x0, 0x4, 0x0, &(0x7f0000000240)) 59.362335ms ago: executing program 2 (id=2525): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000f82818110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000002000000850000008600000095"], &(0x7f0000000400)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000340)={&(0x7f0000000000)='mm_page_alloc\x00', r1}, 0x10) ppoll(&(0x7f0000000d40)=[{}], 0x25, &(0x7f0000000300)={0x0, 0x3938700}, 0x0, 0x0) 56.543345ms ago: executing program 3 (id=2526): syz_mount_image$exfat(&(0x7f0000000280), &(0x7f00000000c0)='./file0\x00', 0x810, &(0x7f00000003c0)=ANY=[@ANYBLOB="2b3a448493e9694653fb49a7fe91bafa2f756cfbcf96", @ANYRES32, @ANYBLOB="aedf728860578bdbfcf467d9d5a840d10c022f850d0845d4428926ab2d1fbc5f6e047a727fc7bd6d6cefeb8a83726753da6b9c1113853a1945906748abcfafda2ede9737ac3d68a61aca8f2105d60100008000000000cfbc6d3fbcd35d411be22d96ba5f1e96", @ANYRESOCT=0x0, @ANYRES64, @ANYRESDEC=0x0, @ANYRESDEC, @ANYRES32, @ANYRES8], 0xfd, 0x1507, &(0x7f00000019c0)="$eJzs3Am4T1X3OPC19t6H62b4JpnP2uvwTYZNkoSSZEiSJCRzQpIkSZK4ZEpCEjLeJHPInG665nnInHTzSpIkJCTZ/+c2/P16h5/3fX/9/vq/d32e5zz2cs7aZ+27nu89w/Pc79ddh1VvVKNKfWaGf4f+bYC//JMEAAkAMBAAcgBAAABlc5bNmb4/i8akf+sk4n9JgxlXugJxJUn/Mzbpf8Ym/c/YpP8Zm/Q/Y5P+Z2zS/4xN+i9EhjYr39WyZdxN3v//f079T5Ll+p8h4D/aIf3/T6P/paOl//8BvPf+30yV/mds0v+MTfqfkQVXugBxhcnnP2OT/guRof3h75Q3nLvS77Rl+xc2IYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBDi/4Fz/hIDAL+Nr3RdQgghhBBCCCGE+OP4d690BUIIIYQQQgghhPjfh6BAg4EAMkFmSIAskAhXQVbIBtkhB8TgasgJ10AuuBZyQx7IC/kgPxSAghACgQWGCApBYYjDdVAEroeiUAyKQwlwUBJKwQ1QGm6EMnATlIWboRzcAuWhws/nTHc7VIY7oArcCVWhGlSHGnAX1IS7oRbcA7XhXqgD90FduB/qwQNQHxpAQ3gQGsFD0BiaQFNoBs2hBbS8TH5yjr+X/zz0gBegJ/SCJOgNfeBF6Av9oD8MgIHwEgyCl2EwvAJDYCgMg1dhOLwGI+B1GAmjYDS8AWNgLIyD8TABJkIyvAmT4C2YDG8/lA2mwjSYDjNgJsyCd2A2zIG58C7Mg/mwAJKzLILFsATeg6XwPqTAB7AMPoRUWA4rYCWsgtWwBtbCOlgPG2AjbILNsAW2wjb4CLbDDtgJu2A37IG98DHsg09gP3wKafjZv5h/9vf50A0BARUqNGgwE2bCBEzAREzErJgVs2N2jGEMc2JOzIW5MDfmxryYF5MwPxbEgkhIyMhYCAthHONYBItgUSyKxbE4OnRYCkthabwRy2AZLItlsRyWw/JYASvgrXgrVsJKWBkrYxWsglWxKlbH6ngX3oV3Yy2shbWxNtbBOlgX62I9rIf1sT42xIbYCBthY2yMTbEpNsfm2BJbYitsha2xNbbFttgO22F7bI8dsAN2xI7YCTthZ+yMXbALdsWu2A2fw+fweXweX8AXsBdWVb2xD/bBvtgX++MAHIAv4SB8GV/GV3AIDsVh+Cq+iq/hCDyDI3EUjsbRWEmNxXE4HllNxGRMxswwCSfjZJyCU3EqTscZOBNn4SycjXNwDr6L83A+zseFuBAX4xJcgkvxfUzBFFyGZzEVl+MKXImrcDWuwrW4DtfiBtyIG3AzbsatuBU/wo9wB+7AXbgL9+Ae/Bg/xk/wExyCaZiGB/AAHsSDeAgP4WE8jEfwCB7Fo3gMj+FxPI4n8CSewpN4Gk/jGTyL5wDgPJ7HC3gBL+LF9A+/SmeUUZlUJpWgElSiSlRZVVaVXWVXMRVTOVVOlUvlUrlVbpVX5VX5VX5VUBVUpEixilQhVUjFVVwVUUVUUVVUFVfFlVNOlVKlVGlVWpVRZVRZdbMqp25R5VUF1cbdqm5VlVRbV1ndoaqoKqqqqqaqqxqqhqqpaqpaqpaqrWqrOqqOqqvuV/VUb+yPDVR6ZxqpodhYDcOmqplqrlqo1/Bh1UqNwNaqjWqrHlWjcCS2V61cB/WE6qjGYSf1lBqPT6suaiJ2Vc+qbuo51V09r3qo1q6n6qWmYG/VR03Hvqqf6q8GqNlYTaV3rLp6RT2feagapl5Vi/E1NUK9rkaqUWq0ekONUWPVODVeTVATVbJ6U01Sb6nJ6m01RU1V09R0NUPNVLPUO2q2mqPmqnfVPDVfLVAL1SK1WC1R76ml6n2Voj5Qy9SHKlUtVyvUSrVKrVZr1Fq1Tq1XG9RGtUltVlvUVrVNfaS2qx1qp9qldqs9aq/6WO1Tn6j96lOVpj5TB9Rf1EH1uTqkvlCH1ZfqiPpKHVVfq2PqG3VcfatOqJPqlPpOnVbfqzPqrDqnflDn1Y/qgvpJXVRegUattNZGBzqTzqwTdBadqK/SWXU2nV3n0DF9tc6pr9G59LU6t86j85p8Or8uoAvqUJO2mnWkC+nCOq6v00X09bqoLqaL6xLa6ZK6lL5Bl9Y36jL6Jl1W36zL6Vt0eV1BV/Sgb9OV9O26sr5DV9F36qq6mq6ua+i7dE19t66l79G19b26jr5P19X363r6AV1fN9AN9YO6kX5IN9ZNdFPdTDfXLXRL/bBupR/RrXUb3VY/qtvpx3R7/bjuoJ/QHfWTupN+SnfWT+su+hndVT+ru+nndHf9k76ove6pe+kk3Vv30S/qvrqf7q8H6IH6JT1Iv6wH61f0ED1UD9Ov6uH6NT1Cv65H6lF6tH5Dj9Fj9Tg9Xk/QE3WyflNP0m/pyfptPUVP1dP0dD1Dz9T9f51p7j+R/9bfyR/889m36m36I71d79A79S69W+/Re/VevU/v0/v1fp2m0/QBfUAf1Af1IX1IH9aH9RF9RB/VR/UxfUwf18f1CX1S/6C/06f19/qMPqvP6h/0eX1eX/j1ZwAGjTLaGBOYTCazSTBZTKK5ymQ12Ux2k8PEzNUmp7nG5DLXmtwmj8lr8pn8poApaEJDxho2kSlkCpu4uc4UMdeboqaYKW5KGGdKmlLmhv9x/uXqa2lamlamlWltWpu2pq1pZ9qZ9qa96WA6mI6mo+lkOpnOprPpYrqYrqar6Wa6me6mu+lhepiepqdJMkmmj3nR9DX9TH8zwAw0L5lBZpAZbAabIWaIGWaGmeFmuBlhRpiRZqQZbUabMWaMGWfGmQlmgkn2OcwkM8lMNpPNFDPFTBuYw8wwM8wsM8vMNrPNXDPXzDPzzAKzwCwyi8wSs8QsNUtNikkxy8wyk2qWm+VmpVlpVpvVZq1Za9ab9Waj2Wg2m80m1Wwz28x2s93sNDvNbrPb7DV7zT6zz+w3+02aSTMHzAFz0Bw0h8whc9gcNkfMEXPUHDXHzDFz3Bw3J8wJc8qcMqfNaXPGnDHnzDlz3pw3F8wFc9FcTL/tC1SgAhOYIFOQKUgIEoLEIDHIGmQNsgfZg1gQC3IGOYNcwbVB7iBPkDfIF+QPCgQFgzCgwAYcREGhoHAQD64LigTXB0WDYkHxoETggpJBqeCGoHRwY1AmuCkoG9wclAtuCcoHFYKKwa3BbUGl4PagcnBHUCW4M6gaVAuqBzWCu4Kawd1BreCeoHZwb1AnuC+oG9wf1AseCOoHDYKGwYNBo+ChoHHQJGgaNAuaBy2Cln/o/N6fyfOI6xn2CpPC3mGf8MWwb9gv7B8OCAeGL4WDwpfDweEr4ZBwaDgsfDUcHr4WjghfD0eGo8LR4RvhmHBsOC4cH04IJ4bJ4ZvhpPCtcHL4djglnBpOC6aHM8KZ4azwnXB2OCecG74bzgvnhwvCheGicHGIv9wSQ0r4Qbgs/DBMDZeHK8KV4apwdbgmXBuuC9eHG8KN4aZwc9lBvxwabg93hDvDXeHucE+4N/w43Bd+Eu4PPw3Tws/CA+FfwoPh5+Gh8IvwcPhleCT8Kjwafh0eC78Jj4ffhifCk+Gp8LvwdPh9eCY8G54LfwjPhz+GF8KfwouhT7+5T7+8kyFDmSgTJVACJVIiZaWslJ2yU4xilJNyUi7KRbkpN+WlvJSf8lNBKkjpmJgKUSGKU5yKUBEqSkWpOBUnR45KUSkqTaWpDJWhslSWylE5Kk/lqSJVpNvoNrqdbqc76A66k+6kalSNalANqkk1qRbVotpUm+pQHapLdake1aP6VJ8aUkNqRI2oMTWmptSUmlNzakktqRW1otbUmtpSW2pH7ag9tacO1IE6UkfqRJ2oM3WmLtSFulJX6kbdqDt1px7Ug3pST0qiJOpDfagv9aX+1J8G0kAaRINoMA2mITSEhtEwGk7DaQSNoJE0ikbTGzSGxtI4Gk8TaCIlUzJNokk0mSbTFJpC02gazaAZNItm0WyaTXNpLs2jebSAFtAiWkRLaAktpaWUQim0jJZRKqXSClpBq2gVraE1tI7W0QbaQJtoE22hLbSNttF22k47aSftpt20l/bSPtpH+2k/pVEaHaADdJAO0iE6RIfpMB2hI3SUjtIxOkbH6TidoBN0ik7RaTpNZ+gMnaNzdJ5+pAv0E10kTwk2i020V9msNpvNbnPYv47z2nw2vy1gC9rQ5rZ5fheTtbaoLWaL2xLW2ZK2lL3hb+LytoKtaG+1t9lK9nZb2Za3WeC/xjXt3baWvcfWtvfaGvau38V17H22rn3I1rNNbH3bzDa0LWwj+5BtbJvYpraZbW5b2Hb2MdvePm472CdsR/vk38RL7ft2nV1vN9iNdp/9xJ6zP9ij9mt73v5oe9pedqB9yQ6yL9vB9hU7xA79fQxgR9s37Bg71o6z4+0EO/Fv4ml2up1hZ9pZ9h072875m3iJfc/Osyl2gV1oF9nFP8fpNaXYD+wy+6FNtcvtCrvSrrKr7Rq79v/WutJutlvsVrvXfmy32x12p91ld9s9P8fp69hvP7Vp9jN7xH5lD9rP7SF7zB62X/4cp6/vmP3GHrff2hP2pD1lv7On7ff2jD378/rT1/6d/cletN4CIyvWbDjgTJyZEzgLJ/JVnJWzcXbOwTG+mnPyNZyLr+XcnIfzcj7OzwW4IIdMbJk54kJcmON8HRfh67koF+PiXIIdl+RSfAOX5hu5DN/EZflmLse3cHmuwBX5Vr6NK/HtXJnv4Cp8J1flalyda/BdXJPv5lp8D9fme7kO38d1+X6uxw9wfW7ADflBbsQPcWNuwk25GTfnFtySH+ZW/Ai35jbclh/ldvwYt+fHuQM/wR35Se7ET3Fnfpq78DPclZ/lbvwcd+fnuQe/wD25Fydxb+7DL3Jf7sf9eQAP5Jd4EL/Mg/kVHsJDeRi/ysP5NR7Br/NIHsWj+Q0ew2N5HI/nCTyRk/lNnsRv8WR+m6fwVJ7G03kGz+RZ/A7P5jk8l9/leTyfF/BCXsSLeQm/x0v5fU7hD3gZf8ipvJxX8Epexat5Da/ldbyeN/BG3sSbeQtv5W38EW/nHbyTd/Fu3sN7+WPex5/wfv6U0/gzPsB/4YP8OR/iL/gwf8lH+Cs+yl/zMf6Gj/O3fIJP8in+jk/z93yGz/I5/oHP8498gX/ii+wZIoxUpCMTBVGmKHOUEGWJEqOroqxRtih7lCOKRVdHOaNrolzRtVHuKE+UN8oX5Y8KRAWjMKLIRhxFUaGocBSProuKRNdHRaNiUfGoROSiklGp6IaodHRjVCa6KSob3RyVi26JykcVoorRrdFtUaXo9qhydEdUJbozqhpVi6pHNaK7oprR3VGt6J6odnRvVCa6L6ob3R/Vix6I6kcNoobRg1Gj6KGocdQkaho1i5pHLaKW0cNRq+iRqHXUJmobPRq1ix6L2kePRx2iJ6KO0ZOX9hcLfrma/tX+pKh3pH99Q3aPXhRfHF8Sfy++NP5+PCX+QXxZ/MN4anx5fEV8ZXxVfHV8TXxtfF18fXxDfGN8U3xzfEt8a9z7GpnBYfqDMBgXuEwus0twWVyiu8plddlcdpfDxdzVLqe7xuVy17rcLo/L6/K5/K6AK+hCR846dpEr5Aq7uLvOFXHXu6KumCvuSjjnSrpSroVr6Vq6Vu4R19q1cW3do+5R95h7zD2e8GvhrpN7ynV2T7su7hn3jHvWdXPPue7uedfDveB6ul4uySW5Pq6P6+v6uv6uvxvoBrpBbpAb7Aa7IW6IG+aGueFuuBvhRriRbqQb7Ua7MW6MG+fGuQlugkt2yW6Sm+Qmu8luipviprlpboab4Wa5WW62m+3murlunpvnFrgFbpFb5Ja4JW6pW+pSXIpb5pa5VJfqVrgVbpVb5da4NW6dW+c2uA1uk9vktrgtbpvb5ra77W6n2+l2u91ur9vr9rl9br/b79JcmjvgDriD7qA75L5wh92X7oj7yh11X7tj7ht33H3rTriT7pTz+rT73p1xZ90594M77350F9xP7qLzLjn2ZmxS7K3Y5NjbsSmxqbFpsemxGbGZsVmxd2KzY3Nic2PvxubF5scWxBbGFsUWx5bE3ostjb0fS4l9EFsW+zCWGlseWxFbGVsVWx3zvsD2yBfyhX3cX+eL+Ot9UV/MF/clvPMlfSl/gy/tb/Rl/E2+rL/Zl/O3+PK+gq/om/imvplv7lv4lv5h38o/4lv7Nr6tf9S384/59v5x38E/4Tv6J30n/5Tv7J/2Xfwzvqt/dv6vXfY9/Au+p+/lk3xv38e/6Pv6fr6/H+AH+pf8IP+yH+xf8UP8UD/Mv+qH+9f8CP+6H+lH+dH+DT/Gj/Xj/Hg/wU/0yf5NP8m/5Sf7t/0UP9VP89P9DD/Tz/Lv+Nl+jp/r3/Xz/Hy/wC/0i/xiv8S/55f6932K/8Av8x/6VL/cr/Ar/Sq/2q/xa/06v95v8Bv9Jr/Zb/Fb/Tb/kd/ud/idfpff7ff4vf5jv89/4vf7T32a/8wf8H/xB/3n/pD/wh/2X/oj/it/1H/tj/lv/HH/rT/hT/pT/jt/2n/vz/iz/pz/wZ/3P/oL/id/Uf5mTQghhBDin6Ivs7/33/k/9euWrg8AZNuR7/Bfz7kp9y/jfmpfxxgAPNGra4PftgYNkpKSfj02VUNQeCEAxC7l//z9A7/Gy6EtPAYdoA2U/rv19VMVf77v++/mj98MkAiQ5bec9MejRPjr+W/8B/M3eY8vN/9CgKKFL+Wkn+i3+NL8Zf7B/HvaXWb+LJ8nA7T+LzlZ4VJ8af5S8Ag8CR1+d6QQQgghhBBCCPGLfup8t8s936Y/n+c3l3Iyw6X4cs/nl1H5j1iDEEIIIYQQQggh/ntPP9f98Yc7dGjT+T95kPnPUcafYIAA8CcoQwZ//sGV/s0khBBCCCGE+KNduum/0pUIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBAZ17//DWHqnz74Sq9RCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEEEIIIYQQQgghhBBCCCGEuNL+TwAAAP//w0VZzw==") syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./bus\x00', 0xe, &(0x7f00000000c0)={[{@quota}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x80}}, {@barrier_val={'barrier', 0x3d, 0x3}}, {@stripe={'stripe', 0x3d, 0x4}}, {@block_validity}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}]}, 0x3, 0x434, &(0x7f0000000940)="$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") r0 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x0) write$binfmt_elf64(r0, &(0x7f0000000280)={{0x7f, 0x45, 0x4c, 0x46, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x40}}, 0x40) 50.673326ms ago: executing program 1 (id=2527): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x6, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000009007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='sys_enter\x00', r1}, 0x10) ustat(0x0, 0x0) 624.67µs ago: executing program 4 (id=2528): r0 = openat$vcsu(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = openat$sndtimer(0xffffffffffffff9c, &(0x7f0000000000), 0x0) dup3(r1, r0, 0x0) ioctl$SNDRV_TIMER_IOCTL_SELECT(r0, 0x80045400, 0x0) 0s ago: executing program 1 (id=2539): bpf$ENABLE_STATS(0x20, 0x0, 0x0) write$cgroup_subtree(0xffffffffffffffff, 0x0, 0xfdef) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000040)={0x6, 0x6, &(0x7f0000000480)=ANY=[@ANYBLOB="180200003f00ffff0000000000004000850000002c0000001800000004000000000000000700000095"], &(0x7f0000000000)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @xdp, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x94) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000000c0)={r0, 0x27, 0x0, 0x0, 0x0, 0x0, 0x1400, 0xf2ffffff, 0x0, 0x0, 0x0, 0x0, 0x2}, 0x50) kernel console output (not intermixed with test programs): speed USB device number 14 using dummy_hcd [ 67.926435][ T19] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 67.935562][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 67.943490][ T19] usb 2-1: Product: syz [ 67.946160][ T297] usb 5-1: New USB device found, idVendor=0408, idProduct=4030, bcdDevice=fa.f1 [ 67.947505][ T19] usb 2-1: Manufacturer: syz [ 67.960996][ T19] usb 2-1: SerialNumber: syz [ 67.963255][ T297] usb 5-1: New USB device strings: Mfr=29, Product=2, SerialNumber=3 [ 67.968091][ T19] r8152-cfgselector 2-1: config 0 descriptor?? [ 67.973964][ T297] usb 5-1: Product: syz [ 67.984210][ T297] usb 5-1: Manufacturer: syz [ 67.988852][ T297] usb 5-1: SerialNumber: syz [ 67.994617][ T297] usb 5-1: config 0 descriptor?? [ 68.036677][ T297] usb 5-1: Found UVC 0.00 device syz (0408:4030) [ 68.042889][ T297] usb 5-1: No valid video chain found. [ 68.085180][ T2959] syz.2.1191[2959] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.085229][ T2959] syz.2.1191[2959] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 68.122280][ T28] kauditd_printk_skb: 116 callbacks suppressed [ 68.122295][ T28] audit: type=1400 audit(1728415982.577:21300): avc: denied { execute_no_trans } for pid=2962 comm="syz.2.1193" path="/231/file1" dev="tmpfs" ino=1208 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 68.171021][ T2967] tap0: tun_chr_ioctl cmd 1074025678 [ 68.176739][ T2967] tap0: group set to 0 [ 68.186128][ T1353] usb 4-1: new high-speed USB device number 17 using dummy_hcd [ 68.222670][ T28] audit: type=1400 audit(1728415982.677:21301): avc: denied { read } for pid=2968 comm="syz.2.1196" lport=3 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 68.246203][ T19] r8152-cfgselector 2-1: Unknown version 0x0000 [ 68.247157][ T297] usb 5-1: USB disconnect, device number 14 [ 68.456134][ T1353] usb 4-1: Using ep0 maxpacket: 16 [ 68.496283][ T19] r8152-cfgselector 2-1: Unknown version 0x0000 [ 68.504002][ T19] r8152-cfgselector 2-1: USB disconnect, device number 17 [ 68.576156][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 68.587565][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 68.597308][ T1353] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 68.610874][ T1353] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 68.620245][ T1353] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 68.628735][ T1353] usb 4-1: config 0 descriptor?? [ 68.764409][ T2972] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 69.026132][ T19] usb 5-1: new high-speed USB device number 15 using dummy_hcd [ 69.106822][ T1353] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0 [ 69.114002][ T1353] microsoft 0003:045E:07DA.002E: ignoring exceeding usage max [ 69.122520][ T1353] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0 [ 69.129723][ T1353] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0 [ 69.136672][ T1353] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0 [ 69.143872][ T1353] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0 [ 69.151289][ T1353] microsoft 0003:045E:07DA.002E: unknown main item tag 0x0 [ 69.163368][ T1353] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.002E/input/input41 [ 69.246857][ T1353] microsoft 0003:045E:07DA.002E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 69.276171][ T19] usb 5-1: Using ep0 maxpacket: 16 [ 69.320642][ T1353] usb 4-1: USB disconnect, device number 17 [ 69.576199][ T19] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 69.585094][ T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 69.592886][ T19] usb 5-1: Product: syz [ 69.596855][ T19] usb 5-1: Manufacturer: syz [ 69.601280][ T19] usb 5-1: SerialNumber: syz [ 69.606116][ T19] r8152-cfgselector 5-1: config 0 descriptor?? [ 69.866371][ T19] r8152-cfgselector 5-1: Unknown version 0x0000 [ 70.108206][ T24] usb 5-1: USB disconnect, device number 15 [ 70.629270][ T2983] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1202'. [ 70.662418][ T2992] loop3: detected capacity change from 0 to 256 [ 70.691550][ T3000] netlink: 'syz.2.1209': attribute type 10 has an invalid length. [ 70.699765][ T3000] netem: change failed [ 70.711432][ T3002] sit: Dst spoofed 0.0.0.0/2002::bfd8:a5dd -> 224.0.0.1/2002:c021:42c4:3911:45ba:dd28:fd7f:ffc [ 70.729290][ T28] audit: type=1400 audit(1728415985.187:21302): avc: denied { read } for pid=3003 comm="syz.2.1212" name="uhid" dev="devtmpfs" ino=175 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 70.739514][ T3006] loop1: detected capacity change from 0 to 256 [ 70.753921][ T1353] kernel write not supported for file /uhid (pid: 1353 comm: kworker/0:6) [ 70.773808][ T28] audit: type=1400 audit(1728415985.217:21303): avc: denied { open } for pid=3003 comm="syz.2.1212" path="/dev/uhid" dev="devtmpfs" ino=175 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 70.798002][ T28] audit: type=1400 audit(1728415985.217:21304): avc: denied { write } for pid=3003 comm="syz.2.1212" name="uhid" dev="devtmpfs" ino=175 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:uhid_device_t tclass=chr_file permissive=1 [ 70.839464][ T3016] loop1: detected capacity change from 0 to 2048 [ 70.848694][ T3014] loop3: detected capacity change from 0 to 512 [ 70.855415][ T3014] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 70.858692][ T3016] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 70.872722][ T3016] ext4 filesystem being mounted at /207/file0 supports timestamps until 2038 (0x7fffffff) [ 70.878227][ T3014] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.1217: bg 0: block 64: padding at end of block bitmap is not set [ 70.897852][ T291] EXT4-fs (loop1): unmounting filesystem. [ 70.898283][ T3014] Quota error (device loop3): write_blk: dquota write failed [ 70.910923][ T3014] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 70.920875][ T24] usb 5-1: new high-speed USB device number 16 using dummy_hcd [ 70.928245][ T3014] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.1217: Failed to acquire dquot type 0 [ 70.939809][ T3014] EXT4-fs (loop3): 1 truncate cleaned up [ 70.945373][ T3014] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 70.958087][ T3014] Quota error (device loop3): write_blk: dquota write failed [ 70.965822][ T3014] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 70.976654][ T3014] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.1217: Failed to acquire dquot type 0 [ 70.996558][ T3014] syz.3.1217 (3014) used greatest stack depth: 19848 bytes left [ 71.005094][ T295] EXT4-fs (loop3): unmounting filesystem. [ 71.046068][ T954] usb 3-1: new high-speed USB device number 17 using dummy_hcd [ 71.186056][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 71.196695][ T3033] loop3: detected capacity change from 0 to 40427 [ 71.199825][ T3031] loop1: detected capacity change from 0 to 40427 [ 71.204089][ T3033] F2FS-fs (loop3): invalid crc value [ 71.209806][ T3031] F2FS-fs (loop1): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 71.215837][ T3033] F2FS-fs (loop3): Found nat_bits in checkpoint [ 71.222287][ T3031] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 71.238339][ T3031] F2FS-fs (loop1): invalid crc value [ 71.244769][ T3031] F2FS-fs (loop1): Found nat_bits in checkpoint [ 71.258589][ T3033] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 