ext4_new_inode+0x63a/0x5cf0 [ 184.221864][ T7442] ? avc_has_perm_noaudit+0x37d/0x400 [ 184.227210][ T7442] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 184.232901][ T7442] ? memset+0x1f/0x40 [ 184.236854][ T7442] ? __dquot_initialize+0x227/0xd70 [ 184.242982][ T7442] ? avc_has_perm+0x176/0x280 [ 184.247632][ T7442] ? security_transition_sid+0x78/0x90 [ 184.253061][ T7442] ext4_mkdir+0x41e/0x1530 [ 184.257452][ T7442] ? from_kgid+0x206/0x350 [ 184.261838][ T7442] ? ext4_symlink+0x1020/0x1020 [ 184.266660][ T7442] ? security_inode_mkdir+0xed/0x130 [ 184.271917][ T7442] vfs_mkdir2+0x448/0x620 [ 184.276223][ T7442] do_mkdirat+0x1e7/0x310 [ 184.280526][ T7442] ? vfs_mkdir+0x30/0x30 [ 184.284742][ T7442] do_syscall_64+0xcb/0x150 [ 184.289221][ T7442] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.295085][ T7442] RIP: 0033:0x45bca7 [ 184.298954][ T7442] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.318530][ T7442] RSP: 002b:00007f374b9eda68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 184.326930][ T7442] RAX: ffffffffffffffda RBX: 0000000000508600 RCX: 000000000045bca7 [ 184.334874][ T7442] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200002c0 09:42:53 executing program 3 (fault-call:3 fault-nth:1): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:42:53 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x25, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 184.342818][ T7442] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 184.350761][ T7442] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 184.358705][ T7442] R13: 0000000000000bed R14: 00000000004ce103 R15: 00007f374b9ee6d4 09:42:53 executing program 5 (fault-call:0 fault-nth:28): syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 184.391003][ T7456] FAULT_INJECTION: forcing a failure. [ 184.391003][ T7456] name failslab, interval 1, probability 0, space 0, times 0 [ 184.404213][ T7456] CPU: 0 PID: 7456 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 184.414261][ T7456] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.424303][ T7456] Call Trace: [ 184.427596][ T7456] dump_stack+0x14a/0x1ce [ 184.431903][ T7456] ? devkmsg_release+0x11c/0x11c [ 184.436815][ T7456] ? show_regs_print_info+0x12/0x12 [ 184.441988][ T7456] should_fail+0x6fb/0x860 [ 184.446379][ T7456] ? setup_fault_attr+0x3d0/0x3d0 [ 184.451476][ T7456] ? ksys_mount+0x62/0xf0 [ 184.455777][ T7456] should_failslab+0x5/0x20 [ 184.460267][ T7456] __kmalloc_track_caller+0x5d/0x2c0 [ 184.465537][ T7456] ? strnlen_user+0x185/0x210 [ 184.470204][ T7456] strndup_user+0x73/0x150 [ 184.474592][ T7456] ksys_mount+0x62/0xf0 [ 184.478721][ T7456] __x64_sys_mount+0xb1/0xc0 [ 184.483285][ T7456] do_syscall_64+0xcb/0x150 [ 184.487778][ T7456] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.494787][ T7456] RIP: 0033:0x45c829 [ 184.498657][ T7456] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.518245][ T7456] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 184.526626][ T7456] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:42:54 executing program 3 (fault-call:3 fault-nth:2): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 184.534572][ T7456] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 184.542516][ T7456] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 184.550475][ T7456] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 184.558436][ T7456] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 184.605004][ T7460] FAULT_INJECTION: forcing a failure. [ 184.605004][ T7460] name failslab, interval 1, probability 0, space 0, times 0 [ 184.617831][ T7460] CPU: 1 PID: 7460 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 184.627882][ T7460] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.638002][ T7460] Call Trace: [ 184.641283][ T7460] dump_stack+0x14a/0x1ce [ 184.645606][ T7460] ? devkmsg_release+0x11c/0x11c [ 184.650515][ T7460] ? show_regs_print_info+0x12/0x12 [ 184.655686][ T7460] should_fail+0x6fb/0x860 [ 184.660073][ T7460] ? setup_fault_attr+0x3d0/0x3d0 [ 184.665068][ T7460] ? copy_mount_options+0x59/0x320 [ 184.670150][ T7460] should_failslab+0x5/0x20 [ 184.674624][ T7460] kmem_cache_alloc_trace+0x39/0x280 [ 184.679889][ T7460] copy_mount_options+0x59/0x320 [ 184.684820][ T7460] ? ksys_mount+0x8f/0xf0 [ 184.689148][ T7460] ksys_mount+0x97/0xf0 [ 184.693295][ T7460] __x64_sys_mount+0xb1/0xc0 [ 184.697867][ T7460] do_syscall_64+0xcb/0x150 [ 184.702362][ T7460] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.708239][ T7460] RIP: 0033:0x45c829 [ 184.712115][ T7460] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 184.731764][ T7460] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 184.740164][ T7460] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:42:54 executing program 3 (fault-call:3 fault-nth:3): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 184.748124][ T7460] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 184.756088][ T7460] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 184.764052][ T7460] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 184.772101][ T7460] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 184.833617][ T7467] FAULT_INJECTION: forcing a failure. [ 184.833617][ T7467] name failslab, interval 1, probability 0, space 0, times 0 [ 184.846774][ T7467] CPU: 1 PID: 7467 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 184.856845][ T7467] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 184.867048][ T7467] Call Trace: [ 184.870488][ T7467] dump_stack+0x14a/0x1ce [ 184.874802][ T7467] ? devkmsg_release+0x11c/0x11c [ 184.879732][ T7467] ? show_regs_print_info+0x12/0x12 [ 184.884907][ T7467] ? handle_mm_fault+0xb3a/0x40a0 [ 184.889904][ T7467] should_fail+0x6fb/0x860 [ 184.894311][ T7467] ? setup_fault_attr+0x3d0/0x3d0 [ 184.899330][ T7467] ? kmem_cache_alloc_trace+0xc3/0x280 [ 184.904761][ T7467] ? ksys_mount+0x97/0xf0 [ 184.909061][ T7467] ? __x64_sys_mount+0xb1/0xc0 [ 184.914182][ T7467] ? do_syscall_64+0xcb/0x150 [ 184.918830][ T7467] ? getname_flags+0xb8/0x610 [ 184.923477][ T7467] should_failslab+0x5/0x20 [ 184.927972][ T7467] kmem_cache_alloc+0x36/0x260 [ 184.932711][ T7467] getname_flags+0xb8/0x610 [ 184.937570][ T7467] user_path_at_empty+0x28/0x50 [ 184.942410][ T7467] do_mount+0x15a/0x28c0 [ 184.946643][ T7467] ? copy_mount_string+0x30/0x30 [ 184.951639][ T7467] ? page_fault+0x2f/0x40 [ 184.955942][ T7467] ? copy_mount_options+0x1e8/0x320 [ 184.961196][ T7467] ? copy_mount_options+0x293/0x320 [ 184.966386][ T7467] ksys_mount+0xc2/0xf0 [ 184.970516][ T7467] __x64_sys_mount+0xb1/0xc0 [ 184.975093][ T7467] do_syscall_64+0xcb/0x150 [ 184.979596][ T7467] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 184.985457][ T7467] RIP: 0033:0x45c829 [ 184.989333][ T7467] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 185.008911][ T7467] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 185.017311][ T7467] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 185.025358][ T7467] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 185.033303][ T7467] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 185.041259][ T7467] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 185.049203][ T7467] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 185.064786][ T7468] FAULT_INJECTION: forcing a failure. [ 185.064786][ T7468] name failslab, interval 1, probability 0, space 0, times 0 [ 185.081060][ T7468] CPU: 1 PID: 7468 Comm: syz-executor.5 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 185.091132][ T7468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 185.101179][ T7468] Call Trace: [ 185.104465][ T7468] dump_stack+0x14a/0x1ce [ 185.108797][ T7468] ? devkmsg_release+0x11c/0x11c [ 185.113730][ T7468] ? show_regs_print_info+0x12/0x12 [ 185.118932][ T7468] should_fail+0x6fb/0x860 [ 185.123350][ T7468] ? setup_fault_attr+0x3d0/0x3d0 [ 185.128370][ T7468] ? make_kgid+0x228/0x3a0 [ 185.132775][ T7468] ? security_inode_alloc+0x32/0x1f0 [ 185.138035][ T7468] should_failslab+0x5/0x20 [ 185.142612][ T7468] kmem_cache_alloc+0x36/0x260 [ 185.147368][ T7468] security_inode_alloc+0x32/0x1f0 [ 185.152457][ T7468] inode_init_always+0x37c/0x800 [ 185.157385][ T7468] ? set_qf_name+0x350/0x350 [ 185.161954][ T7468] new_inode_pseudo+0x7b/0x240 [ 185.166692][ T7468] new_inode+0x25/0x1d0 [ 185.170821][ T7468] ? memset+0x1f/0x40 [ 185.174777][ T7468] __ext4_new_inode+0x63a/0x5cf0 [ 185.179686][ T7468] ? avc_has_perm_noaudit+0x37d/0x400 [ 185.185031][ T7468] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 185.190723][ T7468] ? memset+0x1f/0x40 [ 185.194677][ T7468] ? __dquot_initialize+0x227/0xd70 [ 185.199849][ T7468] ? avc_has_perm+0x176/0x280 [ 185.204515][ T7468] ? security_transition_sid+0x78/0x90 [ 185.209945][ T7468] ext4_mkdir+0x41e/0x1530 [ 185.214334][ T7468] ? from_kgid+0x206/0x350 [ 185.218732][ T7468] ? ext4_symlink+0x1020/0x1020 [ 185.223595][ T7468] ? security_inode_mkdir+0xed/0x130 [ 185.228876][ T7468] vfs_mkdir2+0x448/0x620 [ 185.233178][ T7468] do_mkdirat+0x1e7/0x310 [ 185.237484][ T7468] ? vfs_mkdir+0x30/0x30 [ 185.241699][ T7468] do_syscall_64+0xcb/0x150 [ 185.246176][ T7468] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 185.252041][ T7468] RIP: 0033:0x45bca7 [ 185.255909][ T7468] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 185.275500][ T7468] RSP: 002b:00007f374b9eda68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 185.283883][ T7468] RAX: ffffffffffffffda RBX: 0000000000508600 RCX: 000000000045bca7 [ 185.291828][ T7468] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200002c0 [ 185.299772][ T7468] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 185.307715][ T7468] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 185.315658][ T7468] R13: 0000000000000bed R14: 00000000004ce103 R15: 00007f374b9ee6d4 [ 185.326963][ T17] usb 1-1: new high-speed USB device number 43 using dummy_hcd [ 185.427052][ T17] usb 1-1: Using ep0 maxpacket: 16 [ 185.567047][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 185.578028][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 185.588448][ T17] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 185.601862][ T17] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 185.611257][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 185.620218][ T17] usb 1-1: config 0 descriptor?? [ 185.657452][ T17] usbhid 1-1:0.0: can't add hid device: -22 [ 185.665365][ T17] usbhid: probe of 1-1:0.0 failed with error -22 09:42:57 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:42:57 executing program 3 (fault-call:3 fault-nth:4): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:42:57 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x23, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:42:57 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:42:57 executing program 5 (fault-call:0 fault-nth:29): syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:42:57 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x9, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 187.554109][ T17] usb 1-1: USB disconnect, device number 43 [ 187.586963][ T7492] FAULT_INJECTION: forcing a failure. [ 187.586963][ T7492] name failslab, interval 1, probability 0, space 0, times 0 [ 187.596644][ T7496] FAULT_INJECTION: forcing a failure. [ 187.596644][ T7496] name failslab, interval 1, probability 0, space 0, times 0 [ 187.599644][ T7492] CPU: 1 PID: 7492 Comm: syz-executor.5 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 187.622263][ T7492] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 187.632299][ T7492] Call Trace: [ 187.635572][ T7492] dump_stack+0x14a/0x1ce [ 187.639877][ T7492] ? devkmsg_release+0x11c/0x11c [ 187.644791][ T7492] ? unwind_next_frame+0x1688/0x2230 [ 187.650049][ T7492] ? show_regs_print_info+0x12/0x12 [ 187.655221][ T7492] should_fail+0x6fb/0x860 [ 187.659633][ T7492] ? setup_fault_attr+0x3d0/0x3d0 [ 187.664633][ T7492] ? ebitmap_cmp+0x1c8/0x230 [ 187.669198][ T7492] ? mls_compute_context_len+0x81b/0x850 [ 187.674804][ T7492] ? context_struct_to_string+0x3e4/0x820 [ 187.680496][ T7492] should_failslab+0x5/0x20 [ 187.684975][ T7492] __kmalloc+0x5f/0x2d0 [ 187.689127][ T7492] context_struct_to_string+0x3e4/0x820 [ 187.694650][ T7492] ? security_bounded_transition+0x560/0x560 [ 187.700604][ T7492] ? ebitmap_contains+0x6d8/0x780 [ 187.705600][ T7492] ? hashtab_search+0x1bf/0x200 [ 187.710426][ T7492] context_add_hash+0x145/0x280 [ 187.715250][ T7492] ? security_sid_to_context_inval+0x40/0x40 [ 187.721219][ T7492] ? mls_context_isvalid+0x98/0x380 [ 187.726406][ T7492] ? policydb_context_isvalid+0x1b6/0x400 [ 187.732112][ T7492] security_compute_sid+0x11da/0x1d50 [ 187.737463][ T7492] ? security_transition_sid+0x90/0x90 [ 187.742912][ T7492] ? _raw_spin_unlock_irq+0x5/0x20 [ 187.747997][ T7492] ? finish_task_switch+0x235/0x4c0 [ 187.753171][ T7492] ? __schedule+0x920/0xef0 [ 187.757648][ T7492] ? xas_load+0x468/0x4c0 [ 187.761971][ T7492] ? ext4_mkdir+0x41e/0x1530 [ 187.766539][ T7492] ? page_cache_prev_miss+0x3f0/0x3f0 [ 187.771896][ T7492] ? preempt_schedule_irq+0xe7/0x140 [ 187.777162][ T7492] security_transition_sid+0x78/0x90 [ 187.782431][ T7492] selinux_inode_init_security+0x4bd/0xb00 [ 187.788224][ T7492] ? selinux_inode_free_security+0x1d0/0x1d0 [ 187.794180][ T7492] ? crc16+0x1e6/0x230 [ 187.798225][ T7492] security_inode_init_security+0x16f/0x3c0 [ 187.804098][ T7492] ? ext4_init_security+0x40/0x40 [ 187.809106][ T7492] ? security_dentry_create_files_as+0xe0/0xe0 [ 187.815235][ T7492] ? _raw_spin_unlock+0x5/0x20 [ 187.819990][ T7492] __ext4_new_inode+0x46c0/0x5cf0 [ 187.824991][ T7492] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 187.830686][ T7492] ? memset+0x1f/0x40 [ 187.834661][ T7492] ? __dquot_initialize+0x227/0xd70 [ 187.839832][ T7492] ? avc_has_perm+0x176/0x280 [ 187.844495][ T7492] ? security_transition_sid+0x78/0x90 [ 187.849928][ T7492] ext4_mkdir+0x41e/0x1530 [ 187.854324][ T7492] ? from_kgid+0x206/0x350 [ 187.858732][ T7492] ? ext4_symlink+0x1020/0x1020 [ 187.863559][ T7492] ? security_inode_mkdir+0xed/0x130 [ 187.868816][ T7492] vfs_mkdir2+0x448/0x620 [ 187.873121][ T7492] do_mkdirat+0x1e7/0x310 [ 187.877423][ T7492] ? vfs_mkdir+0x30/0x30 [ 187.881643][ T7492] do_syscall_64+0xcb/0x150 [ 187.886119][ T7492] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 187.891983][ T7492] RIP: 0033:0x45bca7 [ 187.895854][ T7492] Code: 1f 40 00 b8 5a 00 00 00 0f 05 48 3d 01 f0 ff ff 0f 83 7d c2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 b8 53 00 00 00 0f 05 <48> 3d 01 f0 ff ff 0f 83 5d c2 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 187.915559][ T7492] RSP: 002b:00007f374b9eda68 EFLAGS: 00000246 ORIG_RAX: 0000000000000053 [ 187.923946][ T7492] RAX: ffffffffffffffda RBX: 0000000000508600 RCX: 000000000045bca7 [ 187.931896][ T7492] RDX: 0000000000000004 RSI: 00000000000001ff RDI: 00000000200002c0 [ 187.939950][ T7492] RBP: 000000000078bf00 R08: 0000000000000000 R09: 000000000000000a [ 187.947898][ T7492] R10: 0000000000000075 R11: 0000000000000246 R12: 0000000000000003 [ 187.955846][ T7492] R13: 0000000000000bed R14: 00000000004ce103 R15: 00007f374b9ee6d4 [ 187.963814][ T7496] CPU: 0 PID: 7496 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 187.973878][ T7496] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 187.983917][ T7496] Call Trace: [ 187.987182][ T7496] dump_stack+0x14a/0x1ce [ 187.991499][ T7496] ? devkmsg_release+0x11c/0x11c [ 187.996405][ T7496] ? show_regs_print_info+0x12/0x12 [ 188.001617][ T7496] should_fail+0x6fb/0x860 [ 188.006007][ T7496] ? setup_fault_attr+0x3d0/0x3d0 [ 188.011004][ T7496] ? alloc_fs_context+0x61/0x650 [ 188.015930][ T7496] should_failslab+0x5/0x20 [ 188.020418][ T7496] kmem_cache_alloc_trace+0x39/0x280 [ 188.025690][ T7496] alloc_fs_context+0x61/0x650 [ 188.030439][ T7496] ? _raw_read_unlock+0xe/0x30 [ 188.035187][ T7496] ? get_fs_type+0x410/0x490 [ 188.039749][ T7496] do_mount+0x12f5/0x28c0 [ 188.044052][ T7496] ? copy_mount_string+0x30/0x30 [ 188.048977][ T7496] ? page_fault+0x2f/0x40 [ 188.053381][ T7496] ? copy_mount_options+0x1e8/0x320 [ 188.058548][ T7496] ? copy_mount_options+0x293/0x320 [ 188.063713][ T7496] ksys_mount+0xc2/0xf0 [ 188.067868][ T7496] __x64_sys_mount+0xb1/0xc0 [ 188.072428][ T7496] do_syscall_64+0xcb/0x150 [ 188.076919][ T7496] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 188.082784][ T7496] RIP: 0033:0x45c829 [ 188.086655][ T7496] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:42:57 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x24, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:42:57 executing program 3 (fault-call:3 fault-nth:5): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 188.106227][ T7496] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 188.114608][ T7496] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 188.122551][ T7496] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 188.130512][ T7496] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 188.138491][ T7496] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 188.146438][ T7496] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 188.192988][ T7505] FAULT_INJECTION: forcing a failure. [ 188.192988][ T7505] name failslab, interval 1, probability 0, space 0, times 0 [ 188.205683][ T7505] CPU: 0 PID: 7505 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 188.216093][ T7505] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.228031][ T7505] Call Trace: [ 188.231300][ T7505] dump_stack+0x14a/0x1ce [ 188.235706][ T7505] ? devkmsg_release+0x11c/0x11c [ 188.240617][ T7505] ? show_regs_print_info+0x12/0x12 [ 188.245786][ T7505] should_fail+0x6fb/0x860 [ 188.250183][ T7505] ? setup_fault_attr+0x3d0/0x3d0 [ 188.255208][ T7505] ? legacy_init_fs_context+0x4d/0xc0 [ 188.260549][ T7505] should_failslab+0x5/0x20 [ 188.265028][ T7505] kmem_cache_alloc_trace+0x39/0x280 [ 188.270354][ T7505] legacy_init_fs_context+0x4d/0xc0 [ 188.275591][ T7505] alloc_fs_context+0x50c/0x650 [ 188.280440][ T7505] do_mount+0x12f5/0x28c0 [ 188.284744][ T7505] ? copy_mount_string+0x30/0x30 [ 188.289652][ T7505] ? page_fault+0x2f/0x40 [ 188.293971][ T7505] ? copy_mount_options+0x1e8/0x320 [ 188.299163][ T7505] ? copy_mount_options+0x293/0x320 [ 188.304346][ T7505] ksys_mount+0xc2/0xf0 [ 188.308488][ T7505] __x64_sys_mount+0xb1/0xc0 [ 188.313053][ T7505] do_syscall_64+0xcb/0x150 [ 188.317544][ T7505] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 188.323430][ T7505] RIP: 0033:0x45c829 [ 188.327295][ T7505] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 188.346870][ T7505] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 188.355348][ T7505] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 188.363304][ T7505] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 188.371246][ T7505] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 188.379212][ T7505] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:42:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:42:57 executing program 3 (fault-call:3 fault-nth:6): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:42:57 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 188.387179][ T7505] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 188.430218][ T7513] FAULT_INJECTION: forcing a failure. [ 188.430218][ T7513] name failslab, interval 1, probability 0, space 0, times 0 [ 188.443141][ T7513] CPU: 1 PID: 7513 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 188.453180][ T7513] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.463225][ T7513] Call Trace: [ 188.466504][ T7513] dump_stack+0x14a/0x1ce [ 188.470830][ T7513] ? devkmsg_release+0x11c/0x11c [ 188.475739][ T7513] ? show_regs_print_info+0x12/0x12 [ 188.480917][ T7513] should_fail+0x6fb/0x860 [ 188.485402][ T7513] ? setup_fault_attr+0x3d0/0x3d0 [ 188.490435][ T7513] ? vfs_parse_fs_string+0x183/0x290 [ 188.495714][ T7513] should_failslab+0x5/0x20 [ 188.500188][ T7513] __kmalloc_track_caller+0x5d/0x2c0 [ 188.505456][ T7513] kmemdup_nul+0x27/0xa0 [ 188.509672][ T7513] vfs_parse_fs_string+0x183/0x290 [ 188.514767][ T7513] ? logfc+0x730/0x730 [ 188.518826][ T7513] ? __module_put_and_exit+0x20/0x20 [ 188.524079][ T7513] ? alloc_fs_context+0x520/0x650 [ 188.529096][ T7513] do_mount+0x1404/0x28c0 [ 188.533417][ T7513] ? copy_mount_string+0x30/0x30 [ 188.538351][ T7513] ? page_fault+0x2f/0x40 [ 188.542677][ T7513] ? copy_mount_options+0x1e8/0x320 [ 188.547939][ T7513] ? copy_mount_options+0x293/0x320 [ 188.553132][ T7513] ksys_mount+0xc2/0xf0 [ 188.557362][ T7513] __x64_sys_mount+0xb1/0xc0 [ 188.561958][ T7513] do_syscall_64+0xcb/0x150 [ 188.566492][ T7513] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 188.572408][ T7513] RIP: 0033:0x45c829 [ 188.576287][ T7513] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 188.595883][ T7513] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 188.604291][ T7513] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 188.612242][ T7513] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 188.620218][ T7513] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:42:58 executing program 3 (fault-call:3 fault-nth:7): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 188.628188][ T7513] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 188.636156][ T7513] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 188.685556][ T7521] FAULT_INJECTION: forcing a failure. [ 188.685556][ T7521] name failslab, interval 1, probability 0, space 0, times 0 [ 188.699092][ T7521] CPU: 0 PID: 7521 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 188.709150][ T7521] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 188.719182][ T7521] Call Trace: [ 188.722468][ T7521] dump_stack+0x14a/0x1ce [ 188.726792][ T7521] ? devkmsg_release+0x11c/0x11c [ 188.731725][ T7521] ? show_regs_print_info+0x12/0x12 [ 188.736915][ T7521] ? avc_has_perm_noaudit+0x30c/0x400 [ 188.742271][ T7521] should_fail+0x6fb/0x860 [ 188.746692][ T7521] ? setup_fault_attr+0x3d0/0x3d0 [ 188.751710][ T7521] ? alloc_super+0x56/0x760 [ 188.756181][ T7521] should_failslab+0x5/0x20 [ 188.760653][ T7521] kmem_cache_alloc_trace+0x39/0x280 [ 188.765926][ T7521] ? _raw_spin_trylock_bh+0x190/0x190 [ 188.771269][ T7521] alloc_super+0x56/0x760 [ 188.775571][ T7521] sget+0x20e/0x4e0 [ 188.779367][ T7521] ? free_anon_bdev+0x20/0x20 [ 188.784049][ T7521] ? ovl_mount+0x30/0x30 [ 188.788294][ T7521] mount_nodev+0x2c/0xe0 [ 188.792541][ T7521] legacy_get_tree+0xde/0x170 [ 188.797227][ T7521] ? fuse_emit+0x7d0/0x7d0 [ 188.801626][ T7521] vfs_get_tree+0x85/0x260 [ 188.806031][ T7521] do_mount+0x1a15/0x28c0 [ 188.810344][ T7521] ? copy_mount_string+0x30/0x30 [ 188.815259][ T7521] ? page_fault+0x2f/0x40 [ 188.819566][ T7521] ? copy_mount_options+0x1e8/0x320 [ 188.824742][ T7521] ? copy_mount_options+0x293/0x320 [ 188.829913][ T7521] ksys_mount+0xc2/0xf0 [ 188.834040][ T7521] __x64_sys_mount+0xb1/0xc0 [ 188.839560][ T7521] do_syscall_64+0xcb/0x150 [ 188.844035][ T7521] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 188.850342][ T7521] RIP: 0033:0x45c829 [ 188.854208][ T7521] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 188.873803][ T7521] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 188.882183][ T7521] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 188.890126][ T7521] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 188.898068][ T7521] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 188.906117][ T7521] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 188.914059][ T7521] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 188.996796][ T17] usb 1-1: new high-speed USB device number 44 using dummy_hcd [ 189.086818][ T17] usb 1-1: Using ep0 maxpacket: 16 [ 189.206806][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 189.217676][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 189.228003][ T17] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 189.241286][ T17] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 189.250582][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 189.259346][ T17] usb 1-1: config 0 descriptor?? [ 189.297234][ T17] usbhid 1-1:0.0: can't add hid device: -22 [ 189.303291][ T17] usbhid: probe of 1-1:0.0 failed with error -22 09:43:00 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:00 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x25, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:00 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x28, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:00 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xa, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:00 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:00 executing program 3 (fault-call:3 fault-nth:8): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:00 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x29, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 191.193334][ T3969] usb 1-1: USB disconnect, device number 44 [ 191.235983][ T7544] FAULT_INJECTION: forcing a failure. [ 191.235983][ T7544] name failslab, interval 1, probability 0, space 0, times 0 [ 191.249836][ T7544] CPU: 0 PID: 7544 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 191.259901][ T7544] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.269953][ T7544] Call Trace: [ 191.273239][ T7544] dump_stack+0x14a/0x1ce [ 191.277542][ T7544] ? devkmsg_release+0x11c/0x11c [ 191.282467][ T7544] ? show_regs_print_info+0x12/0x12 [ 191.287640][ T7544] should_fail+0x6fb/0x860 [ 191.292044][ T7544] ? setup_fault_attr+0x3d0/0x3d0 [ 191.297043][ T7544] ? selinux_sb_alloc_security+0x4f/0x200 [ 191.302756][ T7544] should_failslab+0x5/0x20 [ 191.307239][ T7544] kmem_cache_alloc_trace+0x39/0x280 [ 191.312496][ T7544] ? down_write+0xd8/0x150 [ 191.316889][ T7544] selinux_sb_alloc_security+0x4f/0x200 [ 191.322406][ T7544] security_sb_alloc+0x50/0xb0 [ 191.327153][ T7544] alloc_super+0x140/0x760 [ 191.331539][ T7544] sget+0x20e/0x4e0 [ 191.335329][ T7544] ? free_anon_bdev+0x20/0x20 [ 191.340172][ T7544] ? ovl_mount+0x30/0x30 [ 191.344421][ T7544] mount_nodev+0x2c/0xe0 [ 191.348650][ T7544] legacy_get_tree+0xde/0x170 [ 191.353302][ T7544] ? fuse_emit+0x7d0/0x7d0 [ 191.357700][ T7544] vfs_get_tree+0x85/0x260 [ 191.362097][ T7544] do_mount+0x1a15/0x28c0 [ 191.366517][ T7544] ? copy_mount_string+0x30/0x30 [ 191.371491][ T7544] ? page_fault+0x2f/0x40 [ 191.375799][ T7544] ? copy_mount_options+0x1e8/0x320 [ 191.380988][ T7544] ? copy_mount_options+0x293/0x320 [ 191.386175][ T7544] ksys_mount+0xc2/0xf0 [ 191.390313][ T7544] __x64_sys_mount+0xb1/0xc0 [ 191.394893][ T7544] do_syscall_64+0xcb/0x150 [ 191.399387][ T7544] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 191.405260][ T7544] RIP: 0033:0x45c829 [ 191.409138][ T7544] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 191.428728][ T7544] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 09:43:01 executing program 3 (fault-call:3 fault-nth:9): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 191.437159][ T7544] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 191.445557][ T7544] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 191.453678][ T7544] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 191.461634][ T7544] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 191.469591][ T7544] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 191.545942][ T7558] FAULT_INJECTION: forcing a failure. [ 191.545942][ T7558] name failslab, interval 1, probability 0, space 0, times 0 [ 191.558834][ T7558] CPU: 0 PID: 7558 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 191.568874][ T7558] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.578906][ T7558] Call Trace: [ 191.582189][ T7558] dump_stack+0x14a/0x1ce [ 191.586508][ T7558] ? devkmsg_release+0x11c/0x11c [ 191.591422][ T7558] ? show_regs_print_info+0x12/0x12 [ 191.596590][ T7558] ? pcpu_alloc_area+0x7a2/0x8f0 [ 191.601542][ T7558] should_fail+0x6fb/0x860 [ 191.606104][ T7558] ? setup_fault_attr+0x3d0/0x3d0 [ 191.611107][ T7558] ? cpumask_next+0xc/0x20 [ 191.615513][ T7558] ? pcpu_alloc+0xd17/0x11f0 [ 191.620098][ T7558] ? prealloc_shrinker+0x50/0x210 [ 191.625092][ T7558] should_failslab+0x5/0x20 [ 191.629568][ T7558] kmem_cache_alloc_trace+0x39/0x280 [ 191.634840][ T7558] prealloc_shrinker+0x50/0x210 [ 191.639662][ T7558] alloc_super+0x5f2/0x760 [ 191.644062][ T7558] sget+0x20e/0x4e0 [ 191.647841][ T7558] ? free_anon_bdev+0x20/0x20 [ 191.652488][ T7558] ? ovl_mount+0x30/0x30 [ 191.656721][ T7558] mount_nodev+0x2c/0xe0 [ 191.660953][ T7558] legacy_get_tree+0xde/0x170 [ 191.665599][ T7558] ? fuse_emit+0x7d0/0x7d0 [ 191.671038][ T7558] vfs_get_tree+0x85/0x260 [ 191.675426][ T7558] do_mount+0x1a15/0x28c0 [ 191.679743][ T7558] ? copy_mount_string+0x30/0x30 [ 191.684651][ T7558] ? page_fault+0x2f/0x40 [ 191.688953][ T7558] ? copy_mount_options+0x1e8/0x320 [ 191.694133][ T7558] ? copy_mount_options+0x293/0x320 [ 191.699314][ T7558] ksys_mount+0xc2/0xf0 [ 191.703441][ T7558] __x64_sys_mount+0xb1/0xc0 [ 191.708000][ T7558] do_syscall_64+0xcb/0x150 [ 191.712474][ T7558] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 191.718337][ T7558] RIP: 0033:0x45c829 [ 191.722201][ T7558] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:01 executing program 3 (fault-call:3 fault-nth:10): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 191.741794][ T7558] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 191.750177][ T7558] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 191.758139][ T7558] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 191.766091][ T7558] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 191.774156][ T7558] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 191.782760][ T7558] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 191.868244][ T7562] FAULT_INJECTION: forcing a failure. [ 191.868244][ T7562] name failslab, interval 1, probability 0, space 0, times 0 [ 191.881523][ T7562] CPU: 0 PID: 7562 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 191.891586][ T7562] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 191.901642][ T7562] Call Trace: [ 191.904928][ T7562] dump_stack+0x14a/0x1ce [ 191.909279][ T7562] ? devkmsg_release+0x11c/0x11c [ 191.914211][ T7562] ? show_regs_print_info+0x12/0x12 [ 191.919409][ T7562] ? idr_get_free+0x6de/0x880 [ 191.924118][ T7562] should_fail+0x6fb/0x860 [ 191.928826][ T7562] ? setup_fault_attr+0x3d0/0x3d0 [ 191.933848][ T7562] ? __down_read+0xfc/0x240 [ 191.938347][ T7562] ? up_write+0xa1/0x190 [ 191.942589][ T7562] ? __list_lru_init+0xa7/0x570 [ 191.947432][ T7562] should_failslab+0x5/0x20 [ 191.951931][ T7562] kmem_cache_alloc_trace+0x39/0x280 [ 191.957218][ T7562] __list_lru_init+0xa7/0x570 [ 191.961886][ T7562] ? prealloc_shrinker+0x1cc/0x210 [ 191.966980][ T7562] alloc_super+0x61e/0x760 [ 191.971385][ T7562] sget+0x20e/0x4e0 [ 191.975279][ T7562] ? free_anon_bdev+0x20/0x20 [ 191.979961][ T7562] ? ovl_mount+0x30/0x30 [ 191.984201][ T7562] mount_nodev+0x2c/0xe0 [ 191.988527][ T7562] legacy_get_tree+0xde/0x170 [ 191.993202][ T7562] ? fuse_emit+0x7d0/0x7d0 [ 191.997616][ T7562] vfs_get_tree+0x85/0x260 [ 192.002032][ T7562] do_mount+0x1a15/0x28c0 [ 192.006391][ T7562] ? copy_mount_string+0x30/0x30 [ 192.011329][ T7562] ? page_fault+0x2f/0x40 [ 192.015656][ T7562] ? copy_mount_options+0x1e8/0x320 [ 192.020850][ T7562] ? copy_mount_options+0x293/0x320 [ 192.026072][ T7562] ksys_mount+0xc2/0xf0 [ 192.030228][ T7562] __x64_sys_mount+0xb1/0xc0 [ 192.034829][ T7562] do_syscall_64+0xcb/0x150 [ 192.039324][ T7562] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 192.045207][ T7562] RIP: 0033:0x45c829 [ 192.049074][ T7562] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 192.068738][ T7562] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 192.077119][ T7562] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 192.085079][ T7562] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 192.093027][ T7562] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 192.100973][ T7562] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 192.108915][ T7562] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 192.196571][ T3969] usb 1-1: new high-speed USB device number 45 using dummy_hcd [ 192.306541][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 192.456573][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 192.467655][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 192.477404][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 192.490295][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 192.499411][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 192.507959][ T3969] usb 1-1: config 0 descriptor?? [ 192.547143][ T3969] usbhid 1-1:0.0: can't add hid device: -22 [ 192.553168][ T3969] usbhid: probe of 1-1:0.0 failed with error -22 09:43:04 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:04 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xb, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:04 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:04 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:04 executing program 3 (fault-call:3 fault-nth:11): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:04 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 194.442679][ T17] usb 1-1: USB disconnect, device number 45 [ 194.474671][ T7590] FAULT_INJECTION: forcing a failure. [ 194.474671][ T7590] name failslab, interval 1, probability 0, space 0, times 0 09:43:04 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x28, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:04 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x5, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 194.510924][ T7590] CPU: 0 PID: 7590 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 194.521053][ T7590] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 194.531097][ T7590] Call Trace: [ 194.534381][ T7590] dump_stack+0x14a/0x1ce [ 194.538682][ T7590] ? devkmsg_release+0x11c/0x11c [ 194.543617][ T7590] ? show_regs_print_info+0x12/0x12 [ 194.548787][ T7590] should_fail+0x6fb/0x860 [ 194.553184][ T7590] ? setup_fault_attr+0x3d0/0x3d0 [ 194.558178][ T7590] ? kvmalloc_node+0xc2/0x120 [ 194.562834][ T7590] should_failslab+0x5/0x20 [ 194.567316][ T7590] __kmalloc+0x5f/0x2d0 [ 194.571449][ T7590] kvmalloc_node+0xc2/0x120 [ 194.575957][ T7590] __list_lru_init+0x1d2/0x570 [ 194.580699][ T7590] ? prealloc_shrinker+0x1cc/0x210 [ 194.585783][ T7590] alloc_super+0x61e/0x760 [ 194.590198][ T7590] sget+0x20e/0x4e0 [ 194.594954][ T7590] ? free_anon_bdev+0x20/0x20 [ 194.599762][ T7590] ? ovl_mount+0x30/0x30 [ 194.604013][ T7590] mount_nodev+0x2c/0xe0 [ 194.608245][ T7590] legacy_get_tree+0xde/0x170 [ 194.612892][ T7590] ? fuse_emit+0x7d0/0x7d0 [ 194.617292][ T7590] vfs_get_tree+0x85/0x260 [ 194.621682][ T7590] do_mount+0x1a15/0x28c0 [ 194.625990][ T7590] ? copy_mount_string+0x30/0x30 [ 194.630895][ T7590] ? page_fault+0x2f/0x40 [ 194.635195][ T7590] ? copy_mount_options+0x1e8/0x320 [ 194.640360][ T7590] ? copy_mount_options+0x293/0x320 [ 194.645528][ T7590] ksys_mount+0xc2/0xf0 [ 194.649653][ T7590] __x64_sys_mount+0xb1/0xc0 [ 194.654211][ T7590] do_syscall_64+0xcb/0x150 [ 194.658687][ T7590] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 194.664548][ T7590] RIP: 0033:0x45c829 [ 194.668430][ T7590] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 194.688004][ T7590] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 194.696470][ T7590] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:04 executing program 3 (fault-call:3 fault-nth:12): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 194.704412][ T7590] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 194.712365][ T7590] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 194.720323][ T7590] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 194.728266][ T7590] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 194.803445][ T7603] FAULT_INJECTION: forcing a failure. [ 194.803445][ T7603] name failslab, interval 1, probability 0, space 0, times 0 [ 194.817279][ T7603] CPU: 1 PID: 7603 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 194.827314][ T7603] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 194.837357][ T7603] Call Trace: [ 194.840622][ T7603] dump_stack+0x14a/0x1ce [ 194.844937][ T7603] ? devkmsg_release+0x11c/0x11c [ 194.849845][ T7603] ? show_regs_print_info+0x12/0x12 [ 194.855011][ T7603] should_fail+0x6fb/0x860 [ 194.859398][ T7603] ? setup_fault_attr+0x3d0/0x3d0 [ 194.864403][ T7603] ? __down_read+0xfc/0x240 [ 194.868897][ T7603] ? mutex_lock+0xa6/0x110 [ 194.873282][ T7603] ? __list_lru_init+0xa7/0x570 [ 194.878102][ T7603] should_failslab+0x5/0x20 [ 194.882590][ T7603] kmem_cache_alloc_trace+0x39/0x280 [ 194.887844][ T7603] __list_lru_init+0xa7/0x570 [ 194.892494][ T7603] ? prealloc_shrinker+0x1cc/0x210 [ 194.897594][ T7603] alloc_super+0x64d/0x760 [ 194.901991][ T7603] sget+0x20e/0x4e0 [ 194.905782][ T7603] ? free_anon_bdev+0x20/0x20 [ 194.910428][ T7603] ? ovl_mount+0x30/0x30 [ 194.914640][ T7603] mount_nodev+0x2c/0xe0 [ 194.918864][ T7603] legacy_get_tree+0xde/0x170 [ 194.923520][ T7603] ? fuse_emit+0x7d0/0x7d0 [ 194.927906][ T7603] vfs_get_tree+0x85/0x260 [ 194.932298][ T7603] do_mount+0x1a15/0x28c0 [ 194.936598][ T7603] ? copy_mount_string+0x30/0x30 [ 194.941505][ T7603] ? page_fault+0x2f/0x40 [ 194.945821][ T7603] ? copy_mount_options+0x1e8/0x320 [ 194.950989][ T7603] ? copy_mount_options+0x293/0x320 [ 194.956155][ T7603] ksys_mount+0xc2/0xf0 [ 194.960295][ T7603] __x64_sys_mount+0xb1/0xc0 [ 194.964872][ T7603] do_syscall_64+0xcb/0x150 [ 194.969349][ T7603] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 194.975212][ T7603] RIP: 0033:0x45c829 [ 194.979074][ T7603] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xc, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:04 executing program 3 (fault-call:3 fault-nth:13): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 194.998649][ T7603] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 195.007037][ T7603] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 195.014999][ T7603] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 195.022949][ T7603] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 195.030910][ T7603] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 195.038865][ T7603] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 195.091031][ T7611] FAULT_INJECTION: forcing a failure. [ 195.091031][ T7611] name failslab, interval 1, probability 0, space 0, times 0 [ 195.103856][ T7611] CPU: 0 PID: 7611 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 195.113889][ T7611] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 195.123917][ T7611] Call Trace: [ 195.127182][ T7611] dump_stack+0x14a/0x1ce [ 195.131492][ T7611] ? devkmsg_release+0x11c/0x11c [ 195.136403][ T7611] ? show_regs_print_info+0x12/0x12 [ 195.141576][ T7611] should_fail+0x6fb/0x860 [ 195.146051][ T7611] ? setup_fault_attr+0x3d0/0x3d0 [ 195.151053][ T7611] ? kvmalloc_node+0xc2/0x120 [ 195.155708][ T7611] should_failslab+0x5/0x20 [ 195.160180][ T7611] __kmalloc+0x5f/0x2d0 [ 195.164334][ T7611] kvmalloc_node+0xc2/0x120 [ 195.168809][ T7611] __list_lru_init+0x1d2/0x570 [ 195.173542][ T7611] ? prealloc_shrinker+0x1cc/0x210 [ 195.178625][ T7611] alloc_super+0x64d/0x760 [ 195.183026][ T7611] sget+0x20e/0x4e0 [ 195.186810][ T7611] ? free_anon_bdev+0x20/0x20 [ 195.191459][ T7611] ? ovl_mount+0x30/0x30 [ 195.195669][ T7611] mount_nodev+0x2c/0xe0 [ 195.199900][ T7611] legacy_get_tree+0xde/0x170 [ 195.204574][ T7611] ? fuse_emit+0x7d0/0x7d0 [ 195.208973][ T7611] vfs_get_tree+0x85/0x260 [ 195.215706][ T7611] do_mount+0x1a15/0x28c0 [ 195.220022][ T7611] ? copy_mount_string+0x30/0x30 [ 195.224943][ T7611] ? page_fault+0x2f/0x40 [ 195.229274][ T7611] ? copy_mount_options+0x1e8/0x320 [ 195.234459][ T7611] ? copy_mount_options+0x293/0x320 [ 195.239627][ T7611] ksys_mount+0xc2/0xf0 [ 195.243759][ T7611] __x64_sys_mount+0xb1/0xc0 [ 195.248433][ T7611] do_syscall_64+0xcb/0x150 [ 195.252908][ T7611] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 195.258767][ T7611] RIP: 0033:0x45c829 [ 195.262629][ T7611] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 195.282215][ T7611] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 195.290597][ T7611] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 195.298541][ T7611] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 195.306490][ T7611] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 195.314453][ T7611] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 195.322402][ T7611] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 195.406265][ T17] usb 1-1: new high-speed USB device number 46 using dummy_hcd [ 195.506311][ T17] usb 1-1: Using ep0 maxpacket: 16 [ 195.646361][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 195.657484][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 195.667411][ T17] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 195.680237][ T17] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 195.689288][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 195.699386][ T17] usb 1-1: config 0 descriptor?? [ 196.236287][ T17] usbhid 1-1:0.0: can't add hid device: -71 [ 196.242282][ T17] usbhid: probe of 1-1:0.0 failed with error -71 [ 196.249777][ T17] usb 1-1: USB disconnect, device number 46 09:43:06 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:06 executing program 3 (fault-call:3 fault-nth:14): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:06 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x29, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:06 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:06 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:06 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:06 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 196.691576][ T7639] FAULT_INJECTION: forcing a failure. [ 196.691576][ T7639] name failslab, interval 1, probability 0, space 0, times 0 [ 196.704387][ T7639] CPU: 0 PID: 7639 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 196.714487][ T7639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 196.724667][ T7639] Call Trace: [ 196.727988][ T7639] dump_stack+0x14a/0x1ce [ 196.732294][ T7639] ? devkmsg_release+0x11c/0x11c [ 196.737386][ T7639] ? show_regs_print_info+0x12/0x12 [ 196.742569][ T7639] ? stack_trace_save+0x123/0x1f0 [ 196.747578][ T7639] should_fail+0x6fb/0x860 [ 196.751973][ T7639] ? setup_fault_attr+0x3d0/0x3d0 [ 196.756974][ T7639] ? ovl_fill_super+0x10a/0x4df0 [ 196.761900][ T7639] should_failslab+0x5/0x20 [ 196.766380][ T7639] kmem_cache_alloc_trace+0x39/0x280 [ 196.771744][ T7639] ? xas_create+0x1269/0x1360 [ 196.776401][ T7639] ovl_fill_super+0x10a/0x4df0 [ 196.781159][ T7639] ? xas_store+0x9a2/0x13b0 [ 196.785651][ T7639] ? xas_find_marked+0x8c8/0xa10 [ 196.790575][ T7639] ? ovl_mount+0x30/0x30 [ 196.794820][ T7639] ? ida_alloc_range+0xa59/0xac0 [ 196.799728][ T7639] ? delete_node+0x761/0x7b0 [ 196.804288][ T7639] ? __radix_tree_replace+0x24d/0x2f0 [ 196.809655][ T7639] ? idr_replace+0x1ca/0x240 [ 196.814342][ T7639] ? up_write+0xa1/0x190 [ 196.818555][ T7639] ? _raw_spin_lock+0xa1/0x170 [ 196.823288][ T7639] ? up_read+0x10/0x10 [ 196.827324][ T7639] ? sget+0x4cb/0x4e0 [ 196.831289][ T7639] ? free_anon_bdev+0x20/0x20 [ 196.835944][ T7639] ? ovl_mount+0x30/0x30 [ 196.840159][ T7639] mount_nodev+0x52/0xe0 [ 196.844374][ T7639] legacy_get_tree+0xde/0x170 [ 196.849108][ T7639] ? fuse_emit+0x7d0/0x7d0 [ 196.853495][ T7639] vfs_get_tree+0x85/0x260 [ 196.857900][ T7639] do_mount+0x1a15/0x28c0 [ 196.862217][ T7639] ? copy_mount_string+0x30/0x30 [ 196.867125][ T7639] ? page_fault+0x2f/0x40 [ 196.871440][ T7639] ? copy_mount_options+0x1e8/0x320 [ 196.876604][ T7639] ? copy_mount_options+0x293/0x320 [ 196.881780][ T7639] ksys_mount+0xc2/0xf0 [ 196.885922][ T7639] __x64_sys_mount+0xb1/0xc0 [ 196.890481][ T7639] do_syscall_64+0xcb/0x150 [ 196.894954][ T7639] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 196.900829][ T7639] RIP: 0033:0x45c829 [ 196.904719][ T7639] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 196.924293][ T7639] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 196.932688][ T7639] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:06 executing program 3 (fault-call:3 fault-nth:15): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 196.940645][ T7639] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 196.948601][ T7639] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 196.956542][ T7639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 196.965453][ T7639] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:06 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:06 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 197.050132][ T7648] FAULT_INJECTION: forcing a failure. [ 197.050132][ T7648] name failslab, interval 1, probability 0, space 0, times 0 [ 197.063400][ T7648] CPU: 1 PID: 7648 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 197.073457][ T7648] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.083501][ T7648] Call Trace: [ 197.086780][ T7648] dump_stack+0x14a/0x1ce [ 197.091084][ T7648] ? devkmsg_release+0x11c/0x11c [ 197.095997][ T7648] ? show_regs_print_info+0x12/0x12 [ 197.101182][ T7648] should_fail+0x6fb/0x860 [ 197.105573][ T7648] ? setup_fault_attr+0x3d0/0x3d0 [ 197.110568][ T7648] ? prepare_creds+0x20/0x380 [ 197.115225][ T7648] should_failslab+0x5/0x20 [ 197.119701][ T7648] kmem_cache_alloc+0x36/0x260 [ 197.124433][ T7648] ? ovl_fill_super+0x10a/0x4df0 [ 197.129354][ T7648] prepare_creds+0x20/0x380 [ 197.133828][ T7648] ovl_fill_super+0x128/0x4df0 [ 197.138562][ T7648] ? xas_store+0x9a2/0x13b0 [ 197.143037][ T7648] ? xas_find_marked+0x8c8/0xa10 [ 197.147946][ T7648] ? ovl_mount+0x30/0x30 [ 197.152162][ T7648] ? ida_alloc_range+0xa59/0xac0 [ 197.157069][ T7648] ? delete_node+0x761/0x7b0 [ 197.161628][ T7648] ? __radix_tree_replace+0x24d/0x2f0 [ 197.166970][ T7648] ? idr_replace+0x1ca/0x240 [ 197.171535][ T7648] ? up_write+0xa1/0x190 [ 197.175745][ T7648] ? _raw_spin_lock+0xa1/0x170 [ 197.180653][ T7648] ? up_read+0x10/0x10 [ 197.184692][ T7648] ? sget+0x4cb/0x4e0 [ 197.188652][ T7648] ? free_anon_bdev+0x20/0x20 [ 197.193298][ T7648] ? ovl_mount+0x30/0x30 [ 197.197509][ T7648] mount_nodev+0x52/0xe0 [ 197.201726][ T7648] legacy_get_tree+0xde/0x170 [ 197.206375][ T7648] ? fuse_emit+0x7d0/0x7d0 [ 197.210763][ T7648] vfs_get_tree+0x85/0x260 [ 197.215164][ T7648] do_mount+0x1a15/0x28c0 [ 197.219464][ T7648] ? copy_mount_string+0x30/0x30 [ 197.224369][ T7648] ? page_fault+0x2f/0x40 [ 197.228669][ T7648] ? copy_mount_options+0x1e8/0x320 [ 197.233838][ T7648] ? copy_mount_options+0x293/0x320 [ 197.239013][ T7648] ksys_mount+0xc2/0xf0 [ 197.243141][ T7648] __x64_sys_mount+0xb1/0xc0 [ 197.247702][ T7648] do_syscall_64+0xcb/0x150 [ 197.252177][ T7648] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 197.258053][ T7648] RIP: 0033:0x45c829 [ 197.261921][ T7648] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 197.281511][ T7648] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 197.290163][ T7648] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:06 executing program 3 (fault-call:3 fault-nth:16): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 197.298118][ T7648] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 197.306246][ T7648] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 197.314538][ T7648] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 197.322490][ T7648] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 197.330510][ T3969] usb 1-1: new high-speed USB device number 47 using dummy_hcd [ 197.377228][ T7657] FAULT_INJECTION: forcing a failure. [ 197.377228][ T7657] name failslab, interval 1, probability 0, space 0, times 0 [ 197.390200][ T7657] CPU: 1 PID: 7657 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 197.400284][ T7657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.410331][ T7657] Call Trace: [ 197.413677][ T7657] dump_stack+0x14a/0x1ce [ 197.417982][ T7657] ? devkmsg_release+0x11c/0x11c [ 197.422892][ T7657] ? show_regs_print_info+0x12/0x12 [ 197.426175][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 197.428067][ T7657] should_fail+0x6fb/0x860 [ 197.428082][ T7657] ? setup_fault_attr+0x3d0/0x3d0 [ 197.442689][ T7657] ? prepare_creds+0x20/0x380 [ 197.447497][ T7657] should_failslab+0x5/0x20 [ 197.452236][ T7657] kmem_cache_alloc+0x36/0x260 [ 197.456972][ T7657] ? ovl_fill_super+0x10a/0x4df0 [ 197.461937][ T7657] prepare_creds+0x20/0x380 [ 197.466463][ T7657] ovl_fill_super+0x128/0x4df0 [ 197.471208][ T7657] ? xas_store+0x9a2/0x13b0 [ 197.475989][ T7657] ? xas_find_marked+0x8c8/0xa10 [ 197.480895][ T7657] ? ovl_mount+0x30/0x30 [ 197.485108][ T7657] ? ida_alloc_range+0xa59/0xac0 [ 197.490248][ T7657] ? delete_node+0x761/0x7b0 [ 197.494818][ T7657] ? __radix_tree_replace+0x24d/0x2f0 [ 197.500161][ T7657] ? idr_replace+0x1ca/0x240 [ 197.504721][ T7657] ? up_write+0xa1/0x190 [ 197.508934][ T7657] ? _raw_spin_lock+0xa1/0x170 [ 197.513678][ T7657] ? up_read+0x10/0x10 [ 197.518042][ T7657] ? sget+0x4cb/0x4e0 [ 197.522004][ T7657] ? free_anon_bdev+0x20/0x20 [ 197.526648][ T7657] ? ovl_mount+0x30/0x30 [ 197.530868][ T7657] mount_nodev+0x52/0xe0 [ 197.535147][ T7657] legacy_get_tree+0xde/0x170 [ 197.539797][ T7657] ? fuse_emit+0x7d0/0x7d0 [ 197.544241][ T7657] vfs_get_tree+0x85/0x260 [ 197.546197][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 197.548636][ T7657] do_mount+0x1a15/0x28c0 [ 197.548645][ T7657] ? copy_mount_string+0x30/0x30 [ 197.548658][ T7657] ? page_fault+0x2f/0x40 09:43:07 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:07 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:07 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x8, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:07 executing program 3 (fault-call:3 fault-nth:17): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 197.559789][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 197.563993][ T7657] ? copy_mount_options+0x1e8/0x320 [ 197.564000][ T7657] ? copy_mount_options+0x293/0x320 [ 197.564012][ T7657] ksys_mount+0xc2/0xf0 [ 197.574474][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 197.582916][ T7657] __x64_sys_mount+0xb1/0xc0 [ 197.582925][ T7657] do_syscall_64+0xcb/0x150 [ 197.582934][ T7657] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 197.582942][ T7657] RIP: 0033:0x45c829 [ 197.582951][ T7657] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 197.582955][ T7657] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 197.589777][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 197.593302][ T7657] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 197.593307][ T7657] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 197.593312][ T7657] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 197.593316][ T7657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 197.593325][ T7657] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 197.598814][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 197.714996][ T3969] usb 1-1: config 0 descriptor?? [ 197.790833][ T7662] FAULT_INJECTION: forcing a failure. [ 197.790833][ T7662] name failslab, interval 1, probability 0, space 0, times 0 [ 197.803791][ T7662] CPU: 0 PID: 7662 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 197.813825][ T7662] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 197.823952][ T7662] Call Trace: [ 197.827217][ T7662] dump_stack+0x14a/0x1ce [ 197.831526][ T7662] ? devkmsg_release+0x11c/0x11c [ 197.836433][ T7662] ? show_regs_print_info+0x12/0x12 [ 197.841607][ T7662] should_fail+0x6fb/0x860 [ 197.845998][ T7662] ? setup_fault_attr+0x3d0/0x3d0 [ 197.851004][ T7662] ? selinux_cred_prepare+0x72/0x80 [ 197.856172][ T7662] ? ovl_fill_super+0x249/0x4df0 [ 197.861080][ T7662] should_failslab+0x5/0x20 [ 197.865552][ T7662] __kmalloc_track_caller+0x5d/0x2c0 [ 197.870821][ T7662] kstrdup+0x31/0x70 [ 197.874685][ T7662] ovl_fill_super+0x249/0x4df0 [ 197.879431][ T7662] ? xas_store+0x9a2/0x13b0 [ 197.883903][ T7662] ? xas_find_marked+0x8c8/0xa10 [ 197.888811][ T7662] ? ovl_mount+0x30/0x30 [ 197.893026][ T7662] ? ida_alloc_range+0xa59/0xac0 [ 197.897931][ T7662] ? delete_node+0x761/0x7b0 [ 197.902513][ T7662] ? __radix_tree_replace+0x24d/0x2f0 [ 197.907864][ T7662] ? idr_replace+0x1ca/0x240 [ 197.912429][ T7662] ? up_write+0xa1/0x190 [ 197.916650][ T7662] ? _raw_spin_lock+0xa1/0x170 [ 197.921383][ T7662] ? up_read+0x10/0x10 [ 197.925424][ T7662] ? sget+0x4cb/0x4e0 [ 197.929390][ T7662] ? free_anon_bdev+0x20/0x20 [ 197.934033][ T7662] ? ovl_mount+0x30/0x30 [ 197.938246][ T7662] mount_nodev+0x52/0xe0 [ 197.942476][ T7662] legacy_get_tree+0xde/0x170 [ 197.947394][ T7662] ? fuse_emit+0x7d0/0x7d0 [ 197.951780][ T7662] vfs_get_tree+0x85/0x260 [ 197.956523][ T7662] do_mount+0x1a15/0x28c0 [ 197.960823][ T7662] ? copy_mount_string+0x30/0x30 [ 197.965733][ T7662] ? page_fault+0x2f/0x40 [ 197.970043][ T7662] ? copy_mount_options+0x1e8/0x320 [ 197.975797][ T7662] ? copy_mount_options+0x293/0x320 [ 197.980965][ T7662] ksys_mount+0xc2/0xf0 [ 197.985145][ T7662] __x64_sys_mount+0xb1/0xc0 [ 197.989708][ T7662] do_syscall_64+0xcb/0x150 [ 197.994200][ T7662] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 198.000080][ T7662] RIP: 0033:0x45c829 [ 198.003965][ T7662] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 198.023570][ T7662] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 198.032010][ T7662] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:07 executing program 3 (fault-call:3 fault-nth:18): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 198.040052][ T7662] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 198.048007][ T7662] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 198.055947][ T7662] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 198.063895][ T7662] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 198.163761][ T7668] FAULT_INJECTION: forcing a failure. [ 198.163761][ T7668] name failslab, interval 1, probability 0, space 0, times 0 [ 198.179484][ T7668] CPU: 1 PID: 7668 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 198.189604][ T7668] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 198.199632][ T7668] Call Trace: [ 198.202944][ T7668] dump_stack+0x14a/0x1ce [ 198.207245][ T7668] ? devkmsg_release+0x11c/0x11c [ 198.212167][ T7668] ? show_regs_print_info+0x12/0x12 [ 198.217340][ T7668] should_fail+0x6fb/0x860 [ 198.221728][ T7668] ? setup_fault_attr+0x3d0/0x3d0 [ 198.226722][ T7668] ? match_token+0x6a2/0x710 [ 198.231284][ T7668] ? ovl_fill_super+0x4a3/0x4df0 [ 198.236188][ T7668] should_failslab+0x5/0x20 [ 198.240665][ T7668] __kmalloc_track_caller+0x5d/0x2c0 [ 198.245919][ T7668] ? kstrdup+0x4c/0x70 [ 198.249972][ T7668] kmemdup_nul+0x27/0xa0 [ 198.254279][ T7668] ovl_fill_super+0x4a3/0x4df0 [ 198.259012][ T7668] ? ovl_mount+0x30/0x30 [ 198.263349][ T7668] ? ida_alloc_range+0xa59/0xac0 [ 198.268277][ T7668] ? delete_node+0x761/0x7b0 [ 198.272850][ T7668] ? __radix_tree_replace+0x24d/0x2f0 [ 198.278229][ T7668] ? idr_replace+0x1ca/0x240 [ 198.282816][ T7668] ? up_write+0xa1/0x190 [ 198.287030][ T7668] ? _raw_spin_lock+0xa1/0x170 [ 198.291763][ T7668] ? up_read+0x10/0x10 [ 198.295801][ T7668] ? sget+0x4cb/0x4e0 [ 198.299754][ T7668] ? free_anon_bdev+0x20/0x20 [ 198.304402][ T7668] ? ovl_mount+0x30/0x30 [ 198.308630][ T7668] mount_nodev+0x52/0xe0 [ 198.312912][ T7668] legacy_get_tree+0xde/0x170 [ 198.317567][ T7668] ? fuse_emit+0x7d0/0x7d0 [ 198.321976][ T7668] vfs_get_tree+0x85/0x260 [ 198.326373][ T7668] do_mount+0x1a15/0x28c0 [ 198.330676][ T7668] ? copy_mount_string+0x30/0x30 [ 198.335590][ T7668] ? page_fault+0x2f/0x40 [ 198.339897][ T7668] ? copy_mount_options+0x1e8/0x320 [ 198.345070][ T7668] ? copy_mount_options+0x293/0x320 [ 198.350247][ T7668] ksys_mount+0xc2/0xf0 [ 198.354483][ T7668] __x64_sys_mount+0xb1/0xc0 [ 198.359062][ T7668] do_syscall_64+0xcb/0x150 [ 198.363555][ T7668] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 198.369533][ T7668] RIP: 0033:0x45c829 [ 198.373405][ T7668] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 198.393221][ T7668] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 198.401690][ T7668] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 198.409633][ T7668] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 198.417575][ T7668] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 198.425535][ T7668] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 198.433493][ T7668] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 198.526109][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 198.532211][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 198.540441][ T3969] usb 1-1: USB disconnect, device number 47 09:43:08 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(0xffffffffffffffff, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:08 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2f, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:08 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x9, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:08 executing program 3 (fault-call:3 fault-nth:19): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:08 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:08 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:08 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:08 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xa, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 198.975499][ T7690] FAULT_INJECTION: forcing a failure. [ 198.975499][ T7690] name failslab, interval 1, probability 0, space 0, times 0 [ 199.016917][ T7690] CPU: 1 PID: 7690 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 199.027044][ T7690] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.037072][ T7690] Call Trace: [ 199.040340][ T7690] dump_stack+0x14a/0x1ce [ 199.044641][ T7690] ? devkmsg_release+0x11c/0x11c [ 199.049557][ T7690] ? show_regs_print_info+0x12/0x12 [ 199.054733][ T7690] should_fail+0x6fb/0x860 [ 199.059122][ T7690] ? setup_fault_attr+0x3d0/0x3d0 [ 199.064131][ T7690] ? match_token+0x6a2/0x710 [ 199.068702][ T7690] ? ovl_fill_super+0x630/0x4df0 [ 199.073609][ T7690] should_failslab+0x5/0x20 [ 199.078106][ T7690] __kmalloc_track_caller+0x5d/0x2c0 [ 199.083377][ T7690] ? kmemdup_nul+0x42/0xa0 [ 199.087785][ T7690] kmemdup_nul+0x27/0xa0 [ 199.092005][ T7690] ovl_fill_super+0x630/0x4df0 [ 199.096745][ T7690] ? ovl_mount+0x30/0x30 [ 199.100972][ T7690] ? ida_alloc_range+0xa59/0xac0 [ 199.105986][ T7690] ? delete_node+0x761/0x7b0 [ 199.110565][ T7690] ? __radix_tree_replace+0x24d/0x2f0 [ 199.115918][ T7690] ? idr_replace+0x1ca/0x240 [ 199.120661][ T7690] ? up_write+0xa1/0x190 [ 199.124874][ T7690] ? _raw_spin_lock+0xa1/0x170 [ 199.129625][ T7690] ? up_read+0x10/0x10 [ 199.133665][ T7690] ? sget+0x4cb/0x4e0 [ 199.137631][ T7690] ? free_anon_bdev+0x20/0x20 [ 199.142365][ T7690] ? ovl_mount+0x30/0x30 [ 199.146576][ T7690] mount_nodev+0x52/0xe0 [ 199.150792][ T7690] legacy_get_tree+0xde/0x170 [ 199.155459][ T7690] ? fuse_emit+0x7d0/0x7d0 [ 199.159853][ T7690] vfs_get_tree+0x85/0x260 [ 199.164296][ T7690] do_mount+0x1a15/0x28c0 [ 199.168606][ T7690] ? copy_mount_string+0x30/0x30 [ 199.173535][ T7690] ? page_fault+0x2f/0x40 [ 199.177843][ T7690] ? copy_mount_options+0x1e8/0x320 [ 199.183131][ T7690] ? copy_mount_options+0x293/0x320 [ 199.188304][ T7690] ksys_mount+0xc2/0xf0 [ 199.192450][ T7690] __x64_sys_mount+0xb1/0xc0 [ 199.197031][ T7690] do_syscall_64+0xcb/0x150 [ 199.201512][ T7690] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 199.207399][ T7690] RIP: 0033:0x45c829 [ 199.211294][ T7690] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 199.230892][ T7690] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 199.239277][ T7690] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 199.247248][ T7690] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 199.255248][ T7690] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:08 executing program 3 (fault-call:3 fault-nth:20): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 199.263196][ T7690] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 199.271144][ T7690] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 199.355354][ T7705] FAULT_INJECTION: forcing a failure. [ 199.355354][ T7705] name failslab, interval 1, probability 0, space 0, times 0 [ 199.368102][ T7705] CPU: 1 PID: 7705 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 199.378179][ T7705] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.388237][ T7705] Call Trace: [ 199.391521][ T7705] dump_stack+0x14a/0x1ce [ 199.396002][ T7705] ? devkmsg_release+0x11c/0x11c [ 199.400930][ T7705] ? show_regs_print_info+0x12/0x12 [ 199.406158][ T7705] should_fail+0x6fb/0x860 [ 199.410551][ T7705] ? setup_fault_attr+0x3d0/0x3d0 [ 199.415547][ T7705] ? match_token+0x6a2/0x710 [ 199.420128][ T7705] ? ovl_fill_super+0x705/0x4df0 [ 199.425065][ T7705] should_failslab+0x5/0x20 [ 199.429554][ T7705] __kmalloc_track_caller+0x5d/0x2c0 [ 199.434832][ T7705] ? kmemdup_nul+0x42/0xa0 [ 199.439247][ T7705] kmemdup_nul+0x27/0xa0 [ 199.443463][ T7705] ovl_fill_super+0x705/0x4df0 [ 199.448202][ T7705] ? ovl_mount+0x30/0x30 [ 199.452432][ T7705] ? ida_alloc_range+0xa59/0xac0 [ 199.457362][ T7705] ? delete_node+0x761/0x7b0 [ 199.461946][ T7705] ? __radix_tree_replace+0x24d/0x2f0 [ 199.467307][ T7705] ? idr_replace+0x1ca/0x240 [ 199.471888][ T7705] ? up_write+0xa1/0x190 [ 199.476104][ T7705] ? _raw_spin_lock+0xa1/0x170 [ 199.480858][ T7705] ? up_read+0x10/0x10 [ 199.484916][ T7705] ? sget+0x4cb/0x4e0 [ 199.488887][ T7705] ? free_anon_bdev+0x20/0x20 [ 199.493539][ T7705] ? ovl_mount+0x30/0x30 [ 199.497776][ T7705] mount_nodev+0x52/0xe0 [ 199.502014][ T7705] legacy_get_tree+0xde/0x170 [ 199.506663][ T7705] ? fuse_emit+0x7d0/0x7d0 [ 199.511065][ T7705] vfs_get_tree+0x85/0x260 [ 199.515452][ T7705] do_mount+0x1a15/0x28c0 [ 199.519753][ T7705] ? copy_mount_string+0x30/0x30 [ 199.524684][ T7705] ? page_fault+0x2f/0x40 [ 199.528985][ T7705] ? copy_mount_options+0x1e8/0x320 [ 199.534166][ T7705] ? copy_mount_options+0x293/0x320 [ 199.539510][ T7705] ksys_mount+0xc2/0xf0 [ 199.543652][ T7705] __x64_sys_mount+0xb1/0xc0 [ 199.548482][ T7705] do_syscall_64+0xcb/0x150 [ 199.552992][ T7705] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 199.558951][ T7705] RIP: 0033:0x45c829 [ 199.562830][ T7705] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 199.582415][ T7705] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 199.590801][ T7705] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:09 executing program 3 (fault-call:3 fault-nth:21): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:09 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 199.598748][ T7705] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 199.606699][ T7705] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 199.614643][ T7705] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 199.622589][ T7705] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 199.631096][ T17] usb 1-1: new high-speed USB device number 48 using dummy_hcd 09:43:09 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x30, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 199.681306][ T7713] FAULT_INJECTION: forcing a failure. [ 199.681306][ T7713] name failslab, interval 1, probability 0, space 0, times 0 [ 199.701110][ T7713] CPU: 0 PID: 7713 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 199.711343][ T7713] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 199.721397][ T7713] Call Trace: [ 199.724694][ T7713] dump_stack+0x14a/0x1ce [ 199.729018][ T7713] ? devkmsg_release+0x11c/0x11c [ 199.733926][ T7713] ? show_regs_print_info+0x12/0x12 [ 199.739114][ T7713] should_fail+0x6fb/0x860 [ 199.743525][ T7713] ? setup_fault_attr+0x3d0/0x3d0 [ 199.748530][ T7713] ? ovl_mount_dir+0x23/0x270 [ 199.753182][ T7713] should_failslab+0x5/0x20 [ 199.757662][ T7713] __kmalloc_track_caller+0x5d/0x2c0 [ 199.762923][ T7713] kstrdup+0x31/0x70 [ 199.766802][ T7713] ovl_mount_dir+0x23/0x270 [ 199.771276][ T7713] ovl_fill_super+0xf62/0x4df0 [ 199.776011][ T7713] ? ovl_mount+0x30/0x30 [ 199.780225][ T7713] ? ida_alloc_range+0xa59/0xac0 [ 199.785152][ T7713] ? delete_node+0x761/0x7b0 [ 199.789737][ T7713] ? __radix_tree_replace+0x24d/0x2f0 [ 199.795081][ T7713] ? idr_replace+0x1ca/0x240 [ 199.799645][ T7713] ? up_write+0xa1/0x190 [ 199.803889][ T7713] ? _raw_spin_lock+0xa1/0x170 [ 199.808625][ T7713] ? up_read+0x10/0x10 [ 199.812665][ T7713] ? sget+0x4cb/0x4e0 [ 199.816615][ T7713] ? free_anon_bdev+0x20/0x20 [ 199.821281][ T7713] ? ovl_mount+0x30/0x30 [ 199.825500][ T7713] mount_nodev+0x52/0xe0 [ 199.829738][ T7713] legacy_get_tree+0xde/0x170 [ 199.834405][ T7713] ? fuse_emit+0x7d0/0x7d0 [ 199.838814][ T7713] vfs_get_tree+0x85/0x260 [ 199.843206][ T7713] do_mount+0x1a15/0x28c0 [ 199.847522][ T7713] ? copy_mount_string+0x30/0x30 [ 199.852541][ T7713] ? page_fault+0x2f/0x40 [ 199.856865][ T7713] ? copy_mount_options+0x1e8/0x320 [ 199.862057][ T7713] ? copy_mount_options+0x293/0x320 [ 199.867227][ T7713] ksys_mount+0xc2/0xf0 [ 199.871375][ T7713] __x64_sys_mount+0xb1/0xc0 [ 199.875945][ T7713] do_syscall_64+0xcb/0x150 [ 199.880446][ T7713] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 199.886325][ T7713] RIP: 0033:0x45c829 [ 199.890209][ T7713] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 199.909871][ T7713] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 199.918271][ T7713] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 199.926240][ T7713] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 199.934185][ T7713] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 199.942129][ T7713] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 199.950073][ T7713] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 199.986006][ T17] usb 1-1: Using ep0 maxpacket: 16 [ 200.126061][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 200.139654][ T17] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 200.149986][ T17] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 200.163154][ T17] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 200.172449][ T17] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 200.181254][ T17] usb 1-1: config 0 descriptor?? [ 200.715940][ T17] usbhid 1-1:0.0: can't add hid device: -71 [ 200.721939][ T17] usbhid: probe of 1-1:0.0 failed with error -71 [ 200.729833][ T17] usb 1-1: USB disconnect, device number 48 09:43:10 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:10 executing program 3 (fault-call:3 fault-nth:22): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:10 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x10, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xb, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2f, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:10 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x31, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xc, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:10 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x11, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 201.164890][ T7730] FAULT_INJECTION: forcing a failure. [ 201.164890][ T7730] name failslab, interval 1, probability 0, space 0, times 0 [ 201.187977][ T7730] CPU: 1 PID: 7730 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 201.198272][ T7730] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.208321][ T7730] Call Trace: [ 201.211621][ T7730] dump_stack+0x14a/0x1ce [ 201.215949][ T7730] ? devkmsg_release+0x11c/0x11c [ 201.221275][ T7730] ? show_regs_print_info+0x12/0x12 [ 201.226500][ T7730] should_fail+0x6fb/0x860 [ 201.230925][ T7730] ? setup_fault_attr+0x3d0/0x3d0 [ 201.235933][ T7730] ? getname_kernel+0x55/0x2f0 [ 201.241295][ T7730] should_failslab+0x5/0x20 [ 201.245788][ T7730] kmem_cache_alloc+0x36/0x260 [ 201.250638][ T7730] getname_kernel+0x55/0x2f0 [ 201.255208][ T7730] kern_path+0x19/0x40 [ 201.259259][ T7730] ovl_mount_dir_noesc+0x55/0x1a0 [ 201.264264][ T7730] ovl_mount_dir+0x18b/0x270 [ 201.268844][ T7730] ovl_fill_super+0xf62/0x4df0 [ 201.273579][ T7730] ? ovl_mount+0x30/0x30 [ 201.277798][ T7730] ? ida_alloc_range+0xa59/0xac0 [ 201.282724][ T7730] ? delete_node+0x761/0x7b0 [ 201.287294][ T7730] ? __radix_tree_replace+0x24d/0x2f0 [ 201.293726][ T7730] ? idr_replace+0x1ca/0x240 [ 201.298300][ T7730] ? up_write+0xa1/0x190 [ 201.302520][ T7730] ? _raw_spin_lock+0xa1/0x170 [ 201.307396][ T7730] ? up_read+0x10/0x10 [ 201.311471][ T7730] ? sget+0x4cb/0x4e0 [ 201.315445][ T7730] ? free_anon_bdev+0x20/0x20 [ 201.320188][ T7730] ? ovl_mount+0x30/0x30 [ 201.324404][ T7730] mount_nodev+0x52/0xe0 [ 201.328625][ T7730] legacy_get_tree+0xde/0x170 [ 201.333274][ T7730] ? fuse_emit+0x7d0/0x7d0 [ 201.337672][ T7730] vfs_get_tree+0x85/0x260 [ 201.342067][ T7730] do_mount+0x1a15/0x28c0 [ 201.346400][ T7730] ? copy_mount_string+0x30/0x30 [ 201.355055][ T7730] ? page_fault+0x2f/0x40 [ 201.359594][ T7730] ? copy_mount_options+0x1e8/0x320 [ 201.365265][ T7730] ? copy_mount_options+0x293/0x320 [ 201.370728][ T7730] ksys_mount+0xc2/0xf0 [ 201.375055][ T7730] __x64_sys_mount+0xb1/0xc0 [ 201.379751][ T7730] do_syscall_64+0xcb/0x150 [ 201.384323][ T7730] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 201.390206][ T7730] RIP: 0033:0x45c829 [ 201.394107][ T7730] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 201.413695][ T7730] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 201.422096][ T7730] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 201.430165][ T7730] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 201.438114][ T7730] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 201.446186][ T7730] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 201.454154][ T7730] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:11 executing program 3 (fault-call:3 fault-nth:23): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 201.463011][ T7730] overlayfs: failed to resolve './file0': -12 [ 201.615832][ T3969] usb 1-1: new high-speed USB device number 49 using dummy_hcd 09:43:11 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:11 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x30, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 201.690925][ T7750] FAULT_INJECTION: forcing a failure. [ 201.690925][ T7750] name fail_page_alloc, interval 1, probability 0, space 0, times 0 [ 201.704511][ T7750] CPU: 1 PID: 7750 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 201.705945][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 201.714589][ T7750] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.714592][ T7750] Call Trace: [ 201.714608][ T7750] dump_stack+0x14a/0x1ce [ 201.714623][ T7750] ? devkmsg_release+0x11c/0x11c [ 201.743035][ T7750] ? show_regs_print_info+0x12/0x12 [ 201.748210][ T7750] should_fail+0x6fb/0x860 [ 201.752601][ T7750] ? setup_fault_attr+0x3d0/0x3d0 [ 201.757599][ T7750] ? stack_trace_save+0x123/0x1f0 [ 201.762597][ T7750] __alloc_pages_nodemask+0x1ee/0x7c0 [ 201.767948][ T7750] ? gfp_pfmemalloc_allowed+0x130/0x130 [ 201.773493][ T7750] ? mount_nodev+0x52/0xe0 [ 201.777941][ T7750] ? legacy_get_tree+0xde/0x170 [ 201.782906][ T7750] ? vfs_get_tree+0x85/0x260 [ 201.787471][ T7750] ? do_mount+0x1a15/0x28c0 [ 201.791952][ T7750] ? ksys_mount+0xc2/0xf0 [ 201.796321][ T7750] ? __x64_sys_mount+0xb1/0xc0 [ 201.801076][ T7750] ? do_syscall_64+0xcb/0x150 [ 201.805740][ T7750] alloc_slab_page+0x3a/0x3a0 [ 201.810443][ T7750] new_slab+0x97/0x450 [ 201.814511][ T7750] ? should_fail+0x182/0x860 [ 201.819088][ T7750] ___slab_alloc+0x2e0/0x450 [ 201.823684][ T7750] ? getname_kernel+0x55/0x2f0 [ 201.828418][ T7750] ? getname_kernel+0x55/0x2f0 [ 201.833177][ T7750] kmem_cache_alloc+0x23f/0x260 [ 201.835876][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 201.838009][ T7750] getname_kernel+0x55/0x2f0 [ 201.838022][ T7750] kern_path+0x19/0x40 [ 201.848934][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 201.853441][ T7750] ovl_mount_dir_noesc+0x55/0x1a0 [ 201.853453][ T7750] ovl_mount_dir+0x18b/0x270 [ 201.862291][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 201.867186][ T7750] ovl_fill_super+0xf62/0x4df0 [ 201.867197][ T7750] ? ovl_mount+0x30/0x30 [ 201.867205][ T7750] ? ida_alloc_range+0xa59/0xac0 [ 201.867213][ T7750] ? delete_node+0x761/0x7b0 [ 201.867225][ T7750] ? __radix_tree_replace+0x24d/0x2f0 [ 201.873684][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 201.876828][ T7750] ? idr_replace+0x1ca/0x240 [ 201.876838][ T7750] ? up_write+0xa1/0x190 [ 201.876846][ T7750] ? _raw_spin_lock+0xa1/0x170 [ 201.876857][ T7750] ? up_read+0x10/0x10 [ 201.890761][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 201.894327][ T7750] ? sget+0x4cb/0x4e0 [ 201.894339][ T7750] ? free_anon_bdev+0x20/0x20 [ 201.899971][ T3969] usb 1-1: config 0 descriptor?? [ 201.903466][ T7750] ? ovl_mount+0x30/0x30 [ 201.903478][ T7750] mount_nodev+0x52/0xe0 [ 201.969852][ T7750] legacy_get_tree+0xde/0x170 [ 201.974502][ T7750] ? fuse_emit+0x7d0/0x7d0 [ 201.978910][ T7750] vfs_get_tree+0x85/0x260 [ 201.983318][ T7750] do_mount+0x1a15/0x28c0 [ 201.987620][ T7750] ? copy_mount_string+0x30/0x30 [ 201.992554][ T7750] ? page_fault+0x2f/0x40 [ 201.996873][ T7750] ? copy_mount_options+0x1e8/0x320 [ 202.002058][ T7750] ? copy_mount_options+0x293/0x320 [ 202.007223][ T7750] ksys_mount+0xc2/0xf0 [ 202.011349][ T7750] __x64_sys_mount+0xb1/0xc0 [ 202.016061][ T7750] do_syscall_64+0xcb/0x150 [ 202.020544][ T7750] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 202.026436][ T7750] RIP: 0033:0x45c829 [ 202.030335][ T7750] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 202.049930][ T7750] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 202.058921][ T7750] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 202.066867][ T7750] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 202.074808][ T7750] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 202.082774][ T7750] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:11 executing program 3 (fault-call:3 fault-nth:24): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 202.090891][ T7750] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 202.218749][ T7766] FAULT_INJECTION: forcing a failure. [ 202.218749][ T7766] name failslab, interval 1, probability 0, space 0, times 0 [ 202.242170][ T7766] CPU: 0 PID: 7766 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 202.252265][ T7766] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 202.262296][ T7766] Call Trace: [ 202.265580][ T7766] dump_stack+0x14a/0x1ce [ 202.269880][ T7766] ? devkmsg_release+0x11c/0x11c [ 202.274788][ T7766] ? show_regs_print_info+0x12/0x12 [ 202.280015][ T7766] ? find_inode+0x40d/0x4c0 [ 202.284513][ T7766] ? _raw_spin_lock+0x170/0x170 [ 202.289393][ T7766] should_fail+0x6fb/0x860 [ 202.293783][ T7766] ? setup_fault_attr+0x3d0/0x3d0 [ 202.298809][ T7766] ? _raw_spin_lock+0xa1/0x170 [ 202.303564][ T7766] ? _raw_spin_trylock_bh+0x190/0x190 [ 202.308908][ T7766] ? __percpu_counter_sum+0x19b/0x1e0 [ 202.314250][ T7766] ? ovl_lookup_inode+0x120/0x120 [ 202.319266][ T7766] ? ovl_alloc_inode+0x1b/0x90 [ 202.324319][ T7766] should_failslab+0x5/0x20 [ 202.328815][ T7766] kmem_cache_alloc+0x36/0x260 [ 202.333550][ T7766] ? ovl_free_fs+0x640/0x640 [ 202.338127][ T7766] ? ovl_lookup_inode+0x120/0x120 [ 202.343140][ T7766] ovl_alloc_inode+0x1b/0x90 [ 202.347699][ T7766] ? ovl_free_fs+0x640/0x640 [ 202.352276][ T7766] iget5_locked+0xa2/0x3e0 [ 202.356682][ T7766] ? ovl_get_trap_inode+0x190/0x190 [ 202.361849][ T7766] ovl_get_trap_inode+0x88/0x190 [ 202.366755][ T7766] ovl_fill_super+0x1397/0x4df0 [ 202.371576][ T7766] ? ovl_mount+0x30/0x30 [ 202.375789][ T7766] ? ida_alloc_range+0xa59/0xac0 [ 202.380708][ T7766] ? delete_node+0x761/0x7b0 [ 202.385301][ T7766] ? __radix_tree_replace+0x24d/0x2f0 [ 202.390647][ T7766] ? idr_replace+0x1ca/0x240 [ 202.395225][ T7766] ? up_read+0x10/0x10 [ 202.399270][ T7766] ? sget+0x4cb/0x4e0 [ 202.403254][ T7766] ? free_anon_bdev+0x20/0x20 [ 202.407906][ T7766] ? ovl_mount+0x30/0x30 [ 202.412180][ T7766] mount_nodev+0x52/0xe0 [ 202.416414][ T7766] legacy_get_tree+0xde/0x170 [ 202.421085][ T7766] ? fuse_emit+0x7d0/0x7d0 [ 202.425485][ T7766] vfs_get_tree+0x85/0x260 [ 202.429977][ T7766] do_mount+0x1a15/0x28c0 [ 202.434278][ T7766] ? copy_mount_string+0x30/0x30 [ 202.439281][ T7766] ? page_fault+0x2f/0x40 [ 202.443580][ T7766] ? copy_mount_options+0x1e8/0x320 [ 202.448750][ T7766] ? copy_mount_options+0x293/0x320 [ 202.454004][ T7766] ksys_mount+0xc2/0xf0 [ 202.458232][ T7766] __x64_sys_mount+0xb1/0xc0 [ 202.462795][ T7766] do_syscall_64+0xcb/0x150 [ 202.467270][ T7766] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 202.473131][ T7766] RIP: 0033:0x45c829 [ 202.476996][ T7766] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 202.496572][ T7766] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 202.504973][ T7766] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 202.512931][ T7766] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 202.520893][ T7766] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 202.528861][ T7766] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 202.536822][ T7766] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 202.615850][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 202.621798][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 202.630017][ T3969] usb 1-1: USB disconnect, device number 49 09:43:12 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x31, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:12 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x32, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:12 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:12 executing program 3 (fault-call:3 fault-nth:25): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:12 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x14, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 203.072909][ T7784] FAULT_INJECTION: forcing a failure. [ 203.072909][ T7784] name failslab, interval 1, probability 0, space 0, times 0 [ 203.085610][ T7784] CPU: 1 PID: 7784 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 203.095671][ T7784] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.105709][ T7784] Call Trace: [ 203.108975][ T7784] dump_stack+0x14a/0x1ce [ 203.113275][ T7784] ? devkmsg_release+0x11c/0x11c [ 203.118183][ T7784] ? show_regs_print_info+0x12/0x12 [ 203.123354][ T7784] ? find_inode+0x40d/0x4c0 [ 203.127850][ T7784] should_fail+0x6fb/0x860 [ 203.135287][ T7784] ? setup_fault_attr+0x3d0/0x3d0 [ 203.140299][ T7784] ? alloc_vfsmnt+0x24/0x470 [ 203.144876][ T7784] should_failslab+0x5/0x20 [ 203.149355][ T7784] kmem_cache_alloc+0x36/0x260 [ 203.154089][ T7784] ? kmem_cache_alloc+0x1d5/0x260 [ 203.160663][ T7784] alloc_vfsmnt+0x24/0x470 [ 203.165053][ T7784] clone_mnt+0x68/0xca0 [ 203.169182][ T7784] clone_private_mount+0x8d/0xe0 [ 203.174090][ T7784] ovl_fill_super+0x1442/0x4df0 [ 203.178921][ T7784] ? ovl_mount+0x30/0x30 [ 203.183145][ T7784] ? ida_alloc_range+0xa59/0xac0 [ 203.188072][ T7784] ? delete_node+0x761/0x7b0 [ 203.192656][ T7784] ? __radix_tree_replace+0x24d/0x2f0 [ 203.198054][ T7784] ? idr_replace+0x1ca/0x240 [ 203.202634][ T7784] ? up_read+0x10/0x10 [ 203.206698][ T7784] ? sget+0x4cb/0x4e0 [ 203.210657][ T7784] ? free_anon_bdev+0x20/0x20 [ 203.215312][ T7784] ? ovl_mount+0x30/0x30 [ 203.219539][ T7784] mount_nodev+0x52/0xe0 [ 203.223754][ T7784] legacy_get_tree+0xde/0x170 [ 203.228400][ T7784] ? fuse_emit+0x7d0/0x7d0 [ 203.232785][ T7784] vfs_get_tree+0x85/0x260 [ 203.237190][ T7784] do_mount+0x1a15/0x28c0 [ 203.241508][ T7784] ? copy_mount_string+0x30/0x30 [ 203.246418][ T7784] ? page_fault+0x2f/0x40 [ 203.250724][ T7784] ? copy_mount_options+0x1e8/0x320 [ 203.255903][ T7784] ? copy_mount_options+0x293/0x320 [ 203.261089][ T7784] ksys_mount+0xc2/0xf0 [ 203.265218][ T7784] __x64_sys_mount+0xb1/0xc0 [ 203.269796][ T7784] do_syscall_64+0xcb/0x150 [ 203.274271][ T7784] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 203.280135][ T7784] RIP: 0033:0x45c829 [ 203.284025][ T7784] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 203.303602][ T7784] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 203.312025][ T7784] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:12 executing program 3 (fault-call:3 fault-nth:26): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 203.319970][ T7784] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 203.327917][ T7784] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 203.335860][ T7784] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 203.343879][ T7784] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 203.345715][ T3969] usb 1-1: new high-speed USB device number 50 using dummy_hcd [ 203.352797][ T7784] overlayfs: failed to clone upperpath 09:43:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x32, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 203.455512][ T7799] FAULT_INJECTION: forcing a failure. [ 203.455512][ T7799] name failslab, interval 1, probability 0, space 0, times 0 [ 203.468338][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 203.486055][ T7799] CPU: 0 PID: 7799 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 203.496200][ T7799] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.506259][ T7799] Call Trace: [ 203.509524][ T7799] dump_stack+0x14a/0x1ce [ 203.513842][ T7799] ? devkmsg_release+0x11c/0x11c [ 203.518749][ T7799] ? show_regs_print_info+0x12/0x12 [ 203.523924][ T7799] ? ida_alloc_range+0xa59/0xac0 [ 203.528944][ T7799] should_fail+0x6fb/0x860 [ 203.533335][ T7799] ? setup_fault_attr+0x3d0/0x3d0 [ 203.538361][ T7799] ? idr_replace+0x240/0x240 [ 203.542926][ T7799] ? alloc_vfsmnt+0xa3/0x470 [ 203.547582][ T7799] should_failslab+0x5/0x20 [ 203.552061][ T7799] __kmalloc_track_caller+0x5d/0x2c0 [ 203.557317][ T7799] ? alloc_vfsmnt+0x24/0x470 [ 203.561896][ T7799] kstrdup_const+0x51/0x90 [ 203.566287][ T7799] alloc_vfsmnt+0xa3/0x470 [ 203.570674][ T7799] clone_mnt+0x68/0xca0 [ 203.574799][ T7799] clone_private_mount+0x8d/0xe0 [ 203.579707][ T7799] ovl_fill_super+0x1442/0x4df0 [ 203.584529][ T7799] ? ovl_mount+0x30/0x30 [ 203.588742][ T7799] ? ida_alloc_range+0xa59/0xac0 [ 203.593667][ T7799] ? delete_node+0x761/0x7b0 [ 203.598267][ T7799] ? __radix_tree_replace+0x24d/0x2f0 [ 203.603609][ T7799] ? idr_replace+0x1ca/0x240 [ 203.608187][ T7799] ? up_read+0x10/0x10 [ 203.612246][ T7799] ? sget+0x4cb/0x4e0 [ 203.616207][ T7799] ? free_anon_bdev+0x20/0x20 [ 203.620856][ T7799] ? ovl_mount+0x30/0x30 [ 203.625067][ T7799] mount_nodev+0x52/0xe0 [ 203.629284][ T7799] legacy_get_tree+0xde/0x170 [ 203.633930][ T7799] ? fuse_emit+0x7d0/0x7d0 [ 203.638334][ T7799] vfs_get_tree+0x85/0x260 [ 203.642720][ T7799] do_mount+0x1a15/0x28c0 [ 203.647021][ T7799] ? copy_mount_string+0x30/0x30 [ 203.651945][ T7799] ? page_fault+0x2f/0x40 [ 203.656244][ T7799] ? copy_mount_options+0x1e8/0x320 [ 203.661433][ T7799] ? copy_mount_options+0x293/0x320 [ 203.666611][ T7799] ksys_mount+0xc2/0xf0 [ 203.670741][ T7799] __x64_sys_mount+0xb1/0xc0 [ 203.675355][ T7799] do_syscall_64+0xcb/0x150 [ 203.679830][ T7799] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 203.685694][ T7799] RIP: 0033:0x45c829 [ 203.689578][ T7799] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 203.709154][ T7799] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 203.717549][ T7799] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 203.725493][ T7799] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 203.733451][ T7799] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 203.741395][ T7799] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:13 executing program 3 (fault-call:3 fault-nth:27): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 203.749339][ T7799] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 203.758274][ T7799] overlayfs: failed to clone upperpath [ 203.794490][ T7809] FAULT_INJECTION: forcing a failure. [ 203.794490][ T7809] name failslab, interval 1, probability 0, space 0, times 0 [ 203.807438][ T7809] CPU: 1 PID: 7809 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 203.817481][ T7809] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 203.827510][ T7809] Call Trace: [ 203.830777][ T7809] dump_stack+0x14a/0x1ce [ 203.835099][ T7809] ? devkmsg_release+0x11c/0x11c [ 203.835734][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 203.840017][ T7809] ? show_regs_print_info+0x12/0x12 [ 203.840028][ T7809] ? find_next_bit+0xd8/0x120 [ 203.840034][ T7809] ? cpumask_next+0xc/0x20 [ 203.840049][ T7809] should_fail+0x6fb/0x860 [ 203.851019][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 203.856055][ T7809] ? setup_fault_attr+0x3d0/0x3d0 [ 203.856066][ T7809] ? _raw_spin_lock+0xa1/0x170 [ 203.856073][ T7809] ? _raw_spin_trylock_bh+0x190/0x190 [ 203.856082][ T7809] ? ovl_mount_dir+0x23/0x270 [ 203.856090][ T7809] should_failslab+0x5/0x20 [ 203.856099][ T7809] __kmalloc_track_caller+0x5d/0x2c0 [ 203.856106][ T7809] ? _raw_spin_unlock+0x5/0x20 [ 203.856119][ T7809] ? clone_mnt+0xa21/0xca0 [ 203.864523][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 203.865165][ T7809] kstrdup+0x31/0x70 [ 203.870160][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 203.879242][ T7809] ovl_mount_dir+0x23/0x270 [ 203.879251][ T7809] ovl_fill_super+0x1599/0x4df0 [ 203.879262][ T7809] ? ovl_mount+0x30/0x30 [ 203.879269][ T7809] ? ida_alloc_range+0xa59/0xac0 [ 203.879277][ T7809] ? delete_node+0x761/0x7b0 [ 203.879284][ T7809] ? __radix_tree_replace+0x24d/0x2f0 [ 203.879301][ T7809] ? up_read+0x10/0x10 [ 203.885839][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 203.889063][ T7809] ? sget+0x4cb/0x4e0 [ 203.889072][ T7809] ? free_anon_bdev+0x20/0x20 [ 203.889080][ T7809] ? ovl_mount+0x30/0x30 [ 203.889091][ T7809] mount_nodev+0x52/0xe0 [ 203.895108][ T3969] usb 1-1: config 0 descriptor?? [ 203.899088][ T7809] legacy_get_tree+0xde/0x170 [ 203.899097][ T7809] ? fuse_emit+0x7d0/0x7d0 [ 203.899104][ T7809] vfs_get_tree+0x85/0x260 [ 203.899113][ T7809] do_mount+0x1a15/0x28c0 [ 203.899122][ T7809] ? copy_mount_string+0x30/0x30 [ 203.899129][ T7809] ? page_fault+0x2f/0x40 [ 203.899141][ T7809] ? copy_mount_options+0x1e8/0x320 [ 204.038129][ T7809] ? copy_mount_options+0x293/0x320 [ 204.043316][ T7809] ksys_mount+0xc2/0xf0 [ 204.047451][ T7809] __x64_sys_mount+0xb1/0xc0 [ 204.052022][ T7809] do_syscall_64+0xcb/0x150 [ 204.056518][ T7809] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 204.062399][ T7809] RIP: 0033:0x45c829 [ 204.066283][ T7809] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 204.085960][ T7809] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 204.094356][ T7809] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x33, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:13 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x17, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 204.102310][ T7809] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 204.110269][ T7809] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 204.118227][ T7809] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 204.126180][ T7809] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 204.446195][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 204.452139][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 204.467660][ T3969] usb 1-1: USB disconnect, device number 50 09:43:14 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(0xffffffffffffffff, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:14 executing program 3 (fault-call:3 fault-nth:28): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x10, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:14 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x33, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:14 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x21, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:14 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x34, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 204.884238][ T7831] FAULT_INJECTION: forcing a failure. [ 204.884238][ T7831] name failslab, interval 1, probability 0, space 0, times 0 [ 204.899528][ T7831] CPU: 1 PID: 7831 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 204.909600][ T7831] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 204.922846][ T7831] Call Trace: [ 204.926113][ T7831] dump_stack+0x14a/0x1ce [ 204.930415][ T7831] ? devkmsg_release+0x11c/0x11c [ 204.935322][ T7831] ? show_regs_print_info+0x12/0x12 [ 204.940514][ T7831] should_fail+0x6fb/0x860 [ 204.946555][ T7831] ? setup_fault_attr+0x3d0/0x3d0 [ 204.951654][ T7831] ? getname_kernel+0x55/0x2f0 [ 204.956405][ T7831] should_failslab+0x5/0x20 [ 204.960897][ T7831] kmem_cache_alloc+0x36/0x260 [ 204.965915][ T7831] getname_kernel+0x55/0x2f0 [ 204.971147][ T7831] kern_path+0x19/0x40 [ 204.975191][ T7831] ovl_mount_dir_noesc+0x55/0x1a0 [ 204.980189][ T7831] ovl_mount_dir+0x18b/0x270 [ 204.984754][ T7831] ovl_fill_super+0x1599/0x4df0 [ 204.989579][ T7831] ? ovl_mount+0x30/0x30 [ 204.993794][ T7831] ? ida_alloc_range+0xa59/0xac0 [ 204.998707][ T7831] ? delete_node+0x761/0x7b0 [ 205.003267][ T7831] ? __radix_tree_replace+0x24d/0x2f0 [ 205.008627][ T7831] ? up_read+0x10/0x10 [ 205.012674][ T7831] ? sget+0x4cb/0x4e0 [ 205.016648][ T7831] ? free_anon_bdev+0x20/0x20 [ 205.021309][ T7831] ? ovl_mount+0x30/0x30 [ 205.025530][ T7831] mount_nodev+0x52/0xe0 [ 205.029751][ T7831] legacy_get_tree+0xde/0x170 [ 205.034404][ T7831] ? fuse_emit+0x7d0/0x7d0 [ 205.038794][ T7831] vfs_get_tree+0x85/0x260 [ 205.043187][ T7831] do_mount+0x1a15/0x28c0 [ 205.047488][ T7831] ? copy_mount_string+0x30/0x30 [ 205.053265][ T7831] ? page_fault+0x2f/0x40 [ 205.057583][ T7831] ? copy_mount_options+0x1e8/0x320 [ 205.062753][ T7831] ? copy_mount_options+0x293/0x320 [ 205.067921][ T7831] ksys_mount+0xc2/0xf0 [ 205.072066][ T7831] __x64_sys_mount+0xb1/0xc0 [ 205.076652][ T7831] do_syscall_64+0xcb/0x150 [ 205.081134][ T7831] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 205.086996][ T7831] RIP: 0033:0x45c829 [ 205.090874][ T7831] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 205.110711][ T7831] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 205.119096][ T7831] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:14 executing program 3 (fault-call:3 fault-nth:29): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x11, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 205.129645][ T7831] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 205.137597][ T7831] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 205.145548][ T7831] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 205.153494][ T7831] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 205.162317][ T7831] overlayfs: failed to resolve './file1': -12 [ 205.165667][ T3969] usb 1-1: new high-speed USB device number 51 using dummy_hcd [ 205.198985][ T7847] FAULT_INJECTION: forcing a failure. [ 205.198985][ T7847] name failslab, interval 1, probability 0, space 0, times 0 [ 205.211717][ T7847] CPU: 0 PID: 7847 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 205.221791][ T7847] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.231818][ T7847] Call Trace: [ 205.235097][ T7847] dump_stack+0x14a/0x1ce [ 205.239400][ T7847] ? devkmsg_release+0x11c/0x11c [ 205.244570][ T7847] ? show_regs_print_info+0x12/0x12 [ 205.249736][ T7847] ? find_inode+0x40d/0x4c0 [ 205.254243][ T7847] should_fail+0x6fb/0x860 [ 205.258651][ T7847] ? setup_fault_attr+0x3d0/0x3d0 [ 205.263647][ T7847] ? _raw_spin_lock+0xa1/0x170 [ 205.268384][ T7847] ? _raw_spin_trylock_bh+0x190/0x190 [ 205.273729][ T7847] ? ovl_lookup_inode+0x120/0x120 [ 205.278720][ T7847] ? ovl_alloc_inode+0x1b/0x90 [ 205.283454][ T7847] should_failslab+0x5/0x20 [ 205.287937][ T7847] kmem_cache_alloc+0x36/0x260 [ 205.292931][ T7847] ? ovl_free_fs+0x640/0x640 [ 205.297490][ T7847] ? ovl_lookup_inode+0x120/0x120 [ 205.302484][ T7847] ovl_alloc_inode+0x1b/0x90 [ 205.307044][ T7847] ? ovl_free_fs+0x640/0x640 [ 205.311601][ T7847] iget5_locked+0xa2/0x3e0 [ 205.315985][ T7847] ? ovl_get_trap_inode+0x190/0x190 [ 205.321150][ T7847] ovl_get_trap_inode+0x88/0x190 [ 205.326066][ T7847] ovl_fill_super+0x30ec/0x4df0 [ 205.331150][ T7847] ? ovl_mount+0x30/0x30 [ 205.335379][ T7847] ? ida_alloc_range+0xa59/0xac0 [ 205.340287][ T7847] ? delete_node+0x761/0x7b0 [ 205.344863][ T7847] ? __radix_tree_replace+0x24d/0x2f0 [ 205.350208][ T7847] ? up_read+0x10/0x10 [ 205.354262][ T7847] ? sget+0x4cb/0x4e0 [ 205.358233][ T7847] ? free_anon_bdev+0x20/0x20 [ 205.362895][ T7847] ? ovl_mount+0x30/0x30 [ 205.367107][ T7847] mount_nodev+0x52/0xe0 [ 205.372017][ T7847] legacy_get_tree+0xde/0x170 [ 205.376666][ T7847] ? fuse_emit+0x7d0/0x7d0 [ 205.381080][ T7847] vfs_get_tree+0x85/0x260 [ 205.385483][ T7847] do_mount+0x1a15/0x28c0 [ 205.389819][ T7847] ? copy_mount_string+0x30/0x30 [ 205.394729][ T7847] ? page_fault+0x2f/0x40 [ 205.399122][ T7847] ? copy_mount_options+0x1e8/0x320 [ 205.404307][ T7847] ? copy_mount_options+0x293/0x320 [ 205.409481][ T7847] ksys_mount+0xc2/0xf0 [ 205.413624][ T7847] __x64_sys_mount+0xb1/0xc0 [ 205.418222][ T7847] do_syscall_64+0xcb/0x150 [ 205.422701][ T7847] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 205.428566][ T7847] RIP: 0033:0x45c829 09:43:15 executing program 3 (fault-call:3 fault-nth:30): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:15 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x34, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:15 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x35, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 205.432433][ T7847] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 205.452026][ T7847] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 205.460426][ T7847] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 205.468372][ T7847] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 205.476316][ T7847] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 205.484277][ T7847] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 205.492221][ T7847] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 205.535597][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 205.555994][ T7852] FAULT_INJECTION: forcing a failure. [ 205.555994][ T7852] name failslab, interval 1, probability 0, space 0, times 0 [ 205.568820][ T7852] CPU: 1 PID: 7852 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 205.578881][ T7852] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.588944][ T7852] Call Trace: [ 205.592224][ T7852] dump_stack+0x14a/0x1ce [ 205.596529][ T7852] ? devkmsg_release+0x11c/0x11c [ 205.601442][ T7852] ? show_regs_print_info+0x12/0x12 [ 205.606614][ T7852] ? find_inode+0x40d/0x4c0 [ 205.611106][ T7852] should_fail+0x6fb/0x860 [ 205.615502][ T7852] ? setup_fault_attr+0x3d0/0x3d0 [ 205.620514][ T7852] ? _raw_spin_lock+0xa1/0x170 [ 205.625250][ T7852] ? _raw_spin_trylock_bh+0x190/0x190 [ 205.630593][ T7852] ? ovl_lookup_inode+0x120/0x120 [ 205.635595][ T7852] ? ovl_alloc_inode+0x1b/0x90 [ 205.640333][ T7852] should_failslab+0x5/0x20 [ 205.644808][ T7852] kmem_cache_alloc+0x36/0x260 [ 205.649570][ T7852] ? ovl_free_fs+0x640/0x640 [ 205.654140][ T7852] ? ovl_lookup_inode+0x120/0x120 [ 205.655601][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 205.659140][ T7852] ovl_alloc_inode+0x1b/0x90 [ 205.659148][ T7852] ? ovl_free_fs+0x640/0x640 [ 205.659157][ T7852] iget5_locked+0xa2/0x3e0 [ 205.659166][ T7852] ? ovl_get_trap_inode+0x190/0x190 [ 205.659179][ T7852] ovl_get_trap_inode+0x88/0x190 [ 205.670151][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 205.674580][ T7852] ovl_fill_super+0x30ec/0x4df0 [ 205.674593][ T7852] ? ovl_mount+0x30/0x30 [ 205.674601][ T7852] ? ida_alloc_range+0xa59/0xac0 [ 205.674615][ T7852] ? delete_node+0x761/0x7b0 [ 205.684311][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 205.688770][ T7852] ? __radix_tree_replace+0x24d/0x2f0 [ 205.688783][ T7852] ? up_read+0x10/0x10 [ 205.688791][ T7852] ? sget+0x4cb/0x4e0 [ 205.688797][ T7852] ? free_anon_bdev+0x20/0x20 [ 205.688804][ T7852] ? ovl_mount+0x30/0x30 [ 205.688810][ T7852] mount_nodev+0x52/0xe0 [ 205.688824][ T7852] legacy_get_tree+0xde/0x170 [ 205.695533][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 205.703424][ T7852] ? fuse_emit+0x7d0/0x7d0 [ 205.703435][ T7852] vfs_get_tree+0x85/0x260 [ 205.703443][ T7852] do_mount+0x1a15/0x28c0 [ 205.703456][ T7852] ? copy_mount_string+0x30/0x30 [ 205.709843][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 205.712502][ T7852] ? page_fault+0x2f/0x40 [ 205.712515][ T7852] ? copy_mount_options+0x1e8/0x320 [ 205.712522][ T7852] ? copy_mount_options+0x293/0x320 [ 205.712534][ T7852] ksys_mount+0xc2/0xf0 [ 205.719213][ T3969] usb 1-1: config 0 descriptor?? [ 205.722023][ T7852] __x64_sys_mount+0xb1/0xc0 [ 205.722034][ T7852] do_syscall_64+0xcb/0x150 [ 205.722048][ T7852] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 205.839713][ T7852] RIP: 0033:0x45c829 [ 205.843581][ T7852] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 205.863175][ T7852] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 205.871560][ T7852] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 205.879616][ T7852] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 205.887568][ T7852] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 205.895622][ T7852] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:15 executing program 3 (fault-call:3 fault-nth:31): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 205.903627][ T7852] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 205.952834][ T7864] FAULT_INJECTION: forcing a failure. [ 205.952834][ T7864] name failslab, interval 1, probability 0, space 0, times 0 [ 205.965820][ T7864] CPU: 1 PID: 7864 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 205.975881][ T7864] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 205.985941][ T7864] Call Trace: [ 205.989208][ T7864] dump_stack+0x14a/0x1ce [ 205.993509][ T7864] ? devkmsg_release+0x11c/0x11c [ 205.998420][ T7864] ? arch_stack_walk+0xb5/0x120 [ 206.003256][ T7864] ? show_regs_print_info+0x12/0x12 [ 206.008449][ T7864] ? unwind_get_return_address_ptr+0xa0/0xa0 [ 206.014422][ T7864] ? arch_stack_walk+0xb5/0x120 [ 206.019247][ T7864] should_fail+0x6fb/0x860 [ 206.023666][ T7864] ? setup_fault_attr+0x3d0/0x3d0 [ 206.028674][ T7864] ? entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 206.034711][ T7864] ? __rcu_read_lock+0x50/0x50 [ 206.039447][ T7864] ? unwind_get_return_address_ptr+0xa0/0xa0 [ 206.045456][ T7864] ? __d_alloc+0x2a/0x6b0 [ 206.049831][ T7864] should_failslab+0x5/0x20 [ 206.054371][ T7864] kmem_cache_alloc+0x36/0x260 [ 206.059124][ T7864] __d_alloc+0x2a/0x6b0 [ 206.063269][ T7864] d_alloc_parallel+0xf3/0x1440 [ 206.068113][ T7864] ? avc_has_perm_noaudit+0x37d/0x400 [ 206.073484][ T7864] ? avc_has_perm_noaudit+0x30c/0x400 [ 206.078844][ T7864] ? avc_denied+0x1c0/0x1c0 [ 206.083352][ T7864] ? d_hash_and_lookup+0x1e0/0x1e0 [ 206.088452][ T7864] ? stack_trace_snprint+0x150/0x150 [ 206.093714][ T7864] ? selinux_inode_permission+0x389/0x6c0 [ 206.099586][ T7864] ? selinux_inode_permission+0x464/0x6c0 [ 206.105282][ T7864] ? __rcu_read_lock+0x50/0x50 [ 206.110040][ T7864] __lookup_slow+0x169/0x490 [ 206.114612][ T7864] ? lookup_one_len2+0x2d0/0x2d0 [ 206.119524][ T7864] lookup_one_len2+0x18b/0x2d0 [ 206.124270][ T7864] ? lookup_one_len_common+0x460/0x460 [ 206.129716][ T7864] ovl_workdir_create+0x144/0x590 [ 206.134715][ T7864] ? wake_up_bit+0x9a/0x1c0 [ 206.139190][ T7864] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 206.144463][ T7864] ? __wake_up_bit+0x180/0x180 [ 206.149209][ T7864] ? _raw_spin_lock+0xa1/0x170 [ 206.153952][ T7864] ? ovl_get_trap_inode+0x190/0x190 [ 206.159121][ T7864] ? __sb_start_write+0xa5/0x150 [ 206.164029][ T7864] ovl_fill_super+0x38c3/0x4df0 [ 206.168924][ T7864] ? ovl_mount+0x30/0x30 [ 206.173260][ T7864] ? ida_alloc_range+0xa59/0xac0 [ 206.178172][ T7864] ? delete_node+0x761/0x7b0 [ 206.182732][ T7864] ? __radix_tree_replace+0x24d/0x2f0 [ 206.188077][ T7864] ? up_read+0x10/0x10 [ 206.192136][ T7864] ? sget+0x4cb/0x4e0 [ 206.196096][ T7864] ? free_anon_bdev+0x20/0x20 [ 206.200760][ T7864] ? ovl_mount+0x30/0x30 [ 206.205047][ T7864] mount_nodev+0x52/0xe0 [ 206.209266][ T7864] legacy_get_tree+0xde/0x170 [ 206.213919][ T7864] ? fuse_emit+0x7d0/0x7d0 [ 206.218333][ T7864] vfs_get_tree+0x85/0x260 [ 206.223331][ T7864] do_mount+0x1a15/0x28c0 [ 206.227633][ T7864] ? copy_mount_string+0x30/0x30 [ 206.232557][ T7864] ? page_fault+0x2f/0x40 [ 206.236879][ T7864] ? copy_mount_options+0x1e8/0x320 [ 206.242047][ T7864] ? copy_mount_options+0x293/0x320 [ 206.247321][ T7864] ksys_mount+0xc2/0xf0 [ 206.251445][ T7864] __x64_sys_mount+0xb1/0xc0 [ 206.256003][ T7864] do_syscall_64+0xcb/0x150 [ 206.260477][ T7864] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 206.266339][ T7864] RIP: 0033:0x45c829 [ 206.270253][ T7864] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 206.275517][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 206.289834][ T7864] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 206.289844][ T7864] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 206.289848][ T7864] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 206.289852][ T7864] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 206.289857][ T7864] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 206.289862][ T7864] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 206.290543][ T7864] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only [ 206.308944][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 206.363769][ T3969] usb 1-1: USB disconnect, device number 51 09:43:16 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x14, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:16 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x22, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:16 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x36, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:16 executing program 3 (fault-call:3 fault-nth:32): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x35, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 206.727251][ T7875] FAULT_INJECTION: forcing a failure. [ 206.727251][ T7875] name failslab, interval 1, probability 0, space 0, times 0 [ 206.739996][ T7875] CPU: 1 PID: 7875 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 206.750042][ T7875] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 206.760096][ T7875] Call Trace: [ 206.763420][ T7875] dump_stack+0x14a/0x1ce [ 206.767753][ T7875] ? devkmsg_release+0x11c/0x11c 09:43:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x17, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 206.772684][ T7875] ? show_regs_print_info+0x12/0x12 [ 206.777878][ T7875] should_fail+0x6fb/0x860 [ 206.782292][ T7875] ? setup_fault_attr+0x3d0/0x3d0 [ 206.787314][ T7875] ? ebitmap_cmp+0x1c8/0x230 [ 206.791898][ T7875] ? mls_compute_context_len+0x81b/0x850 [ 206.797517][ T7875] ? context_struct_to_string+0x3e4/0x820 [ 206.803230][ T7875] should_failslab+0x5/0x20 [ 206.807734][ T7875] __kmalloc+0x5f/0x2d0 [ 206.811869][ T7875] context_struct_to_string+0x3e4/0x820 [ 206.817403][ T7875] ? security_bounded_transition+0x560/0x560 [ 206.823365][ T7875] ? ebitmap_contains+0x6d8/0x780 [ 206.828365][ T7875] ? hashtab_search+0x1bf/0x200 [ 206.833190][ T7875] context_add_hash+0x145/0x280 [ 206.838013][ T7875] ? security_sid_to_context_inval+0x40/0x40 [ 206.844236][ T7875] ? mls_context_isvalid+0x98/0x380 [ 206.849407][ T7875] ? policydb_context_isvalid+0x1b6/0x400 [ 206.855098][ T7875] security_compute_sid+0x11da/0x1d50 [ 206.860465][ T7875] ? security_transition_sid+0x90/0x90 [ 206.865893][ T7875] ? avc_denied+0x1c0/0x1c0 [ 206.870461][ T7875] ? avc_has_perm_noaudit+0x30c/0x400 [ 206.875814][ T7875] ? avc_has_perm_noaudit+0x400/0x400 [ 206.881164][ T7875] security_transition_sid+0x78/0x90 [ 206.886428][ T7875] may_create+0x64e/0x9a0 [ 206.890731][ T7875] ? show_sid+0x250/0x250 [ 206.895030][ T7875] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 206.900824][ T7875] ? generic_permission+0x190/0x4a0 [ 206.906007][ T7875] security_inode_mkdir+0xa6/0x130 [ 206.911089][ T7875] vfs_mkdir2+0x35b/0x620 [ 206.915390][ T7875] ovl_create_real+0x148/0x330 [ 206.920567][ T7875] ovl_workdir_create+0x3df/0x590 [ 206.925564][ T7875] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 206.930820][ T7875] ? __sb_start_write+0xa5/0x150 [ 206.935727][ T7875] ovl_fill_super+0x38c3/0x4df0 [ 206.940583][ T7875] ? ovl_mount+0x30/0x30 [ 206.944810][ T7875] ? ida_alloc_range+0xa59/0xac0 [ 206.949731][ T7875] ? delete_node+0x761/0x7b0 [ 206.954294][ T7875] ? __radix_tree_replace+0x24d/0x2f0 [ 206.959649][ T7875] ? up_read+0x10/0x10 [ 206.963689][ T7875] ? sget+0x4cb/0x4e0 [ 206.967642][ T7875] ? free_anon_bdev+0x20/0x20 [ 206.972723][ T7875] ? ovl_mount+0x30/0x30 [ 206.976936][ T7875] mount_nodev+0x52/0xe0 [ 206.981159][ T7875] legacy_get_tree+0xde/0x170 [ 206.985805][ T7875] ? fuse_emit+0x7d0/0x7d0 [ 206.990190][ T7875] vfs_get_tree+0x85/0x260 [ 206.994577][ T7875] do_mount+0x1a15/0x28c0 [ 206.998888][ T7875] ? copy_mount_string+0x30/0x30 [ 207.003795][ T7875] ? page_fault+0x2f/0x40 [ 207.008102][ T7875] ? copy_mount_options+0x1e8/0x320 [ 207.013274][ T7875] ? copy_mount_options+0x293/0x320 [ 207.018543][ T7875] ksys_mount+0xc2/0xf0 [ 207.022674][ T7875] __x64_sys_mount+0xb1/0xc0 [ 207.027235][ T7875] do_syscall_64+0xcb/0x150 [ 207.031711][ T7875] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 207.037763][ T7875] RIP: 0033:0x45c829 [ 207.041630][ T7875] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 207.061216][ T7875] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 207.070392][ T7875] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:16 executing program 3 (fault-call:3 fault-nth:33): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 207.078338][ T7875] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 207.086283][ T7875] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 207.094224][ T7875] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 207.102166][ T7875] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 207.114123][ T7875] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only [ 207.170757][ T7891] FAULT_INJECTION: forcing a failure. [ 207.170757][ T7891] name failslab, interval 1, probability 0, space 0, times 0 [ 207.184314][ T7891] CPU: 0 PID: 7891 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 207.194374][ T7891] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 207.204447][ T7891] Call Trace: [ 207.207819][ T7891] dump_stack+0x14a/0x1ce [ 207.212129][ T7891] ? devkmsg_release+0x11c/0x11c [ 207.217087][ T7891] ? show_regs_print_info+0x12/0x12 [ 207.222323][ T7891] should_fail+0x6fb/0x860 [ 207.226774][ T7891] ? setup_fault_attr+0x3d0/0x3d0 [ 207.231858][ T7891] ? sidtab_context_to_sid+0x68/0x10c0 [ 207.237313][ T7891] ? ext4_alloc_inode+0x1b/0x620 [ 207.242225][ T7891] should_failslab+0x5/0x20 [ 207.246706][ T7891] kmem_cache_alloc+0x36/0x260 [ 207.251442][ T7891] ? set_qf_name+0x350/0x350 [ 207.256072][ T7891] ext4_alloc_inode+0x1b/0x620 [ 207.260816][ T7891] ? set_qf_name+0x350/0x350 [ 207.265930][ T7891] new_inode_pseudo+0x64/0x240 [ 207.270692][ T7891] new_inode+0x25/0x1d0 [ 207.274837][ T7891] ? memset+0x1f/0x40 [ 207.278812][ T7891] __ext4_new_inode+0x63a/0x5cf0 [ 207.283720][ T7891] ? avc_has_perm_noaudit+0x37d/0x400 [ 207.289078][ T7891] ? avc_has_perm_noaudit+0x30c/0x400 [ 207.294434][ T7891] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 207.300131][ T7891] ? memset+0x1f/0x40 [ 207.304092][ T7891] ? __dquot_initialize+0x227/0xd70 [ 207.309270][ T7891] ? avc_has_perm+0x176/0x280 [ 207.313922][ T7891] ? security_transition_sid+0x78/0x90 [ 207.319372][ T7891] ext4_mkdir+0x41e/0x1530 [ 207.323766][ T7891] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 207.329561][ T7891] ? ext4_symlink+0x1020/0x1020 [ 207.334403][ T7891] ? generic_permission+0x190/0x4a0 [ 207.339576][ T7891] ? security_inode_mkdir+0xed/0x130 [ 207.344864][ T7891] vfs_mkdir2+0x448/0x620 [ 207.349181][ T7891] ovl_create_real+0x148/0x330 [ 207.353926][ T7891] ovl_workdir_create+0x3df/0x590 [ 207.358948][ T7891] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 207.364218][ T7891] ? __sb_start_write+0xa5/0x150 [ 207.369130][ T7891] ovl_fill_super+0x38c3/0x4df0 [ 207.374053][ T7891] ? ovl_mount+0x30/0x30 [ 207.378278][ T7891] ? ida_alloc_range+0xa59/0xac0 [ 207.383190][ T7891] ? delete_node+0x761/0x7b0 [ 207.387769][ T7891] ? __radix_tree_replace+0x24d/0x2f0 [ 207.393127][ T7891] ? up_read+0x10/0x10 [ 207.397178][ T7891] ? sget+0x4cb/0x4e0 [ 207.401208][ T7891] ? free_anon_bdev+0x20/0x20 [ 207.405861][ T7891] ? ovl_mount+0x30/0x30 [ 207.410181][ T7891] mount_nodev+0x52/0xe0 [ 207.414426][ T7891] legacy_get_tree+0xde/0x170 [ 207.419076][ T7891] ? fuse_emit+0x7d0/0x7d0 [ 207.423470][ T7891] vfs_get_tree+0x85/0x260 [ 207.427863][ T7891] do_mount+0x1a15/0x28c0 [ 207.432172][ T7891] ? copy_mount_string+0x30/0x30 [ 207.437106][ T7891] ? page_fault+0x2f/0x40 [ 207.445230][ T7891] ? copy_mount_options+0x1e8/0x320 [ 207.450413][ T7891] ? copy_mount_options+0x293/0x320 [ 207.455584][ T7891] ksys_mount+0xc2/0xf0 [ 207.459716][ T7891] __x64_sys_mount+0xb1/0xc0 [ 207.464291][ T7891] do_syscall_64+0xcb/0x150 [ 207.468777][ T7891] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 207.474651][ T7891] RIP: 0033:0x45c829 [ 207.478529][ T7891] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 207.498124][ T7891] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 207.506516][ T7891] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 207.514459][ T7891] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:17 executing program 3 (fault-call:3 fault-nth:34): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 207.522405][ T7891] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 207.530354][ T7891] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 207.538311][ T7891] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 207.546580][ T7891] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only 09:43:17 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x37, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:17 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x23, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x36, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 207.618704][ T3969] usb 1-1: new high-speed USB device number 52 using dummy_hcd [ 207.654058][ T7901] FAULT_INJECTION: forcing a failure. [ 207.654058][ T7901] name failslab, interval 1, probability 0, space 0, times 0 [ 207.667257][ T7901] CPU: 0 PID: 7901 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 207.677311][ T7901] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 207.687338][ T7901] Call Trace: [ 207.690618][ T7901] dump_stack+0x14a/0x1ce [ 207.694931][ T7901] ? devkmsg_release+0x11c/0x11c [ 207.699853][ T7901] ? show_regs_print_info+0x12/0x12 [ 207.705022][ T7901] should_fail+0x6fb/0x860 [ 207.709422][ T7901] ? setup_fault_attr+0x3d0/0x3d0 [ 207.714431][ T7901] ? sidtab_context_to_sid+0x68/0x10c0 [ 207.719863][ T7901] ? ext4_alloc_inode+0x1b/0x620 [ 207.724773][ T7901] should_failslab+0x5/0x20 [ 207.729248][ T7901] kmem_cache_alloc+0x36/0x260 [ 207.733996][ T7901] ? set_qf_name+0x350/0x350 [ 207.738567][ T7901] ext4_alloc_inode+0x1b/0x620 [ 207.743299][ T7901] ? set_qf_name+0x350/0x350 [ 207.747874][ T7901] new_inode_pseudo+0x64/0x240 [ 207.752617][ T7901] new_inode+0x25/0x1d0 [ 207.756744][ T7901] ? memset+0x1f/0x40 [ 207.760699][ T7901] __ext4_new_inode+0x63a/0x5cf0 [ 207.765780][ T7901] ? avc_has_perm_noaudit+0x37d/0x400 [ 207.771209][ T7901] ? avc_has_perm_noaudit+0x30c/0x400 [ 207.776554][ T7901] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 207.782264][ T7901] ? memset+0x1f/0x40 [ 207.786226][ T7901] ? __dquot_initialize+0x227/0xd70 [ 207.791394][ T7901] ? avc_has_perm+0x176/0x280 [ 207.796494][ T7901] ? security_transition_sid+0x78/0x90 [ 207.802139][ T7901] ext4_mkdir+0x41e/0x1530 [ 207.806541][ T7901] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 207.812393][ T7901] ? ext4_symlink+0x1020/0x1020 [ 207.817217][ T7901] ? generic_permission+0x190/0x4a0 [ 207.822393][ T7901] ? security_inode_mkdir+0xed/0x130 [ 207.827657][ T7901] vfs_mkdir2+0x448/0x620 [ 207.831966][ T7901] ovl_create_real+0x148/0x330 [ 207.836702][ T7901] ovl_workdir_create+0x3df/0x590 [ 207.841706][ T7901] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 207.846992][ T7901] ? __sb_start_write+0xa5/0x150 [ 207.851902][ T7901] ovl_fill_super+0x38c3/0x4df0 [ 207.856726][ T7901] ? ovl_mount+0x30/0x30 [ 207.860953][ T7901] ? ida_alloc_range+0xa59/0xac0 [ 207.865887][ T7901] ? delete_node+0x761/0x7b0 [ 207.870469][ T7901] ? __radix_tree_replace+0x24d/0x2f0 [ 207.875923][ T7901] ? up_read+0x10/0x10 [ 207.879965][ T7901] ? sget+0x4cb/0x4e0 [ 207.883917][ T7901] ? free_anon_bdev+0x20/0x20 [ 207.888568][ T7901] ? ovl_mount+0x30/0x30 [ 207.892807][ T7901] mount_nodev+0x52/0xe0 [ 207.897022][ T7901] legacy_get_tree+0xde/0x170 [ 207.901687][ T7901] ? fuse_emit+0x7d0/0x7d0 [ 207.906100][ T7901] vfs_get_tree+0x85/0x260 [ 207.910501][ T7901] do_mount+0x1a15/0x28c0 [ 207.914815][ T7901] ? copy_mount_string+0x30/0x30 [ 207.919724][ T7901] ? page_fault+0x2f/0x40 [ 207.924023][ T7901] ? copy_mount_options+0x1e8/0x320 [ 207.929206][ T7901] ? copy_mount_options+0x293/0x320 [ 207.934373][ T7901] ksys_mount+0xc2/0xf0 [ 207.938502][ T7901] __x64_sys_mount+0xb1/0xc0 [ 207.943068][ T7901] do_syscall_64+0xcb/0x150 [ 207.947553][ T7901] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 207.953416][ T7901] RIP: 0033:0x45c829 [ 207.957281][ T7901] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 207.976856][ T7901] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 207.985239][ T7901] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 207.993271][ T7901] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 208.001220][ T7901] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 208.009163][ T7901] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 208.017118][ T7901] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 208.028144][ T7901] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only [ 208.065429][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 208.205506][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 208.216810][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 208.226732][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 208.239554][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 208.248721][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 208.257273][ T3969] usb 1-1: config 0 descriptor?? [ 208.795358][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 208.801357][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 208.808768][ T3969] usb 1-1: USB disconnect, device number 52 09:43:18 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:18 executing program 3 (fault-call:3 fault-nth:35): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x21, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x37, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x38, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:18 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x24, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x39, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 209.233904][ T7925] FAULT_INJECTION: forcing a failure. [ 209.233904][ T7925] name failslab, interval 1, probability 0, space 0, times 0 [ 209.262746][ T7925] CPU: 0 PID: 7925 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 209.272825][ T7925] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.282872][ T7925] Call Trace: [ 209.286150][ T7925] dump_stack+0x14a/0x1ce [ 209.290453][ T7925] ? devkmsg_release+0x11c/0x11c [ 209.295376][ T7925] ? show_regs_print_info+0x12/0x12 [ 209.300547][ T7925] should_fail+0x6fb/0x860 [ 209.305020][ T7925] ? setup_fault_attr+0x3d0/0x3d0 [ 209.310104][ T7925] ? make_kgid+0x228/0x3a0 [ 209.314489][ T7925] ? security_inode_alloc+0x32/0x1f0 [ 209.319742][ T7925] should_failslab+0x5/0x20 [ 209.324215][ T7925] kmem_cache_alloc+0x36/0x260 [ 209.328959][ T7925] ? ext4_alloc_inode+0x1b/0x620 [ 