71.270185][ T28] audit: type=1400 audit(1728415985.727:21305): avc: denied { setattr } for pid=3032 comm="syz.3.1222" name="file1" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=dir permissive=1 [ 71.293178][ T3031] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 71.300183][ T3031] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 71.300215][ T954] usb 3-1: Using ep0 maxpacket: 32 [ 71.313240][ T295] syz-executor: attempt to access beyond end of device [ 71.313240][ T295] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 71.327464][ T291] syz-executor: attempt to access beyond end of device [ 71.327464][ T291] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 71.346270][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 71.357723][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 71.368722][ T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 71.401754][ T24] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 71.421943][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 71.439105][ T24] usb 5-1: config 0 descriptor?? [ 71.468716][ T3054] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 71.478419][ T3054] SELinux: failed to load policy [ 71.535738][ T3071] loop3: detected capacity change from 0 to 256 [ 71.544321][ T3071] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 71.555910][ T3075] loop0: detected capacity change from 0 to 1024 [ 71.558849][ T3071] exFAT-fs (loop3): hint_cluster is invalid (17) [ 71.578149][ T3075] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 71.591240][ T3082] xt_hashlimit: size too large, truncated to 1048576 [ 71.598853][ T293] EXT4-fs (loop0): unmounting filesystem. [ 71.606241][ T954] usb 3-1: New USB device found, idVendor=1557, idProduct=8150, bcdDevice=29.ed [ 71.618422][ T3084] netlink: 80 bytes leftover after parsing attributes in process `syz.0.1243'. [ 71.627988][ T954] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 71.636134][ T954] usb 3-1: Product: syz [ 71.640715][ T954] usb 3-1: Manufacturer: syz [ 71.646339][ T954] usb 3-1: SerialNumber: syz [ 71.658486][ T954] usb 3-1: config 0 descriptor?? [ 71.778296][ T3104] netlink: 20 bytes leftover after parsing attributes in process `syz.3.1252'. [ 71.850425][ T3117] tap0: tun_chr_ioctl cmd 2147767517 [ 71.917392][ T3135] netlink: 8 bytes leftover after parsing attributes in process `syz.3.1267'. [ 71.933290][ T24] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.002F/input/input42 [ 71.947699][ T3135] device macsec0 entered promiscuous mode [ 72.013363][ T3152] loop3: detected capacity change from 0 to 256 [ 72.028105][ T24] microsoft 0003:045E:07DA.002F: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 72.074924][ T3166] loop0: detected capacity change from 0 to 256 [ 72.082621][ T3166] FAT-fs (loop0): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 72.111069][ T3172] loop3: detected capacity change from 0 to 1024 [ 72.118195][ T3172] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 72.120292][ T3174] loop0: detected capacity change from 0 to 256 [ 72.138175][ T3174] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 72.140440][ T24] usb 5-1: USB disconnect, device number 16 [ 72.158102][ T3172] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 72.174401][ T295] EXT4-fs (loop3): unmounting filesystem. [ 72.300362][ T3182] loop3: detected capacity change from 0 to 40427 [ 72.308844][ T3182] F2FS-fs (loop3): fault_injection options not supported [ 72.316548][ T3182] F2FS-fs (loop3): invalid crc value [ 72.316868][ T3191] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 72.323384][ T3182] F2FS-fs (loop3): Found nat_bits in checkpoint [ 72.367108][ T3182] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 72.380650][ T295] syz-executor: attempt to access beyond end of device [ 72.380650][ T295] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 72.490244][ T3215] loop1: detected capacity change from 0 to 128 [ 72.498050][ T3215] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x00067272 (sector = 1) [ 72.556193][ T954] (unnamed net_device) (uninitialized): Assigned a random MAC address: 96:da:04:82:21:2d [ 72.575306][ T954] rtl8150 3-1:0.0: eth1: rtl8150 is detected [ 72.585598][ T954] usb 3-1: USB disconnect, device number 17 [ 72.926151][ T1353] usb 4-1: new high-speed USB device number 18 using dummy_hcd [ 72.996206][ T24] usb 5-1: new high-speed USB device number 17 using dummy_hcd [ 73.266068][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 73.286199][ T1353] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 73.406148][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 73.426059][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 73.435730][ T24] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 73.456150][ T1353] usb 4-1: New USB device found, idVendor=1b5c, idProduct=0105, bcdDevice= 1.f1 [ 73.465403][ T1353] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 73.476110][ T24] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 73.485390][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 73.490669][ T1353] usb 4-1: Product: syz [ 73.499608][ T1353] usb 4-1: Manufacturer: syz [ 73.506907][ T24] usb 5-1: config 0 descriptor?? [ 73.507133][ T1353] usb 4-1: SerialNumber: syz [ 73.523805][ T1353] usb 4-1: config 0 descriptor?? [ 73.566753][ T1353] ftdi_sio 4-1:0.0: FTDI USB Serial Device converter detected [ 73.574508][ T1353] usb 4-1: Detected SIO [ 73.594393][ T1353] usb 4-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 73.770143][ T317] usb 4-1: USB disconnect, device number 18 [ 73.780055][ T317] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 73.796164][ T317] ftdi_sio 4-1:0.0: device disconnected [ 73.806090][ T19] usb 2-1: new high-speed USB device number 18 using dummy_hcd [ 73.986850][ T24] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0 [ 73.994607][ T24] microsoft 0003:045E:07DA.0030: ignoring exceeding usage max [ 74.003403][ T24] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0 [ 74.010522][ T24] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0 [ 74.017771][ T24] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0 [ 74.025271][ T24] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0 [ 74.032561][ T24] microsoft 0003:045E:07DA.0030: unknown main item tag 0x0 [ 74.043684][ T24] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0030/input/input43 [ 74.046084][ T19] usb 2-1: Using ep0 maxpacket: 16 [ 74.126818][ T24] microsoft 0003:045E:07DA.0030: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 74.176198][ T19] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 74.187243][ T19] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 74.197020][ T19] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 74.207146][ T24] usb 5-1: USB disconnect, device number 17 [ 74.210031][ T19] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 74.224815][ T19] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 74.233680][ T19] usb 2-1: config 0 descriptor?? [ 74.362114][ T3288] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 74.459386][ T3299] netlink: 'syz.3.1342': attribute type 12 has an invalid length. [ 74.719947][ T19] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0031/input/input44 [ 74.790521][ T3318] loop3: detected capacity change from 0 to 256 [ 74.799520][ T3318] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 74.816635][ T19] microsoft 0003:045E:07DA.0031: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 74.845470][ T28] kauditd_printk_skb: 14 callbacks suppressed [ 74.845486][ T28] audit: type=1400 audit(2000000000.269:21320): avc: denied { mount } for pid=3320 comm="syz.3.1352" name="/" dev="configfs" ino=13719 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 74.891372][ T3329] xt_bpf: check failed: parse error [ 74.895357][ T3330] loop2: detected capacity change from 0 to 512 [ 74.918522][ T3330] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 74.927404][ T3330] ext4 filesystem being mounted at /255/bus supports timestamps until 2038 (0x7fffffff) [ 74.944040][ T294] EXT4-fs (loop2): unmounting filesystem. [ 74.945348][ T24] usb 2-1: USB disconnect, device number 18 [ 75.380737][ T3340] loop4: detected capacity change from 0 to 256 [ 75.397135][ T3340] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 75.415840][ T3340] exFAT-fs (loop4): hint_cluster is invalid (65537) [ 75.422516][ T3340] exFAT-fs (loop4): error, failed to bmap (inode : ffff88812cb725f0 iblock : 8, err : -5) [ 75.432483][ T3340] exFAT-fs (loop4): Filesystem has been set read-only [ 75.441798][ T3340] exFAT-fs (loop4): error, invalid access to FAT (entry 0x00010000) [ 75.450140][ T3340] exFAT-fs (loop4): error, invalid access to FAT (entry 0x00010000) [ 75.462732][ T3340] exFAT-fs (loop4): error, failed to bmap (inode : ffff88812cb725f0 iblock : 8, err : -5) [ 75.472925][ T3340] exFAT-fs (loop4): error, invalid access to FAT (entry 0x00010000) [ 75.484098][ T28] audit: type=1400 audit(2000000000.909:21321): avc: denied { mounton } for pid=3349 comm="syz.1.1366" path=2F3233332FE91F7189591E9233614B dev="tmpfs" ino=1219 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=sock_file permissive=1 [ 75.602181][ T3336] loop2: detected capacity change from 0 to 40427 [ 75.639809][ T3336] F2FS-fs (loop2): Found nat_bits in checkpoint [ 75.695896][ T3380] bridge0: port 1(bridge_slave_0) entered blocking state [ 75.702978][ T3380] bridge0: port 1(bridge_slave_0) entered forwarding state [ 75.716702][ T3336] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 75.737174][ T294] syz-executor: attempt to access beyond end of device [ 75.737174][ T294] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 75.755498][ T3386] loop4: detected capacity change from 0 to 256 [ 75.796114][ T1353] usb 4-1: new high-speed USB device number 19 using dummy_hcd [ 75.849028][ T3395] loop1: detected capacity change from 0 to 2048 [ 75.887382][ T3395] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 75.898031][ T3395] ext4 filesystem being mounted at /237/file0 supports timestamps until 2038 (0x7fffffff) [ 75.910392][ T28] audit: type=1400 audit(2000000001.339:21322): avc: denied { ioctl } for pid=3394 comm="syz.1.1384" path="/237/file0/file0/file0" dev="loop1" ino=13 ioctlcmd=0x6685 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 75.936308][ T3395] fs-verity: sha512 using implementation "sha512-avx2" [ 75.943708][ T3395] fs-verity (loop1, inode 13): Error -22 reading file data [ 75.951714][ T3395] fs-verity (loop1, inode 13): Error -22 building Merkle tree [ 75.968970][ T291] EXT4-fs (loop1): unmounting filesystem. [ 76.056123][ T1353] usb 4-1: Using ep0 maxpacket: 16 [ 76.071168][ T3393] loop4: detected capacity change from 0 to 40427 [ 76.111820][ T3393] F2FS-fs (loop4): Found nat_bits in checkpoint [ 76.176273][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 76.192005][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 76.193015][ T28] audit: type=1400 audit(2000000001.619:21323): avc: denied { connect } for pid=3415 comm="syz.2.1390" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 76.202298][ T3393] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 76.234977][ T1353] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 76.249789][ T3419] bridge0: port 3(syz_tun) entered blocking state [ 76.251744][ T3407] loop1: detected capacity change from 0 to 40427 [ 76.256541][ T3419] bridge0: port 3(syz_tun) entered disabled state [ 76.257001][ T3419] device syz_tun entered promiscuous mode [ 76.264975][ T3407] F2FS-fs (loop1): invalid crc value [ 76.270792][ T1353] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 76.285253][ T3419] bridge0: port 3(syz_tun) entered blocking state [ 76.291028][ T1353] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 76.297009][ T3419] bridge0: port 3(syz_tun) entered forwarding state [ 76.306682][ T1353] usb 4-1: config 0 descriptor?? [ 76.312972][ T292] syz-executor: attempt to access beyond end of device [ 76.312972][ T292] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 76.326792][ T3407] F2FS-fs (loop1): Found nat_bits in checkpoint [ 76.335548][ T3423] loop2: detected capacity change from 0 to 512 [ 76.367730][ T3423] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 76.376981][ T3423] ext4 filesystem being mounted at /263/file0 supports timestamps until 2038 (0x7fffffff) [ 76.380130][ T3407] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 76.398618][ T28] audit: type=1400 audit(2000000001.829:21324): avc: denied { mounton } for pid=3422 comm="syz.2.1393" path="/263/file0/file0" dev="loop2" ino=12 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 76.433062][ T291] syz-executor: attempt to access beyond end of device [ 76.433062][ T291] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 76.435962][ T28] audit: type=1400 audit(2000000001.859:21325): avc: denied { getopt } for pid=3427 comm="syz.4.1392" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 76.479323][ T28] audit: type=1400 audit(2000000001.909:21326): avc: denied { unlink } for pid=294 comm="syz-executor" name="file1" dev="loop2" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 76.503893][ T294] EXT4-fs (loop2): unmounting filesystem. [ 76.704519][ T3460] SELinux: truncated policydb string identifier [ 76.711722][ T3460] SELinux: failed to load policy [ 76.748467][ T3468] loop1: detected capacity change from 0 to 128 [ 76.766085][ T3468] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 76.803370][ T1353] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.0032/input/input45 [ 76.834193][ T1141] FAT-fs (loop1): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 76.907703][ T1353] microsoft 0003:045E:07DA.0032: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 76.992169][ T3490] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1422'. [ 77.032366][ T1353] usb 4-1: USB disconnect, device number 19 [ 77.222854][ T3442] loop2: detected capacity change from 0 to 131072 [ 77.241852][ T3442] F2FS-fs (loop2): Test dummy encryption mode enabled [ 77.249322][ T3442] F2FS-fs (loop2): invalid crc value [ 77.257078][ T3442] F2FS-fs (loop2): Found nat_bits in checkpoint [ 77.318030][ T3442] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 77.325362][ T28] audit: type=1400 audit(2000000002.749:21327): avc: denied { bind } for pid=3521 comm="syz.4.1434" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=rawip_socket permissive=1 [ 77.348158][ T28] audit: type=1400 audit(2000000002.749:21328): avc: denied { name_bind } for pid=3521 comm="syz.4.1434" src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=rawip_socket permissive=1 [ 77.372095][ T3442] fscrypt: AES-256-XTS using blk-crypto-fallback [ 77.378123][ T3507] loop1: detected capacity change from 0 to 40427 [ 77.379991][ T28] audit: type=1400 audit(2000000002.749:21329): avc: denied { node_bind } for pid=3521 comm="syz.4.1434" saddr=ff02::1 src=20000 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=rawip_socket permissive=1 [ 77.388165][ T3507] F2FS-fs (loop1): invalid crc value [ 77.413403][ T3507] F2FS-fs (loop1): Found nat_bits in checkpoint [ 77.452311][ T3507] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 77.560861][ T3535] tap0: tun_chr_ioctl cmd 1074025677 [ 77.566622][ T3535] tap0: linktype set to 6 [ 77.567448][ T3537] input: syz1 as /devices/virtual/input/input46 [ 77.658436][ T3551] netlink: 28 bytes leftover after parsing attributes in process `syz.1.1443'. [ 77.776398][ T3574] tap0: tun_chr_ioctl cmd 2147767506 [ 77.813616][ T3582] device bridge_slave_0 left promiscuous mode [ 77.820151][ T3582] bridge0: port 1(bridge_slave_0) entered disabled state [ 77.827723][ T3582] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 77.850077][ T3584] loop3: detected capacity change from 0 to 1024 [ 77.856958][ T3584] EXT4-fs: Ignoring removed nomblk_io_submit option [ 77.867670][ T3584] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 77.877426][ T3584] EXT4-fs (loop3): unmounting filesystem. [ 77.926205][ T1353] usb 3-1: new high-speed USB device number 18 using dummy_hcd [ 77.991167][ T3601] loop3: detected capacity change from 0 to 1024 [ 77.999700][ T3601] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #11: comm syz.3.1466: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 78.018845][ T3601] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1466: couldn't read orphan inode 11 (err -117) [ 78.030979][ T3601] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 78.042875][ T3601] EXT4-fs error (device loop3): ext4_read_block_bitmap_nowait:477: comm syz.3.1466: Invalid block bitmap block 0 in block_group 0 [ 78.056358][ T3601] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.1466: Failed to acquire dquot type 0 [ 78.073320][ T295] EXT4-fs (loop3): unmounting filesystem. [ 78.085049][ T3607] loop3: detected capacity change from 0 to 512 [ 78.093092][ T3607] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 78.101510][ T3607] EXT4-fs (loop3): orphan cleanup on readonly fs [ 78.108617][ T3607] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #16: comm syz.3.1467: casefold flag without casefold feature [ 78.121829][ T3607] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #16: comm syz.3.1467: unexpected EA_INODE flag [ 78.133589][ T3607] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.1467: couldn't read orphan inode 16 (err -117) [ 78.145657][ T3607] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 78.159292][ T295] EXT4-fs (loop3): unmounting filesystem. [ 78.186161][ T1353] usb 3-1: Using ep0 maxpacket: 16 [ 78.218663][ T3618] device bridge_slave_0 left promiscuous mode [ 78.223323][ T3620] loop3: detected capacity change from 0 to 256 [ 78.228435][ T3618] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.233402][ T3620] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x447a4183, utbl_chksum : 0xe619d30d) [ 78.253815][ T3620] exFAT-fs (loop3): error, found bogus dentry(5) beyond unused empty group(4) (start_clu : 5, cur_clu : 5) [ 78.255779][ T3618] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 78.326145][ T1353] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 78.346139][ T1353] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 78.356428][ T1353] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 78.370030][ T1353] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 78.379003][ T1353] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 78.389302][ T1353] usb 3-1: config 0 descriptor?? [ 78.475722][ T3654] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1488'. [ 78.625412][ T3658] device bridge_slave_0 left promiscuous mode [ 78.626078][ T3660] loop1: detected capacity change from 0 to 256 [ 78.631846][ T3658] bridge0: port 1(bridge_slave_0) entered disabled state [ 78.641202][ T3660] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xaed0c81c, utbl_chksum : 0xe619d30d) [ 78.657294][ T3658] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 78.697505][ T3668] loop0: detected capacity change from 0 to 256 [ 78.767123][ T3678] netlink: 80 bytes leftover after parsing attributes in process `syz.1.1499'. [ 78.786798][ T3680] loop1: detected capacity change from 0 to 256 [ 78.798742][ T3680] FAT-fs (loop1): Directory bread(block 64) failed [ 78.805087][ T3680] FAT-fs (loop1): Directory bread(block 65) failed [ 78.811623][ T3680] FAT-fs (loop1): Directory bread(block 66) failed [ 78.818356][ T3680] FAT-fs (loop1): Directory bread(block 67) failed [ 78.824744][ T3680] FAT-fs (loop1): Directory bread(block 68) failed [ 78.831059][ T3680] FAT-fs (loop1): Directory bread(block 69) failed [ 78.837512][ T3680] FAT-fs (loop1): Directory bread(block 70) failed [ 78.844153][ T3680] FAT-fs (loop1): Directory bread(block 71) failed [ 78.850959][ T3680] FAT-fs (loop1): Directory bread(block 72) failed [ 78.857813][ T3680] FAT-fs (loop1): Directory bread(block 73) failed [ 78.883247][ T1353] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0033/input/input47 [ 78.900918][ T3676] loop0: detected capacity change from 0 to 40427 [ 78.907843][ T3676] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 78.915829][ T3676] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 78.926096][ T3676] F2FS-fs (loop0): Found nat_bits in checkpoint [ 78.955809][ T3676] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 78.963084][ T3676] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 78.972500][ T1353] microsoft 0003:045E:07DA.0033: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 79.047429][ T3697] netlink: 4 bytes leftover after parsing attributes in process `syz.1.1505'. [ 79.083495][ T1353] usb 3-1: USB disconnect, device number 18 [ 79.599178][ T3703] device bridge_slave_0 left promiscuous mode [ 79.609068][ T3703] bridge0: port 1(bridge_slave_0) entered disabled state [ 79.617946][ T3703] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 79.636060][ T3714] loop4: detected capacity change from 0 to 512 [ 79.643139][ T3715] loop0: detected capacity change from 0 to 16 [ 79.651458][ T3714] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 79.654029][ T3715] erofs: (device loop0): mounted with root inode @ nid 36. [ 79.693161][ T3715] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-95] [ 79.703242][ T3714] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #16: comm syz.4.1513: invalid indirect mapped block 4294967295 (level 0) [ 79.718593][ T3731] SELinux: failed to load policy [ 79.723072][ T3714] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #16: comm syz.4.1513: invalid indirect mapped block 4294967295 (level 1) [ 79.738804][ T3714] EXT4-fs (loop4): 1 orphan inode deleted [ 79.744682][ T3714] EXT4-fs (loop4): 1 truncate cleaned up [ 79.750467][ T3714] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 79.761814][ T3714] EXT4-fs error (device loop4): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 79.779691][ T3743] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 79.796910][ T292] EXT4-fs (loop4): unmounting filesystem. [ 79.828856][ T3753] loop4: detected capacity change from 0 to 16 [ 79.835360][ T3753] erofs: (device loop4): mounted with root inode @ nid 36. [ 79.843672][ T3753] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-95] [ 79.922717][ T3775] syz.4.1541 (3775) used greatest stack depth: 19624 bytes left [ 79.986125][ T24] usb 2-1: new high-speed USB device number 19 using dummy_hcd [ 80.233724][ T3854] loop4: detected capacity change from 0 to 512 [ 80.248450][ T3854] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 80.257595][ T3854] ext4 filesystem being mounted at /322/bus supports timestamps until 2038 (0x7fffffff) [ 80.273493][ T28] kauditd_printk_skb: 5 callbacks suppressed [ 80.273509][ T28] audit: type=1400 audit(2000000005.699:21333): avc: denied { read } for pid=3853 comm="syz.4.1578" name="file1" dev="loop4" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 80.296159][ T954] usb 3-1: new high-speed USB device number 19 using dummy_hcd [ 80.311923][ T292] EXT4-fs (loop4): unmounting filesystem. [ 80.346234][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 80.357675][ T24] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 80.367991][ T24] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 80.380803][ T24] usb 2-1: New USB device found, idVendor=056a, idProduct=0094, bcdDevice= 0.00 [ 80.390132][ T24] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.399757][ T24] usb 2-1: config 0 descriptor?? [ 80.426081][ T298] usb 4-1: new high-speed USB device number 20 using dummy_hcd [ 80.556162][ T954] usb 3-1: Using ep0 maxpacket: 16 [ 80.666124][ T298] usb 4-1: Using ep0 maxpacket: 16 [ 80.676160][ T954] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 80.687460][ T954] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 80.700202][ T954] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 80.709459][ T954] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.717859][ T954] usb 3-1: config 0 descriptor?? [ 80.786121][ T298] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 80.793928][ T298] usb 4-1: config 0 has no interface number 0 [ 80.799906][ T298] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 80.810600][ T298] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 80.820092][ T298] usb 4-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 80.829388][ T298] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 80.836110][ T19] usb 5-1: new high-speed USB device number 18 using dummy_hcd [ 80.838313][ T298] usb 4-1: config 0 descriptor?? [ 80.876957][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.883871][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.891047][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.897845][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.904856][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.911892][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.918623][ T24] wacom 0003:056A:0094.0034: unknown main item tag 0x0 [ 80.925375][ T24] wacom 0003:056A:0094.0034: Using device in hidraw-only mode [ 80.932930][ T24] wacom 0003:056A:0094.0034: hidraw0: USB HID v0.00 Device [HID 056a:0094] on usb-dummy_hcd.1-1/input0 [ 81.077124][ T24] usb 2-1: USB disconnect, device number 19 [ 81.197128][ T954] input: HID 045e:07da as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:045E:07DA.0035/input/input48 [ 81.246273][ T19] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 81.257848][ T19] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 81.267452][ T19] usb 5-1: New USB device found, idVendor=1b1c, idProduct=1c0d, bcdDevice= 0.00 [ 81.277174][ T19] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 81.278160][ T954] microsoft 0003:045E:07DA.0035: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.2-1/input0 [ 81.286646][ T19] usb 5-1: config 0 descriptor?? [ 81.536265][ T298] uclogic 0003:28BD:0071.0036: pen parameters not found [ 81.543207][ T298] uclogic 0003:28BD:0071.0036: interface is invalid, ignoring [ 81.590740][ T3881] loop1: detected capacity change from 0 to 16 [ 81.597316][ T3881] erofs: (device loop1): mounted with root inode @ nid 36. [ 81.604830][ T317] usb 3-1: USB disconnect, device number 19 [ 81.628028][ T3887] loop1: detected capacity change from 0 to 256 [ 81.637188][ T3887] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d) [ 81.739684][ T1353] usb 4-1: USB disconnect, device number 20 [ 81.758595][ T3891] loop1: detected capacity change from 0 to 40427 [ 81.765415][ T3891] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 81.773229][ T3891] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 81.783524][ T3891] F2FS-fs (loop1): Found nat_bits in checkpoint [ 81.791676][ T19] hid-generic 0003:1B1C:1C0D.0037: hidraw0: USB HID v0.00 Device [HID 1b1c:1c0d] on usb-dummy_hcd.4-1/input0 [ 81.813770][ T3891] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 81.820987][ T3891] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 81.993678][ T1353] usb 5-1: USB disconnect, device number 18 [ 82.286997][ T3928] loop3: detected capacity change from 0 to 512 [ 82.294889][ T3928] EXT4-fs error (device loop3): ext4_get_branch:178: inode #11: block 4294967295: comm syz.3.1609: invalid block [ 82.307054][ T3928] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1609: invalid indirect mapped block 4294967295 (level 1) [ 82.321207][ T3928] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1609: invalid indirect mapped block 4294967295 (level 1) [ 82.335579][ T3928] EXT4-fs (loop3): 2 truncates cleaned up [ 82.341651][ T3928] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 82.353814][ T3928] EXT4-fs (loop3): shut down requested (2) [ 82.362714][ T295] EXT4-fs (loop3): unmounting filesystem. [ 82.378519][ T3933] loop1: detected capacity change from 0 to 512 [ 82.387705][ T3933] EXT4-fs (loop1): 1 orphan inode deleted [ 82.393255][ T3933] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 82.402123][ T3933] ext4 filesystem being mounted at /298/file1 supports timestamps until 2038 (0x7fffffff) [ 82.419228][ T28] audit: type=1400 audit(2000000007.849:21334): avc: denied { setattr } for pid=3932 comm="syz.1.1611" path="/298/file1/hugetlb.2MB.usage_in_bytes" dev="loop1" ino=16 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=file permissive=1 [ 82.430801][ T3939] loop2: detected capacity change from 0 to 256 [ 82.450416][ T3939] exfat: Deprecated parameter 'namecase' [ 82.458425][ T3939] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x2eabf3fa, utbl_chksum : 0xe619d30d) [ 82.458556][ T291] EXT4-fs (loop1): unmounting filesystem. [ 82.473008][ T28] audit: type=1400 audit(2000000007.899:21335): avc: denied { mounton } for pid=3938 comm="syz.2.1613" path="/298/file0/file0" dev="loop2" ino=1048855 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 82.501956][ T28] audit: type=1400 audit(2000000007.929:21336): avc: denied { remove_name } for pid=294 comm="syz-executor" name="file0" dev="loop2" ino=1048860 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 82.526735][ T28] audit: type=1400 audit(2000000007.929:21337): avc: denied { rmdir } for pid=294 comm="syz-executor" name="file0" dev="loop2" ino=1048855 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 82.550476][ T294] bridge0: port 3(syz_tun) entered disabled state [ 82.559711][ T294] device syz_tun left promiscuous mode [ 82.565117][ T294] bridge0: port 3(syz_tun) entered disabled state [ 82.616314][ T3957] loop1: detected capacity change from 0 to 256 [ 82.622695][ T3957] exfat: Deprecated parameter 'utf8' [ 82.628606][ T3957] exfat: Deprecated parameter 'namecase' [ 82.634197][ T3957] exfat: Deprecated parameter 'namecase' [ 82.639749][ T3957] exfat: Deprecated parameter 'utf8' [ 82.657468][ T1353] usb 4-1: new high-speed USB device number 21 using dummy_hcd [ 82.665963][ T3957] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d) [ 82.765351][ T3972] syz.0.1631[3972] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.765423][ T3972] syz.0.1631[3972] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 82.793910][ T28] audit: type=1400 audit(2000000008.219:21338): avc: denied { mounton } for pid=3975 comm="syz-executor" path="/" dev="sda1" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:root_t tclass=dir permissive=1 [ 82.836625][ T3977] loop0: detected capacity change from 0 to 16 [ 82.853783][ T3977] erofs: (device loop0): mounted with root inode @ nid 36. [ 82.862313][ T3977] erofs: (device loop0): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 82.874712][ T3977] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[1851] [ 82.889828][ T3977] erofs: (device loop0): z_erofs_read_folio: failed to read, err [-117] [ 82.911111][ T3975] bridge0: port 1(bridge_slave_0) entered blocking state [ 82.919564][ T3975] bridge0: port 1(bridge_slave_0) entered disabled state [ 82.926895][ T3977] erofs: (device loop0): z_erofs_readahead: readahead error at page 13 @ nid 36 [ 82.927179][ T3975] device bridge_slave_0 entered promiscuous mode [ 82.943023][ T3975] bridge0: port 2(bridge_slave_1) entered blocking state [ 82.950887][ T3975] bridge0: port 2(bridge_slave_1) entered disabled state [ 82.956184][ T3977] erofs: (device loop0): z_erofs_readahead: readahead error at page 8 @ nid 36 [ 82.958412][ T3975] device bridge_slave_1 entered promiscuous mode [ 82.979938][ T3977] erofs: (device loop0): z_erofs_readahead: readahead error at page 6 @ nid 36 [ 82.990067][ T3982] kvm [3981]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled wrmsr: 0x40000004 data 0x0 [ 82.999669][ T3977] erofs: (device loop0): z_erofs_readahead: readahead error at page 4 @ nid 36 [ 83.008776][ T3977] erofs: (device loop0): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36 [ 83.020020][ T3977] erofs: (device loop0): z_erofs_readahead: readahead error at page 0 @ nid 36 [ 83.023317][ T3974] loop4: detected capacity change from 0 to 40427 [ 83.029734][ T3977] syz.0.1633: attempt to access beyond end of device [ 83.029734][ T3977] loop0: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 83.037565][ T3974] F2FS-fs (loop4): invalid crc value [ 83.049252][ T3977] syz.0.1633: attempt to access beyond end of device [ 83.049252][ T3977] loop0: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 83.053959][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 83.071715][ T3977] syz.0.1633: attempt to access beyond end of device [ 83.071715][ T3977] loop0: rw=524288, sector=16, nr_sectors = 8 limit=16 [ 83.079533][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 83.093153][ T3977] syz.0.1633: attempt to access beyond end of device [ 83.093153][ T3977] loop0: rw=524288, sector=720, nr_sectors = 80 limit=16 [ 83.102548][ T1353] usb 4-1: New USB device found, idVendor=04b4, idProduct=de61, bcdDevice= 0.00 [ 83.116221][ T3977] erofs: (device loop0): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[4055] [ 83.125307][ T3974] F2FS-fs (loop4): Found nat_bits in checkpoint [ 83.141893][ T1353] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 83.155024][ T1353] usb 4-1: config 0 descriptor?? [ 83.190076][ T3974] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 83.213646][ T292] syz-executor: attempt to access beyond end of device [ 83.213646][ T292] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 83.228187][ T3975] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.235292][ T3975] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.242717][ T3975] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.249830][ T3975] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.342383][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 83.353504][ T298] bridge0: port 1(bridge_slave_0) entered disabled state [ 83.370311][ T298] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.397522][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 83.405939][ T954] bridge0: port 1(bridge_slave_0) entered blocking state [ 83.412826][ T954] bridge0: port 1(bridge_slave_0) entered forwarding state [ 83.422043][ T4008] loop4: detected capacity change from 0 to 128 [ 83.428478][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 83.437877][ T4008] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 83.439298][ T954] bridge0: port 2(bridge_slave_1) entered blocking state [ 83.453209][ T954] bridge0: port 2(bridge_slave_1) entered forwarding state [ 83.453441][ T4008] ext4 filesystem being mounted at /340/mnt supports timestamps until 2038 (0x7fffffff) [ 83.476610][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 83.485033][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 83.498840][ T292] EXT4-fs (loop4): unmounting filesystem. [ 83.516316][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 83.527548][ T1141] device bridge_slave_1 left promiscuous mode [ 83.533850][ T1141] bridge0: port 2(bridge_slave_1) entered disabled state [ 83.547038][ T1141] device veth1_macvtap left promiscuous mode [ 83.554567][ T1141] device veth0_vlan left promiscuous mode [ 83.637108][ T1353] cypress 0003:04B4:DE61.0038: item fetching failed at offset 5/7 [ 83.646122][ T6] usb 2-1: new high-speed USB device number 20 using dummy_hcd [ 83.655377][ T1353] cypress 0003:04B4:DE61.0038: parse failed [ 83.661914][ T1353] cypress: probe of 0003:04B4:DE61.0038 failed with error -22 [ 83.663607][ T3975] device veth0_vlan entered promiscuous mode [ 83.674770][ T4021] netlink: 32 bytes leftover after parsing attributes in process `syz.0.1647'. [ 83.686130][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 83.697946][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 83.707741][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 83.722295][ T3975] device veth1_macvtap entered promiscuous mode [ 83.731014][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 83.745070][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 83.753261][ T298] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 83.775709][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 83.784034][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 83.792222][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 83.800753][ T954] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 83.815115][ T28] audit: type=1400 audit(2000000009.239:21339): avc: denied { mount } for pid=3975 comm="syz-executor" name="/" dev="proc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:proc_t tclass=filesystem permissive=1 [ 83.886160][ T6] usb 2-1: Using ep0 maxpacket: 16 [ 83.893050][ T19] usb 4-1: USB disconnect, device number 21 [ 83.907995][ T4038] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 83.951288][ T4043] serio: Serial port ptm0 [ 83.996733][ T28] audit: type=1400 audit(2000000009.429:21340): avc: denied { ioctl } for pid=4044 comm="syz.0.1658" path="socket:[30778]" dev="sockfs" ino=30778 ioctlcmd=0x8922 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 84.022248][ T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 84.042067][ T4047] random: crng reseeded on system resumption [ 84.042279][ T6] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 84.059618][ T6] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 84.062214][ T4051] loop4: detected capacity change from 0 to 512 [ 84.073617][ T6] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 84.088474][ T4051] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 84.089402][ T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 84.106730][ T4053] SELinux: failed to load policy [ 84.107248][ T6] usb 2-1: config 0 descriptor?? [ 84.131248][ T4051] EXT4-fs (loop4): 1 truncate cleaned up [ 84.137487][ T4051] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 84.141035][ T4063] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=io+mem,decodes=none:owns=io+mem [ 84.163212][ T292] EXT4-fs (loop4): unmounting filesystem. [ 84.171556][ T4063] pci 0000:00:05.0: vgaarb: changed VGA decodes: olddecodes=none,decodes=io+mem:owns=io+mem [ 84.254667][ T4084] loop2: detected capacity change from 0 to 2048 [ 84.264166][ T4086] SELinux: policydb version 0 does not match my version range 15-33 [ 84.272482][ T4086] SELinux: failed to load policy [ 84.282056][ T4084] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 84.294918][ T4084] ext4 filesystem being mounted at /8/file supports timestamps until 2038 (0x7fffffff) [ 84.324048][ T3975] EXT4-fs (loop2): unmounting filesystem. [ 84.439727][ T4107] loop2: detected capacity change from 0 to 256 [ 84.466009][ T4109] loop3: detected capacity change from 0 to 512 [ 84.494901][ T4109] EXT4-fs error (device loop3): ext4_validate_block_bitmap:429: comm syz.3.1687: bg 0: block 5: invalid block bitmap [ 84.515312][ T4111] loop2: detected capacity change from 0 to 8192 [ 84.523035][ T4109] EXT4-fs error (device loop3) in ext4_mb_clear_bb:6173: Corrupt filesystem [ 84.538276][ T4109] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.1687: invalid indirect mapped block 3 (level 2) [ 84.571358][ T4109] EXT4-fs (loop3): 1 orphan inode deleted [ 84.584480][ T4109] EXT4-fs (loop3): 1 truncate cleaned up [ 84.592052][ T6] input: HID 045e:07da as /devices/platform/dummy_hcd.1/usb2/2-1/2-1:0.0/0003:045E:07DA.0039/input/input49 [ 84.597575][ T4109] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 84.624617][ T6] microsoft 0003:045E:07DA.0039: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 84.665869][ T295] EXT4-fs (loop3): unmounting filesystem. [ 84.773069][ T4119] netlink: 'syz.2.1691': attribute type 16 has an invalid length. [ 84.781138][ T4119] netlink: 'syz.2.1691': attribute type 3 has an invalid length. [ 84.809106][ T4119] netlink: 64066 bytes leftover after parsing attributes in process `syz.2.1691'. [ 84.812346][ T28] audit: type=1400 audit(2000000010.239:21341): avc: denied { write } for pid=4120 comm="syz.4.1692" name="ptp0" dev="devtmpfs" ino=172 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:clock_device_t tclass=chr_file permissive=1 [ 84.851021][ T954] usb 2-1: USB disconnect, device number 20 [ 84.852616][ T4123] loop2: detected capacity change from 0 to 256 [ 84.865905][ T4123] exfat: Unknown parameter '+:DiFSI/ulϖr`Wgը@ /EB&-_nzrǽml늃rgSk:EgHϯ.ޗ7' [ 84.885876][ T4125] loop4: detected capacity change from 0 to 2048 [ 84.898765][ T4123] loop2: detected capacity change from 0 to 512 [ 84.905268][ T4123] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 84.916973][ T4123] EXT4-fs (loop2): 1 truncate cleaned up [ 84.918140][ T4125] Alternate GPT is invalid, using primary GPT. [ 84.922525][ T4123] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 84.928779][ T4125] loop4: p2 p3 p7 [ 84.940855][ T4123] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2213: inode #15: comm syz.2.1693: corrupted in-inode xattr [ 84.953115][ T4123] EXT4-fs warning (device loop2): ext4_xattr_set_entry:1745: inode #15: comm syz.2.1693: unable to update i_inline_off [ 84.965868][ T4123] EXT4-fs error (device loop2): ext4_xattr_ibody_find:2213: inode #15: comm syz.2.1693: corrupted in-inode xattr [ 84.981761][ T3975] EXT4-fs (loop2): unmounting filesystem. [ 84.987478][ T24] usb 4-1: new high-speed USB device number 22 using dummy_hcd [ 85.011796][ T4128] netlink: 64 bytes leftover after parsing attributes in process `syz.4.1695'. [ 85.082039][ T4147] loop2: detected capacity change from 0 to 256 [ 85.173042][ T4164] loop2: detected capacity change from 0 to 2048 [ 85.187152][ T4164] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 85.195587][ T4164] ext4 filesystem being mounted at /30/file0 supports timestamps until 2038 (0x7fffffff) [ 85.210674][ T3975] EXT4-fs (loop2): unmounting filesystem. [ 85.361995][ T28] audit: type=1400 audit(2000000010.789:21342): avc: denied { shutdown } for pid=4177 comm="syz.1.1717" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bluetooth_socket permissive=1 [ 85.386108][ T6] usb 5-1: new high-speed USB device number 19 using dummy_hcd [ 85.413317][ T4181] loop1: detected capacity change from 0 to 8192 [ 85.420626][ T4181] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 85.487026][ T4181] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 85.496144][ T4181] FAT-fs (loop1): Filesystem has been set read-only [ 85.516148][ T24] usb 4-1: New USB device found, idVendor=0408, idProduct=4030, bcdDevice=fa.f1 [ 85.525113][ T24] usb 4-1: New USB device strings: Mfr=29, Product=2, SerialNumber=3 [ 85.533195][ T24] usb 4-1: Product: syz [ 85.537367][ T24] usb 4-1: Manufacturer: syz [ 85.541896][ T24] usb 4-1: SerialNumber: syz [ 85.547748][ T24] usb 4-1: config 0 descriptor?? [ 85.586455][ T24] usb 4-1: Found UVC 0.00 device syz (0408:4030) [ 85.592913][ T24] usb 4-1: No valid video chain found. [ 85.696172][ T954] usb 3-1: new high-speed USB device number 20 using dummy_hcd [ 85.776174][ T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 85.787330][ T6] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 85.789536][ T24] usb 4-1: USB disconnect, device number 22 [ 85.796838][ T6] usb 5-1: New USB device found, idVendor=172f, idProduct=0032, bcdDevice= 0.00 [ 85.796895][ T6] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 85.819839][ T6] usb 5-1: config 0 descriptor?? [ 86.056165][ T954] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 86.067080][ T954] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 86.076820][ T954] usb 3-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 86.085750][ T954] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 86.094454][ T954] usb 3-1: config 0 descriptor?? [ 86.307431][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.314460][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.321486][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.328387][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.335405][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.342229][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.347695][ T28] audit: type=1400 audit(2000000011.779:21343): avc: denied { read } for pid=4204 comm="syz.3.1729" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 86.349292][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.377032][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.383846][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.390674][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.397507][ T6] waltop 0003:172F:0032.003A: unknown main item tag 0x0 [ 86.404922][ T6] waltop 0003:172F:0032.003A: hidraw0: USB HID v0.00 Device [HID 172f:0032] on usb-dummy_hcd.4-1/input0 [ 86.555975][ T4227] loop1: detected capacity change from 0 to 512 [ 86.561211][ T24] usb 5-1: USB disconnect, device number 19 [ 86.568025][ T4227] EXT4-fs (loop1): feature flags set on rev 0 fs, running e2fsck is recommended [ 86.588026][ T954] hid-steam 0003:28DE:1142.003B: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0 [ 86.588604][ T4227] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.1739: bg 0: block 64: padding at end of block bitmap is not set [ 86.600292][ T954] hid-steam 0003:28DE:1142.003C: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.2-1/input0 [ 86.613137][ T4227] Quota error (device loop1): write_blk: dquota write failed [ 86.631419][ T4227] Quota error (device loop1): qtree_write_dquot: Error -117 occurred while creating quota [ 86.642656][ T4227] EXT4-fs error (device loop1): ext4_acquire_dquot:6764: comm syz.1.1739: Failed to acquire dquot type 0 [ 86.654273][ T4227] EXT4-fs (loop1): 1 truncate cleaned up [ 86.660095][ T4227] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 86.675826][ T4227] Quota error (device loop1): write_blk: dquota write failed [ 86.683819][ T4227] Quota error (device loop1): qtree_write_dquot: Error -28 occurred while creating quota [ 86.686090][ T954] hid-steam 0003:28DE:1142.003B: Steam wireless receiver connected [ 86.693655][ T4227] EXT4-fs error (device loop1): ext4_acquire_dquot:6764: comm syz.1.1739: Failed to acquire dquot type 0 [ 86.722354][ T291] EXT4-fs (loop1): unmounting filesystem. [ 86.735478][ T4235] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1741'. [ 86.792488][ T24] usb 3-1: USB disconnect, device number 20 [ 86.799204][ T24] hid-steam 0003:28DE:1142.003B: Steam wireless receiver disconnected [ 87.006160][ T954] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 87.096984][ T4246] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 87.230563][ T4269] netlink: 8 bytes leftover after parsing attributes in process `syz.4.1758'. [ 87.240564][ T4269] netlink: 36 bytes leftover after parsing attributes in process `syz.4.1758'. [ 87.246109][ T954] usb 4-1: Using ep0 maxpacket: 16 [ 87.284894][ T4279] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 87.293787][ T4279] SELinux: failed to load policy [ 87.366144][ T954] usb 4-1: config 0 has an invalid interface number: 251 but max is 0 [ 87.384882][ T954] usb 4-1: config 0 has no interface number 0 [ 87.391032][ T954] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 87.410836][ T954] usb 4-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 87.487341][ T4303] netlink: 'syz.4.1775': attribute type 11 has an invalid length. [ 87.518169][ T4282] loop2: detected capacity change from 0 to 40427 [ 87.525972][ T4282] F2FS-fs (loop2): invalid crc value [ 87.533373][ T4282] F2FS-fs (loop2): Found nat_bits in checkpoint [ 87.571719][ T4282] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 87.586119][ T954] usb 4-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 87.595595][ T954] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 87.603867][ T3975] syz-executor: attempt to access beyond end of device [ 87.603867][ T3975] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 87.604135][ T954] usb 4-1: Product: syz [ 87.622039][ T954] usb 4-1: Manufacturer: syz [ 87.626677][ T954] usb 4-1: SerialNumber: syz [ 87.631853][ T954] usb 4-1: config 0 descriptor?? [ 87.656276][ T4237] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 87.665105][ T4237] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 87.881822][ T4237] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 87.888920][ T4237] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 87.952298][ T4335] SELinux: policydb magic number 0x0 does not match expected magic number 0xf97cff8c [ 87.962202][ T4335] SELinux: failed to load policy [ 87.967069][ T24] usb 5-1: new full-speed USB device number 20 using dummy_hcd [ 87.996325][ T6] usb 3-1: new high-speed USB device number 21 using dummy_hcd [ 88.016438][ T28] audit: type=1400 audit(2000000013.449:21344): avc: denied { setopt } for pid=4342 comm="syz.1.1793" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 88.080830][ T4350] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 88.105425][ T28] audit: type=1400 audit(2000000013.529:21345): avc: denied { unlink } for pid=4353 comm="syz.1.1798" name="#1" dev="tmpfs" ino=1777 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=chr_file permissive=1 [ 88.286176][ T24] usb 5-1: not running at top speed; connect to a high speed hub [ 88.366171][ T24] usb 5-1: config 95 has an invalid interface number: 1 but max is 0 [ 88.374393][ T24] usb 5-1: config 95 has no interface number 0 [ 88.380638][ T24] usb 5-1: config 95 interface 1 has no altsetting 0 [ 88.396145][ T297] usb 2-1: new high-speed USB device number 21 using dummy_hcd [ 88.396148][ T6] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 88.414195][ T6] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 88.425135][ T6] usb 3-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0 [ 88.435102][ T6] usb 3-1: config 0 interface 0 has no altsetting 0 [ 88.441846][ T6] usb 3-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00 [ 88.450741][ T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.459081][ T6] usb 3-1: config 0 descriptor?? [ 88.576159][ T954] asix 4-1:0.251 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 88.586803][ T954] asix 4-1:0.251 (unnamed net_device) (uninitialized): Error reading PHY_ID register: ffffffb9 [ 88.597282][ T954] asix: probe of 4-1:0.251 failed with error -71 [ 88.605843][ T954] usb 4-1: USB disconnect, device number 23 [ 88.626151][ T24] usb 5-1: string descriptor 0 read error: -22 [ 88.632459][ T24] usb 5-1: New USB device found, idVendor=0763, idProduct=2030, bcdDevice=79.79 [ 88.641624][ T297] usb 2-1: Using ep0 maxpacket: 32 [ 88.646587][ T24] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 88.766189][ T297] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 88.777205][ T297] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 88.786809][ T297] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 88.795766][ T297] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 88.804020][ T297] usb 2-1: config 0 descriptor?? [ 88.846421][ T297] hub 2-1:0.0: USB hub found [ 88.936662][ T6] zeroplus 0003:0C12:0005.003D: unknown main item tag 0x0 [ 88.943879][ T6] zeroplus 0003:0C12:0005.003D: unknown main item tag 0x0 [ 88.950947][ T6] zeroplus 0003:0C12:0005.003D: unknown main item tag 0x0 [ 88.958088][ T6] zeroplus 0003:0C12:0005.003D: unknown main item tag 0x0 [ 88.965135][ T6] zeroplus 0003:0C12:0005.003D: unknown main item tag 0x0 [ 88.972677][ T6] zeroplus 0003:0C12:0005.003D: hidraw0: USB HID v0.00 Device [HID 0c12:0005] on usb-dummy_hcd.2-1/input0 [ 88.984624][ T6] zeroplus 0003:0C12:0005.003D: no inputs found [ 89.066167][ T297] hub 2-1:0.0: 1 port detected [ 89.093003][ T4362] netlink: 'syz.0.1811': attribute type 10 has an invalid length. [ 89.100884][ T4362] netem: change failed [ 89.121198][ T6] usb 5-1: USB disconnect, device number 20 [ 89.141772][ T611] usb 3-1: USB disconnect, device number 21 [ 89.276124][ T297] hub 2-1:0.0: hub_hub_status failed (err = -71) [ 89.282642][ T297] hub 2-1:0.0: config failed, can't get hub status (err -71) [ 89.396101][ T297] usbhid 2-1:0.0: can't add hid device: -71 [ 89.402101][ T297] usbhid: probe of 2-1:0.0 failed with error -71 [ 89.436323][ T297] usb 2-1: USB disconnect, device number 21 [ 89.720882][ T4373] tap0: tun_chr_ioctl cmd 2147767517 [ 89.956836][ T4367] loop4: detected capacity change from 0 to 40427 [ 89.969154][ T4367] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 89.977709][ T4367] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 90.007803][ T4403] loop0: detected capacity change from 0 to 256 [ 90.010844][ T4367] F2FS-fs (loop4): invalid crc value [ 90.051829][ T4367] F2FS-fs (loop4): Found nat_bits in checkpoint [ 90.109219][ T4367] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 90.126397][ T4367] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 90.151135][ T4428] input: syz0 as /devices/virtual/input/input50 [ 90.179935][ T292] syz-executor: attempt to access beyond end of device [ 90.179935][ T292] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 90.250704][ T4435] netpci0: tun_chr_ioctl cmd 1074025677 [ 90.266762][ T4435] netpci0: linktype set to 0 [ 90.323723][ T4442] loop2: detected capacity change from 0 to 256 [ 90.365943][ T4442] exFAT-fs (loop2): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 90.384546][ T4451] loop4: detected capacity change from 0 to 1024 [ 90.400328][ T4442] exFAT-fs (loop2): hint_cluster is invalid (17) [ 90.416141][ T611] usb 2-1: new high-speed USB device number 22 using dummy_hcd [ 90.448801][ T4451] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 90.476949][ T4463] loop0: detected capacity change from 0 to 1024 [ 90.482321][ T292] EXT4-fs (loop4): unmounting filesystem. [ 90.493956][ T4463] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 90.523001][ T4463] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 90.563335][ T293] EXT4-fs (loop0): unmounting filesystem. [ 90.581346][ T4477] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 90.633442][ T4485] xt_bpf: check failed: parse error [ 90.640546][ T4487] loop4: detected capacity change from 0 to 512 [ 90.681794][ T4487] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 90.690776][ T4487] ext4 filesystem being mounted at /405/bus supports timestamps until 2038 (0x7fffffff) [ 90.710125][ T4493] netlink: 'syz.0.1859': attribute type 12 has an invalid length. [ 90.721395][ T292] EXT4-fs (loop4): unmounting filesystem. [ 90.752596][ T4507] xt_hashlimit: size too large, truncated to 1048576 [ 90.786119][ T611] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 90.806410][ T611] usb 2-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 90.817551][ T611] usb 2-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0 [ 90.828243][ T611] usb 2-1: config 0 interface 0 has no altsetting 0 [ 90.834675][ T611] usb 2-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00 [ 90.844663][ T611] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 90.853252][ T611] usb 2-1: config 0 descriptor?? [ 90.917525][ T4535] input: syz1 as /devices/virtual/input/input51 [ 90.969127][ T28] audit: type=1400 audit(2000000000.239:21346): avc: denied { ioctl } for pid=4545 comm="syz.3.1885" path="/dev/usbmon0" dev="devtmpfs" ino=139 ioctlcmd=0x9204 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:usbmon_device_t tclass=chr_file permissive=1 [ 91.014339][ T4552] loop4: detected capacity change from 0 to 256 [ 91.021843][ T4552] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 91.133161][ T4589] bridge0: port 1(bridge_slave_0) entered blocking state [ 91.140196][ T4589] bridge0: port 1(bridge_slave_0) entered forwarding state [ 91.141183][ T4591] loop4: detected capacity change from 0 to 512 [ 91.172123][ T4591] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 91.181408][ T4591] ext4 filesystem being mounted at /420/file0 supports timestamps until 2038 (0x7fffffff) [ 91.212184][ T292] EXT4-fs (loop4): unmounting filesystem. [ 91.238745][ T4613] loop3: detected capacity change from 0 to 256 [ 91.257363][ T4613] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 91.273592][ T4613] exFAT-fs (loop3): hint_cluster is invalid (65537) [ 91.281396][ T4613] exFAT-fs (loop3): error, failed to bmap (inode : ffff88812c923250 iblock : 8, err : -5) [ 91.293618][ T4613] exFAT-fs (loop3): Filesystem has been set read-only [ 91.314378][ T4613] exFAT-fs (loop3): error, invalid access to FAT (entry 0x00010000) [ 91.323264][ T611] zeroplus 0003:0C12:0005.003E: unknown main item tag 0x0 [ 91.331544][ T611] zeroplus 0003:0C12:0005.003E: unknown main item tag 0x0 [ 91.339434][ T4623] exFAT-fs (loop3): error, invalid access to FAT (entry 0x00010000) [ 91.349145][ T611] zeroplus 0003:0C12:0005.003E: unknown main item tag 0x0 [ 91.356297][ T611] zeroplus 0003:0C12:0005.003E: unknown main item tag 0x0 [ 91.368276][ T4623] exFAT-fs (loop3): error, failed to bmap (inode : ffff88812c923250 iblock : 8, err : -5) [ 91.378363][ T611] zeroplus 0003:0C12:0005.003E: unknown main item tag 0x0 [ 91.387293][ T611] zeroplus 0003:0C12:0005.003E: hidraw0: USB HID v0.00 Device [HID 0c12:0005] on usb-dummy_hcd.1-1/input0 [ 91.399687][ T4623] exFAT-fs (loop3): error, invalid access to FAT (entry 0x00010000) [ 91.411088][ T611] zeroplus 0003:0C12:0005.003E: no inputs found [ 91.422680][ T4626] SELinux: truncated policydb string identifier [ 91.430460][ T4626] SELinux: failed to load policy [ 91.526587][ T1353] usb 2-1: USB disconnect, device number 22 [ 91.585765][ T4657] loop3: detected capacity change from 0 to 16 [ 91.592696][ T4657] erofs: (device loop3): mounted with root inode @ nid 36. [ 91.602602][ T4633] loop0: detected capacity change from 0 to 40427 [ 91.610238][ T4633] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 91.618158][ T4633] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 91.627473][ T4633] F2FS-fs (loop0): invalid crc value [ 91.633969][ T4633] F2FS-fs (loop0): Found nat_bits in checkpoint [ 91.658407][ T4633] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 91.665583][ T4633] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 91.776083][ T19] usb 5-1: new high-speed USB device number 21 using dummy_hcd [ 91.821969][ T611] usb 3-1: new high-speed USB device number 22 using dummy_hcd [ 91.854308][ T4689] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1948'. [ 91.863479][ T4689] netlink: 96 bytes leftover after parsing attributes in process `syz.3.1948'. [ 91.902487][ T4697] loop3: detected capacity change from 0 to 256 [ 91.911728][ T4697] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 92.021502][ T4710] loop3: detected capacity change from 0 to 2048 [ 92.040712][ T4715] loop0: detected capacity change from 0 to 128 [ 92.045445][ T4710] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 92.053222][ T4715] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 92.063635][ T4710] ext4 filesystem being mounted at /417/file0 supports timestamps until 2038 (0x7fffffff) [ 92.063863][ T4715] ext4 filesystem being mounted at /376/mnt supports timestamps until 2038 (0x7fffffff) [ 92.095261][ T293] EXT4-fs (loop0): unmounting filesystem. [ 92.103282][ T295] EXT4-fs (loop3): unmounting filesystem. [ 92.129319][ T4732] loop0: detected capacity change from 0 to 1024 [ 92.136308][ T19] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 92.147025][ T4732] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 92.196143][ T611] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 92.207111][ T611] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 92.215985][ T28] audit: type=1400 audit(2000000001.479:21347): avc: denied { search } for pid=4731 comm="syz.0.1966" name="/" dev="configfs" ino=13719 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 92.239013][ T611] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 92.248173][ T611] usb 3-1: config 0 descriptor?? [ 92.253066][ T28] audit: type=1400 audit(2000000001.479:21348): avc: denied { write } for pid=4731 comm="syz.0.1966" name="/" dev="configfs" ino=13719 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=dir permissive=1 [ 92.276211][ T28] audit: type=1400 audit(2000000001.509:21349): avc: denied { unmount } for pid=293 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:configfs_t tclass=filesystem permissive=1 [ 92.316172][ T19] usb 5-1: New USB device found, idVendor=1b5c, idProduct=0105, bcdDevice= 1.f1 [ 92.325482][ T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 92.333425][ T19] usb 5-1: Product: syz [ 92.337395][ T19] usb 5-1: Manufacturer: syz [ 92.341862][ T19] usb 5-1: SerialNumber: syz [ 92.356260][ T19] usb 5-1: config 0 descriptor?? [ 92.406740][ T19] ftdi_sio 5-1:0.0: FTDI USB Serial Device converter detected [ 92.414548][ T19] usb 5-1: Detected SIO [ 92.424439][ T19] usb 5-1: FTDI USB Serial Device converter now attached to ttyUSB0 [ 92.528409][ T4730] loop3: detected capacity change from 0 to 131072 [ 92.537049][ T4730] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (6747996280161764837, 6747996279205463525) [ 92.558374][ T4730] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 92.618801][ T19] usb 5-1: USB disconnect, device number 21 [ 92.636207][ T19] ftdi_sio ttyUSB0: FTDI USB Serial Device converter now disconnected from ttyUSB0 [ 92.645576][ T19] ftdi_sio 5-1:0.0: device disconnected [ 92.756658][ T611] keytouch 0003:0926:3333.003F: fixing up Keytouch IEC report descriptor [ 92.766330][ T611] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.003F/input/input52 [ 92.847371][ T611] keytouch 0003:0926:3333.003F: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 92.966383][ T24] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 93.018180][ T4753] netlink: 8 bytes leftover after parsing attributes in process `syz.1.1974'. [ 93.032949][ T4755] tipc: Started in network mode [ 93.037704][ T4755] tipc: Node identity ac14140f, cluster identity 4711 [ 93.044297][ T4755] tipc: New replicast peer: 255.255.255.255 [ 93.050422][ T4755] tipc: Enabled bearer , priority 10 [ 93.077172][ T4761] rtc_cmos 00:00: Alarms can be up to one day in the future [ 93.097316][ T28] audit: type=1400 audit(2000000002.369:21350): avc: denied { unmount } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=filesystem permissive=1 [ 93.146289][ T4777] netlink: 60 bytes leftover after parsing attributes in process `syz.1.1985'. [ 93.336127][ T24] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 93.338540][ T4803] loop1: detected capacity change from 0 to 128 [ 93.352780][ T4803] FAT-fs (loop1): Invalid FSINFO signature: 0x41615252, 0x614101ff (sector = 1) [ 93.356160][ T24] usb 4-1: config 0 interface 0 altsetting 129 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 93.372946][ T24] usb 4-1: config 0 interface 0 altsetting 129 endpoint 0x81 has invalid wMaxPacketSize 0 [ 93.383128][ T24] usb 4-1: config 0 interface 0 has no altsetting 0 [ 93.393713][ T24] usb 4-1: New USB device found, idVendor=0c12, idProduct=0005, bcdDevice= 0.00 [ 93.403252][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 93.407396][ T1353] usb 3-1: USB disconnect, device number 22 [ 93.411752][ T24] usb 4-1: config 0 descriptor?? [ 93.423158][ T4797] loop4: detected capacity change from 0 to 40427 [ 93.430486][ T4797] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 93.438238][ T4797] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 93.447226][ T4797] F2FS-fs (loop4): invalid crc value [ 93.453660][ T4797] F2FS-fs (loop4): Found nat_bits in checkpoint [ 93.477065][ T4797] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 93.484419][ T4797] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 93.493226][ T19] rtc_cmos 00:00: Alarms can be up to one day in the future [ 93.501600][ T19] rtc_cmos 00:00: Alarms can be up to one day in the future [ 93.509115][ T19] rtc_cmos 00:00: Alarms can be up to one day in the future [ 93.516720][ T19] rtc_cmos 00:00: Alarms can be up to one day in the future [ 93.523944][ T19] rtc rtc0: __rtc_set_alarm: err=-22 [ 93.570656][ T4813] loop4: detected capacity change from 0 to 2048 [ 93.587825][ T4813] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 93.596298][ T4813] ext4 filesystem being mounted at /436/file0 supports timestamps until 2038 (0x7fffffff) [ 93.609228][ T4813] fs-verity (loop4, inode 13): Error -22 reading file data [ 93.616448][ T4813] fs-verity (loop4, inode 13): Error -22 building Merkle tree [ 93.627509][ T292] EXT4-fs (loop4): unmounting filesystem. [ 93.696155][ T297] usb 2-1: new high-speed USB device number 23 using dummy_hcd [ 93.906656][ T24] zeroplus 0003:0C12:0005.0040: unknown main item tag 0x0 [ 93.915877][ T24] zeroplus 0003:0C12:0005.0040: unknown main item tag 0x0 [ 93.916101][ T1353] usb 5-1: new high-speed USB device number 22 using dummy_hcd [ 93.923511][ T24] zeroplus 0003:0C12:0005.0040: unknown main item tag 0x0 [ 93.937328][ T4824] xt_TPROXY: Can be used only with -p tcp or -p udp [ 93.938179][ T24] zeroplus 0003:0C12:0005.0040: unknown main item tag 0x0 [ 93.951588][ T297] usb 2-1: Using ep0 maxpacket: 8 [ 93.956631][ T24] zeroplus 0003:0C12:0005.0040: unknown main item tag 0x0 [ 93.962951][ T4828] netlink: 'syz.2.2007': attribute type 7 has an invalid length. [ 93.964623][ T24] zeroplus 0003:0C12:0005.0040: hidraw0: USB HID v0.00 Device [HID 0c12:0005] on usb-dummy_hcd.3-1/input0 [ 93.982737][ T24] zeroplus 0003:0C12:0005.0040: no inputs found [ 94.096126][ T297] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 94.107037][ T297] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 94.116623][ T297] usb 2-1: New USB device found, idVendor=054c, idProduct=0ce6, bcdDevice= 0.00 [ 94.125538][ T297] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 94.134131][ T297] usb 2-1: config 0 descriptor?? [ 94.143166][ T19] usb 4-1: USB disconnect, device number 24 [ 94.176147][ T611] tipc: Node number set to 2886997007 [ 94.286142][ T1353] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 94.376150][ T1353] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 94.385367][ T1353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 94.393251][ T1353] usb 5-1: SerialNumber: syz [ 94.616881][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.624250][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.631605][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.638812][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.646005][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.653579][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.662107][ T297] playstation 0003:054C:0CE6.0041: unknown main item tag 0x0 [ 94.670237][ T297] playstation 0003:054C:0CE6.0041: hidraw0: USB HID v0.00 Device [HID 054c:0ce6] on usb-dummy_hcd.1-1/input0 [ 94.698152][ T28] audit: type=1400 audit(2000000003.969:21351): avc: denied { read } for pid=4839 comm="syz.3.2012" name="vga_arbiter" dev="devtmpfs" ino=3 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:xserver_misc_device_t tclass=chr_file permissive=1 [ 94.826183][ T297] playstation 0003:054C:0CE6.0041: Invalid reportID received, expected 9 got 0 [ 94.835373][ T297] playstation 0003:054C:0CE6.0041: Failed to retrieve DualSense pairing info: -22 [ 94.844972][ T297] playstation 0003:054C:0CE6.0041: Failed to get MAC address from DualSense [ 94.854241][ T297] playstation 0003:054C:0CE6.0041: Failed to create dualsense. [ 94.862124][ T297] playstation: probe of 0003:054C:0CE6.0041 failed with error -22 [ 94.923329][ T4853] loop3: detected capacity change from 0 to 256 [ 94.936180][ T1353] cdc_ether: probe of 5-1:1.0 failed with error -71 [ 94.943744][ T1353] usb 5-1: USB disconnect, device number 22 [ 94.971736][ T4860] incfs: Options parsing error. -22 [ 94.977064][ T4860] incfs: mount failed -22 [ 95.027391][ T19] usb 2-1: USB disconnect, device number 23 [ 95.069893][ T4869] tmpfs: Unknown parameter 'nolazytime' [ 95.086231][ T611] usb 3-1: new high-speed USB device number 23 using dummy_hcd [ 95.124209][ T4878] tun1: tun_chr_ioctl cmd 1074025677 [ 95.129768][ T4878] tun1: linktype set to 65534 [ 95.324500][ T4884] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 95.346097][ T611] usb 3-1: Using ep0 maxpacket: 16 [ 95.428763][ T28] audit: type=1400 audit(2000000004.699:21352): avc: denied { bind } for pid=4901 comm="syz.4.2041" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=icmp_socket permissive=1 [ 95.444283][ T4906] xt_NFQUEUE: number of total queues is 0 [ 95.448820][ T1353] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 95.460569][ T28] audit: type=1400 audit(2000000004.719:21353): avc: denied { name_bind } for pid=4901 comm="syz.4.2041" src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:port_t tclass=icmp_socket permissive=1 [ 95.482722][ T611] usb 3-1: config 0 has no interfaces? [ 95.485955][ T28] audit: type=1400 audit(2000000004.719:21354): avc: denied { node_bind } for pid=4901 comm="syz.4.2041" saddr=::8000:0:c000:0 src=512 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=icmp_socket permissive=1 [ 95.514593][ T28] audit: type=1326 audit(2000000004.779:21355): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4907 comm="syz.4.2044" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa9a7b7dff9 code=0x0 [ 95.555899][ T4920] loop0: detected capacity change from 0 to 512 [ 95.562738][ T4920] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 95.574622][ T4920] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a002c018, mo2=0002] [ 95.583181][ T4920] System zones: 1-12 [ 95.588228][ T4920] EXT4-fs (loop0): 1 truncate cleaned up [ 95.594105][ T4920] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 95.610130][ T293] EXT4-fs error (device loop0): mb_free_blocks:1815: group 0, inode 16: block 35:freeing already freed block (bit 34); block bitmap corrupt. [ 95.625650][ T293] EXT4-fs (loop0): unmounting filesystem. [ 95.637141][ T4930] loop0: detected capacity change from 0 to 512 [ 95.647417][ T4930] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 95.657014][ T4930] ext4 filesystem being mounted at /393/file0 supports timestamps until 2038 (0x7fffffff) [ 95.678369][ T4934] loop1: detected capacity change from 0 to 128 [ 95.685552][ T4934] FAT-fs (loop1): Directory bread(block 3236) failed [ 95.685610][ T293] EXT4-fs (loop0): unmounting filesystem. [ 95.692197][ T4934] FAT-fs (loop1): Directory bread(block 3237) failed [ 95.697769][ T611] usb 3-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 95.704638][ T4934] FAT-fs (loop1): Directory bread(block 3238) failed [ 95.713426][ T611] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 95.720859][ T4934] FAT-fs (loop1): Directory bread(block 3239) failed [ 95.728534][ T611] usb 3-1: Product: syz [ 95.739031][ T611] usb 3-1: Manufacturer: syz [ 95.743182][ T4934] FAT-fs (loop1): Directory bread(block 3240) failed [ 95.744731][ T611] usb 3-1: SerialNumber: syz [ 95.750721][ T1353] usb 4-1: Using ep0 maxpacket: 16 [ 95.755176][ T611] r8152-cfgselector 3-1: config 0 descriptor?? [ 95.760016][ T4934] FAT-fs (loop1): Directory bread(block 3241) failed [ 95.773011][ T4934] FAT-fs (loop1): Directory bread(block 3242) failed [ 95.780060][ T4934] FAT-fs (loop1): Directory bread(block 3243) failed [ 95.789342][ T4934] FAT-fs (loop1): Directory bread(block 3236) failed [ 95.795850][ T4934] FAT-fs (loop1): Directory bread(block 3237) failed [ 95.876114][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 95.887172][ T1353] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 95.898514][ T1353] usb 4-1: New USB device found, idVendor=046d, idProduct=ca03, bcdDevice= 0.00 [ 95.907506][ T1353] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 95.926279][ T1353] usb 4-1: config 0 descriptor?? [ 95.963672][ T4941] loop1: detected capacity change from 0 to 40427 [ 95.970615][ T4941] F2FS-fs (loop1): Insane cp_payload (553648128 >= 504) [ 95.977675][ T4941] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 95.986118][ T4941] F2FS-fs (loop1): fault_injection options not supported [ 95.993690][ T4941] F2FS-fs (loop1): invalid crc value [ 96.000110][ T4941] F2FS-fs (loop1): Found nat_bits in checkpoint [ 96.024311][ T4941] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 96.031744][ T4941] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 96.045219][ T291] syz-executor: attempt to access beyond end of device [ 96.045219][ T291] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 96.109362][ T28] kauditd_printk_skb: 2 callbacks suppressed [ 96.109378][ T28] audit: type=1400 audit(2000000005.381:21358): avc: denied { bind } for pid=4949 comm="syz.1.2059" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_xfrm_socket permissive=1 [ 96.240742][ T611] usb 3-1: USB disconnect, device number 23 [ 96.273811][ T4968] overlayfs: failed to clone lowerpath [ 96.286301][ T4970] A link change request failed with some changes committed already. Interface bridge_slave_0 may have been left with an inconsistent configuration, please check. [ 96.357405][ T28] audit: type=1326 audit(2000000005.631:21359): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.381369][ T28] audit: type=1326 audit(2000000005.631:21360): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=435 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.407041][ T1353] logitech 0003:046D:CA03.0042: item fetching failed at offset 0/5 [ 96.415103][ T1353] logitech 0003:046D:CA03.0042: parse failed [ 96.421181][ T1353] logitech: probe of 0003:046D:CA03.0042 failed with error -22 [ 96.432721][ T28] audit: type=1326 audit(2000000005.631:21361): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.456606][ T28] audit: type=1326 audit(2000000005.631:21362): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=434 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.480569][ T28] audit: type=1326 audit(2000000005.631:21363): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.502061][ T4972] loop1: detected capacity change from 0 to 40427 [ 96.504612][ T28] audit: type=1326 audit(2000000005.631:21364): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=424 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.534710][ T28] audit: type=1326 audit(2000000005.631:21365): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=4973 comm="syz.4.2070" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa9a7b7dff9 code=0x7ffc0000 [ 96.551829][ T4972] F2FS-fs (loop1): invalid crc_offset: 16 [ 96.565664][ T4972] F2FS-fs (loop1): Found nat_bits in checkpoint [ 96.604757][ T4972] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 96.616950][ T611] usb 4-1: USB disconnect, device number 25 [ 96.628262][ T4972] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=400000, run fsck to fix. [ 96.638610][ T4972] F2FS-fs (loop1): f2fs_check_nid_range: out-of-range nid=400000, run fsck to fix. [ 96.752395][ T28] audit: type=1400 audit(2000000006.021:21366): avc: denied { bind } for pid=4989 comm="syz.2.2075" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 96.819082][ T28] audit: type=1400 audit(2000000006.091:21367): avc: denied { unmount } for pid=3975 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=filesystem permissive=1 [ 96.856819][ T5007] loop2: detected capacity change from 0 to 512 [ 96.863352][ T5007] EXT4-fs: Ignoring removed i_version option [ 96.870859][ T5007] EXT4-fs: Ignoring removed nobh option [ 96.876944][ T5007] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 96.888427][ T5007] EXT4-fs (loop2): 1 truncate cleaned up [ 96.894062][ T5007] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 96.909901][ T3975] EXT4-fs (loop2): unmounting filesystem. [ 97.029743][ T5026] loop1: detected capacity change from 0 to 128 [ 97.182888][ T5037] loop1: detected capacity change from 0 to 128 [ 97.193867][ T5020] loop2: detected capacity change from 0 to 40427 [ 97.206388][ T5020] F2FS-fs (loop2): invalid crc value [ 97.206678][ T5037] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 97.213399][ T4983] loop4: detected capacity change from 0 to 131072 [ 97.226546][ T5037] ext4 filesystem being mounted at /406/mnt supports timestamps until 2038 (0x7fffffff) [ 97.227248][ T5020] F2FS-fs (loop2): Found nat_bits in checkpoint [ 97.254302][ T4983] F2FS-fs (loop4): Wrong CP boundary, start(512) end(1536) blocks(0) [ 97.263547][ T291] EXT4-fs (loop1): unmounting filesystem. [ 97.276559][ T4983] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 97.314768][ T5020] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 97.323502][ T4983] F2FS-fs (loop4): Found nat_bits in checkpoint [ 97.348384][ T3975] syz-executor: attempt to access beyond end of device [ 97.348384][ T3975] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 97.364197][ T4983] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 97.371606][ T4983] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 97.396234][ T5059] loop3: detected capacity change from 0 to 1024 [ 97.414773][ T5059] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 97.446928][ T5064] loop1: detected capacity change from 0 to 256 [ 97.459445][ T5064] exfat: Deprecated parameter 'namecase' [ 97.471817][ T295] EXT4-fs (loop3): unmounting filesystem. [ 97.472459][ T5064] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 97.533615][ T5071] loop1: detected capacity change from 0 to 2048 [ 97.578141][ T5071] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 97.601337][ T5071] ext4 filesystem being mounted at /413/file0 supports timestamps until 2038 (0x7fffffff) [ 97.623905][ T5071] fs-verity (loop1, inode 13): fs-verity keyring is empty, rejecting signed file! [ 97.648537][ T291] EXT4-fs (loop1): unmounting filesystem. [ 97.717854][ T5085] loop4: detected capacity change from 0 to 2048 [ 97.756544][ T5085] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 97.783033][ T292] EXT4-fs (loop4): unmounting filesystem. [ 97.806447][ T5075] loop3: detected capacity change from 0 to 40427 [ 97.816183][ T5075] F2FS-fs (loop3): Insane cp_payload (553648128 >= 504) [ 97.822967][ T5075] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 97.847264][ T5075] F2FS-fs (loop3): invalid crc value [ 97.866070][ T1353] usb 3-1: new high-speed USB device number 24 using dummy_hcd [ 97.894890][ T5075] F2FS-fs (loop3): Found nat_bits in checkpoint [ 97.939291][ T5075] F2FS-fs (loop3): Start checkpoint disabled! [ 97.966392][ T5075] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 97.973534][ T5075] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e6 [ 98.001287][ T5075] F2FS-fs (loop3): switch discard_unit option is not allowed [ 98.116067][ T1353] usb 3-1: Using ep0 maxpacket: 16 [ 98.236121][ T1353] usb 3-1: config 0 has an invalid interface number: 251 but max is 0 [ 98.254413][ T1353] usb 3-1: config 0 has no interface number 0 [ 98.260402][ T1353] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 98.280645][ T1353] usb 3-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 98.285449][ T5102] netlink: 8 bytes leftover after parsing attributes in process `syz.3.2120'. [ 98.403765][ T5083] loop1: detected capacity change from 0 to 131072 [ 98.411577][ T5083] F2FS-fs (loop1): invalid crc value [ 98.436892][ T5083] F2FS-fs (loop1): Found nat_bits in checkpoint [ 98.456136][ T1353] usb 3-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 98.465082][ T1353] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 98.486065][ T1353] usb 3-1: Product: syz [ 98.490070][ T1353] usb 3-1: Manufacturer: syz [ 98.494572][ T1353] usb 3-1: SerialNumber: syz [ 98.506560][ T5083] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e4 [ 98.517647][ T1353] usb 3-1: config 0 descriptor?? [ 98.528422][ T5083] F2FS-fs (loop1): sanity_check_inode: inode (ino=6, mode=41471) should not have inline_data, run fsck to fix [ 98.536171][ T5081] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 98.556095][ T5081] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 98.604114][ T5091] loop4: detected capacity change from 0 to 131072 [ 98.626736][ T5091] F2FS-fs (loop4): invalid crc value [ 98.647150][ T5104] loop3: detected capacity change from 0 to 40427 [ 98.655225][ T5104] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 98.664062][ T5104] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 98.672814][ T5091] F2FS-fs (loop4): Found nat_bits in checkpoint [ 98.686875][ T5104] F2FS-fs (loop3): Found nat_bits in checkpoint [ 98.732016][ T5091] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e4 [ 98.735402][ T5104] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 98.757821][ T5104] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 98.768713][ T5118] loop0: detected capacity change from 0 to 512 [ 98.777711][ T5118] EXT4-fs error (device loop0): ext4_orphan_get:1422: comm syz.0.2123: bad orphan inode 13 [ 98.790406][ T5081] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 98.802035][ T5121] SELinux: Context #! ./cgroup/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa [ 98.807415][ T5118] ext4_test_bit(bit=12, block=4) = 1 [ 98.824063][ T5081] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 98.896449][ T5118] is_bad_inode(inode)=0 [ 98.912672][ T5118] NEXT_ORPHAN(inode)=0 [ 98.916814][ T5118] max_ino=32 [ 98.920219][ T5118] i_nlink=1 [ 98.924019][ T5118] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 98.952776][ T293] EXT4-fs (loop0): unmounting filesystem. [ 99.084828][ T5153] loop1: detected capacity change from 0 to 256 [ 99.113481][ T5157] loop3: detected capacity change from 0 to 256 [ 99.128559][ T5157] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xaed0c81c, utbl_chksum : 0xe619d30d) [ 99.198163][ T5171] loop0: detected capacity change from 0 to 1024 [ 99.207287][ T5171] EXT4-fs: Ignoring removed nomblk_io_submit option [ 99.231847][ T5171] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 99.242026][ T5171] EXT4-fs (loop0): unmounting filesystem. [ 99.319710][ T5195] SELinux: failed to load policy [ 99.351708][ T5205] loop3: detected capacity change from 0 to 256 [ 99.363976][ T5205] FAT-fs (loop3): Directory bread(block 64) failed [ 99.370571][ T5205] FAT-fs (loop3): Directory bread(block 65) failed [ 99.377161][ T1353] asix 3-1:0.251 (unnamed net_device) (uninitialized): Interface mode not supported by driver [ 99.377169][ T5205] FAT-fs (loop3): Directory bread(block 66) failed [ 99.377189][ T5205] FAT-fs (loop3): Directory bread(block 67) failed [ 99.396095][ T1353] asix: probe of 3-1:0.251 failed with error -524 [ 99.405738][ T5205] FAT-fs (loop3): Directory bread(block 68) failed [ 99.412963][ T5205] FAT-fs (loop3): Directory bread(block 69) failed [ 99.430918][ T5205] FAT-fs (loop3): Directory bread(block 70) failed [ 99.438437][ T5210] netlink: 80 bytes leftover after parsing attributes in process `syz.4.2164'. [ 99.447535][ T5205] FAT-fs (loop3): Directory bread(block 71) failed [ 99.456341][ T5205] FAT-fs (loop3): Directory bread(block 72) failed [ 99.468747][ T5205] FAT-fs (loop3): Directory bread(block 73) failed [ 99.478681][ T5212] netlink: 4 bytes leftover after parsing attributes in process `syz.4.2165'. [ 99.579392][ T1353] usb 3-1: USB disconnect, device number 24 [ 99.601006][ T5222] loop3: detected capacity change from 0 to 1024 [ 99.609669][ T5222] EXT4-fs (loop3): revision level too high, forcing read-only mode [ 99.610072][ T5225] syz.0.2169[5225] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.618077][ T5222] EXT4-fs (loop3): orphan cleanup on readonly fs [ 99.626254][ T5225] syz.0.2169[5225] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 99.629531][ T5222] EXT4-fs warning (device loop3): ext4_enable_quotas:6999: Failed to enable quota tracking (type=0, err=-5, ino=3). Please run e2fsck to fix. [ 99.664568][ T5222] EXT4-fs (loop3): Cannot turn on quotas: error -5 [ 99.676591][ T5222] EXT4-fs (loop3): 1 truncate cleaned up [ 99.686207][ T5222] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 99.746457][ T295] EXT4-fs (loop3): unmounting filesystem. [ 99.815505][ T5240] netlink: 12 bytes leftover after parsing attributes in process `syz.4.2176'. [ 99.849047][ T5245] loop0: detected capacity change from 0 to 256 [ 99.856166][ T5245] exfat: Deprecated parameter 'utf8' [ 99.861377][ T5245] exfat: Deprecated parameter 'utf8' [ 99.878387][ T5245] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0x818efa41, utbl_chksum : 0xe619d30d) [ 100.076094][ T5183] loop1: detected capacity change from 0 to 131072 [ 100.094359][ T5183] F2FS-fs (loop1): Test dummy encryption mode enabled [ 100.108132][ T5183] F2FS-fs (loop1): invalid crc value [ 100.123061][ T5183] F2FS-fs (loop1): Found nat_bits in checkpoint [ 100.148955][ T5183] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 100.202949][ T5295] loop0: detected capacity change from 0 to 128 [ 100.227526][ T5295] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 100.314620][ T1141] FAT-fs (loop0): Invalid FSINFO signature: 0x00000000, 0x61417272 (sector = 1) [ 100.410454][ T5307] kvm [5306]: vcpu0, guest rIP: 0xfff0 Hyper-V unhandled wrmsr: 0x40000004 data 0x0 [ 100.515800][ T5292] loop2: detected capacity change from 0 to 40427 [ 100.519134][ T5312] loop3: detected capacity change from 0 to 16 [ 100.534772][ T5312] erofs: (device loop3): mounted with root inode @ nid 36. [ 100.551502][ T5312] erofs: (device loop3): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 100.561818][ T5292] F2FS-fs (loop2): Found nat_bits in checkpoint [ 100.575221][ T5312] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[1851] [ 100.595405][ T5312] erofs: (device loop3): z_erofs_read_folio: failed to read, err [-117] [ 100.602494][ T5329] erofs: (device loop3): z_erofs_readahead: readahead error at page 13 @ nid 36 [ 100.615153][ T5329] erofs: (device loop3): z_erofs_readahead: readahead error at page 8 @ nid 