209.333966][ T7925] security_inode_alloc+0x32/0x1f0 [ 209.339068][ T7925] inode_init_always+0x37c/0x800 [ 209.343988][ T7925] ? set_qf_name+0x350/0x350 [ 209.348811][ T7925] new_inode_pseudo+0x7b/0x240 [ 209.353545][ T7925] new_inode+0x25/0x1d0 [ 209.357685][ T7925] ? memset+0x1f/0x40 [ 209.361640][ T7925] __ext4_new_inode+0x63a/0x5cf0 [ 209.366570][ T7925] ? avc_has_perm_noaudit+0x37d/0x400 [ 209.371923][ T7925] ? avc_has_perm_noaudit+0x30c/0x400 [ 209.377287][ T7925] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 209.382980][ T7925] ? memset+0x1f/0x40 [ 209.386935][ T7925] ? __dquot_initialize+0x227/0xd70 [ 209.392101][ T7925] ? avc_has_perm+0x176/0x280 [ 209.396754][ T7925] ? security_transition_sid+0x78/0x90 [ 209.402344][ T7925] ext4_mkdir+0x41e/0x1530 [ 209.406758][ T7925] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 209.412553][ T7925] ? ext4_symlink+0x1020/0x1020 [ 209.417378][ T7925] ? generic_permission+0x190/0x4a0 [ 209.422552][ T7925] ? security_inode_mkdir+0xed/0x130 [ 209.427807][ T7925] vfs_mkdir2+0x448/0x620 [ 209.432132][ T7925] ovl_create_real+0x148/0x330 [ 209.436869][ T7925] ovl_workdir_create+0x3df/0x590 [ 209.441878][ T7925] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 209.447136][ T7925] ? __sb_start_write+0xa5/0x150 [ 209.452043][ T7925] ovl_fill_super+0x38c3/0x4df0 [ 209.456878][ T7925] ? ovl_mount+0x30/0x30 [ 209.461093][ T7925] ? ida_alloc_range+0xa59/0xac0 [ 209.466034][ T7925] ? delete_node+0x761/0x7b0 [ 209.470598][ T7925] ? __radix_tree_replace+0x24d/0x2f0 [ 209.475949][ T7925] ? up_read+0x10/0x10 [ 209.479995][ T7925] ? sget+0x4cb/0x4e0 [ 209.483957][ T7925] ? free_anon_bdev+0x20/0x20 [ 209.488610][ T7925] ? ovl_mount+0x30/0x30 [ 209.492819][ T7925] mount_nodev+0x52/0xe0 [ 209.497051][ T7925] legacy_get_tree+0xde/0x170 [ 209.501696][ T7925] ? fuse_emit+0x7d0/0x7d0 [ 209.506082][ T7925] vfs_get_tree+0x85/0x260 [ 209.510467][ T7925] do_mount+0x1a15/0x28c0 [ 209.514768][ T7925] ? copy_mount_string+0x30/0x30 [ 209.519675][ T7925] ? page_fault+0x2f/0x40 [ 209.523973][ T7925] ? copy_mount_options+0x1e8/0x320 [ 209.529141][ T7925] ? copy_mount_options+0x293/0x320 [ 209.534321][ T7925] ksys_mount+0xc2/0xf0 [ 209.538461][ T7925] __x64_sys_mount+0xb1/0xc0 [ 209.543028][ T7925] do_syscall_64+0xcb/0x150 [ 209.547505][ T7925] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 209.553380][ T7925] RIP: 0033:0x45c829 [ 209.557257][ T7925] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 209.577068][ T7925] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 209.585457][ T7925] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 209.593591][ T7925] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 209.601538][ T7925] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 209.609485][ T7925] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 209.617440][ T7925] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 209.626196][ T7925] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only 09:43:19 executing program 3 (fault-call:3 fault-nth:36): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:19 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x22, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:19 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x38, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 209.673297][ T7943] FAULT_INJECTION: forcing a failure. [ 209.673297][ T7943] name failslab, interval 1, probability 0, space 0, times 0 [ 209.686035][ T7943] CPU: 1 PID: 7943 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 209.696080][ T7943] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 209.706109][ T7943] Call Trace: [ 209.709372][ T7943] dump_stack+0x14a/0x1ce [ 209.713672][ T7943] ? devkmsg_release+0x11c/0x11c [ 209.718602][ T7943] ? mls_context_isvalid+0x98/0x380 [ 209.723770][ T7943] ? show_regs_print_info+0x12/0x12 [ 209.735540][ T7943] ? memset+0x1f/0x40 [ 209.739504][ T7943] should_fail+0x6fb/0x860 [ 209.743900][ T7943] ? setup_fault_attr+0x3d0/0x3d0 [ 209.748910][ T7943] ? ebitmap_cmp+0x1c8/0x230 [ 209.753484][ T7943] ? mls_compute_context_len+0x81b/0x850 [ 209.759086][ T7943] ? context_struct_to_string+0x3e4/0x820 [ 209.764864][ T7943] should_failslab+0x5/0x20 [ 209.769337][ T7943] __kmalloc+0x5f/0x2d0 [ 209.773528][ T7943] context_struct_to_string+0x3e4/0x820 [ 209.779058][ T7943] ? security_bounded_transition+0x560/0x560 [ 209.785017][ T7943] ? _raw_spin_unlock_irq+0x5/0x20 [ 209.785227][ T3969] usb 1-1: new high-speed USB device number 53 using dummy_hcd [ 209.790131][ T7943] ? sidtab_search_force+0x139/0x330 [ 209.790142][ T7943] security_sid_to_context_core+0x270/0x3a0 [ 209.790155][ T7943] selinux_inode_init_security+0x709/0xb00 [ 209.790169][ T7943] ? selinux_inode_free_security+0x1d0/0x1d0 [ 209.820539][ T7943] ? crc16+0x1e6/0x230 [ 209.824583][ T7943] security_inode_init_security+0x16f/0x3c0 [ 209.830458][ T7943] ? ext4_init_security+0x40/0x40 [ 209.835486][ T7943] ? security_dentry_create_files_as+0xe0/0xe0 [ 209.841619][ T7943] ? _raw_spin_unlock+0x5/0x20 [ 209.846365][ T7943] __ext4_new_inode+0x46c0/0x5cf0 [ 209.851363][ T7943] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 209.857053][ T7943] ? memset+0x1f/0x40 [ 209.861020][ T7943] ? __dquot_initialize+0x227/0xd70 [ 209.871414][ T7943] ? avc_has_perm+0x176/0x280 [ 209.876067][ T7943] ? security_transition_sid+0x78/0x90 [ 209.881534][ T7943] ext4_mkdir+0x41e/0x1530 [ 209.885258][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 209.885938][ T7943] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 209.885947][ T7943] ? ext4_symlink+0x1020/0x1020 [ 209.885955][ T7943] ? generic_permission+0x190/0x4a0 [ 209.885969][ T7943] ? security_inode_mkdir+0xed/0x130 [ 209.912206][ T7943] vfs_mkdir2+0x448/0x620 [ 209.916510][ T7943] ovl_create_real+0x148/0x330 [ 209.921355][ T7943] ovl_workdir_create+0x3df/0x590 [ 209.926357][ T7943] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 209.931963][ T7943] ? __sb_start_write+0xa5/0x150 [ 209.936969][ T7943] ovl_fill_super+0x38c3/0x4df0 [ 209.941806][ T7943] ? ovl_mount+0x30/0x30 [ 209.946039][ T7943] ? ida_alloc_range+0xa59/0xac0 [ 209.950962][ T7943] ? delete_node+0x761/0x7b0 [ 209.955522][ T7943] ? __radix_tree_replace+0x24d/0x2f0 [ 209.960880][ T7943] ? up_read+0x10/0x10 [ 209.964919][ T7943] ? sget+0x4cb/0x4e0 [ 209.968880][ T7943] ? free_anon_bdev+0x20/0x20 [ 209.973531][ T7943] ? ovl_mount+0x30/0x30 [ 209.977751][ T7943] mount_nodev+0x52/0xe0 [ 209.981974][ T7943] legacy_get_tree+0xde/0x170 [ 209.986632][ T7943] ? fuse_emit+0x7d0/0x7d0 [ 209.991019][ T7943] vfs_get_tree+0x85/0x260 [ 209.995404][ T7943] do_mount+0x1a15/0x28c0 [ 209.999705][ T7943] ? copy_mount_string+0x30/0x30 [ 210.004614][ T7943] ? page_fault+0x2f/0x40 [ 210.005254][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 210.008923][ T7943] ? copy_mount_options+0x1e8/0x320 09:43:19 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x25, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 210.008937][ T7943] ? copy_mount_options+0x293/0x320 [ 210.008951][ T7943] ksys_mount+0xc2/0xf0 [ 210.019898][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 210.024951][ T7943] __x64_sys_mount+0xb1/0xc0 [ 210.024961][ T7943] do_syscall_64+0xcb/0x150 [ 210.024976][ T7943] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 210.035536][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 09:43:19 executing program 3 (fault-call:3 fault-nth:37): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 210.043958][ T7943] RIP: 0033:0x45c829 [ 210.043968][ T7943] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.043973][ T7943] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 210.043980][ T7943] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 210.043990][ T7943] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 210.050094][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 210.053030][ T7943] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 210.053035][ T7943] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 210.053041][ T7943] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 210.061314][ T7943] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only [ 210.072668][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 210.174023][ T3969] usb 1-1: config 0 descriptor?? [ 210.207899][ T7949] FAULT_INJECTION: forcing a failure. [ 210.207899][ T7949] name failslab, interval 1, probability 0, space 0, times 0 [ 210.220717][ T7949] CPU: 1 PID: 7949 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 210.230875][ T7949] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 210.240970][ T7949] Call Trace: [ 210.244287][ T7949] dump_stack+0x14a/0x1ce [ 210.248633][ T7949] ? devkmsg_release+0x11c/0x11c [ 210.253557][ T7949] ? show_regs_print_info+0x12/0x12 [ 210.258726][ T7949] ? mark_page_accessed+0x282/0x5b0 [ 210.263911][ T7949] should_fail+0x6fb/0x860 [ 210.268299][ T7949] ? setup_fault_attr+0x3d0/0x3d0 [ 210.273318][ T7949] ? write_boundary_block+0x150/0x150 [ 210.278668][ T7949] ? kcalloc+0x2b/0x50 [ 210.282723][ T7949] should_failslab+0x5/0x20 [ 210.287198][ T7949] __kmalloc+0x5f/0x2d0 [ 210.291327][ T7949] ? __rcu_read_lock+0x50/0x50 [ 210.296061][ T7949] kcalloc+0x2b/0x50 [ 210.300017][ T7949] ext4_find_extent+0x1fe/0xa20 [ 210.304843][ T7949] ext4_ext_map_blocks+0x3b7/0x46a0 [ 210.310012][ T7949] ? __ext4_journal_get_create_access+0x2e0/0x2e0 [ 210.316398][ T7949] ? __ext4_get_inode_loc+0x4b0/0x1080 [ 210.321856][ T7949] ? ext4_ext_release+0x10/0x10 [ 210.326680][ T7949] ? __down_read+0xfc/0x240 [ 210.331174][ T7949] ? _raw_read_unlock+0xe/0x30 [ 210.335914][ T7949] ? ext4_es_lookup_extent+0x415/0x900 [ 210.341346][ T7949] ext4_map_blocks+0x4a0/0x1e60 [ 210.346222][ T7949] ? _raw_spin_unlock+0x5/0x20 [ 210.350959][ T7949] ? ext4_issue_zeroout+0x160/0x160 [ 210.356193][ T7949] ext4_getblk+0x111/0x560 [ 210.360612][ T7949] ? ext4_get_block_trans+0x5a0/0x5a0 [ 210.365981][ T7949] ? memset+0x1f/0x40 [ 210.369944][ T7949] ext4_bread+0x8e/0x390 [ 210.374162][ T7949] ? ext4_getblk+0x560/0x560 [ 210.378850][ T7949] ext4_append+0x153/0x2d0 [ 210.383253][ T7949] ext4_mkdir+0x7f8/0x1530 [ 210.387678][ T7949] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 210.393523][ T7949] ? ext4_symlink+0x1020/0x1020 [ 210.398365][ T7949] ? generic_permission+0x190/0x4a0 [ 210.403539][ T7949] ? security_inode_mkdir+0xed/0x130 [ 210.408806][ T7949] vfs_mkdir2+0x448/0x620 [ 210.413110][ T7949] ovl_create_real+0x148/0x330 [ 210.417848][ T7949] ovl_workdir_create+0x3df/0x590 [ 210.422845][ T7949] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 210.428107][ T7949] ? __sb_start_write+0xa5/0x150 [ 210.433020][ T7949] ovl_fill_super+0x38c3/0x4df0 [ 210.437848][ T7949] ? ovl_mount+0x30/0x30 [ 210.442072][ T7949] ? ida_alloc_range+0xa59/0xac0 [ 210.446993][ T7949] ? delete_node+0x761/0x7b0 [ 210.451552][ T7949] ? __radix_tree_replace+0x24d/0x2f0 [ 210.456897][ T7949] ? up_read+0x10/0x10 [ 210.460937][ T7949] ? sget+0x4cb/0x4e0 [ 210.464899][ T7949] ? free_anon_bdev+0x20/0x20 [ 210.469557][ T7949] ? ovl_mount+0x30/0x30 [ 210.473785][ T7949] mount_nodev+0x52/0xe0 [ 210.478003][ T7949] legacy_get_tree+0xde/0x170 [ 210.482650][ T7949] ? fuse_emit+0x7d0/0x7d0 [ 210.487036][ T7949] vfs_get_tree+0x85/0x260 [ 210.491438][ T7949] do_mount+0x1a15/0x28c0 [ 210.495740][ T7949] ? copy_mount_string+0x30/0x30 [ 210.500663][ T7949] ? page_fault+0x2f/0x40 [ 210.504964][ T7949] ? copy_mount_options+0x1e8/0x320 [ 210.510162][ T7949] ? copy_mount_options+0x293/0x320 [ 210.515331][ T7949] ksys_mount+0xc2/0xf0 [ 210.519460][ T7949] __x64_sys_mount+0xb1/0xc0 [ 210.524033][ T7949] do_syscall_64+0xcb/0x150 [ 210.528514][ T7949] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 210.534386][ T7949] RIP: 0033:0x45c829 [ 210.538252][ T7949] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 210.557829][ T7949] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 210.566211][ T7949] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 210.574217][ T7949] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 210.582169][ T7949] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 210.590123][ T7949] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 210.598097][ T7949] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 210.715195][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 210.729245][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 210.737712][ T3969] usb 1-1: USB disconnect, device number 53 09:43:20 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, 0x0, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:20 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:20 executing program 3 (fault-call:3 fault-nth:38): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:20 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x23, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:20 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x39, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:20 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 211.157284][ T7967] FAULT_INJECTION: forcing a failure. [ 211.157284][ T7967] name failslab, interval 1, probability 0, space 0, times 0 [ 211.169933][ T7967] CPU: 1 PID: 7967 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 211.179983][ T7967] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 211.190468][ T7967] Call Trace: [ 211.193811][ T7967] dump_stack+0x14a/0x1ce [ 211.198138][ T7967] ? devkmsg_release+0x11c/0x11c [ 211.203047][ T7967] ? show_regs_print_info+0x12/0x12 [ 211.208232][ T7967] ? memset+0x1f/0x40 [ 211.212196][ T7967] ? __es_remove_extent+0xc0b/0x2280 [ 211.217464][ T7967] should_fail+0x6fb/0x860 [ 211.221901][ T7967] ? setup_fault_attr+0x3d0/0x3d0 [ 211.226907][ T7967] ? __kasan_kmalloc+0x12c/0x1c0 [ 211.231819][ T7967] ? __kmalloc+0xf7/0x2d0 [ 211.236135][ T7967] ? kcalloc+0x2b/0x50 [ 211.240174][ T7967] ? ext4_find_extent+0x1fe/0xa20 [ 211.245188][ T7967] ? ext4_map_blocks+0x4a0/0x1e60 [ 211.250204][ T7967] ? ext4_bread+0x8e/0x390 [ 211.254623][ T7967] ? ext4_append+0x153/0x2d0 [ 211.259199][ T7967] ? ext4_mkdir+0x7f8/0x1530 [ 211.264895][ T7967] ? __es_insert_extent+0x7a4/0x1770 [ 211.270169][ T7967] should_failslab+0x5/0x20 [ 211.274645][ T7967] kmem_cache_alloc+0x36/0x260 [ 211.279384][ T7967] __es_insert_extent+0x7a4/0x1770 [ 211.284478][ T7967] ? _raw_write_lock+0xa1/0x170 [ 211.289300][ T7967] ext4_es_insert_extent+0x43b/0x3100 [ 211.294664][ T7967] ? kcalloc+0x2b/0x50 [ 211.298705][ T7967] ? ext4_es_scan_clu+0x2c0/0x2c0 [ 211.303714][ T7967] ? ext4_ext_convert_to_initialized+0x1e50/0x1e50 [ 211.310207][ T7967] ? ext4_ext_convert_to_initialized+0x1e50/0x1e50 [ 211.316686][ T7967] ? ext4_es_find_extent_range+0x1a7/0x300 [ 211.322656][ T7967] ext4_ext_map_blocks+0x1836/0x46a0 [ 211.327933][ T7967] ? __ext4_journal_get_create_access+0x2e0/0x2e0 [ 211.334320][ T7967] ? __ext4_get_inode_loc+0x4b0/0x1080 [ 211.339768][ T7967] ? ext4_ext_release+0x10/0x10 [ 211.344654][ T7967] ? __down_read+0xfc/0x240 [ 211.349132][ T7967] ? _raw_read_unlock+0xe/0x30 [ 211.353881][ T7967] ? ext4_es_lookup_extent+0x415/0x900 [ 211.359335][ T7967] ext4_map_blocks+0x4a0/0x1e60 [ 211.364160][ T7967] ? _raw_spin_unlock+0x5/0x20 [ 211.368903][ T7967] ? ext4_issue_zeroout+0x160/0x160 [ 211.374079][ T7967] ext4_getblk+0x111/0x560 [ 211.378489][ T7967] ? ext4_get_block_trans+0x5a0/0x5a0 [ 211.383910][ T7967] ? memset+0x1f/0x40 [ 211.387878][ T7967] ext4_bread+0x8e/0x390 [ 211.392099][ T7967] ? ext4_getblk+0x560/0x560 [ 211.396662][ T7967] ext4_append+0x153/0x2d0 [ 211.401050][ T7967] ext4_mkdir+0x7f8/0x1530 [ 211.405441][ T7967] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 211.411217][ T7967] ? ext4_symlink+0x1020/0x1020 [ 211.416045][ T7967] ? generic_permission+0x190/0x4a0 [ 211.421229][ T7967] ? security_inode_mkdir+0xed/0x130 [ 211.426501][ T7967] vfs_mkdir2+0x448/0x620 [ 211.430805][ T7967] ovl_create_real+0x148/0x330 [ 211.435542][ T7967] ovl_workdir_create+0x3df/0x590 [ 211.440745][ T7967] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 211.446001][ T7967] ? __sb_start_write+0xa5/0x150 [ 211.450923][ T7967] ovl_fill_super+0x38c3/0x4df0 [ 211.455762][ T7967] ? ovl_mount+0x30/0x30 [ 211.459977][ T7967] ? ida_alloc_range+0xa59/0xac0 [ 211.464909][ T7967] ? delete_node+0x761/0x7b0 [ 211.469485][ T7967] ? __radix_tree_replace+0x24d/0x2f0 [ 211.474844][ T7967] ? up_read+0x10/0x10 [ 211.478898][ T7967] ? sget+0x4cb/0x4e0 [ 211.482860][ T7967] ? free_anon_bdev+0x20/0x20 [ 211.487516][ T7967] ? ovl_mount+0x30/0x30 [ 211.491728][ T7967] mount_nodev+0x52/0xe0 [ 211.495957][ T7967] legacy_get_tree+0xde/0x170 [ 211.500606][ T7967] ? fuse_emit+0x7d0/0x7d0 [ 211.504991][ T7967] vfs_get_tree+0x85/0x260 [ 211.509378][ T7967] do_mount+0x1a15/0x28c0 [ 211.513679][ T7967] ? copy_mount_string+0x30/0x30 [ 211.518605][ T7967] ? page_fault+0x2f/0x40 [ 211.523013][ T7967] ? copy_mount_options+0x1e8/0x320 [ 211.528189][ T7967] ? copy_mount_options+0x293/0x320 [ 211.533413][ T7967] ksys_mount+0xc2/0xf0 [ 211.537545][ T7967] __x64_sys_mount+0xb1/0xc0 [ 211.542165][ T7967] do_syscall_64+0xcb/0x150 [ 211.546645][ T7967] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 211.552513][ T7967] RIP: 0033:0x45c829 [ 211.556408][ T7967] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 211.576040][ T7967] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 211.584454][ T7967] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 211.592418][ T7967] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 211.600377][ T7967] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:21 executing program 3 (fault-call:3 fault-nth:39): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 211.608413][ T7967] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 211.616376][ T7967] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 211.740248][ T7985] FAULT_INJECTION: forcing a failure. [ 211.740248][ T7985] name failslab, interval 1, probability 0, space 0, times 0 [ 211.753061][ T7985] CPU: 0 PID: 7985 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 211.763095][ T7985] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 211.773138][ T7985] Call Trace: [ 211.776404][ T7985] dump_stack+0x14a/0x1ce [ 211.780702][ T7985] ? devkmsg_release+0x11c/0x11c [ 211.785626][ T7985] ? show_regs_print_info+0x12/0x12 [ 211.790807][ T7985] should_fail+0x6fb/0x860 [ 211.795194][ T7985] ? setup_fault_attr+0x3d0/0x3d0 [ 211.800203][ T7985] ? kcalloc+0x2b/0x50 [ 211.804239][ T7985] should_failslab+0x5/0x20 [ 211.808712][ T7985] __kmalloc+0x5f/0x2d0 [ 211.812836][ T7985] ? slab_free_freelist_hook+0xd0/0x150 [ 211.818522][ T7985] kcalloc+0x2b/0x50 [ 211.822385][ T7985] ext4_find_extent+0x1fe/0xa20 [ 211.827202][ T7985] ext4_ext_map_blocks+0x3b7/0x46a0 [ 211.832384][ T7985] ? __ext4_journal_get_create_access+0x2e0/0x2e0 [ 211.838791][ T7985] ? ext4_ext_release+0x10/0x10 [ 211.843613][ T7985] ? ext4_es_lookup_extent+0x415/0x900 [ 211.849058][ T7985] ext4_map_blocks+0x975/0x1e60 [ 211.853890][ T7985] ? _raw_spin_unlock+0x5/0x20 [ 211.858724][ T7985] ? ext4_issue_zeroout+0x160/0x160 [ 211.863897][ T7985] ext4_getblk+0x111/0x560 [ 211.868284][ T7985] ? ext4_get_block_trans+0x5a0/0x5a0 [ 211.874060][ T7985] ? memset+0x1f/0x40 [ 211.878011][ T7985] ext4_bread+0x8e/0x390 [ 211.882239][ T7985] ? ext4_getblk+0x560/0x560 [ 211.886826][ T7985] ext4_append+0x153/0x2d0 [ 211.891215][ T7985] ext4_mkdir+0x7f8/0x1530 [ 211.895604][ T7985] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 211.901375][ T7985] ? ext4_symlink+0x1020/0x1020 [ 211.906195][ T7985] ? generic_permission+0x190/0x4a0 [ 211.911450][ T7985] ? security_inode_mkdir+0xed/0x130 [ 211.916718][ T7985] vfs_mkdir2+0x448/0x620 [ 211.921033][ T7985] ovl_create_real+0x148/0x330 [ 211.925791][ T7985] ovl_workdir_create+0x3df/0x590 [ 211.930789][ T7985] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 211.936046][ T7985] ? __sb_start_write+0xa5/0x150 [ 211.940976][ T7985] ovl_fill_super+0x38c3/0x4df0 [ 211.945797][ T7985] ? ovl_mount+0x30/0x30 [ 211.950009][ T7985] ? ida_alloc_range+0xa59/0xac0 [ 211.954925][ T7985] ? delete_node+0x761/0x7b0 [ 211.959492][ T7985] ? __radix_tree_replace+0x24d/0x2f0 [ 211.964838][ T7985] ? up_read+0x10/0x10 [ 211.968893][ T7985] ? sget+0x4cb/0x4e0 [ 211.972847][ T7985] ? free_anon_bdev+0x20/0x20 [ 211.977494][ T7985] ? ovl_mount+0x30/0x30 [ 211.981705][ T7985] mount_nodev+0x52/0xe0 [ 211.985921][ T7985] legacy_get_tree+0xde/0x170 [ 211.990585][ T7985] ? fuse_emit+0x7d0/0x7d0 [ 211.994971][ T7985] vfs_get_tree+0x85/0x260 [ 211.999359][ T7985] do_mount+0x1a15/0x28c0 [ 212.003674][ T7985] ? copy_mount_string+0x30/0x30 [ 212.008583][ T7985] ? page_fault+0x2f/0x40 [ 212.012902][ T7985] ? copy_mount_options+0x1e8/0x320 [ 212.018068][ T7985] ? copy_mount_options+0x293/0x320 [ 212.023236][ T7985] ksys_mount+0xc2/0xf0 [ 212.027383][ T7985] __x64_sys_mount+0xb1/0xc0 [ 212.031951][ T7985] do_syscall_64+0xcb/0x150 [ 212.036435][ T7985] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 212.042319][ T7985] RIP: 0033:0x45c829 [ 212.046186][ T7985] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 212.065766][ T7985] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 212.074147][ T7985] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 212.082100][ T7985] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:21 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x24, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:21 executing program 3 (fault-call:3 fault-nth:40): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:21 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:21 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:21 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 212.090059][ T7985] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 212.098024][ T7985] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 212.106062][ T7985] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 212.115679][ T7985] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only [ 212.125237][ T3969] usb 1-1: new high-speed USB device number 54 using dummy_hcd [ 212.221355][ T7995] FAULT_INJECTION: forcing a failure. [ 212.221355][ T7995] name failslab, interval 1, probability 0, space 0, times 0 [ 212.234112][ T7995] CPU: 1 PID: 7995 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 212.235071][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 212.244149][ T7995] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 212.244153][ T7995] Call Trace: [ 212.244168][ T7995] dump_stack+0x14a/0x1ce [ 212.244183][ T7995] ? devkmsg_release+0x11c/0x11c [ 212.271897][ T7995] ? show_regs_print_info+0x12/0x12 [ 212.277073][ T7995] ? ext4_evict_inode+0x1a70/0x1a70 [ 212.282244][ T7995] ? _raw_spin_unlock+0x5/0x20 [ 212.286978][ T7995] ? __dquot_alloc_space+0x2a1/0xce0 [ 212.292252][ T7995] ? ext4_append+0x153/0x2d0 [ 212.296826][ T7995] should_fail+0x6fb/0x860 [ 212.301230][ T7995] ? setup_fault_attr+0x3d0/0x3d0 [ 212.306224][ T7995] ? inode_io_list_move_locked+0x2bb/0x300 [ 212.312016][ T7995] ? ext4_mb_new_blocks+0x423/0x28a0 [ 212.317278][ T7995] should_failslab+0x5/0x20 [ 212.321760][ T7995] kmem_cache_alloc+0x36/0x260 [ 212.326497][ T7995] ext4_mb_new_blocks+0x423/0x28a0 [ 212.331591][ T7995] ? __kmalloc+0xf7/0x2d0 [ 212.335898][ T7995] ? kcalloc+0x2b/0x50 [ 212.339939][ T7995] ? ext4_mb_pa_callback+0xc0/0xc0 [ 212.345041][ T7995] ? ext4_find_extent+0x7ce/0xa20 [ 212.350035][ T7995] ? ext4_inode_to_goal_block+0x263/0x370 [ 212.355724][ T7995] ext4_ext_map_blocks+0x2e4e/0x46a0 [ 212.360988][ T7995] ? __ext4_journal_get_create_access+0x2e0/0x2e0 [ 212.367384][ T7995] ? ext4_ext_release+0x10/0x10 [ 212.372209][ T7995] ? ext4_es_lookup_extent+0x415/0x900 [ 212.377640][ T7995] ext4_map_blocks+0x975/0x1e60 [ 212.382464][ T7995] ? _raw_spin_unlock+0x5/0x20 [ 212.387220][ T7995] ? ext4_issue_zeroout+0x160/0x160 [ 212.392484][ T7995] ext4_getblk+0x111/0x560 [ 212.396878][ T7995] ? ext4_get_block_trans+0x5a0/0x5a0 [ 212.402329][ T7995] ? memset+0x1f/0x40 [ 212.406341][ T7995] ext4_bread+0x8e/0x390 [ 212.410559][ T7995] ? ext4_getblk+0x560/0x560 [ 212.415148][ T7995] ext4_append+0x153/0x2d0 [ 212.419573][ T7995] ext4_mkdir+0x7f8/0x1530 [ 212.423983][ T7995] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 212.429759][ T7995] ? ext4_symlink+0x1020/0x1020 [ 212.434580][ T7995] ? generic_permission+0x190/0x4a0 [ 212.439760][ T7995] ? security_inode_mkdir+0xed/0x130 [ 212.445015][ T7995] vfs_mkdir2+0x448/0x620 [ 212.449317][ T7995] ovl_create_real+0x148/0x330 [ 212.454057][ T7995] ovl_workdir_create+0x3df/0x590 [ 212.459077][ T7995] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 212.464335][ T7995] ? __sb_start_write+0xa5/0x150 [ 212.469247][ T7995] ovl_fill_super+0x38c3/0x4df0 [ 212.474089][ T7995] ? ovl_mount+0x30/0x30 [ 212.478301][ T7995] ? ida_alloc_range+0xa59/0xac0 [ 212.483228][ T7995] ? delete_node+0x761/0x7b0 [ 212.487785][ T7995] ? __radix_tree_replace+0x24d/0x2f0 [ 212.493127][ T7995] ? up_read+0x10/0x10 [ 212.497169][ T7995] ? sget+0x4cb/0x4e0 [ 212.501138][ T7995] ? free_anon_bdev+0x20/0x20 [ 212.505783][ T7995] ? ovl_mount+0x30/0x30 [ 212.510007][ T7995] mount_nodev+0x52/0xe0 [ 212.514571][ T7995] legacy_get_tree+0xde/0x170 [ 212.519318][ T7995] ? fuse_emit+0x7d0/0x7d0 [ 212.523718][ T7995] vfs_get_tree+0x85/0x260 [ 212.528125][ T7995] do_mount+0x1a15/0x28c0 [ 212.532430][ T7995] ? copy_mount_string+0x30/0x30 [ 212.537339][ T7995] ? page_fault+0x2f/0x40 [ 212.541642][ T7995] ? copy_mount_options+0x1e8/0x320 [ 212.546812][ T7995] ? copy_mount_options+0x293/0x320 [ 212.551999][ T7995] ksys_mount+0xc2/0xf0 [ 212.556128][ T7995] __x64_sys_mount+0xb1/0xc0 [ 212.560690][ T7995] do_syscall_64+0xcb/0x150 [ 212.565181][ T7995] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 212.571045][ T7995] RIP: 0033:0x45c829 [ 212.574911][ T7995] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 212.594491][ T7995] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 212.602932][ T7995] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 212.610898][ T7995] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 212.618846][ T7995] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 212.626792][ T7995] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 212.634752][ T7995] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 212.643134][ T7995] overlayfs: failed to create directory ./file1/work (errno: 12); mounting read-only [ 212.745106][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 212.756617][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 212.767067][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 212.780323][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 212.789898][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 212.799082][ T3969] usb 1-1: config 0 descriptor?? [ 213.335012][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 213.340958][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 213.351125][ T3969] usb 1-1: USB disconnect, device number 54 09:43:23 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:23 executing program 3 (fault-call:3 fault-nth:41): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:23 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x25, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:23 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x28, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:23 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:23 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 213.786147][ T8018] FAULT_INJECTION: forcing a failure. [ 213.786147][ T8018] name failslab, interval 1, probability 0, space 0, times 0 [ 213.798861][ T8018] CPU: 0 PID: 8018 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 213.808913][ T8018] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 213.818956][ T8018] Call Trace: [ 213.822243][ T8018] dump_stack+0x14a/0x1ce [ 213.826568][ T8018] ? devkmsg_release+0x11c/0x11c 09:43:23 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x29, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 213.831508][ T8018] ? show_regs_print_info+0x12/0x12 [ 213.836701][ T8018] ? memset+0x1f/0x40 [ 213.840679][ T8018] ? __es_remove_extent+0xea8/0x2280 [ 213.845962][ T8018] should_fail+0x6fb/0x860 [ 213.850375][ T8018] ? setup_fault_attr+0x3d0/0x3d0 [ 213.855396][ T8018] ? __es_insert_extent+0x7a4/0x1770 [ 213.860708][ T8018] should_failslab+0x5/0x20 [ 213.865310][ T8018] kmem_cache_alloc+0x36/0x260 [ 213.870053][ T8018] __es_insert_extent+0x7a4/0x1770 [ 213.875145][ T8018] ext4_es_insert_extent+0x43b/0x3100 [ 213.880497][ T8018] ? ext4_es_scan_clu+0x2c0/0x2c0 [ 213.885598][ T8018] ? ext4_es_lookup_extent+0x415/0x900 [ 213.891036][ T8018] ext4_map_blocks+0xe49/0x1e60 [ 213.895876][ T8018] ? _raw_spin_unlock+0x5/0x20 [ 213.900635][ T8018] ? ext4_issue_zeroout+0x160/0x160 [ 213.905847][ T8018] ext4_getblk+0x111/0x560 [ 213.910243][ T8018] ? ext4_get_block_trans+0x5a0/0x5a0 [ 213.915594][ T8018] ? memset+0x1f/0x40 [ 213.919567][ T8018] ext4_bread+0x8e/0x390 [ 213.923812][ T8018] ? ext4_getblk+0x560/0x560 [ 213.928381][ T8018] ext4_append+0x153/0x2d0 09:43:23 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 213.932776][ T8018] ext4_mkdir+0x7f8/0x1530 [ 213.937173][ T8018] ? selinux_inode_follow_link+0x3c0/0x3c0 [ 213.942967][ T8018] ? ext4_symlink+0x1020/0x1020 [ 213.947794][ T8018] ? generic_permission+0x190/0x4a0 [ 213.953101][ T8018] ? security_inode_mkdir+0xed/0x130 [ 213.958372][ T8018] vfs_mkdir2+0x448/0x620 [ 213.962677][ T8018] ovl_create_real+0x148/0x330 [ 213.967412][ T8018] ovl_workdir_create+0x3df/0x590 [ 213.972410][ T8018] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 213.977680][ T8018] ? __sb_start_write+0xa5/0x150 [ 213.982587][ T8018] ovl_fill_super+0x38c3/0x4df0 [ 213.987408][ T8018] ? ovl_mount+0x30/0x30 [ 213.991623][ T8018] ? ida_alloc_range+0xa59/0xac0 [ 213.996839][ T8018] ? delete_node+0x761/0x7b0 [ 214.001416][ T8018] ? __radix_tree_replace+0x24d/0x2f0 [ 214.006758][ T8018] ? up_read+0x10/0x10 [ 214.010798][ T8018] ? sget+0x4cb/0x4e0 [ 214.014753][ T8018] ? free_anon_bdev+0x20/0x20 [ 214.019419][ T8018] ? ovl_mount+0x30/0x30 [ 214.023649][ T8018] mount_nodev+0x52/0xe0 [ 214.027864][ T8018] legacy_get_tree+0xde/0x170 [ 214.032530][ T8018] ? fuse_emit+0x7d0/0x7d0 [ 214.036917][ T8018] vfs_get_tree+0x85/0x260 [ 214.041305][ T8018] do_mount+0x1a15/0x28c0 [ 214.045627][ T8018] ? copy_mount_string+0x30/0x30 [ 214.050538][ T8018] ? page_fault+0x2f/0x40 [ 214.054848][ T8018] ? copy_mount_options+0x1e8/0x320 [ 214.060036][ T8018] ? copy_mount_options+0x293/0x320 [ 214.065221][ T8018] ksys_mount+0xc2/0xf0 [ 214.069363][ T8018] __x64_sys_mount+0xb1/0xc0 [ 214.073936][ T8018] do_syscall_64+0xcb/0x150 [ 214.078411][ T8018] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 214.084636][ T8018] RIP: 0033:0x45c829 [ 214.088502][ T8018] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 214.108249][ T8018] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 214.116634][ T8018] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 214.124609][ T8018] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:23 executing program 3 (fault-call:3 fault-nth:42): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 214.132565][ T8018] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 214.140517][ T8018] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 214.148483][ T8018] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:23 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:23 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 214.314869][ T3082] usb 1-1: new high-speed USB device number 55 using dummy_hcd [ 214.367613][ T8047] FAULT_INJECTION: forcing a failure. [ 214.367613][ T8047] name failslab, interval 1, probability 0, space 0, times 0 [ 214.380658][ T8047] CPU: 1 PID: 8047 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 214.390710][ T8047] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.400740][ T8047] Call Trace: [ 214.404027][ T8047] dump_stack+0x14a/0x1ce [ 214.408329][ T8047] ? devkmsg_release+0x11c/0x11c [ 214.413248][ T8047] ? notify_change2+0xe09/0x1090 [ 214.418164][ T8047] ? show_regs_print_info+0x12/0x12 [ 214.423339][ T8047] ? find_inode+0x40d/0x4c0 [ 214.427875][ T8047] should_fail+0x6fb/0x860 [ 214.432267][ T8047] ? setup_fault_attr+0x3d0/0x3d0 [ 214.437270][ T8047] ? _raw_spin_lock+0xa1/0x170 [ 214.442109][ T8047] ? _raw_spin_trylock_bh+0x190/0x190 [ 214.447464][ T8047] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 214.452719][ T8047] ? ovl_lookup_inode+0x120/0x120 [ 214.457723][ T8047] ? ovl_alloc_inode+0x1b/0x90 [ 214.462803][ T8047] should_failslab+0x5/0x20 [ 214.467277][ T8047] kmem_cache_alloc+0x36/0x260 [ 214.472023][ T8047] ? ovl_free_fs+0x640/0x640 [ 214.476583][ T8047] ? ovl_lookup_inode+0x120/0x120 [ 214.481592][ T8047] ovl_alloc_inode+0x1b/0x90 [ 214.486152][ T8047] ? ovl_free_fs+0x640/0x640 [ 214.490711][ T8047] iget5_locked+0xa2/0x3e0 [ 214.495097][ T8047] ? ovl_get_trap_inode+0x190/0x190 [ 214.500264][ T8047] ovl_get_trap_inode+0x88/0x190 [ 214.505169][ T8047] ovl_fill_super+0x38fa/0x4df0 [ 214.509990][ T8047] ? ovl_mount+0x30/0x30 [ 214.514220][ T8047] ? ida_alloc_range+0xa59/0xac0 [ 214.519180][ T8047] ? delete_node+0x761/0x7b0 [ 214.523749][ T8047] ? __radix_tree_replace+0x24d/0x2f0 [ 214.529092][ T8047] ? up_read+0x10/0x10 [ 214.533149][ T8047] ? sget+0x4cb/0x4e0 [ 214.537099][ T8047] ? free_anon_bdev+0x20/0x20 [ 214.541751][ T8047] ? ovl_mount+0x30/0x30 [ 214.545962][ T8047] mount_nodev+0x52/0xe0 [ 214.550202][ T8047] legacy_get_tree+0xde/0x170 [ 214.554855][ T8047] ? fuse_emit+0x7d0/0x7d0 [ 214.559270][ T8047] vfs_get_tree+0x85/0x260 [ 214.563664][ T8047] do_mount+0x1a15/0x28c0 [ 214.567976][ T8047] ? copy_mount_string+0x30/0x30 [ 214.572902][ T8047] ? page_fault+0x2f/0x40 [ 214.577223][ T8047] ? copy_mount_options+0x1e8/0x320 [ 214.582395][ T8047] ? copy_mount_options+0x293/0x320 [ 214.587567][ T8047] ksys_mount+0xc2/0xf0 [ 214.591709][ T8047] __x64_sys_mount+0xb1/0xc0 [ 214.596271][ T8047] do_syscall_64+0xcb/0x150 [ 214.600759][ T8047] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 214.606620][ T8047] RIP: 0033:0x45c829 [ 214.610497][ T8047] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 214.630131][ T8047] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 214.638530][ T8047] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 214.646658][ T8047] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 214.654625][ T8047] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:24 executing program 3 (fault-call:3 fault-nth:43): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 214.662579][ T8047] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 214.670522][ T8047] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 214.694953][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 214.742043][ T8057] FAULT_INJECTION: forcing a failure. [ 214.742043][ T8057] name failslab, interval 1, probability 0, space 0, times 0 [ 214.755258][ T8057] CPU: 1 PID: 8057 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 214.765298][ T8057] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 214.775377][ T8057] Call Trace: [ 214.778646][ T8057] dump_stack+0x14a/0x1ce [ 214.783039][ T8057] ? devkmsg_release+0x11c/0x11c [ 214.787959][ T8057] ? notify_change2+0xe09/0x1090 [ 214.792871][ T8057] ? show_regs_print_info+0x12/0x12 [ 214.798046][ T8057] ? find_inode+0x40d/0x4c0 [ 214.802522][ T8057] should_fail+0x6fb/0x860 [ 214.806923][ T8057] ? setup_fault_attr+0x3d0/0x3d0 [ 214.811929][ T8057] ? _raw_spin_lock+0xa1/0x170 [ 214.816677][ T8057] ? _raw_spin_trylock_bh+0x190/0x190 [ 214.822041][ T8057] ? ovl_mount_dir_noesc+0x1a0/0x1a0 [ 214.827299][ T8057] ? ovl_lookup_inode+0x120/0x120 [ 214.832297][ T8057] ? ovl_alloc_inode+0x1b/0x90 [ 214.839150][ T8057] should_failslab+0x5/0x20 [ 214.843659][ T8057] kmem_cache_alloc+0x36/0x260 [ 214.848419][ T8057] ? ovl_free_fs+0x640/0x640 [ 214.852978][ T8057] ? ovl_lookup_inode+0x120/0x120 [ 214.857981][ T8057] ovl_alloc_inode+0x1b/0x90 [ 214.862566][ T8057] ? ovl_free_fs+0x640/0x640 [ 214.867138][ T8057] iget5_locked+0xa2/0x3e0 [ 214.871525][ T8057] ? ovl_get_trap_inode+0x190/0x190 [ 214.876691][ T8057] ovl_get_trap_inode+0x88/0x190 [ 214.881625][ T8057] ovl_fill_super+0x38fa/0x4df0 [ 214.886466][ T8057] ? ovl_mount+0x30/0x30 [ 214.890692][ T8057] ? ida_alloc_range+0xa59/0xac0 [ 214.895611][ T8057] ? delete_node+0x761/0x7b0 [ 214.900192][ T8057] ? __radix_tree_replace+0x24d/0x2f0 [ 214.905556][ T8057] ? up_read+0x10/0x10 [ 214.909594][ T8057] ? sget+0x4cb/0x4e0 [ 214.913557][ T8057] ? free_anon_bdev+0x20/0x20 [ 214.918229][ T8057] ? ovl_mount+0x30/0x30 [ 214.922441][ T8057] mount_nodev+0x52/0xe0 [ 214.926668][ T8057] legacy_get_tree+0xde/0x170 [ 214.931325][ T8057] ? fuse_emit+0x7d0/0x7d0 [ 214.935712][ T8057] vfs_get_tree+0x85/0x260 [ 214.940103][ T8057] do_mount+0x1a15/0x28c0 [ 214.944413][ T8057] ? copy_mount_string+0x30/0x30 [ 214.949339][ T8057] ? page_fault+0x2f/0x40 [ 214.953665][ T8057] ? copy_mount_options+0x1e8/0x320 [ 214.959031][ T8057] ? copy_mount_options+0x293/0x320 [ 214.964202][ T8057] ksys_mount+0xc2/0xf0 [ 214.968329][ T8057] __x64_sys_mount+0xb1/0xc0 [ 214.972892][ T8057] do_syscall_64+0xcb/0x150 [ 214.977380][ T8057] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 214.983249][ T8057] RIP: 0033:0x45c829 [ 214.987123][ T8057] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 215.006714][ T8057] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 215.015112][ T8057] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 215.023069][ T8057] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 215.031033][ T8057] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 215.038974][ T8057] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 215.047024][ T8057] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 215.094885][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 215.105923][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 215.116448][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 215.130210][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 215.142628][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 215.152348][ T3082] usb 1-1: config 0 descriptor?? [ 215.704838][ T3082] usbhid 1-1:0.0: can't add hid device: -71 [ 215.710768][ T3082] usbhid: probe of 1-1:0.0 failed with error -71 [ 215.718282][ T3082] usb 1-1: USB disconnect, device number 55 09:43:25 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:25 executing program 3 (fault-call:3 fault-nth:44): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:25 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:25 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 216.136352][ T8075] FAULT_INJECTION: forcing a failure. [ 216.136352][ T8075] name failslab, interval 1, probability 0, space 0, times 0 [ 216.149014][ T8075] CPU: 0 PID: 8075 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 216.159064][ T8075] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.169111][ T8075] Call Trace: [ 216.172401][ T8075] dump_stack+0x14a/0x1ce [ 216.176723][ T8075] ? devkmsg_release+0x11c/0x11c [ 216.181655][ T8075] ? show_regs_print_info+0x12/0x12 [ 216.186844][ T8075] ? __kasan_kmalloc+0x189/0x1c0 [ 216.191767][ T8075] ? __kasan_kmalloc+0x12c/0x1c0 [ 216.196689][ T8075] should_fail+0x6fb/0x860 [ 216.201091][ T8075] ? setup_fault_attr+0x3d0/0x3d0 [ 216.206089][ T8075] ? __alloc_file+0x26/0x390 [ 216.210659][ T8075] should_failslab+0x5/0x20 [ 216.215145][ T8075] kmem_cache_alloc+0x36/0x260 [ 216.221886][ T8075] __alloc_file+0x26/0x390 [ 216.226286][ T8075] ? alloc_empty_file+0x49/0x1b0 [ 216.231195][ T8075] alloc_empty_file+0xa9/0x1b0 [ 216.235941][ T8075] dentry_open+0x47/0xf0 [ 216.240155][ T8075] ovl_dir_read+0x26/0x4b0 [ 216.244559][ T8075] ? memset+0x1f/0x40 [ 216.248528][ T8075] ? ovl_check_d_type_supported+0x8a/0x130 [ 216.254304][ T8075] ovl_check_d_type_supported+0x95/0x130 [ 216.259908][ T8075] ? ovl_cleanup_whiteouts+0x2e0/0x2e0 [ 216.265347][ T8075] ? ovl_check_d_type_supported+0x130/0x130 [ 216.271385][ T8075] ? unlock_new_inode+0x8d/0xb0 [ 216.276208][ T8075] ? _raw_spin_unlock+0x5/0x20 [ 216.280942][ T8075] ? ovl_get_trap_inode+0x136/0x190 [ 216.286112][ T8075] ovl_fill_super+0x3d14/0x4df0 [ 216.290937][ T8075] ? ovl_mount+0x30/0x30 [ 216.295165][ T8075] ? ida_alloc_range+0xa59/0xac0 [ 216.300072][ T8075] ? delete_node+0x761/0x7b0 [ 216.304644][ T8075] ? __radix_tree_replace+0x24d/0x2f0 [ 216.309994][ T8075] ? up_read+0x10/0x10 [ 216.314033][ T8075] ? sget+0x4cb/0x4e0 [ 216.317982][ T8075] ? free_anon_bdev+0x20/0x20 [ 216.322628][ T8075] ? ovl_mount+0x30/0x30 [ 216.326862][ T8075] mount_nodev+0x52/0xe0 [ 216.331077][ T8075] legacy_get_tree+0xde/0x170 [ 216.335723][ T8075] ? fuse_emit+0x7d0/0x7d0 [ 216.340128][ T8075] vfs_get_tree+0x85/0x260 [ 216.344518][ T8075] do_mount+0x1a15/0x28c0 [ 216.348830][ T8075] ? copy_mount_string+0x30/0x30 [ 216.353936][ T8075] ? page_fault+0x2f/0x40 [ 216.358247][ T8075] ? copy_mount_options+0x1e8/0x320 [ 216.363424][ T8075] ? copy_mount_options+0x293/0x320 [ 216.368592][ T8075] ksys_mount+0xc2/0xf0 [ 216.372720][ T8075] __x64_sys_mount+0xb1/0xc0 [ 216.377295][ T8075] do_syscall_64+0xcb/0x150 [ 216.381772][ T8075] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 216.387633][ T8075] RIP: 0033:0x45c829 [ 216.391500][ T8075] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 216.411088][ T8075] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 216.419483][ T8075] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 216.427429][ T8075] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:26 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x28, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:26 executing program 3 (fault-call:3 fault-nth:45): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 216.435378][ T8075] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 216.443322][ T8075] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 216.451272][ T8075] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 216.558133][ T8096] FAULT_INJECTION: forcing a failure. [ 216.558133][ T8096] name failslab, interval 1, probability 0, space 0, times 0 [ 216.570907][ T8096] CPU: 1 PID: 8096 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 216.580940][ T8096] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 216.591021][ T8096] Call Trace: [ 216.594284][ T8096] dump_stack+0x14a/0x1ce [ 216.598599][ T8096] ? devkmsg_release+0x11c/0x11c [ 216.603507][ T8096] ? show_regs_print_info+0x12/0x12 [ 216.608686][ T8096] should_fail+0x6fb/0x860 [ 216.613074][ T8096] ? setup_fault_attr+0x3d0/0x3d0 [ 216.618069][ T8096] ? security_file_alloc+0x32/0x200 [ 216.623233][ T8096] should_failslab+0x5/0x20 [ 216.627707][ T8096] kmem_cache_alloc+0x36/0x260 [ 216.632454][ T8096] security_file_alloc+0x32/0x200 [ 216.637463][ T8096] __alloc_file+0xc6/0x390 [ 216.644713][ T8096] alloc_empty_file+0xa9/0x1b0 [ 216.649445][ T8096] dentry_open+0x47/0xf0 [ 216.653668][ T8096] ovl_dir_read+0x26/0x4b0 [ 216.658056][ T8096] ? memset+0x1f/0x40 [ 216.662194][ T8096] ? ovl_check_d_type_supported+0x8a/0x130 [ 216.667981][ T8096] ovl_check_d_type_supported+0x95/0x130 [ 216.673582][ T8096] ? ovl_cleanup_whiteouts+0x2e0/0x2e0 [ 216.679009][ T8096] ? ovl_check_d_type_supported+0x130/0x130 [ 216.684881][ T8096] ? unlock_new_inode+0x8d/0xb0 [ 216.689700][ T8096] ? _raw_spin_unlock+0x5/0x20 [ 216.694606][ T8096] ? ovl_get_trap_inode+0x136/0x190 [ 216.699776][ T8096] ovl_fill_super+0x3d14/0x4df0 [ 216.704597][ T8096] ? ovl_mount+0x30/0x30 [ 216.709246][ T8096] ? ida_alloc_range+0xa59/0xac0 [ 216.714155][ T8096] ? delete_node+0x761/0x7b0 [ 216.718740][ T8096] ? __radix_tree_replace+0x24d/0x2f0 [ 216.724137][ T8096] ? up_read+0x10/0x10 [ 216.728176][ T8096] ? sget+0x4cb/0x4e0 [ 216.732125][ T8096] ? free_anon_bdev+0x20/0x20 [ 216.736769][ T8096] ? ovl_mount+0x30/0x30 [ 216.740977][ T8096] mount_nodev+0x52/0xe0 [ 216.745192][ T8096] legacy_get_tree+0xde/0x170 [ 216.749844][ T8096] ? fuse_emit+0x7d0/0x7d0 [ 216.754229][ T8096] vfs_get_tree+0x85/0x260 [ 216.758615][ T8096] do_mount+0x1a15/0x28c0 [ 216.762926][ T8096] ? copy_mount_string+0x30/0x30 [ 216.767846][ T8096] ? page_fault+0x2f/0x40 [ 216.772163][ T8096] ? copy_mount_options+0x1e8/0x320 [ 216.777329][ T8096] ? copy_mount_options+0x293/0x320 [ 216.782509][ T8096] ksys_mount+0xc2/0xf0 [ 216.786634][ T8096] __x64_sys_mount+0xb1/0xc0 [ 216.791193][ T8096] do_syscall_64+0xcb/0x150 [ 216.795668][ T8096] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 216.801532][ T8096] RIP: 0033:0x45c829 [ 216.805397][ T8096] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 216.825157][ T8096] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 216.833548][ T8096] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 216.841493][ T8096] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 216.849434][ T8096] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:26 executing program 3 (fault-call:3 fault-nth:46): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 216.857394][ T8096] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 216.865349][ T8096] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 216.873736][ T3082] usb 1-1: new high-speed USB device number 56 using dummy_hcd 09:43:26 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 216.974754][ T3082] usb 1-1: Using ep0 maxpacket: 16 09:43:26 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 217.000977][ T8099] FAULT_INJECTION: forcing a failure. [ 217.000977][ T8099] name failslab, interval 1, probability 0, space 0, times 0 [ 217.019768][ T8099] CPU: 1 PID: 8099 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 217.029836][ T8099] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.039864][ T8099] Call Trace: [ 217.043140][ T8099] dump_stack+0x14a/0x1ce [ 217.047444][ T8099] ? devkmsg_release+0x11c/0x11c [ 217.052369][ T8099] ? avc_has_perm_noaudit+0x30c/0x400 [ 217.057721][ T8099] ? show_regs_print_info+0x12/0x12 [ 217.062887][ T8099] ? avc_denied+0x1c0/0x1c0 [ 217.067372][ T8099] ? stack_trace_save+0x123/0x1f0 [ 217.072366][ T8099] should_fail+0x6fb/0x860 [ 217.076754][ T8099] ? setup_fault_attr+0x3d0/0x3d0 [ 217.081761][ T8099] ? avc_has_perm+0xd5/0x280 [ 217.086317][ T8099] ? avc_has_perm+0x176/0x280 [ 217.090962][ T8099] ? ext4_readdir+0x49f/0x3cd0 [ 217.095694][ T8099] should_failslab+0x5/0x20 [ 217.100168][ T8099] kmem_cache_alloc_trace+0x39/0x280 [ 217.105425][ T8099] ext4_readdir+0x49f/0x3cd0 [ 217.109985][ T8099] ? memset+0x1f/0x40 [ 217.113937][ T8099] ? fsnotify+0x13a0/0x1460 [ 217.118411][ T8099] ? __fsnotify_parent+0xeb/0x310 [ 217.123418][ T8099] ? __fsnotify_update_child_dentry_flags+0x2c0/0x2c0 [ 217.130147][ T8099] ? memset+0x1f/0x40 [ 217.134113][ T8099] ? fsnotify+0x13a0/0x1460 [ 217.138586][ T8099] ? ext4_dir_llseek+0x4a0/0x4a0 [ 217.143496][ T8099] ? down_read_killable+0x10d/0x250 [ 217.148662][ T8099] ? down_read+0x10/0x10 [ 217.152877][ T8099] ? security_file_permission+0x1e9/0x300 [ 217.158566][ T8099] iterate_dir+0x2a0/0x510 [ 217.162959][ T8099] ovl_dir_read+0xf8/0x4b0 [ 217.167356][ T8099] ? memset+0x1f/0x40 [ 217.171314][ T8099] ovl_check_d_type_supported+0x95/0x130 [ 217.176918][ T8099] ? ovl_cleanup_whiteouts+0x2e0/0x2e0 [ 217.182351][ T8099] ? ovl_check_d_type_supported+0x130/0x130 [ 217.188234][ T8099] ? unlock_new_inode+0x8d/0xb0 [ 217.193053][ T8099] ? _raw_spin_unlock+0x5/0x20 [ 217.197785][ T8099] ? ovl_get_trap_inode+0x136/0x190 [ 217.202958][ T8099] ovl_fill_super+0x3d14/0x4df0 [ 217.207789][ T8099] ? ovl_mount+0x30/0x30 [ 217.211997][ T8099] ? ida_alloc_range+0xa59/0xac0 [ 217.216907][ T8099] ? delete_node+0x761/0x7b0 [ 217.221481][ T8099] ? __radix_tree_replace+0x24d/0x2f0 [ 217.226821][ T8099] ? up_read+0x10/0x10 [ 217.230873][ T8099] ? sget+0x4cb/0x4e0 [ 217.234821][ T8099] ? free_anon_bdev+0x20/0x20 [ 217.239480][ T8099] ? ovl_mount+0x30/0x30 [ 217.243692][ T8099] mount_nodev+0x52/0xe0 [ 217.248000][ T8099] legacy_get_tree+0xde/0x170 [ 217.252651][ T8099] ? fuse_emit+0x7d0/0x7d0 [ 217.257036][ T8099] vfs_get_tree+0x85/0x260 [ 217.261438][ T8099] do_mount+0x1a15/0x28c0 [ 217.265739][ T8099] ? copy_mount_string+0x30/0x30 [ 217.272380][ T8099] ? page_fault+0x2f/0x40 [ 217.276857][ T8099] ? copy_mount_options+0x1e8/0x320 [ 217.282038][ T8099] ? copy_mount_options+0x293/0x320 [ 217.287228][ T8099] ksys_mount+0xc2/0xf0 [ 217.291496][ T8099] __x64_sys_mount+0xb1/0xc0 [ 217.296062][ T8099] do_syscall_64+0xcb/0x150 [ 217.300545][ T8099] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 217.306411][ T8099] RIP: 0033:0x45c829 [ 217.310277][ T8099] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 217.329850][ T8099] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 217.338230][ T8099] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:26 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:26 executing program 3 (fault-call:3 fault-nth:47): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 217.346177][ T8099] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 217.354117][ T8099] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 217.362121][ T8099] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 217.370070][ T8099] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x29, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 217.444700][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 217.466324][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 217.475922][ T8110] FAULT_INJECTION: forcing a failure. [ 217.475922][ T8110] name failslab, interval 1, probability 0, space 0, times 0 [ 217.480154][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 217.491526][ T8110] CPU: 0 PID: 8110 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 217.503434][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 217.511528][ T8110] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 217.511531][ T8110] Call Trace: [ 217.511546][ T8110] dump_stack+0x14a/0x1ce [ 217.511556][ T8110] ? devkmsg_release+0x11c/0x11c [ 217.511563][ T8110] ? show_regs_print_info+0x12/0x12 [ 217.511570][ T8110] ? __ext4fs_dirhash+0xfed/0x12c0 [ 217.511584][ T8110] should_fail+0x6fb/0x860 [ 217.522094][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 217.530627][ T8110] ? setup_fault_attr+0x3d0/0x3d0 [ 217.530635][ T8110] ? kzalloc+0x1b/0x30 [ 217.530643][ T8110] should_failslab+0x5/0x20 [ 217.530660][ T8110] __kmalloc+0x5f/0x2d0 [ 217.538857][ T3082] usb 1-1: config 0 descriptor?? [ 217.543145][ T8110] ? ext4fs_dirhash+0x22a/0x2e0 [ 217.543152][ T8110] kzalloc+0x1b/0x30 [ 217.543168][ T8110] ext4_htree_store_dirent+0x75/0x5e0 [ 217.602426][ T8110] htree_dirblock_to_tree+0x5ae/0xb70 [ 217.607772][ T8110] ? ext4_htree_fill_tree+0x1220/0x1220 [ 217.613285][ T8110] ? ext4_readdir+0x49f/0x3cd0 [ 217.618019][ T8110] ? iterate_dir+0x2a0/0x510 [ 217.622579][ T8110] ? ovl_fill_super+0x3d14/0x4df0 [ 217.627570][ T8110] ? mount_nodev+0x52/0xe0 [ 217.631952][ T8110] ? legacy_get_tree+0xde/0x170 [ 217.636784][ T8110] ? vfs_get_tree+0x85/0x260 [ 217.641341][ T8110] ? do_mount+0x1a15/0x28c0 [ 217.646943][ T8110] ? ksys_mount+0xc2/0xf0 [ 217.651426][ T8110] ? do_syscall_64+0xcb/0x150 [ 217.656166][ T8110] ext4_htree_fill_tree+0x5eb/0x1220 [ 217.661444][ T8110] ? ext4_handle_dirty_dirblock+0x6e0/0x6e0 [ 217.667309][ T8110] ext4_readdir+0x2ec0/0x3cd0 [ 217.671968][ T8110] ? __fsnotify_parent+0xeb/0x310 [ 217.676962][ T8110] ? __fsnotify_update_child_dentry_flags+0x2c0/0x2c0 [ 217.683704][ T8110] ? memset+0x1f/0x40 [ 217.687656][ T8110] ? fsnotify+0x13a0/0x1460 [ 217.692140][ T8110] ? ext4_dir_llseek+0x4a0/0x4a0 [ 217.697057][ T8110] ? down_read_killable+0x10d/0x250 [ 217.702221][ T8110] ? down_read+0x10/0x10 [ 217.706448][ T8110] ? security_file_permission+0x1e9/0x300 [ 217.712135][ T8110] iterate_dir+0x2a0/0x510 [ 217.716539][ T8110] ovl_dir_read+0xf8/0x4b0 [ 217.720923][ T8110] ? memset+0x1f/0x40 [ 217.725481][ T8110] ovl_check_d_type_supported+0x95/0x130 [ 217.731083][ T8110] ? ovl_cleanup_whiteouts+0x2e0/0x2e0 [ 217.736508][ T8110] ? ovl_check_d_type_supported+0x130/0x130 [ 217.742392][ T8110] ? unlock_new_inode+0x8d/0xb0 [ 217.747216][ T8110] ? _raw_spin_unlock+0x5/0x20 [ 217.751958][ T8110] ? ovl_get_trap_inode+0x136/0x190 [ 217.757134][ T8110] ovl_fill_super+0x3d14/0x4df0 [ 217.761953][ T8110] ? ovl_mount+0x30/0x30 [ 217.766164][ T8110] ? ida_alloc_range+0xa59/0xac0 [ 217.771074][ T8110] ? delete_node+0x761/0x7b0 [ 217.775655][ T8110] ? __radix_tree_replace+0x24d/0x2f0 [ 217.781012][ T8110] ? up_read+0x10/0x10 [ 217.785062][ T8110] ? sget+0x4cb/0x4e0 [ 217.789045][ T8110] ? free_anon_bdev+0x20/0x20 [ 217.793699][ T8110] ? ovl_mount+0x30/0x30 [ 217.797933][ T8110] mount_nodev+0x52/0xe0 [ 217.802158][ T8110] legacy_get_tree+0xde/0x170 [ 217.806802][ T8110] ? fuse_emit+0x7d0/0x7d0 [ 217.811196][ T8110] vfs_get_tree+0x85/0x260 [ 217.815588][ T8110] do_mount+0x1a15/0x28c0 [ 217.819892][ T8110] ? copy_mount_string+0x30/0x30 [ 217.824797][ T8110] ? page_fault+0x2f/0x40 [ 217.829116][ T8110] ? copy_mount_options+0x1e8/0x320 [ 217.834281][ T8110] ? copy_mount_options+0x293/0x320 [ 217.839461][ T8110] ksys_mount+0xc2/0xf0 [ 217.843602][ T8110] __x64_sys_mount+0xb1/0xc0 [ 217.848162][ T8110] do_syscall_64+0xcb/0x150 [ 217.852633][ T8110] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 217.858494][ T8110] RIP: 0033:0x45c829 [ 217.862362][ T8110] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 217.881937][ T8110] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 09:43:27 executing program 3 (fault-call:3 fault-nth:48): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 217.890329][ T8110] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 217.898282][ T8110] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 217.906237][ T8110] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 217.914190][ T8110] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 217.922141][ T8110] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 218.050013][ T8120] FAULT_INJECTION: forcing a failure. [ 218.050013][ T8120] name failslab, interval 1, probability 0, space 0, times 0 [ 218.062839][ T8120] CPU: 1 PID: 8120 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 218.072876][ T8120] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 218.082917][ T8120] Call Trace: [ 218.086263][ T8120] dump_stack+0x14a/0x1ce [ 218.090583][ T8120] ? devkmsg_release+0x11c/0x11c [ 218.095566][ T8120] ? show_regs_print_info+0x12/0x12 [ 218.100794][ T8120] ? __ext4fs_dirhash+0xfed/0x12c0 [ 218.105963][ T8120] should_fail+0x6fb/0x860 [ 218.110476][ T8120] ? setup_fault_attr+0x3d0/0x3d0 [ 218.115474][ T8120] ? kzalloc+0x1b/0x30 [ 218.119517][ T8120] should_failslab+0x5/0x20 [ 218.124205][ T8120] __kmalloc+0x5f/0x2d0 [ 218.128343][ T8120] ? ext4fs_dirhash+0x22a/0x2e0 [ 218.133169][ T8120] kzalloc+0x1b/0x30 [ 218.137044][ T8120] ext4_htree_store_dirent+0x75/0x5e0 [ 218.142397][ T8120] htree_dirblock_to_tree+0x5ae/0xb70 [ 218.147752][ T8120] ? ext4_htree_fill_tree+0x1220/0x1220 [ 218.153267][ T8120] ? ext4_readdir+0x49f/0x3cd0 [ 218.158001][ T8120] ? iterate_dir+0x2a0/0x510 [ 218.162560][ T8120] ? ovl_fill_super+0x3d14/0x4df0 [ 218.167553][ T8120] ? mount_nodev+0x52/0xe0 [ 218.171940][ T8120] ? legacy_get_tree+0xde/0x170 [ 218.176763][ T8120] ? vfs_get_tree+0x85/0x260 [ 218.181321][ T8120] ? do_mount+0x1a15/0x28c0 [ 218.185819][ T8120] ? ksys_mount+0xc2/0xf0 [ 218.190119][ T8120] ? do_syscall_64+0xcb/0x150 [ 218.194769][ T8120] ext4_htree_fill_tree+0x5eb/0x1220 [ 218.200025][ T8120] ? ext4_handle_dirty_dirblock+0x6e0/0x6e0 [ 218.205893][ T8120] ext4_readdir+0x2ec0/0x3cd0 [ 218.210542][ T8120] ? __fsnotify_parent+0xeb/0x310 [ 218.215541][ T8120] ? __fsnotify_update_child_dentry_flags+0x2c0/0x2c0 [ 218.222287][ T8120] ? memset+0x1f/0x40 [ 218.226255][ T8120] ? fsnotify+0x13a0/0x1460 [ 218.230730][ T8120] ? ext4_dir_llseek+0x4a0/0x4a0 [ 218.235661][ T8120] ? down_read_killable+0x10d/0x250 [ 218.240827][ T8120] ? down_read+0x10/0x10 [ 218.245046][ T8120] ? security_file_permission+0x1e9/0x300 [ 218.250742][ T8120] iterate_dir+0x2a0/0x510 [ 218.255145][ T8120] ovl_dir_read+0xf8/0x4b0 [ 218.259544][ T8120] ? memset+0x1f/0x40 [ 218.263505][ T8120] ovl_check_d_type_supported+0x95/0x130 [ 218.269129][ T8120] ? ovl_cleanup_whiteouts+0x2e0/0x2e0 [ 218.274563][ T8120] ? ovl_check_d_type_supported+0x130/0x130 [ 218.280449][ T8120] ? unlock_new_inode+0x8d/0xb0 [ 218.285294][ T8120] ? _raw_spin_unlock+0x5/0x20 [ 218.290118][ T8120] ? ovl_get_trap_inode+0x136/0x190 [ 218.295308][ T8120] ovl_fill_super+0x3d14/0x4df0 [ 218.300144][ T8120] ? ovl_mount+0x30/0x30 [ 218.304357][ T8120] ? ida_alloc_range+0xa59/0xac0 [ 218.309272][ T8120] ? delete_node+0x761/0x7b0 [ 218.313848][ T8120] ? __radix_tree_replace+0x24d/0x2f0 [ 218.319210][ T8120] ? up_read+0x10/0x10 [ 218.323259][ T8120] ? sget+0x4cb/0x4e0 [ 218.327212][ T8120] ? free_anon_bdev+0x20/0x20 [ 218.331962][ T8120] ? ovl_mount+0x30/0x30 [ 218.336177][ T8120] mount_nodev+0x52/0xe0 [ 218.340407][ T8120] legacy_get_tree+0xde/0x170 [ 218.345075][ T8120] ? fuse_emit+0x7d0/0x7d0 [ 218.349566][ T8120] vfs_get_tree+0x85/0x260 [ 218.353952][ T8120] do_mount+0x1a15/0x28c0 [ 218.358253][ T8120] ? copy_mount_string+0x30/0x30 [ 218.363159][ T8120] ? page_fault+0x2f/0x40 [ 218.367470][ T8120] ? copy_mount_options+0x1e8/0x320 [ 218.372637][ T8120] ? copy_mount_options+0x293/0x320 [ 218.377803][ T8120] ksys_mount+0xc2/0xf0 [ 218.381942][ T8120] __x64_sys_mount+0xb1/0xc0 [ 218.386508][ T8120] do_syscall_64+0xcb/0x150 [ 218.390986][ T8120] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 218.396851][ T8120] RIP: 0033:0x45c829 [ 218.400717][ T8120] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 218.420304][ T8120] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 218.428684][ T8120] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 218.436647][ T8120] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 218.444603][ T8120] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 218.452638][ T8120] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 218.460579][ T8120] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 