36 [ 100.623476][ T5331] tap0: tun_chr_ioctl cmd 2147767506 [ 100.624366][ T5329] erofs: (device loop3): z_erofs_readahead: readahead error at page 6 @ nid 36 [ 100.629775][ T5292] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 100.639480][ T5329] erofs: (device loop3): z_erofs_readahead: readahead error at page 4 @ nid 36 [ 100.655829][ T5329] erofs: (device loop3): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36 [ 100.666369][ T5329] erofs: (device loop3): z_erofs_readahead: readahead error at page 0 @ nid 36 [ 100.676156][ T5329] syz.3.2206: attempt to access beyond end of device [ 100.676156][ T5329] loop3: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 100.690433][ T5329] syz.3.2206: attempt to access beyond end of device [ 100.690433][ T5329] loop3: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 100.690863][ T3975] syz-executor: attempt to access beyond end of device [ 100.690863][ T3975] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 100.704480][ T5329] syz.3.2206: attempt to access beyond end of device [ 100.704480][ T5329] loop3: rw=524288, sector=16, nr_sectors = 8 limit=16 [ 100.704573][ T5329] syz.3.2206: attempt to access beyond end of device [ 100.704573][ T5329] loop3: rw=524288, sector=720, nr_sectors = 80 limit=16 [ 100.745417][ T5329] erofs: (device loop3): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[4055] [ 100.846684][ T5347] A link change request failed with some changes committed already. Interface lo may have been left with an inconsistent configuration, please check. [ 100.897456][ T5359] random: crng reseeded on system resumption [ 100.987227][ T5372] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 101.011619][ T5376] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2234'. [ 101.051002][ T5381] loop1: detected capacity change from 0 to 512 [ 101.066770][ T5383] tun0: tun_chr_ioctl cmd 1074812118 [ 101.072769][ T5381] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 101.128333][ T5381] EXT4-fs (loop1): revision level too high, forcing read-only mode [ 101.157224][ T5381] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 101.165442][ T5381] System zones: 0-1, 15-15, 18-18, 34-34 [ 101.187252][ T5381] EXT4-fs (loop1): orphan cleanup on readonly fs [ 101.193560][ T5381] __quota_error: 7 callbacks suppressed [ 101.193579][ T5381] Quota error (device loop1): v2_read_header: Failed header read: expected=8 got=0 [ 101.208883][ T5363] loop0: detected capacity change from 0 to 40427 [ 101.215780][ T5363] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504) [ 101.222742][ T5363] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 101.232093][ T5363] F2FS-fs (loop0): invalid crc value [ 101.237543][ T5381] EXT4-fs warning (device loop1): ext4_enable_quotas:6999: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 101.252675][ T5381] EXT4-fs (loop1): Cannot turn on quotas: error -22 [ 101.260299][ T5363] F2FS-fs (loop0): Found nat_bits in checkpoint [ 101.268147][ T5381] EXT4-fs error (device loop1): ext4_validate_block_bitmap:438: comm syz.1.2237: bg 0: block 40: padding at end of block bitmap is not set [ 101.282682][ T5381] EXT4-fs error (device loop1) in ext4_mb_clear_bb:6173: Corrupt filesystem [ 101.291797][ T5381] EXT4-fs (loop1): 1 truncate cleaned up [ 101.297597][ T5381] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 101.362467][ T291] EXT4-fs (loop1): unmounting filesystem. [ 101.396481][ T5363] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 101.403359][ T5363] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 101.429624][ T5363] F2FS-fs (loop0): Corrupted max_depth of 3: 8449 [ 101.454292][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.462277][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.469882][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.481027][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.498015][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.520792][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.528775][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.532626][ T5425] loop3: detected capacity change from 0 to 2048 [ 101.553828][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.562116][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.580814][ T5425] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 101.582840][ T5438] netlink: 12 bytes leftover after parsing attributes in process `syz.0.2253'. [ 101.599092][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.601683][ T295] EXT4-fs (loop3): unmounting filesystem. [ 101.609110][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.619290][ T5438] tipc: Started in network mode [ 101.619319][ T5438] tipc: Node identity 40060020000000006e, cluster identity 8 [ 101.631844][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.639823][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.647492][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.656109][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.664188][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.672438][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.680131][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.687661][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.695055][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.702462][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.709654][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.717114][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.724409][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.731830][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.739273][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.747421][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.755410][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.762744][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.769973][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.777255][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.784423][ T297] hid-generic 0000:0000:0000.0043: unknown main item tag 0x0 [ 101.791984][ T297] hid-generic 0000:0000:0000.0043: hidraw0: HID v0.00 Device [sy] on syz0 [ 101.823058][ T5452] netlink: 44 bytes leftover after parsing attributes in process `syz.4.2265'. [ 101.892916][ T5466] xt_bpf: check failed: parse error [ 101.974763][ T5485] loop2: detected capacity change from 0 to 1024 [ 101.987969][ T5485] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 101.999038][ T28] audit: type=1400 audit(2000000011.271:21374): avc: denied { setattr } for pid=5484 comm="syz.2.2282" name="file1" dev="loop2" ino=14 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 102.000027][ T5485] EXT4-fs error (device loop2): ext4_clear_blocks:883: inode #14: comm syz.2.2282: attempt to clear invalid blocks 1886221359 len 1 [ 102.036172][ T5485] EXT4-fs (loop2): Remounting filesystem read-only [ 102.051203][ T3975] EXT4-fs (loop2): unmounting filesystem. [ 102.503102][ T5532] A link change request failed with some changes committed already. Interface vcan0 may have been left with an inconsistent configuration, please check. [ 102.545693][ T5534] loop2: detected capacity change from 0 to 256 [ 102.556385][ T5534] exfat: Deprecated parameter 'utf8' [ 102.570658][ T5534] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xc61f63e4, utbl_chksum : 0xe619d30d) [ 102.582889][ T5539] loop0: detected capacity change from 0 to 128 [ 102.596149][ T28] audit: type=1400 audit(2000000011.861:21375): avc: denied { setattr } for pid=5533 comm="syz.2.2303" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 102.643284][ T5550] xt_hashlimit: size too large, truncated to 1048576 [ 102.764678][ T5567] loop0: detected capacity change from 0 to 1024 [ 102.787756][ T5567] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 102.798783][ T28] audit: type=1400 audit(2000000012.071:21376): avc: denied { create } for pid=5566 comm="syz.0.2318" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 102.806169][ T296] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 102.854064][ T28] audit: type=1400 audit(2000000012.121:21377): avc: denied { read } for pid=5566 comm="syz.0.2318" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop0" ino=18 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=lnk_file permissive=1 [ 102.901925][ T293] EXT4-fs (loop0): unmounting filesystem. [ 102.932084][ T5581] loop1: detected capacity change from 0 to 512 [ 102.938890][ T5581] EXT4-fs: Ignoring removed mblk_io_submit option [ 102.947789][ T5581] EXT4-fs error (device loop1): ext4_find_inline_data_nolock:164: inode #12: comm syz.1.2323: inline data xattr refers to an external xattr inode [ 102.962802][ T5581] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.2323: couldn't read orphan inode 12 (err -117) [ 102.976352][ T5581] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 102.998438][ T291] EXT4-fs (loop1): unmounting filesystem. [ 103.001019][ T5594] loop0: detected capacity change from 0 to 128 [ 103.022046][ T5598] loop2: detected capacity change from 0 to 256 [ 103.084936][ T5619] SELinux: failed to load policy [ 103.116164][ T296] usb 4-1: Using ep0 maxpacket: 16 [ 103.225534][ T5636] netlink: 64 bytes leftover after parsing attributes in process `syz.1.2349'. [ 103.253788][ T5638] loop2: detected capacity change from 0 to 2048 [ 103.298956][ T5638] Alternate GPT is invalid, using primary GPT. [ 103.305763][ T5638] loop2: p2 p3 p7 [ 103.396209][ T296] usb 4-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 103.405124][ T296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 103.413333][ T296] usb 4-1: Product: syz [ 103.417613][ T296] usb 4-1: Manufacturer: syz [ 103.422151][ T296] usb 4-1: SerialNumber: syz [ 103.427236][ T296] r8152-cfgselector 4-1: config 0 descriptor?? [ 103.543070][ T5653] netlink: 28 bytes leftover after parsing attributes in process `syz.2.2356'. [ 103.619154][ T5662] loop4: detected capacity change from 0 to 2048 [ 103.629199][ T5665] SELinux: policydb version 0 does not match my version range 15-33 [ 103.637283][ T5665] SELinux: failed to load policy [ 103.638446][ T5662] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 103.652830][ T5662] ext4 filesystem being mounted at /492/file supports timestamps until 2038 (0x7fffffff) [ 103.660227][ T5669] netlink: 'syz.2.2364': attribute type 11 has an invalid length. [ 103.678929][ T292] EXT4-fs (loop4): unmounting filesystem. [ 103.731559][ T5675] loop4: detected capacity change from 0 to 8192 [ 103.906159][ T296] r8152-cfgselector 4-1: Unknown version 0x0000 [ 103.913147][ T296] r8152-cfgselector 4-1: bad CDC descriptors [ 103.946142][ T296] r8152-cfgselector 4-1: Unknown version 0x0000 [ 103.955145][ T5703] serio: Serial port ptm0 [ 103.963338][ T296] r8152-cfgselector 4-1: USB disconnect, device number 26 [ 104.084756][ T5709] loop1: detected capacity change from 0 to 40427 [ 104.094000][ T5709] F2FS-fs (loop1): Found nat_bits in checkpoint [ 104.116722][ T5709] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 104.141161][ T291] syz-executor: attempt to access beyond end of device [ 104.141161][ T291] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 104.396141][ T1353] usb 5-1: new high-speed USB device number 23 using dummy_hcd [ 104.451299][ T5754] loop3: detected capacity change from 0 to 512 [ 104.458978][ T5754] EXT4-fs error (device loop3): __ext4_fill_super:5386: inode #2: comm syz.3.2399: casefold flag without casefold feature [ 104.472539][ T5754] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 104.482857][ T5754] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 104.506153][ T954] usb 3-1: new high-speed USB device number 25 using dummy_hcd [ 104.636078][ T1353] usb 5-1: Using ep0 maxpacket: 16 [ 104.686244][ T6] usb 2-1: new high-speed USB device number 24 using dummy_hcd [ 104.756151][ T954] usb 3-1: Using ep0 maxpacket: 8 [ 104.756194][ T296] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 104.768549][ T1353] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 104.779799][ T1353] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 104.792911][ T1353] usb 5-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 104.801896][ T1353] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 104.810165][ T1353] usb 5-1: config 0 descriptor?? [ 104.876208][ T954] usb 3-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 104.986227][ T954] usb 3-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d [ 104.996617][ T954] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105 [ 105.009933][ T954] usb 3-1: SerialNumber: syz [ 105.015528][ T954] usb 3-1: config 0 descriptor?? [ 105.056596][ T954] usb 3-1: Found UVC 0.00 device (05ac:8501) [ 105.064207][ T954] uvcvideo 3-1:0.0: Entity type for entity Output 255 was not initialized! [ 105.072871][ T954] usb 3-1: Failed to create links for entity 255 [ 105.079775][ T954] usb 3-1: Failed to register entities (-22). [ 105.136166][ T296] usb 4-1: config 0 has an invalid descriptor of length 23, skipping remainder of the config [ 105.146480][ T296] usb 4-1: config 0 has 1 interface, different from the descriptor's value: 2 [ 105.155332][ T296] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 2 [ 105.206236][ T6] usb 2-1: New USB device found, idVendor=0408, idProduct=4030, bcdDevice=fa.f1 [ 105.215787][ T6] usb 2-1: New USB device strings: Mfr=29, Product=2, SerialNumber=3 [ 105.223938][ T6] usb 2-1: Product: syz [ 105.228457][ T6] usb 2-1: Manufacturer: syz [ 105.232857][ T6] usb 2-1: SerialNumber: syz [ 105.237837][ T6] usb 2-1: config 0 descriptor?? [ 105.259182][ T954] usb 3-1: USB disconnect, device number 25 [ 105.276464][ T6] usb 2-1: Found UVC 0.00 device syz (0408:4030) [ 105.282751][ T6] usb 2-1: No valid video chain found. [ 105.289117][ T1353] input: HID 045e:07da as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:0.0/0003:045E:07DA.0044/input/input53 [ 105.346158][ T296] usb 4-1: New USB device found, idVendor=8086, idProduct=0b5b, bcdDevice=e1.c5 [ 105.355106][ T296] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 105.363197][ T296] usb 4-1: Product: syz [ 105.367280][ T296] usb 4-1: Manufacturer: syz [ 105.372332][ T296] usb 4-1: SerialNumber: syz [ 105.377769][ T1353] microsoft 0003:045E:07DA.0044: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.4-1/input0 [ 105.390623][ T296] usb 4-1: config 0 descriptor?? [ 105.478604][ T1353] usb 2-1: USB disconnect, device number 24 [ 105.656174][ T296] usb 4-1: Found UVC 34.00 device syz (8086:0b5b) [ 105.663155][ T296] usb 4-1: No valid video chain found. [ 105.669849][ T296] usb 4-1: USB disconnect, device number 27 [ 105.691859][ T954] usb 5-1: USB disconnect, device number 23 [ 105.767907][ T28] audit: type=1326 audit(2000000015.041:21378): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5757 comm="syz.2.2400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25c057dff9 code=0x7ffc0000 [ 105.792850][ T28] audit: type=1326 audit(2000000015.041:21379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5757 comm="syz.2.2400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25c057dff9 code=0x7ffc0000 [ 105.817352][ T28] audit: type=1326 audit(2000000015.041:21380): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5757 comm="syz.2.2400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7f25c057dff9 code=0x7ffc0000 [ 105.841671][ T28] audit: type=1326 audit(2000000015.041:21381): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5757 comm="syz.2.2400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25c057dff9 code=0x7ffc0000 [ 105.867067][ T28] audit: type=1326 audit(2000000015.041:21382): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=5757 comm="syz.2.2400" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f25c057dff9 code=0x7ffc0000 [ 105.904065][ T5760] loop2: detected capacity change from 0 to 1024 [ 105.911251][ T5760] EXT4-fs (loop2): revision level too high, forcing read-only mode [ 105.919617][ T5760] EXT4-fs (loop2): too many log groups per flexible block group [ 105.927745][ T5760] EXT4-fs (loop2): failed to initialize mballoc (-12) [ 105.934730][ T5760] EXT4-fs (loop2): mount failed [ 106.098376][ T5772] loop0: detected capacity change from 0 to 2048 [ 106.107305][ T5772] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 106.115924][ T5772] ext4 filesystem being mounted at /446/file0 supports timestamps until 2038 (0x7fffffff) [ 106.134032][ T293] EXT4-fs (loop0): unmounting filesystem. [ 106.143517][ T295] EXT4-fs (loop3): unmounting filesystem. [ 106.218463][ T5795] netlink: 'syz.4.2419': attribute type 12 has an invalid length. [ 106.292832][ T5823] loop2: detected capacity change from 0 to 256 [ 106.314982][ T5826] usb usb1: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 106.354430][ T5837] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 106.438958][ T5851] loop3: detected capacity change from 0 to 256 [ 106.445700][ T5851] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 106.700081][ T5893] loop4: detected capacity change from 0 to 256 [ 106.746508][ T5893] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xba7df490, utbl_chksum : 0xe619d30d) [ 106.959523][ T5918] tap0: tun_chr_ioctl cmd 1074025678 [ 106.976718][ T5918] tap0: group set to 0 [ 107.199539][ T5937] loop4: detected capacity change from 0 to 512 [ 107.206773][ T5937] EXT4-fs (loop4): feature flags set on rev 0 fs, running e2fsck is recommended [ 107.286853][ T5937] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.2480: bg 0: block 64: padding at end of block bitmap is not set [ 107.306332][ T5937] __quota_error: 88 callbacks suppressed [ 107.306353][ T5937] Quota error (device loop4): write_blk: dquota write failed [ 107.326666][ T5937] Quota error (device loop4): qtree_write_dquot: Error -117 occurred while creating quota [ 107.346127][ T5937] EXT4-fs error (device loop4): ext4_acquire_dquot:6764: comm syz.4.2480: Failed to acquire dquot type 0 [ 107.366220][ T5937] EXT4-fs (loop4): 1 truncate cleaned up [ 107.371710][ T5937] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 107.396896][ T5937] Quota error (device loop4): write_blk: dquota write failed [ 107.404240][ T5937] Quota error (device loop4): qtree_write_dquot: Error -28 occurred while creating quota [ 107.417882][ T5937] EXT4-fs error (device loop4): ext4_acquire_dquot:6764: comm syz.4.2480: Failed to acquire dquot type 0 [ 107.455362][ T292] EXT4-fs (loop4): unmounting filesystem. [ 107.584861][ T5979] input: syz1 as /devices/virtual/input/input54 [ 107.592161][ T5981] xt_hashlimit: size too large, truncated to 1048576 [ 107.663665][ T5990] loop3: detected capacity change from 0 to 512 [ 107.684967][ T5990] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 107.696123][ T5990] ext4 filesystem being mounted at /531/bus supports timestamps until 2038 (0x7fffffff) [ 107.725337][ T295] EXT4-fs (loop3): unmounting filesystem. [ 107.753240][ T6000] loop4: detected capacity change from 0 to 256 [ 107.769134][ T6000] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 107.811000][ T6006] usb usb8: Requested nonsensical USBDEVFS_URB_SHORT_NOT_OK. [ 107.824765][ T6010] netlink: 8 bytes leftover after parsing attributes in process `syz.2.2516'. [ 107.855887][ T6010] netlink: 36 bytes leftover after parsing attributes in process `syz.2.2516'. [ 107.967749][ T6035] loop3: detected capacity change from 0 to 256 [ 107.980212][ T6035] exfat: Unknown parameter '+:DiFSI/ulϖr`Wgը@ /EB&-_nzrǽml늃rgSk:EgHϯ.ޗ7' [ 108.016673][ T6038] ================================================================== [ 108.024665][ T6038] BUG: KASAN: use-after-free in cpu_map_enqueue+0xb4/0x370 [ 108.031687][ T6038] Read of size 8 at addr ffff8881176cf308 by task syz.1.2539/6038 [ 108.039323][ T6038] [ 108.041488][ T6038] CPU: 1 PID: 6038 Comm: syz.1.2539 Not tainted 6.1.99-syzkaller-00002-g8d298374716d #0 [ 108.051042][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 108.061060][ T6038] Call Trace: [ 108.064194][ T6038] [ 108.066946][ T6038] dump_stack_lvl+0x151/0x1b7 [ 108.071474][ T6038] ? nf_tcp_handle_invalid+0x3f1/0x3f1 [ 108.076866][ T6038] ? _printk+0xd1/0x111 [ 108.080873][ T6038] ? __virt_addr_valid+0x242/0x2f0 [ 108.085875][ T6038] print_report+0x158/0x4e0 [ 108.090351][ T6038] ? __virt_addr_valid+0x242/0x2f0 [ 108.095268][ T6038] ? kasan_complete_mode_report_info+0x90/0x1b0 [ 108.101528][ T6038] ? cpu_map_enqueue+0xb4/0x370 [ 108.106215][ T6038] kasan_report+0x13c/0x170 [ 108.110742][ T6038] ? cpu_map_enqueue+0xb4/0x370 [ 108.115548][ T6038] __asan_report_load8_noabort+0x14/0x20 [ 108.121165][ T6038] cpu_map_enqueue+0xb4/0x370 [ 108.125676][ T6038] xdp_do_redirect_frame+0x275/0x800 [ 108.130815][ T6038] bpf_test_run_xdp_live+0xc30/0x1f70 [ 108.136023][ T6038] ? __kasan_check_write+0x14/0x20 [ 108.140966][ T6038] ? bpf_test_run_xdp_live+0x7ae/0x1f70 [ 108.146333][ T6038] ? xdp_convert_md_to_buff+0x360/0x360 [ 108.152019][ T6038] ? bpf_dispatcher_change_prog+0xd9d/0xf20 [ 108.157843][ T6038] ? trace_raw_output_bpf_test_finish+0xd0/0xd0 [ 108.163903][ T6038] ? __kasan_check_write+0x14/0x20 [ 108.169372][ T6038] ? _copy_from_user+0x90/0xc0 [ 108.173973][ T6038] bpf_prog_test_run_xdp+0x7d1/0x1130 [ 108.179185][ T6038] ? dev_put+0x80/0x80 [ 108.183087][ T6038] ? __kasan_check_write+0x14/0x20 [ 108.188033][ T6038] ? fput+0x15b/0x1b0 [ 108.192386][ T6038] ? dev_put+0x80/0x80 [ 108.196573][ T6038] bpf_prog_test_run+0x3b0/0x630 [ 108.201800][ T6038] ? bpf_prog_query+0x260/0x260 [ 108.206540][ T6038] ? selinux_bpf+0xd2/0x100 [ 108.210964][ T6038] ? security_bpf+0x82/0xb0 [ 108.215601][ T6038] __sys_bpf+0x59f/0x7f0 [ 108.219748][ T6038] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 108.225046][ T6038] ? fpregs_restore_userregs+0x130/0x290 [ 108.230872][ T6038] __x64_sys_bpf+0x7c/0x90 [ 108.235284][ T6038] x64_sys_call+0x87f/0x9a0 [ 108.239699][ T6038] do_syscall_64+0x3b/0xb0 [ 108.243957][ T6038] ? clear_bhb_loop+0x55/0xb0 [ 108.248734][ T6038] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 108.254475][ T6038] RIP: 0033:0x7f400917dff9 [ 108.258704][ T6038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 108.278401][ T6038] RSP: 002b:00007f4008fff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 108.287015][ T6038] RAX: ffffffffffffffda RBX: 00007f4009335f80 RCX: 00007f400917dff9 [ 108.295014][ T6038] RDX: 0000000000000050 RSI: 00000000200000c0 RDI: 000000000000000a [ 108.302817][ T6038] RBP: 00007f40091f0296 R08: 0000000000000000 R09: 0000000000000000 [ 108.310632][ T6038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 108.318540][ T6038] R13: 0000000000000000 R14: 00007f4009335f80 R15: 00007fff95d02c48 [ 108.326427][ T6038] [ 108.329370][ T6038] [ 108.331540][ T6038] Allocated by task 5556: [ 108.335977][ T6038] kasan_set_track+0x4b/0x70 [ 108.340398][ T6038] kasan_save_alloc_info+0x1f/0x30 [ 108.345344][ T6038] __kasan_kmalloc+0x9c/0xb0 [ 108.349777][ T6038] __kmalloc_node+0xb4/0x1e0 [ 108.354194][ T6038] bpf_map_kmalloc_node+0xd0/0x2c0 [ 108.359143][ T6038] cpu_map_update_elem+0x28f/0xf50 [ 108.364098][ T6038] bpf_map_update_value+0x1a3/0x410 [ 108.369122][ T6038] map_update_elem+0x500/0x680 [ 108.373828][ T6038] __sys_bpf+0x460/0x7f0 [ 108.377891][ T6038] __x64_sys_bpf+0x7c/0x90 [ 108.382249][ T6038] x64_sys_call+0x87f/0x9a0 [ 108.386660][ T6038] do_syscall_64+0x3b/0xb0 [ 108.390922][ T6038] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 108.396671][ T6038] [ 108.398823][ T6038] Freed by task 5557: [ 108.402637][ T6038] kasan_set_track+0x4b/0x70 [ 108.407250][ T6038] kasan_save_free_info+0x2b/0x40 [ 108.412095][ T6038] ____kasan_slab_free+0x131/0x180 [ 108.417130][ T6038] __kasan_slab_free+0x11/0x20 [ 108.421729][ T6038] __kmem_cache_free+0x218/0x3b0 [ 108.426589][ T6038] kfree+0x7a/0xf0 [ 108.430145][ T6038] put_cpu_map_entry+0x6e2/0x760 [ 108.434920][ T6038] cpu_map_kthread_run+0x2463/0x2520 [ 108.440040][ T6038] kthread+0x26d/0x300 [ 108.443959][ T6038] ret_from_fork+0x1f/0x30 [ 108.448300][ T6038] [ 108.450549][ T6038] Last potentially related work creation: [ 108.456105][ T6038] kasan_save_stack+0x3b/0x60 [ 108.460752][ T6038] __kasan_record_aux_stack+0xb4/0xc0 [ 108.465957][ T6038] kasan_record_aux_stack_noalloc+0xb/0x10 [ 108.471773][ T6038] insert_work+0x56/0x310 [ 108.475937][ T6038] __queue_work+0x9b6/0xd70 [ 108.480276][ T6038] queue_work_on+0x105/0x170 [ 108.484694][ T6038] cpu_map_free+0x1e7/0x2c0 [ 108.489034][ T6038] bpf_map_free_deferred+0xf7/0x1b0 [ 108.494335][ T6038] process_one_work+0x73d/0xcb0 [ 108.499200][ T6038] worker_thread+0xa60/0x1260 [ 108.503703][ T6038] kthread+0x26d/0x300 [ 108.507648][ T6038] ret_from_fork+0x1f/0x30 [ 108.511899][ T6038] [ 108.514078][ T6038] Second to last potentially related work creation: [ 108.520635][ T6038] kasan_save_stack+0x3b/0x60 [ 108.525135][ T6038] __kasan_record_aux_stack+0xb4/0xc0 [ 108.530345][ T6038] kasan_record_aux_stack_noalloc+0xb/0x10 [ 108.536421][ T6038] call_rcu+0xee/0x1340 [ 108.540518][ T6038] cpu_map_free+0x109/0x2c0 [ 108.544924][ T6038] bpf_map_free_deferred+0xf7/0x1b0 [ 108.550060][ T6038] process_one_work+0x73d/0xcb0 [ 108.554734][ T6038] worker_thread+0xa60/0x1260 [ 108.559364][ T6038] kthread+0x26d/0x300 [ 108.563280][ T6038] ret_from_fork+0x1f/0x30 [ 108.567530][ T6038] [ 108.569706][ T6038] The buggy address belongs to the object at ffff8881176cf300 [ 108.569706][ T6038] which belongs to the cache kmalloc-192 of size 192 [ 108.583667][ T6038] The buggy address is located 8 bytes inside of [ 108.583667][ T6038] 192-byte region [ffff8881176cf300, ffff8881176cf3c0) [ 108.596973][ T6038] [ 108.599139][ T6038] The buggy address belongs to the physical page: [ 108.605399][ T6038] page:ffffea00045db3c0 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 pfn:0x1176cf [ 108.615534][ T6038] flags: 0x4000000000000200(slab|zone=1) [ 108.621044][ T6038] raw: 4000000000000200 0000000000000000 dead000000000122 ffff888100042c00 [ 108.629648][ T6038] raw: 0000000000000000 0000000000100010 00000001ffffffff 0000000000000000 [ 108.638058][ T6038] page dumped because: kasan: bad access detected [ 108.644291][ T6038] page_owner tracks the page as allocated [ 108.650012][ T6038] page last allocated via order 0, migratetype Unmovable, gfp_mask 0x112cc0(GFP_USER|__GFP_NOWARN|__GFP_NORETRY), pid 5466, tgid 5465 (syz.4.2274), ts 101891697757, free_ts 101890427970 [ 108.668598][ T6038] post_alloc_hook+0x213/0x220 [ 108.673292][ T6038] prep_new_page+0x1b/0x110 [ 108.677617][ T6038] get_page_from_freelist+0x27ea/0x2870 [ 108.683258][ T6038] __alloc_pages+0x3a1/0x780 [ 108.687676][ T6038] alloc_slab_page+0x6c/0xf0 [ 108.692187][ T6038] new_slab+0x90/0x3e0 [ 108.696105][ T6038] ___slab_alloc+0x6f9/0xb80 [ 108.700523][ T6038] __slab_alloc+0x5d/0xa0 [ 108.704685][ T6038] __kmem_cache_alloc_node+0x1af/0x250 [ 108.709981][ T6038] __kmalloc_node+0xa3/0x1e0 [ 108.714404][ T6038] __vmalloc_node_range+0x54e/0x1560 [ 108.719615][ T6038] vmalloc+0x78/0x90 [ 108.723343][ T6038] htable_create+0x149/0x7f0 [ 108.727889][ T6038] hashlimit_mt_check_common+0x70b/0xa30 [ 108.733347][ T6038] hashlimit_mt_check_v1+0x2e6/0x540 [ 108.738469][ T6038] xt_check_match+0x363/0xa30 [ 108.742993][ T6038] page last free stack trace: [ 108.747505][ T6038] free_unref_page_prepare+0x83d/0x850 [ 108.752809][ T6038] free_unref_page+0xb2/0x5c0 [ 108.757310][ T6038] __free_pages+0x61/0xf0 [ 108.761472][ T6038] free_pages+0x7c/0x90 [ 108.765526][ T6038] tlb_finish_mmu+0x311/0x3f0 [ 108.769985][ T6038] exit_mmap+0x460/0xbe0 [ 108.774337][ T6038] __mmput+0x95/0x310 [ 108.778236][ T6038] mmput+0x56/0x170 [ 108.781880][ T6038] do_exit+0xb29/0x2b80 [ 108.785878][ T6038] do_group_exit+0x21a/0x2d0 [ 108.790474][ T6038] get_signal+0x169d/0x1820 [ 108.794808][ T6038] arch_do_signal_or_restart+0xb0/0x16f0 [ 108.800469][ T6038] exit_to_user_mode_loop+0x74/0xa0 [ 108.805493][ T6038] exit_to_user_mode_prepare+0x5a/0xa0 [ 108.810950][ T6038] syscall_exit_to_user_mode+0x26/0x130 [ 108.816429][ T6038] do_syscall_64+0x47/0xb0 [ 108.820676][ T6038] [ 108.822937][ T6038] Memory state around the buggy address: [ 108.828399][ T6038] ffff8881176cf200: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 108.836565][ T6038] ffff8881176cf280: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 108.844547][ T6038] >ffff8881176cf300: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 108.852632][ T6038] ^ [ 108.856785][ T6038] ffff8881176cf380: fb fb fb fb fb fb fb fb fc fc fc fc fc fc fc fc [ 108.864688][ T6038] ffff8881176cf400: fa fb fb fb fb fb fb fb fb fb fb fb fb fb fb fb [ 108.872586][ T6038] ================================================================== [ 108.880634][ T6038] Disabling lock debugging due to kernel taint [ 108.886750][ T6038] general protection fault, probably for non-canonical address 0xe07fed511ede02c1: 0000 [#1] PREEMPT SMP KASAN [ 108.898626][ T6038] KASAN: maybe wild-memory-access in range [0x03ff8a88f6f01608-0x03ff8a88f6f0160f] [ 108.907755][ T6038] CPU: 1 PID: 6038 Comm: syz.1.2539 Tainted: G B 6.1.99-syzkaller-00002-g8d298374716d #0 [ 108.918941][ T6038] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 108.928919][ T6038] RIP: 0010:cpu_map_enqueue+0x113/0x370 [ 108.934634][ T6038] Code: e8 03 42 80 3c 30 00 74 08 48 89 df e8 16 d4 24 00 4c 8b 23 4f 8d 74 3c 58 4d 89 f5 49 c1 ed 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 44 05 00 84 c0 0f 85 a8 01 00 00 4d 01 fc 41 8b 1e bf 08 [ 108.954169][ T6038] RSP: 0018:ffffc9000229f600 EFLAGS: 00010203 [ 108.960409][ T6038] RAX: dffffc0000000000 RBX: ffffffff86745888 RCX: 0000000000040000 [ 108.968212][ T6038] RDX: ffffc900010f9000 RSI: 0000000000032438 RDI: 0000000000032439 [ 108.976198][ T6038] RBP: ffffc9000229f638 R08: ffffffff81980e8e R09: fffffbfff0f6dafd [ 108.984204][ T6038] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881f6f00000 [ 108.992178][ T6038] R13: 007ff1511ede02c1 R14: 03ff8a88f6f0160d R15: 04000207000015b5 [ 108.999997][ T6038] FS: 00007f4008fff6c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 109.009187][ T6038] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.015616][ T6038] CR2: 0000001b2e11bff8 CR3: 000000011b7d1000 CR4: 00000000003506a0 [ 109.023517][ T6038] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 109.031330][ T6038] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 109.039216][ T6038] Call Trace: [ 109.042349][ T6038] [ 109.045123][ T6038] ? __die_body+0x62/0xb0 [ 109.049285][ T6038] ? die_addr+0x9f/0xd0 [ 109.053279][ T6038] ? exc_general_protection+0x317/0x4c0 [ 109.058850][ T6038] ? asm_exc_general_protection+0x27/0x30 [ 109.064532][ T6038] ? cpu_map_enqueue+0xce/0x370 [ 109.069343][ T6038] ? cpu_map_enqueue+0x113/0x370 [ 109.074133][ T6038] xdp_do_redirect_frame+0x275/0x800 [ 109.079256][ T6038] bpf_test_run_xdp_live+0xc30/0x1f70 [ 109.084547][ T6038] ? __kasan_check_write+0x14/0x20 [ 109.089581][ T6038] ? bpf_test_run_xdp_live+0x7ae/0x1f70 [ 109.094963][ T6038] ? xdp_convert_md_to_buff+0x360/0x360 [ 109.100476][ T6038] ? bpf_dispatcher_change_prog+0xd9d/0xf20 [ 109.106206][ T6038] ? trace_raw_output_bpf_test_finish+0xd0/0xd0 [ 109.112276][ T6038] ? __kasan_check_write+0x14/0x20 [ 109.117302][ T6038] ? _copy_from_user+0x90/0xc0 [ 109.121907][ T6038] bpf_prog_test_run_xdp+0x7d1/0x1130 [ 109.127126][ T6038] ? dev_put+0x80/0x80 [ 109.131043][ T6038] ? __kasan_check_write+0x14/0x20 [ 109.135969][ T6038] ? fput+0x15b/0x1b0 [ 109.139783][ T6038] ? dev_put+0x80/0x80 [ 109.143774][ T6038] bpf_prog_test_run+0x3b0/0x630 [ 109.148638][ T6038] ? bpf_prog_query+0x260/0x260 [ 109.153341][ T6038] ? selinux_bpf+0xd2/0x100 [ 109.157664][ T6038] ? security_bpf+0x82/0xb0 [ 109.162004][ T6038] __sys_bpf+0x59f/0x7f0 [ 109.166186][ T6038] ? bpf_link_show_fdinfo+0x2d0/0x2d0 [ 109.171550][ T6038] ? fpregs_restore_userregs+0x130/0x290 [ 109.177039][ T6038] __x64_sys_bpf+0x7c/0x90 [ 109.181391][ T6038] x64_sys_call+0x87f/0x9a0 [ 109.185743][ T6038] do_syscall_64+0x3b/0xb0 [ 109.190000][ T6038] ? clear_bhb_loop+0x55/0xb0 [ 109.194510][ T6038] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 109.200233][ T6038] RIP: 0033:0x7f400917dff9 [ 109.204567][ T6038] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 109.224273][ T6038] RSP: 002b:00007f4008fff038 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 109.232712][ T6038] RAX: ffffffffffffffda RBX: 00007f4009335f80 RCX: 00007f400917dff9 [ 109.240778][ T6038] RDX: 0000000000000050 RSI: 00000000200000c0 RDI: 000000000000000a [ 109.248807][ T6038] RBP: 00007f40091f0296 R08: 0000000000000000 R09: 0000000000000000 [ 109.256693][ T6038] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 109.264675][ T6038] R13: 0000000000000000 R14: 00007f4009335f80 R15: 00007fff95d02c48 [ 109.272490][ T6038] [ 109.275352][ T6038] Modules linked in: [ 109.279809][ T6038] ---[ end trace 0000000000000000 ]--- [ 109.285093][ T6038] RIP: 0010:cpu_map_enqueue+0x113/0x370 [ 109.290665][ T6038] Code: e8 03 42 80 3c 30 00 74 08 48 89 df e8 16 d4 24 00 4c 8b 23 4f 8d 74 3c 58 4d 89 f5 49 c1 ed 03 48 b8 00 00 00 00 00 fc ff df <41> 0f b6 44 05 00 84 c0 0f 85 a8 01 00 00 4d 01 fc 41 8b 1e bf 08 [ 109.310283][ T6038] RSP: 0018:ffffc9000229f600 EFLAGS: 00010203 [ 109.316265][ T6038] RAX: dffffc0000000000 RBX: ffffffff86745888 RCX: 0000000000040000 [ 109.324321][ T6038] RDX: ffffc900010f9000 RSI: 0000000000032438 RDI: 0000000000032439 [ 109.332166][ T6038] RBP: ffffc9000229f638 R08: ffffffff81980e8e R09: fffffbfff0f6dafd [ 109.340166][ T6038] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff8881f6f00000 [ 109.348353][ T6038] R13: 007ff1511ede02c1 R14: 03ff8a88f6f0160d R15: 04000207000015b5 [ 109.356143][ T6038] FS: 00007f4008fff6c0(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 109.365009][ T6038] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 109.371525][ T6038] CR2: 0000001b2e11bff8 CR3: 000000011b7d1000 CR4: 00000000003506a0 [ 109.379440][ T6038] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 109.387239][ T6038] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 109.395035][ T6038] Kernel panic - not syncing: Fatal exception in interrupt [ 109.402339][ T6038] Kernel Offset: disabled [ 109.406466][ T6038] Rebooting in 86400 seconds..