218.744613][ T3082] usbhid 1-1:0.0: can't add hid device: -71 [ 218.750558][ T3082] usbhid: probe of 1-1:0.0 failed with error -71 [ 218.758710][ T3082] usb 1-1: USB disconnect, device number 56 09:43:28 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:28 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:28 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3f7, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:28 executing program 3 (fault-call:3 fault-nth:49): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:28 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 219.202218][ T8139] FAULT_INJECTION: forcing a failure. [ 219.202218][ T8139] name failslab, interval 1, probability 0, space 0, times 0 [ 219.221589][ T8139] CPU: 1 PID: 8139 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 219.231680][ T8139] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 219.241720][ T8139] Call Trace: [ 219.244991][ T8139] dump_stack+0x14a/0x1ce [ 219.249292][ T8139] ? devkmsg_release+0x11c/0x11c [ 219.254199][ T8139] ? show_regs_print_info+0x12/0x12 [ 219.259368][ T8139] ? __ext4fs_dirhash+0xfed/0x12c0 [ 219.264451][ T8139] should_fail+0x6fb/0x860 [ 219.268852][ T8139] ? setup_fault_attr+0x3d0/0x3d0 [ 219.273851][ T8139] ? kzalloc+0x1b/0x30 [ 219.277898][ T8139] should_failslab+0x5/0x20 [ 219.282371][ T8139] __kmalloc+0x5f/0x2d0 [ 219.286585][ T8139] ? ext4fs_dirhash+0x22a/0x2e0 [ 219.291491][ T8139] kzalloc+0x1b/0x30 [ 219.295354][ T8139] ext4_htree_store_dirent+0x75/0x5e0 [ 219.300703][ T8139] htree_dirblock_to_tree+0x5ae/0xb70 [ 219.306047][ T8139] ? ext4_htree_fill_tree+0x1220/0x1220 [ 219.312256][ T8139] ? ext4_readdir+0x49f/0x3cd0 [ 219.316989][ T8139] ? iterate_dir+0x2a0/0x510 [ 219.321911][ T8139] ? ovl_fill_super+0x3d14/0x4df0 [ 219.326916][ T8139] ? mount_nodev+0x52/0xe0 [ 219.331302][ T8139] ? legacy_get_tree+0xde/0x170 [ 219.336122][ T8139] ? vfs_get_tree+0x85/0x260 [ 219.340685][ T8139] ? do_mount+0x1a15/0x28c0 [ 219.345172][ T8139] ? ksys_mount+0xc2/0xf0 [ 219.349470][ T8139] ? do_syscall_64+0xcb/0x150 [ 219.354232][ T8139] ext4_htree_fill_tree+0x5eb/0x1220 [ 219.359496][ T8139] ? ext4_handle_dirty_dirblock+0x6e0/0x6e0 [ 219.365380][ T8139] ext4_readdir+0x2ec0/0x3cd0 [ 219.370036][ T8139] ? __fsnotify_parent+0xeb/0x310 [ 219.375037][ T8139] ? __fsnotify_update_child_dentry_flags+0x2c0/0x2c0 [ 219.381773][ T8139] ? memset+0x1f/0x40 [ 219.385727][ T8139] ? fsnotify+0x13a0/0x1460 [ 219.390215][ T8139] ? ext4_dir_llseek+0x4a0/0x4a0 [ 219.395166][ T8139] ? down_read_killable+0x10d/0x250 [ 219.400354][ T8139] ? down_read+0x10/0x10 [ 219.404574][ T8139] ? security_file_permission+0x1e9/0x300 [ 219.410271][ T8139] iterate_dir+0x2a0/0x510 [ 219.414669][ T8139] ovl_dir_read+0xf8/0x4b0 [ 219.419156][ T8139] ? memset+0x1f/0x40 [ 219.423122][ T8139] ovl_check_d_type_supported+0x95/0x130 [ 219.428727][ T8139] ? ovl_cleanup_whiteouts+0x2e0/0x2e0 [ 219.434154][ T8139] ? ovl_check_d_type_supported+0x130/0x130 [ 219.440019][ T8139] ? unlock_new_inode+0x8d/0xb0 [ 219.444840][ T8139] ? _raw_spin_unlock+0x5/0x20 [ 219.449574][ T8139] ? ovl_get_trap_inode+0x136/0x190 [ 219.454744][ T8139] ovl_fill_super+0x3d14/0x4df0 [ 219.459568][ T8139] ? ovl_mount+0x30/0x30 [ 219.463781][ T8139] ? ida_alloc_range+0xa59/0xac0 [ 219.468716][ T8139] ? delete_node+0x761/0x7b0 [ 219.473276][ T8139] ? __radix_tree_replace+0x24d/0x2f0 [ 219.478644][ T8139] ? up_read+0x10/0x10 [ 219.482683][ T8139] ? sget+0x4cb/0x4e0 [ 219.486633][ T8139] ? free_anon_bdev+0x20/0x20 [ 219.491281][ T8139] ? ovl_mount+0x30/0x30 [ 219.495506][ T8139] mount_nodev+0x52/0xe0 [ 219.499738][ T8139] legacy_get_tree+0xde/0x170 [ 219.504402][ T8139] ? fuse_emit+0x7d0/0x7d0 [ 219.508802][ T8139] vfs_get_tree+0x85/0x260 [ 219.513193][ T8139] do_mount+0x1a15/0x28c0 [ 219.517504][ T8139] ? copy_mount_string+0x30/0x30 [ 219.522421][ T8139] ? page_fault+0x2f/0x40 [ 219.526733][ T8139] ? copy_mount_options+0x1e8/0x320 [ 219.531899][ T8139] ? copy_mount_options+0x293/0x320 [ 219.537079][ T8139] ksys_mount+0xc2/0xf0 [ 219.541207][ T8139] __x64_sys_mount+0xb1/0xc0 [ 219.545770][ T8139] do_syscall_64+0xcb/0x150 [ 219.550244][ T8139] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 219.556116][ T8139] RIP: 0033:0x45c829 [ 219.559993][ T8139] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 219.579784][ T8139] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 219.588270][ T8139] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 219.596225][ T8139] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:29 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:29 executing program 3 (fault-call:3 fault-nth:50): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 219.604167][ T8139] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 219.612121][ T8139] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 219.620064][ T8139] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 219.763150][ T8156] FAULT_INJECTION: forcing a failure. [ 219.763150][ T8156] name failslab, interval 1, probability 0, space 0, times 0 [ 219.775785][ T8156] CPU: 0 PID: 8156 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 219.785830][ T8156] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 219.795858][ T8156] Call Trace: [ 219.799382][ T8156] dump_stack+0x14a/0x1ce [ 219.803706][ T8156] ? devkmsg_release+0x11c/0x11c [ 219.808624][ T8156] ? avc_has_perm_noaudit+0x30c/0x400 [ 219.813964][ T8156] ? show_regs_print_info+0x12/0x12 [ 219.819145][ T8156] ? avc_denied+0x1c0/0x1c0 [ 219.823619][ T8156] should_fail+0x6fb/0x860 [ 219.828006][ T8156] ? setup_fault_attr+0x3d0/0x3d0 [ 219.832999][ T8156] ? selinux_inode_permission+0x389/0x6c0 [ 219.838694][ T8156] ? selinux_inode_permission+0x464/0x6c0 [ 219.844390][ T8156] ? __d_alloc+0x2a/0x6b0 [ 219.848707][ T8156] should_failslab+0x5/0x20 [ 219.853177][ T8156] kmem_cache_alloc+0x36/0x260 [ 219.857913][ T8156] __d_alloc+0x2a/0x6b0 [ 219.864211][ T8156] ? generic_permission+0x190/0x4a0 [ 219.869377][ T8156] d_alloc+0x45/0x1c0 [ 219.873338][ T8156] vfs_tmpfile+0xed/0x220 [ 219.877648][ T8156] ovl_fill_super+0x3d6e/0x4df0 [ 219.882477][ T8156] ? ovl_mount+0x30/0x30 [ 219.886688][ T8156] ? ida_alloc_range+0xa59/0xac0 [ 219.891596][ T8156] ? delete_node+0x761/0x7b0 [ 219.896154][ T8156] ? __radix_tree_replace+0x24d/0x2f0 [ 219.901504][ T8156] ? up_read+0x10/0x10 [ 219.905557][ T8156] ? sget+0x4cb/0x4e0 [ 219.909523][ T8156] ? free_anon_bdev+0x20/0x20 [ 219.914302][ T8156] ? ovl_mount+0x30/0x30 [ 219.918531][ T8156] mount_nodev+0x52/0xe0 [ 219.922751][ T8156] legacy_get_tree+0xde/0x170 [ 219.927398][ T8156] ? fuse_emit+0x7d0/0x7d0 [ 219.931804][ T8156] vfs_get_tree+0x85/0x260 [ 219.936203][ T8156] do_mount+0x1a15/0x28c0 [ 219.940519][ T8156] ? copy_mount_string+0x30/0x30 [ 219.945438][ T8156] ? page_fault+0x2f/0x40 [ 219.949736][ T8156] ? copy_mount_options+0x1e8/0x320 [ 219.954902][ T8156] ? copy_mount_options+0x293/0x320 [ 219.960077][ T8156] ksys_mount+0xc2/0xf0 [ 219.964213][ T8156] __x64_sys_mount+0xb1/0xc0 [ 219.969047][ T8156] do_syscall_64+0xcb/0x150 [ 219.973542][ T8156] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 219.979414][ T8156] RIP: 0033:0x45c829 [ 219.983372][ T8156] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 220.002952][ T8156] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 220.011338][ T8156] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 220.019281][ T8156] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 220.027227][ T8156] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 220.035197][ T8156] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 220.043151][ T8156] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 220.051340][ T3969] usb 1-1: new high-speed USB device number 57 using dummy_hcd 09:43:29 executing program 3 (fault-call:3 fault-nth:51): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 220.058932][ T8156] overlayfs: upper fs does not support tmpfile. 09:43:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3f8, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:29 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 220.128408][ T8166] FAULT_INJECTION: forcing a failure. [ 220.128408][ T8166] name failslab, interval 1, probability 0, space 0, times 0 [ 220.141597][ T8166] CPU: 0 PID: 8166 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 220.151651][ T8166] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 220.161712][ T8166] Call Trace: [ 220.165002][ T8166] dump_stack+0x14a/0x1ce [ 220.169327][ T8166] ? devkmsg_release+0x11c/0x11c [ 220.174237][ T8166] ? avc_has_perm_noaudit+0x30c/0x400 [ 220.179605][ T8166] ? show_regs_print_info+0x12/0x12 [ 220.184773][ T8166] ? avc_denied+0x1c0/0x1c0 [ 220.189262][ T8166] should_fail+0x6fb/0x860 [ 220.193666][ T8166] ? setup_fault_attr+0x3d0/0x3d0 [ 220.198661][ T8166] ? selinux_inode_permission+0x389/0x6c0 [ 220.204358][ T8166] ? selinux_inode_permission+0x464/0x6c0 [ 220.210077][ T8166] ? __d_alloc+0x2a/0x6b0 [ 220.214418][ T8166] should_failslab+0x5/0x20 [ 220.218906][ T8166] kmem_cache_alloc+0x36/0x260 [ 220.223649][ T8166] __d_alloc+0x2a/0x6b0 [ 220.227784][ T8166] ? generic_permission+0x190/0x4a0 [ 220.232955][ T8166] d_alloc+0x45/0x1c0 [ 220.236911][ T8166] vfs_tmpfile+0xed/0x220 [ 220.241225][ T8166] ovl_fill_super+0x3d6e/0x4df0 [ 220.246052][ T8166] ? ovl_mount+0x30/0x30 [ 220.250266][ T8166] ? ida_alloc_range+0xa59/0xac0 [ 220.255238][ T8166] ? delete_node+0x761/0x7b0 [ 220.259848][ T8166] ? __radix_tree_replace+0x24d/0x2f0 [ 220.265222][ T8166] ? up_read+0x10/0x10 [ 220.269278][ T8166] ? sget+0x4cb/0x4e0 [ 220.273251][ T8166] ? free_anon_bdev+0x20/0x20 [ 220.277899][ T8166] ? ovl_mount+0x30/0x30 [ 220.282115][ T8166] mount_nodev+0x52/0xe0 [ 220.286330][ T8166] legacy_get_tree+0xde/0x170 [ 220.290992][ T8166] ? fuse_emit+0x7d0/0x7d0 [ 220.295382][ T8166] vfs_get_tree+0x85/0x260 [ 220.299771][ T8166] do_mount+0x1a15/0x28c0 [ 220.304140][ T8166] ? copy_mount_string+0x30/0x30 [ 220.309061][ T8166] ? page_fault+0x2f/0x40 [ 220.313367][ T8166] ? copy_mount_options+0x1e8/0x320 [ 220.318536][ T8166] ? copy_mount_options+0x293/0x320 [ 220.323706][ T8166] ksys_mount+0xc2/0xf0 [ 220.327832][ T8166] __x64_sys_mount+0xb1/0xc0 [ 220.332399][ T8166] do_syscall_64+0xcb/0x150 [ 220.336920][ T8166] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 220.342794][ T8166] RIP: 0033:0x45c829 [ 220.346704][ T8166] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 220.366803][ T8166] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 220.375187][ T8166] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 220.383249][ T8166] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 220.391198][ T8166] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 220.399200][ T8166] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 220.407167][ T8166] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 220.415370][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 220.421081][ T8166] overlayfs: upper fs does not support tmpfile. [ 220.534468][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 220.545376][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 220.555116][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 220.567945][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 220.577014][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 220.589208][ T3969] usb 1-1: config 0 descriptor?? [ 221.114408][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 221.120372][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 221.128340][ T3969] usb 1-1: USB disconnect, device number 57 09:43:31 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:31 executing program 3 (fault-call:3 fault-nth:52): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:31 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:31 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3f7, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:31 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3fa, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x409, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 221.565485][ T8190] FAULT_INJECTION: forcing a failure. [ 221.565485][ T8190] name failslab, interval 1, probability 0, space 0, times 0 [ 221.578326][ T8190] CPU: 1 PID: 8190 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 221.588473][ T8190] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 221.598516][ T8190] Call Trace: [ 221.601789][ T8190] dump_stack+0x14a/0x1ce [ 221.606095][ T8190] ? devkmsg_release+0x11c/0x11c [ 221.611004][ T8190] ? avc_has_perm_noaudit+0x30c/0x400 [ 221.616346][ T8190] ? show_regs_print_info+0x12/0x12 [ 221.621513][ T8190] ? avc_denied+0x1c0/0x1c0 [ 221.626075][ T8190] should_fail+0x6fb/0x860 [ 221.630465][ T8190] ? setup_fault_attr+0x3d0/0x3d0 [ 221.635462][ T8190] ? selinux_inode_permission+0x389/0x6c0 [ 221.641153][ T8190] ? selinux_inode_permission+0x464/0x6c0 [ 221.646843][ T8190] ? __d_alloc+0x2a/0x6b0 [ 221.651147][ T8190] should_failslab+0x5/0x20 [ 221.655623][ T8190] kmem_cache_alloc+0x36/0x260 [ 221.660359][ T8190] __d_alloc+0x2a/0x6b0 [ 221.664485][ T8190] ? generic_permission+0x190/0x4a0 [ 221.669653][ T8190] d_alloc+0x45/0x1c0 [ 221.673605][ T8190] vfs_tmpfile+0xed/0x220 [ 221.677903][ T8190] ovl_fill_super+0x3d6e/0x4df0 [ 221.682722][ T8190] ? ovl_mount+0x30/0x30 [ 221.686934][ T8190] ? ida_alloc_range+0xa59/0xac0 [ 221.691851][ T8190] ? delete_node+0x761/0x7b0 [ 221.696411][ T8190] ? __radix_tree_replace+0x24d/0x2f0 [ 221.701755][ T8190] ? up_read+0x10/0x10 [ 221.705795][ T8190] ? sget+0x4cb/0x4e0 [ 221.709745][ T8190] ? free_anon_bdev+0x20/0x20 [ 221.714392][ T8190] ? ovl_mount+0x30/0x30 [ 221.718602][ T8190] mount_nodev+0x52/0xe0 [ 221.722815][ T8190] legacy_get_tree+0xde/0x170 [ 221.727460][ T8190] ? fuse_emit+0x7d0/0x7d0 [ 221.731845][ T8190] vfs_get_tree+0x85/0x260 [ 221.736246][ T8190] do_mount+0x1a15/0x28c0 [ 221.740551][ T8190] ? copy_mount_string+0x30/0x30 [ 221.745470][ T8190] ? page_fault+0x2f/0x40 [ 221.749770][ T8190] ? copy_mount_options+0x1e8/0x320 [ 221.754940][ T8190] ? copy_mount_options+0x293/0x320 [ 221.760119][ T8190] ksys_mount+0xc2/0xf0 [ 221.764262][ T8190] __x64_sys_mount+0xb1/0xc0 [ 221.768823][ T8190] do_syscall_64+0xcb/0x150 [ 221.773297][ T8190] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 221.779159][ T8190] RIP: 0033:0x45c829 [ 221.783072][ T8190] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 221.802656][ T8190] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 221.811048][ T8190] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 221.819119][ T8190] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 221.827065][ T8190] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 221.835022][ T8190] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 221.842966][ T8190] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:31 executing program 3 (fault-call:3 fault-nth:53): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 221.867003][ T8190] overlayfs: upper fs does not support tmpfile. 09:43:31 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2f, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 221.994290][ T3969] usb 1-1: new high-speed USB device number 58 using dummy_hcd [ 222.006863][ T8214] FAULT_INJECTION: forcing a failure. [ 222.006863][ T8214] name failslab, interval 1, probability 0, space 0, times 0 [ 222.019517][ T8214] CPU: 0 PID: 8214 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 222.029558][ T8214] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.039632][ T8214] Call Trace: [ 222.042924][ T8214] dump_stack+0x14a/0x1ce [ 222.047225][ T8214] ? devkmsg_release+0x11c/0x11c [ 222.052134][ T8214] ? show_regs_print_info+0x12/0x12 [ 222.057300][ T8214] should_fail+0x6fb/0x860 [ 222.061703][ T8214] ? setup_fault_attr+0x3d0/0x3d0 [ 222.066713][ T8214] ? stack_trace_save+0x123/0x1f0 [ 222.071721][ T8214] ? ebitmap_cmp+0x1c8/0x230 [ 222.076277][ T8214] ? mls_compute_context_len+0x81b/0x850 [ 222.081879][ T8214] ? context_struct_to_string+0x3e4/0x820 [ 222.088089][ T8214] should_failslab+0x5/0x20 [ 222.092564][ T8214] __kmalloc+0x5f/0x2d0 [ 222.096692][ T8214] context_struct_to_string+0x3e4/0x820 [ 222.102218][ T8214] ? security_bounded_transition+0x560/0x560 [ 222.108169][ T8214] ? ebitmap_contains+0x6d8/0x780 [ 222.113440][ T8214] ? hashtab_search+0x1bf/0x200 [ 222.118270][ T8214] context_add_hash+0x145/0x280 [ 222.123091][ T8214] ? security_sid_to_context_inval+0x40/0x40 [ 222.129044][ T8214] ? mls_context_isvalid+0x98/0x380 [ 222.134559][ T8214] ? policydb_context_isvalid+0x1b6/0x400 [ 222.140856][ T8214] security_compute_sid+0x11da/0x1d50 [ 222.146197][ T8214] ? arch_stack_walk+0xd8/0x120 [ 222.151017][ T8214] ? security_transition_sid+0x90/0x90 [ 222.156482][ T8214] ? stack_trace_snprint+0x150/0x150 [ 222.161733][ T8214] ? stack_trace_save+0x123/0x1f0 [ 222.166749][ T8214] ? stack_trace_snprint+0x150/0x150 [ 222.172026][ T8214] ? htree_dirblock_to_tree+0xae3/0xb70 [ 222.177549][ T8214] ? __rcu_read_lock+0x50/0x50 [ 222.182284][ T8214] ? xas_load+0x468/0x4c0 [ 222.186592][ T8214] ? page_cache_prev_miss+0x3f0/0x3f0 [ 222.191932][ T8214] ? __find_get_block+0xdfe/0x1060 [ 222.197030][ T8214] security_transition_sid+0x78/0x90 [ 222.203941][ T8214] selinux_inode_init_security+0x4bd/0xb00 [ 222.209716][ T8214] ? selinux_inode_free_security+0x1d0/0x1d0 [ 222.215669][ T8214] ? crc16+0x1e6/0x230 [ 222.219725][ T8214] security_inode_init_security+0x16f/0x3c0 [ 222.225599][ T8214] ? ext4_init_security+0x40/0x40 [ 222.230593][ T8214] ? security_dentry_create_files_as+0xe0/0xe0 [ 222.236731][ T8214] ? _raw_spin_unlock+0x5/0x20 09:43:31 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3f9, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 222.241472][ T8214] __ext4_new_inode+0x46c0/0x5cf0 [ 222.246492][ T8214] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 222.252205][ T8214] ? memset+0x1f/0x40 [ 222.256203][ T8214] ? __dquot_initialize+0x227/0xd70 [ 222.261408][ T8214] ext4_tmpfile+0x237/0x4a0 [ 222.265906][ T8214] ? _raw_spin_trylock_bh+0x190/0x190 [ 222.271277][ T8214] ? ext4_rename2+0x7120/0x7120 [ 222.276127][ T8214] ? _raw_spin_unlock+0x5/0x20 [ 222.280887][ T8214] ? d_alloc+0x18a/0x1c0 [ 222.285130][ T8214] vfs_tmpfile+0x141/0x220 [ 222.289558][ T8214] ovl_fill_super+0x3d6e/0x4df0 [ 222.294402][ T8214] ? ovl_mount+0x30/0x30 [ 222.298630][ T8214] ? ida_alloc_range+0xa59/0xac0 [ 222.303751][ T8214] ? delete_node+0x761/0x7b0 [ 222.308314][ T8214] ? __radix_tree_replace+0x24d/0x2f0 [ 222.313661][ T8214] ? up_read+0x10/0x10 [ 222.317720][ T8214] ? sget+0x4cb/0x4e0 [ 222.321681][ T8214] ? free_anon_bdev+0x20/0x20 [ 222.326351][ T8214] ? ovl_mount+0x30/0x30 [ 222.330593][ T8214] mount_nodev+0x52/0xe0 [ 222.334814][ T8214] legacy_get_tree+0xde/0x170 [ 222.339480][ T8214] ? fuse_emit+0x7d0/0x7d0 [ 222.343869][ T8214] vfs_get_tree+0x85/0x260 [ 222.350701][ T8214] do_mount+0x1a15/0x28c0 [ 222.355011][ T8214] ? copy_mount_string+0x30/0x30 [ 222.359937][ T8214] ? page_fault+0x2f/0x40 [ 222.364258][ T8214] ? copy_mount_options+0x1e8/0x320 [ 222.369458][ T8214] ? copy_mount_options+0x293/0x320 [ 222.374679][ T8214] ksys_mount+0xc2/0xf0 [ 222.378849][ T8214] __x64_sys_mount+0xb1/0xc0 [ 222.383527][ T8214] do_syscall_64+0xcb/0x150 [ 222.388009][ T8214] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 222.393880][ T8214] RIP: 0033:0x45c829 [ 222.397762][ T8214] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 222.417795][ T8214] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 222.426183][ T8214] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 222.434184][ T8214] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:32 executing program 3 (fault-call:3 fault-nth:54): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:32 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x40a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 222.443375][ T8214] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 222.451322][ T8214] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 222.459817][ T8214] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 222.470113][ T8214] overlayfs: upper fs does not support tmpfile. [ 222.519106][ T8224] FAULT_INJECTION: forcing a failure. [ 222.519106][ T8224] name failslab, interval 1, probability 0, space 0, times 0 [ 222.531849][ T8224] CPU: 1 PID: 8224 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 222.534332][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 222.541890][ T8224] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 222.541893][ T8224] Call Trace: [ 222.541908][ T8224] dump_stack+0x14a/0x1ce [ 222.541917][ T8224] ? devkmsg_release+0x11c/0x11c [ 222.541931][ T8224] ? show_regs_print_info+0x12/0x12 [ 222.574747][ T8224] should_fail+0x6fb/0x860 [ 222.579195][ T8224] ? setup_fault_attr+0x3d0/0x3d0 [ 222.584197][ T8224] ? stack_trace_save+0x123/0x1f0 [ 222.589198][ T8224] ? ebitmap_cmp+0x1c8/0x230 [ 222.593851][ T8224] ? mls_compute_context_len+0x81b/0x850 [ 222.599452][ T8224] ? context_struct_to_string+0x3e4/0x820 [ 222.605144][ T8224] should_failslab+0x5/0x20 [ 222.609633][ T8224] __kmalloc+0x5f/0x2d0 [ 222.613763][ T8224] context_struct_to_string+0x3e4/0x820 [ 222.619287][ T8224] ? security_bounded_transition+0x560/0x560 [ 222.625234][ T8224] ? ebitmap_contains+0x6d8/0x780 [ 222.630244][ T8224] ? hashtab_search+0x1bf/0x200 [ 222.635127][ T8224] context_add_hash+0x145/0x280 [ 222.639961][ T8224] ? security_sid_to_context_inval+0x40/0x40 [ 222.645934][ T8224] ? mls_context_isvalid+0x98/0x380 [ 222.651107][ T8224] ? policydb_context_isvalid+0x1b6/0x400 [ 222.656806][ T8224] security_compute_sid+0x11da/0x1d50 [ 222.662207][ T8224] ? arch_stack_walk+0xd8/0x120 [ 222.664310][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 222.667034][ T8224] ? security_transition_sid+0x90/0x90 [ 222.667043][ T8224] ? stack_trace_snprint+0x150/0x150 [ 222.667054][ T8224] ? stack_trace_save+0x123/0x1f0 [ 222.677991][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 222.683322][ T8224] ? stack_trace_snprint+0x150/0x150 [ 222.683332][ T8224] ? htree_dirblock_to_tree+0xae3/0xb70 [ 222.683340][ T8224] ? __rcu_read_lock+0x50/0x50 [ 222.683352][ T8224] ? xas_load+0x468/0x4c0 [ 222.693496][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 222.693607][ T8224] ? page_cache_prev_miss+0x3f0/0x3f0 [ 222.704067][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 222.708547][ T8224] ? __find_get_block+0xdfe/0x1060 [ 222.708558][ T8224] security_transition_sid+0x78/0x90 [ 222.708570][ T8224] selinux_inode_init_security+0x4bd/0xb00 [ 222.708580][ T8224] ? selinux_inode_free_security+0x1d0/0x1d0 [ 222.708591][ T8224] ? crc16+0x1e6/0x230 [ 222.717580][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 222.720928][ T8224] security_inode_init_security+0x16f/0x3c0 [ 222.720938][ T8224] ? ext4_init_security+0x40/0x40 [ 222.720951][ T8224] ? security_dentry_create_files_as+0xe0/0xe0 [ 222.726808][ T3969] usb 1-1: config 0 descriptor?? [ 222.739817][ T8224] ? _raw_spin_unlock+0x5/0x20 [ 222.739827][ T8224] __ext4_new_inode+0x46c0/0x5cf0 [ 222.739839][ T8224] ? ext4_read_inode_bitmap+0x1950/0x1950 [ 222.739849][ T8224] ? memset+0x1f/0x40 [ 222.739857][ T8224] ? __dquot_initialize+0x227/0xd70 [ 222.739868][ T8224] ext4_tmpfile+0x237/0x4a0 [ 222.739879][ T8224] ? _raw_spin_trylock_bh+0x190/0x190 [ 222.844568][ T8224] ? ext4_rename2+0x7120/0x7120 [ 222.849387][ T8224] ? _raw_spin_unlock+0x5/0x20 [ 222.854116][ T8224] ? d_alloc+0x18a/0x1c0 [ 222.858333][ T8224] vfs_tmpfile+0x141/0x220 [ 222.862735][ T8224] ovl_fill_super+0x3d6e/0x4df0 [ 222.867570][ T8224] ? ovl_mount+0x30/0x30 [ 222.871782][ T8224] ? ida_alloc_range+0xa59/0xac0 [ 222.876699][ T8224] ? delete_node+0x761/0x7b0 [ 222.881272][ T8224] ? __radix_tree_replace+0x24d/0x2f0 [ 222.886623][ T8224] ? up_read+0x10/0x10 [ 222.890667][ T8224] ? sget+0x4cb/0x4e0 [ 222.894620][ T8224] ? free_anon_bdev+0x20/0x20 [ 222.899264][ T8224] ? ovl_mount+0x30/0x30 [ 222.903473][ T8224] mount_nodev+0x52/0xe0 [ 222.907684][ T8224] legacy_get_tree+0xde/0x170 [ 222.912327][ T8224] ? fuse_emit+0x7d0/0x7d0 [ 222.916714][ T8224] vfs_get_tree+0x85/0x260 [ 222.921107][ T8224] do_mount+0x1a15/0x28c0 [ 222.925423][ T8224] ? copy_mount_string+0x30/0x30 [ 222.930327][ T8224] ? page_fault+0x2f/0x40 [ 222.934629][ T8224] ? copy_mount_options+0x1e8/0x320 [ 222.939797][ T8224] ? copy_mount_options+0x293/0x320 [ 222.944972][ T8224] ksys_mount+0xc2/0xf0 [ 222.949114][ T8224] __x64_sys_mount+0xb1/0xc0 [ 222.953693][ T8224] do_syscall_64+0xcb/0x150 [ 222.958180][ T8224] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 222.964050][ T8224] RIP: 0033:0x45c829 [ 222.967929][ T8224] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 222.987514][ T8224] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 222.995907][ T8224] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 223.003854][ T8224] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 223.011812][ T8224] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 223.019781][ T8224] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 223.030081][ T8224] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 223.043448][ T8224] overlayfs: upper fs does not support tmpfile. [ 223.484226][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 223.490208][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 223.498323][ T3969] usb 1-1: USB disconnect, device number 58 09:43:33 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:33 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:33 executing program 3 (fault-call:3 fault-nth:55): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:33 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x427, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:33 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x30, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:33 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x40b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:33 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x428, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 223.960937][ T8245] FAULT_INJECTION: forcing a failure. [ 223.960937][ T8245] name failslab, interval 1, probability 0, space 0, times 0 [ 223.973846][ T8245] CPU: 0 PID: 8245 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 223.983911][ T8245] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.993944][ T8245] Call Trace: [ 223.997222][ T8245] dump_stack+0x14a/0x1ce [ 224.001531][ T8245] ? devkmsg_release+0x11c/0x11c [ 224.006700][ T8245] ? show_regs_print_info+0x12/0x12 [ 224.011867][ T8245] should_fail+0x6fb/0x860 [ 224.016256][ T8245] ? setup_fault_attr+0x3d0/0x3d0 [ 224.021275][ T8245] ? write_boundary_block+0x150/0x150 [ 224.026620][ T8245] ? iput+0x2d3/0x750 [ 224.030584][ T8245] ? kzalloc+0x1b/0x30 [ 224.034622][ T8245] should_failslab+0x5/0x20 [ 224.039102][ T8245] __kmalloc+0x5f/0x2d0 [ 224.043228][ T8245] ? ext4_xattr_set_entry+0x1e4b/0x3b60 [ 224.048746][ T8245] kzalloc+0x1b/0x30 [ 224.052613][ T8245] ext4_xattr_block_set+0x2c6/0x40b0 [ 224.057872][ T8245] ? ext4_xattr_block_find+0x560/0x560 [ 224.063311][ T8245] ? __ext4_journal_get_write_access+0x86/0x2e0 [ 224.069523][ T8245] ? ext4_xattr_ibody_find+0x80b/0x990 [ 224.074953][ T8245] ? ext4_xattr_block_find+0xd2/0x560 [ 224.080296][ T8245] ext4_xattr_set_handle+0xf0b/0x1ed0 [ 224.085640][ T8245] ? ext4_xattr_set_entry+0x3b60/0x3b60 [ 224.091156][ T8245] ? memset+0x1f/0x40 [ 224.095108][ T8245] ? dquot_initialize+0x20/0x20 [ 224.099943][ T8245] ? __ext4_journal_start_sb+0x3ad/0x420 [ 224.105557][ T8245] ext4_xattr_set+0x229/0x330 [ 224.110206][ T8245] ? selinux_inode_getattr+0x3e0/0x3e0 [ 224.115822][ T8245] ? ext4_xattr_set_credits+0x290/0x290 [ 224.121338][ T8245] ? ext4_xattr_trusted_get+0x40/0x40 [ 224.126692][ T8245] __vfs_setxattr+0x3be/0x400 [ 224.131349][ T8245] __vfs_setxattr_noperm+0x12a/0x3e0 [ 224.136602][ T8245] vfs_setxattr+0xd2/0xf0 [ 224.140901][ T8245] ovl_fill_super+0x3df2/0x4df0 [ 224.145723][ T8245] ? ovl_mount+0x30/0x30 [ 224.149938][ T8245] ? ida_alloc_range+0xa59/0xac0 [ 224.154844][ T8245] ? delete_node+0x761/0x7b0 [ 224.159411][ T8245] ? __radix_tree_replace+0x24d/0x2f0 [ 224.164754][ T8245] ? up_read+0x10/0x10 [ 224.168792][ T8245] ? sget+0x4cb/0x4e0 [ 224.172747][ T8245] ? free_anon_bdev+0x20/0x20 [ 224.177392][ T8245] ? ovl_mount+0x30/0x30 [ 224.181603][ T8245] mount_nodev+0x52/0xe0 [ 224.185817][ T8245] legacy_get_tree+0xde/0x170 [ 224.190463][ T8245] ? fuse_emit+0x7d0/0x7d0 [ 224.194860][ T8245] vfs_get_tree+0x85/0x260 [ 224.199250][ T8245] do_mount+0x1a15/0x28c0 [ 224.203551][ T8245] ? copy_mount_string+0x30/0x30 [ 224.208545][ T8245] ? page_fault+0x2f/0x40 [ 224.212851][ T8245] ? copy_mount_options+0x1e8/0x320 [ 224.218019][ T8245] ? copy_mount_options+0x293/0x320 [ 224.223187][ T8245] ksys_mount+0xc2/0xf0 [ 224.227315][ T8245] __x64_sys_mount+0xb1/0xc0 [ 224.231876][ T8245] do_syscall_64+0xcb/0x150 [ 224.236362][ T8245] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 224.242225][ T8245] RIP: 0033:0x45c829 [ 224.246104][ T8245] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 224.265690][ T8245] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 224.274075][ T8245] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 224.282030][ T8245] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 224.289972][ T8245] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 224.297925][ T8245] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:33 executing program 3 (fault-call:3 fault-nth:56): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 224.305955][ T8245] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 224.331297][ T8245] overlayfs: upper fs does not support xattr, falling back to index=off and metacopy=off. [ 224.406280][ T8268] FAULT_INJECTION: forcing a failure. [ 224.406280][ T8268] name failslab, interval 1, probability 0, space 0, times 0 [ 224.419123][ T8268] CPU: 0 PID: 8268 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 224.429174][ T8268] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.439245][ T8268] Call Trace: [ 224.442516][ T8268] dump_stack+0x14a/0x1ce [ 224.446819][ T8268] ? devkmsg_release+0x11c/0x11c [ 224.451727][ T8268] ? show_regs_print_info+0x12/0x12 [ 224.456906][ T8268] ? ext4_evict_inode+0x1a70/0x1a70 [ 224.462097][ T8268] ? _raw_spin_unlock+0x5/0x20 [ 224.466847][ T8268] ? __dquot_alloc_space+0x2a1/0xce0 [ 224.472101][ T8268] should_fail+0x6fb/0x860 [ 224.476487][ T8268] ? setup_fault_attr+0x3d0/0x3d0 [ 224.481479][ T8268] ? __ext4_journal_start_sb+0x3ad/0x420 [ 224.487080][ T8268] ? __ext4_journal_stop+0x2f/0x190 [ 224.492248][ T8268] ? __ext4_expand_extra_isize+0x3b0/0x3b0 [ 224.498026][ T8268] ? ext4_mb_new_blocks+0x423/0x28a0 [ 224.503288][ T8268] should_failslab+0x5/0x20 [ 224.507781][ T8268] kmem_cache_alloc+0x36/0x260 [ 224.512564][ T8268] ext4_mb_new_blocks+0x423/0x28a0 [ 224.517767][ T8268] ? ksys_mount+0xc2/0xf0 [ 224.522071][ T8268] ? ext4_mb_pa_callback+0xc0/0xc0 [ 224.527165][ T8268] ext4_new_meta_blocks+0x178/0x3f0 [ 224.532860][ T8268] ? ext4_should_retry_alloc+0x1b0/0x1b0 [ 224.538464][ T8268] ? __entry_find+0x353/0x390 [ 224.543112][ T8268] ? dquot_initialize_needed+0x126/0x310 [ 224.548715][ T8268] ext4_xattr_block_set+0x2107/0x40b0 [ 224.554074][ T8268] ? ext4_xattr_block_find+0x560/0x560 [ 224.559511][ T8268] ? __ext4_journal_get_write_access+0x86/0x2e0 [ 224.565729][ T8268] ? ext4_xattr_ibody_find+0x80b/0x990 [ 224.571157][ T8268] ? ext4_xattr_block_find+0xd2/0x560 [ 224.576497][ T8268] ext4_xattr_set_handle+0xf0b/0x1ed0 [ 224.581841][ T8268] ? ext4_xattr_set_entry+0x3b60/0x3b60 [ 224.587357][ T8268] ? memset+0x1f/0x40 [ 224.591358][ T8268] ? dquot_initialize+0x20/0x20 [ 224.596178][ T8268] ? __ext4_journal_start_sb+0x3ad/0x420 [ 224.601795][ T8268] ext4_xattr_set+0x229/0x330 [ 224.606453][ T8268] ? selinux_inode_getattr+0x3e0/0x3e0 [ 224.611892][ T8268] ? ext4_xattr_set_credits+0x290/0x290 [ 224.617409][ T8268] ? ext4_xattr_trusted_get+0x40/0x40 [ 224.622759][ T8268] __vfs_setxattr+0x3be/0x400 [ 224.627418][ T8268] __vfs_setxattr_noperm+0x12a/0x3e0 [ 224.632674][ T8268] vfs_setxattr+0xd2/0xf0 [ 224.636974][ T8268] ovl_fill_super+0x3df2/0x4df0 [ 224.641807][ T8268] ? ovl_mount+0x30/0x30 [ 224.646019][ T8268] ? ida_alloc_range+0xa59/0xac0 [ 224.650923][ T8268] ? delete_node+0x761/0x7b0 [ 224.655480][ T8268] ? __radix_tree_replace+0x24d/0x2f0 [ 224.660825][ T8268] ? up_read+0x10/0x10 [ 224.664870][ T8268] ? sget+0x4cb/0x4e0 [ 224.668822][ T8268] ? free_anon_bdev+0x20/0x20 [ 224.673469][ T8268] ? ovl_mount+0x30/0x30 [ 224.677680][ T8268] mount_nodev+0x52/0xe0 [ 224.681912][ T8268] legacy_get_tree+0xde/0x170 [ 224.686564][ T8268] ? fuse_emit+0x7d0/0x7d0 [ 224.690948][ T8268] vfs_get_tree+0x85/0x260 [ 224.695334][ T8268] do_mount+0x1a15/0x28c0 [ 224.699645][ T8268] ? copy_mount_string+0x30/0x30 [ 224.704549][ T8268] ? page_fault+0x2f/0x40 [ 224.708845][ T8268] ? copy_mount_options+0x1e8/0x320 [ 224.714011][ T8268] ? copy_mount_options+0x293/0x320 [ 224.719179][ T8268] ksys_mount+0xc2/0xf0 [ 224.723315][ T8268] __x64_sys_mount+0xb1/0xc0 [ 224.727874][ T8268] do_syscall_64+0xcb/0x150 [ 224.732347][ T8268] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 224.738207][ T8268] RIP: 0033:0x45c829 [ 224.742090][ T8268] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 224.761660][ T8268] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 224.770050][ T8268] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 224.778007][ T8268] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 224.785965][ T8268] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 224.793911][ T8268] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:34 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x40c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:34 executing program 3 (fault-call:3 fault-nth:57): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 224.801851][ T8268] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 224.810859][ T8268] overlayfs: upper fs does not support xattr, falling back to index=off and metacopy=off. [ 224.823684][ T3082] usb 1-1: new high-speed USB device number 59 using dummy_hcd 09:43:34 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x429, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 224.884424][ T8276] FAULT_INJECTION: forcing a failure. [ 224.884424][ T8276] name failslab, interval 1, probability 0, space 0, times 0 [ 224.897455][ T8276] CPU: 1 PID: 8276 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 224.907701][ T8276] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 224.917732][ T8276] Call Trace: [ 224.921000][ T8276] dump_stack+0x14a/0x1ce [ 224.925317][ T8276] ? devkmsg_release+0x11c/0x11c [ 224.930230][ T8276] ? show_regs_print_info+0x12/0x12 [ 224.935415][ T8276] ? ext4_evict_inode+0x1a70/0x1a70 [ 224.940588][ T8276] ? _raw_spin_unlock+0x5/0x20 [ 224.945322][ T8276] ? __dquot_alloc_space+0x2a1/0xce0 [ 224.950587][ T8276] should_fail+0x6fb/0x860 [ 224.955676][ T8276] ? setup_fault_attr+0x3d0/0x3d0 [ 224.960675][ T8276] ? __ext4_journal_start_sb+0x3ad/0x420 [ 224.966381][ T8276] ? __ext4_journal_stop+0x2f/0x190 [ 224.971571][ T8276] ? __ext4_expand_extra_isize+0x3b0/0x3b0 [ 224.977443][ T8276] ? ext4_mb_new_blocks+0x423/0x28a0 [ 224.982701][ T8276] should_failslab+0x5/0x20 [ 224.987190][ T8276] kmem_cache_alloc+0x36/0x260 [ 224.991951][ T8276] ext4_mb_new_blocks+0x423/0x28a0 [ 224.997066][ T8276] ? ksys_mount+0xc2/0xf0 [ 225.001367][ T8276] ? ext4_mb_pa_callback+0xc0/0xc0 [ 225.006452][ T8276] ext4_new_meta_blocks+0x178/0x3f0 [ 225.011691][ T8276] ? ext4_should_retry_alloc+0x1b0/0x1b0 [ 225.017350][ T8276] ? __entry_find+0x353/0x390 [ 225.022021][ T8276] ? dquot_initialize_needed+0x126/0x310 [ 225.027625][ T8276] ext4_xattr_block_set+0x2107/0x40b0 [ 225.032974][ T8276] ? ext4_xattr_block_find+0x560/0x560 [ 225.038405][ T8276] ? __ext4_journal_get_write_access+0x86/0x2e0 [ 225.044615][ T8276] ? ext4_xattr_ibody_find+0x80b/0x990 [ 225.050042][ T8276] ? ext4_xattr_block_find+0xd2/0x560 [ 225.055398][ T8276] ext4_xattr_set_handle+0xf0b/0x1ed0 [ 225.060742][ T8276] ? ext4_xattr_set_entry+0x3b60/0x3b60 [ 225.066257][ T8276] ? memset+0x1f/0x40 [ 225.070209][ T8276] ? dquot_initialize+0x20/0x20 [ 225.075040][ T8276] ? __ext4_journal_start_sb+0x3ad/0x420 [ 225.080740][ T8276] ext4_xattr_set+0x229/0x330 [ 225.085389][ T8276] ? selinux_inode_getattr+0x3e0/0x3e0 [ 225.090820][ T8276] ? ext4_xattr_set_credits+0x290/0x290 [ 225.096335][ T8276] ? ext4_xattr_trusted_get+0x40/0x40 [ 225.101682][ T8276] __vfs_setxattr+0x3be/0x400 [ 225.106340][ T8276] __vfs_setxattr_noperm+0x12a/0x3e0 [ 225.112035][ T8276] vfs_setxattr+0xd2/0xf0 [ 225.116344][ T8276] ovl_fill_super+0x3df2/0x4df0 [ 225.121258][ T8276] ? ovl_mount+0x30/0x30 [ 225.125478][ T8276] ? ida_alloc_range+0xa59/0xac0 [ 225.130385][ T8276] ? delete_node+0x761/0x7b0 [ 225.134950][ T8276] ? __radix_tree_replace+0x24d/0x2f0 [ 225.140314][ T8276] ? up_read+0x10/0x10 [ 225.144359][ T8276] ? sget+0x4cb/0x4e0 [ 225.148321][ T8276] ? free_anon_bdev+0x20/0x20 [ 225.152989][ T8276] ? ovl_mount+0x30/0x30 [ 225.157202][ T8276] mount_nodev+0x52/0xe0 [ 225.161417][ T8276] legacy_get_tree+0xde/0x170 [ 225.166074][ T8276] ? fuse_emit+0x7d0/0x7d0 [ 225.170468][ T8276] vfs_get_tree+0x85/0x260 [ 225.174855][ T8276] do_mount+0x1a15/0x28c0 [ 225.179173][ T8276] ? copy_mount_string+0x30/0x30 [ 225.184081][ T8276] ? page_fault+0x2f/0x40 [ 225.188406][ T8276] ? copy_mount_options+0x1e8/0x320 [ 225.193585][ T8276] ? copy_mount_options+0x293/0x320 [ 225.198762][ T8276] ksys_mount+0xc2/0xf0 [ 225.202904][ T8276] __x64_sys_mount+0xb1/0xc0 [ 225.207466][ T8276] do_syscall_64+0xcb/0x150 [ 225.211958][ T8276] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 225.217834][ T8276] RIP: 0033:0x45c829 [ 225.221726][ T8276] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 225.241315][ T8276] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 225.249708][ T8276] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 225.257749][ T8276] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 225.265824][ T8276] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 225.273771][ T8276] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 225.281720][ T8276] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 225.291521][ T8276] overlayfs: upper fs does not support xattr, falling back to index=off and metacopy=off. [ 225.304117][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 225.444335][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 225.455491][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 225.466331][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 225.479150][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 225.488214][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 225.496842][ T3082] usb 1-1: config 0 descriptor?? [ 226.244005][ T3082] usbhid 1-1:0.0: can't add hid device: -71 [ 226.250344][ T3082] usbhid: probe of 1-1:0.0 failed with error -71 [ 226.258273][ T3082] usb 1-1: USB disconnect, device number 59 09:43:36 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:36 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x31, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:36 executing program 3 (fault-call:3 fault-nth:58): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2f, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:36 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xa00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x42a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 226.701742][ T8294] FAULT_INJECTION: forcing a failure. [ 226.701742][ T8294] name failslab, interval 1, probability 0, space 0, times 0 [ 226.727560][ T8294] CPU: 0 PID: 8294 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 226.737667][ T8294] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 226.747972][ T8294] Call Trace: [ 226.751264][ T8294] dump_stack+0x14a/0x1ce [ 226.755569][ T8294] ? devkmsg_release+0x11c/0x11c [ 226.760497][ T8294] ? show_regs_print_info+0x12/0x12 [ 226.765668][ T8294] ? memset+0x1f/0x40 [ 226.769653][ T8294] ? fsnotify+0x1399/0x1460 [ 226.774130][ T8294] ? __rcu_read_lock+0x50/0x50 [ 226.778870][ T8294] should_fail+0x6fb/0x860 [ 226.783260][ T8294] ? setup_fault_attr+0x3d0/0x3d0 [ 226.788280][ T8294] ? mntput_no_expire+0x119/0xbc0 [ 226.793292][ T8294] ? lockref_get_or_lock+0x340/0x340 [ 226.798551][ T8294] ? down_write+0xd8/0x150 [ 226.802978][ T8294] ? up_read+0x10/0x10 [ 226.807067][ T8294] ? ovl_fill_super+0x1024/0x4df0 [ 226.812100][ T8294] should_failslab+0x5/0x20 [ 226.816597][ T8294] __kmalloc_track_caller+0x5d/0x2c0 [ 226.821886][ T8294] ? dput+0x4ed/0x5e0 [ 226.825842][ T8294] kstrdup+0x31/0x70 [ 226.829711][ T8294] ovl_fill_super+0x1024/0x4df0 [ 226.834558][ T8294] ? ovl_mount+0x30/0x30 [ 226.838773][ T8294] ? ida_alloc_range+0xa59/0xac0 [ 226.843679][ T8294] ? delete_node+0x761/0x7b0 [ 226.848259][ T8294] ? __radix_tree_replace+0x24d/0x2f0 [ 226.853777][ T8294] ? up_read+0x10/0x10 [ 226.857836][ T8294] ? sget+0x4cb/0x4e0 [ 226.861888][ T8294] ? free_anon_bdev+0x20/0x20 [ 226.866551][ T8294] ? ovl_mount+0x30/0x30 [ 226.870779][ T8294] mount_nodev+0x52/0xe0 [ 226.874998][ T8294] legacy_get_tree+0xde/0x170 [ 226.879663][ T8294] ? fuse_emit+0x7d0/0x7d0 [ 226.885116][ T8294] vfs_get_tree+0x85/0x260 [ 226.889512][ T8294] do_mount+0x1a15/0x28c0 [ 226.893814][ T8294] ? copy_mount_string+0x30/0x30 [ 226.898741][ T8294] ? page_fault+0x2f/0x40 [ 226.903057][ T8294] ? copy_mount_options+0x1e8/0x320 [ 226.908244][ T8294] ? copy_mount_options+0x293/0x320 [ 226.913438][ T8294] ksys_mount+0xc2/0xf0 [ 226.917592][ T8294] __x64_sys_mount+0xb1/0xc0 [ 226.922173][ T8294] do_syscall_64+0xcb/0x150 [ 226.926667][ T8294] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 226.932645][ T8294] RIP: 0033:0x45c829 [ 226.936513][ T8294] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 226.956201][ T8294] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 226.964597][ T8294] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 226.972551][ T8294] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 226.980509][ T8294] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 226.983906][ T3082] usb 1-1: new high-speed USB device number 60 using dummy_hcd 09:43:36 executing program 3 (fault-call:3 fault-nth:59): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 226.988546][ T8294] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 226.988551][ T8294] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 227.043145][ T8318] FAULT_INJECTION: forcing a failure. [ 227.043145][ T8318] name failslab, interval 1, probability 0, space 0, times 0 [ 227.056037][ T8318] CPU: 0 PID: 8318 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 227.066075][ T8318] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.076286][ T8318] Call Trace: [ 227.079563][ T8318] dump_stack+0x14a/0x1ce [ 227.083876][ T8318] ? devkmsg_release+0x11c/0x11c [ 227.088792][ T8318] ? show_regs_print_info+0x12/0x12 [ 227.093967][ T8318] should_fail+0x6fb/0x860 [ 227.093972][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 227.103460][ T8318] ? setup_fault_attr+0x3d0/0x3d0 [ 227.108487][ T8318] ? kcalloc+0x2b/0x50 [ 227.112635][ T8318] should_failslab+0x5/0x20 [ 227.117128][ T8318] __kmalloc+0x5f/0x2d0 [ 227.121254][ T8318] ? kstrdup+0x4c/0x70 [ 227.125292][ T8318] kcalloc+0x2b/0x50 [ 227.129160][ T8318] ovl_fill_super+0x179d/0x4df0 [ 227.133994][ T8318] ? ovl_mount+0x30/0x30 [ 227.138224][ T8318] ? ida_alloc_range+0xa59/0xac0 [ 227.143131][ T8318] ? delete_node+0x761/0x7b0 [ 227.147708][ T8318] ? __radix_tree_replace+0x24d/0x2f0 [ 227.153068][ T8318] ? up_read+0x10/0x10 [ 227.157122][ T8318] ? sget+0x4cb/0x4e0 [ 227.161073][ T8318] ? free_anon_bdev+0x20/0x20 [ 227.165722][ T8318] ? ovl_mount+0x30/0x30 [ 227.169933][ T8318] mount_nodev+0x52/0xe0 [ 227.174148][ T8318] legacy_get_tree+0xde/0x170 [ 227.178813][ T8318] ? fuse_emit+0x7d0/0x7d0 [ 227.183199][ T8318] vfs_get_tree+0x85/0x260 [ 227.187603][ T8318] do_mount+0x1a15/0x28c0 [ 227.192092][ T8318] ? copy_mount_string+0x30/0x30 [ 227.197001][ T8318] ? page_fault+0x2f/0x40 [ 227.201355][ T8318] ? copy_mount_options+0x1e8/0x320 [ 227.206523][ T8318] ? copy_mount_options+0x293/0x320 [ 227.211690][ T8318] ksys_mount+0xc2/0xf0 [ 227.214079][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 227.215824][ T8318] __x64_sys_mount+0xb1/0xc0 [ 227.226785][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 227.231221][ T8318] do_syscall_64+0xcb/0x150 [ 227.231232][ T8318] entry_SYSCALL_64_after_hwframe+0x44/0xa9 09:43:36 executing program 3 (fault-call:3 fault-nth:60): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:36 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x32, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 227.231240][ T8318] RIP: 0033:0x45c829 [ 227.231252][ T8318] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 227.246914][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 227.251279][ T8318] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 227.251288][ T8318] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 227.251293][ T8318] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 227.251298][ T8318] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 227.251303][ T8318] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 227.251307][ T8318] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 227.337388][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 227.349806][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 227.358552][ T3082] usb 1-1: config 0 descriptor?? [ 227.384492][ T8321] FAULT_INJECTION: forcing a failure. [ 227.384492][ T8321] name failslab, interval 1, probability 0, space 0, times 0 [ 227.397601][ T8321] CPU: 1 PID: 8321 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 227.407730][ T8321] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.417778][ T8321] Call Trace: [ 227.421062][ T8321] dump_stack+0x14a/0x1ce [ 227.425376][ T8321] ? devkmsg_release+0x11c/0x11c [ 227.430315][ T8321] ? show_regs_print_info+0x12/0x12 [ 227.435510][ T8321] should_fail+0x6fb/0x860 [ 227.439899][ T8321] ? setup_fault_attr+0x3d0/0x3d0 [ 227.445156][ T8321] ? kcalloc+0x2b/0x50 [ 227.449198][ T8321] should_failslab+0x5/0x20 [ 227.453674][ T8321] __kmalloc+0x5f/0x2d0 [ 227.457806][ T8321] ? kstrdup+0x4c/0x70 [ 227.461940][ T8321] kcalloc+0x2b/0x50 [ 227.465827][ T8321] ovl_fill_super+0x179d/0x4df0 [ 227.470652][ T8321] ? ovl_mount+0x30/0x30 [ 227.474870][ T8321] ? ida_alloc_range+0xa59/0xac0 [ 227.479776][ T8321] ? delete_node+0x761/0x7b0 [ 227.484336][ T8321] ? __radix_tree_replace+0x24d/0x2f0 [ 227.489681][ T8321] ? up_read+0x10/0x10 [ 227.494069][ T8321] ? sget+0x4cb/0x4e0 [ 227.498032][ T8321] ? free_anon_bdev+0x20/0x20 [ 227.502681][ T8321] ? ovl_mount+0x30/0x30 [ 227.506940][ T8321] mount_nodev+0x52/0xe0 [ 227.511163][ T8321] legacy_get_tree+0xde/0x170 [ 227.515868][ T8321] ? fuse_emit+0x7d0/0x7d0 [ 227.520283][ T8321] vfs_get_tree+0x85/0x260 [ 227.524682][ T8321] do_mount+0x1a15/0x28c0 [ 227.528988][ T8321] ? copy_mount_string+0x30/0x30 [ 227.533900][ T8321] ? page_fault+0x2f/0x40 [ 227.538201][ T8321] ? copy_mount_options+0x1e8/0x320 [ 227.543371][ T8321] ? copy_mount_options+0x293/0x320 [ 227.548542][ T8321] ksys_mount+0xc2/0xf0 [ 227.552729][ T8321] __x64_sys_mount+0xb1/0xc0 [ 227.557366][ T8321] do_syscall_64+0xcb/0x150 [ 227.561849][ T8321] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 227.567714][ T8321] RIP: 0033:0x45c829 [ 227.571633][ T8321] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 227.591313][ T8321] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 09:43:37 executing program 3 (fault-call:3 fault-nth:61): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 227.599698][ T8321] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 227.607643][ T8321] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 227.615689][ T8321] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 227.623646][ T8321] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 227.631719][ T8321] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:37 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x30, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:37 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x104a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 227.730901][ T8331] FAULT_INJECTION: forcing a failure. [ 227.730901][ T8331] name failslab, interval 1, probability 0, space 0, times 0 [ 227.743596][ T8331] CPU: 1 PID: 8331 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 227.753651][ T8331] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 227.763685][ T8331] Call Trace: [ 227.767011][ T8331] dump_stack+0x14a/0x1ce [ 227.771313][ T8331] ? devkmsg_release+0x11c/0x11c [ 227.776259][ T8331] ? show_regs_print_info+0x12/0x12 [ 227.781437][ T8331] should_fail+0x6fb/0x860 [ 227.785841][ T8331] ? setup_fault_attr+0x3d0/0x3d0 [ 227.790941][ T8331] ? getname_kernel+0x55/0x2f0 [ 227.795698][ T8331] should_failslab+0x5/0x20 [ 227.800171][ T8331] kmem_cache_alloc+0x36/0x260 [ 227.804926][ T8331] getname_kernel+0x55/0x2f0 [ 227.809487][ T8331] kern_path+0x19/0x40 [ 227.813544][ T8331] ovl_mount_dir_noesc+0x55/0x1a0 [ 227.818568][ T8331] ovl_fill_super+0x1831/0x4df0 [ 227.823416][ T8331] ? ovl_mount+0x30/0x30 [ 227.827665][ T8331] ? ida_alloc_range+0xa59/0xac0 [ 227.832588][ T8331] ? delete_node+0x761/0x7b0 [ 227.837156][ T8331] ? __radix_tree_replace+0x24d/0x2f0 [ 227.842522][ T8331] ? up_read+0x10/0x10 [ 227.846589][ T8331] ? sget+0x4cb/0x4e0 [ 227.850630][ T8331] ? free_anon_bdev+0x20/0x20 [ 227.855288][ T8331] ? ovl_mount+0x30/0x30 [ 227.859519][ T8331] mount_nodev+0x52/0xe0 [ 227.863919][ T8331] legacy_get_tree+0xde/0x170 [ 227.868580][ T8331] ? fuse_emit+0x7d0/0x7d0 [ 227.872975][ T8331] vfs_get_tree+0x85/0x260 [ 227.877369][ T8331] do_mount+0x1a15/0x28c0 [ 227.881676][ T8331] ? copy_mount_string+0x30/0x30 [ 227.886693][ T8331] ? page_fault+0x2f/0x40 [ 227.890995][ T8331] ? copy_mount_options+0x1e8/0x320 [ 227.896163][ T8331] ? copy_mount_options+0x293/0x320 [ 227.901331][ T8331] ksys_mount+0xc2/0xf0 [ 227.905456][ T8331] __x64_sys_mount+0xb1/0xc0 [ 227.910018][ T8331] do_syscall_64+0xcb/0x150 [ 227.914495][ T8331] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 227.920355][ T8331] RIP: 0033:0x45c829 [ 227.924222][ T8331] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 227.943803][ T8331] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 227.952191][ T8331] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 227.960227][ T8331] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 227.968172][ T8331] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 227.976240][ T8331] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 227.984200][ T8331] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 227.992416][ T8331] overlayfs: failed to resolve './bus': -12 [ 228.243855][ T3082] usbhid 1-1:0.0: can't add hid device: -71 [ 228.249830][ T3082] usbhid: probe of 1-1:0.0 failed with error -71 [ 228.258716][ T3082] usb 1-1: USB disconnect, device number 60 09:43:38 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:38 executing program 3 (fault-call:3 fault-nth:62): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:38 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x33, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x42b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x31, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1a00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 228.724863][ T8352] FAULT_INJECTION: forcing a failure. [ 228.724863][ T8352] name failslab, interval 1, probability 0, space 0, times 0 [ 228.738384][ T8352] CPU: 0 PID: 8352 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 228.748455][ T8352] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 228.758500][ T8352] Call Trace: [ 228.761792][ T8352] dump_stack+0x14a/0x1ce [ 228.766115][ T8352] ? devkmsg_release+0x11c/0x11c [ 228.771057][ T8352] ? show_regs_print_info+0x12/0x12 [ 228.776256][ T8352] ? find_next_bit+0xd8/0x120 [ 228.780930][ T8352] should_fail+0x6fb/0x860 [ 228.785378][ T8352] ? setup_fault_attr+0x3d0/0x3d0 [ 228.790398][ T8352] ? ext4_statfs+0x583/0xbc0 [ 228.794981][ T8352] ? kcalloc+0x2b/0x50 [ 228.799041][ T8352] should_failslab+0x5/0x20 [ 228.803541][ T8352] __kmalloc+0x5f/0x2d0 [ 228.807693][ T8352] kcalloc+0x2b/0x50 [ 228.811576][ T8352] ovl_fill_super+0x1e70/0x4df0 [ 228.816423][ T8352] ? ovl_mount+0x30/0x30 [ 228.820666][ T8352] ? up_read+0x10/0x10 [ 228.824706][ T8352] ? sget+0x4cb/0x4e0 [ 228.828657][ T8352] ? free_anon_bdev+0x20/0x20 [ 228.833324][ T8352] ? ovl_mount+0x30/0x30 [ 228.837572][ T8352] mount_nodev+0x52/0xe0 [ 228.841791][ T8352] legacy_get_tree+0xde/0x170 [ 228.846438][ T8352] ? fuse_emit+0x7d0/0x7d0 [ 228.850844][ T8352] vfs_get_tree+0x85/0x260 [ 228.855232][ T8352] do_mount+0x1a15/0x28c0 [ 228.859550][ T8352] ? copy_mount_string+0x30/0x30 [ 228.864463][ T8352] ? page_fault+0x2f/0x40 [ 228.868771][ T8352] ? copy_mount_options+0x1e8/0x320 [ 228.873939][ T8352] ? copy_mount_options+0x293/0x320 [ 228.879112][ T8352] ksys_mount+0xc2/0xf0 [ 228.883249][ T8352] __x64_sys_mount+0xb1/0xc0 [ 228.887829][ T8352] do_syscall_64+0xcb/0x150 [ 228.892301][ T8352] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 228.898183][ T8352] RIP: 0033:0x45c829 [ 228.902068][ T8352] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:38 executing program 3 (fault-call:3 fault-nth:63): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 228.921654][ T8352] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 228.930040][ T8352] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 228.938003][ T8352] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 228.945972][ T8352] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 228.953925][ T8352] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 228.961881][ T8352] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 228.983782][ T3082] usb 1-1: new high-speed USB device number 61 using dummy_hcd [ 229.073789][ T3082] usb 1-1: Using ep0 maxpacket: 16 09:43:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x2046, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x32, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 229.193841][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 229.207467][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 229.217815][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 229.221486][ T8380] FAULT_INJECTION: forcing a failure. [ 229.221486][ T8380] name failslab, interval 1, probability 0, space 0, times 0 [ 229.236464][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 229.247082][ T8380] CPU: 0 PID: 8380 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 229.255726][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 229.265517][ T8380] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.265522][ T8380] Call Trace: [ 229.265538][ T8380] dump_stack+0x14a/0x1ce [ 229.265547][ T8380] ? devkmsg_release+0x11c/0x11c [ 229.265554][ T8380] ? show_regs_print_info+0x12/0x12 [ 229.265564][ T8380] should_fail+0x6fb/0x860 [ 229.265572][ T8380] ? setup_fault_attr+0x3d0/0x3d0 [ 229.265585][ T8380] ? kcalloc+0x2b/0x50 [ 229.279550][ T3082] usb 1-1: config 0 descriptor?? [ 229.283613][ T8380] should_failslab+0x5/0x20 [ 229.283626][ T8380] __kmalloc+0x5f/0x2d0 [ 229.328216][ T8380] ? kcalloc+0x2b/0x50 [ 229.332257][ T8380] kcalloc+0x2b/0x50 [ 229.336142][ T8380] ovl_fill_super+0x1eb3/0x4df0 [ 229.340966][ T8380] ? ovl_mount+0x30/0x30 [ 229.345190][ T8380] ? up_read+0x10/0x10 [ 229.349232][ T8380] ? sget+0x4cb/0x4e0 [ 229.353194][ T8380] ? free_anon_bdev+0x20/0x20 [ 229.357866][ T8380] ? ovl_mount+0x30/0x30 [ 229.362082][ T8380] mount_nodev+0x52/0xe0 [ 229.366316][ T8380] legacy_get_tree+0xde/0x170 [ 229.370983][ T8380] ? fuse_emit+0x7d0/0x7d0 [ 229.375384][ T8380] vfs_get_tree+0x85/0x260 [ 229.379774][ T8380] do_mount+0x1a15/0x28c0 [ 229.384087][ T8380] ? copy_mount_string+0x30/0x30 [ 229.389030][ T8380] ? page_fault+0x2f/0x40 [ 229.393331][ T8380] ? copy_mount_options+0x1e8/0x320 [ 229.398502][ T8380] ? copy_mount_options+0x293/0x320 [ 229.403678][ T8380] ksys_mount+0xc2/0xf0 [ 229.407816][ T8380] __x64_sys_mount+0xb1/0xc0 [ 229.413361][ T8380] do_syscall_64+0xcb/0x150 [ 229.417859][ T8380] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 229.423731][ T8380] RIP: 0033:0x45c829 [ 229.427601][ T8380] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 229.447527][ T8380] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 229.455913][ T8380] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 229.463938][ T8380] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 229.471887][ T8380] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 229.479832][ T8380] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:39 executing program 3 (fault-call:3 fault-nth:64): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 229.488218][ T8380] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:39 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x42c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:39 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x33, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 229.526045][ T8391] FAULT_INJECTION: forcing a failure. [ 229.526045][ T8391] name failslab, interval 1, probability 0, space 0, times 0 [ 229.551774][ T8391] CPU: 0 PID: 8391 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 229.561904][ T8391] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 229.571938][ T8391] Call Trace: [ 229.575207][ T8391] dump_stack+0x14a/0x1ce [ 229.579529][ T8391] ? devkmsg_release+0x11c/0x11c [ 229.584449][ T8391] ? show_regs_print_info+0x12/0x12 [ 229.589636][ T8391] should_fail+0x6fb/0x860 [ 229.594051][ T8391] ? setup_fault_attr+0x3d0/0x3d0 [ 229.599054][ T8391] ? security_inode_alloc+0x32/0x1f0 [ 229.604313][ T8391] should_failslab+0x5/0x20 [ 229.608812][ T8391] kmem_cache_alloc+0x36/0x260 [ 229.613564][ T8391] ? from_kuid_munged+0x3b0/0x3b0 [ 229.618576][ T8391] security_inode_alloc+0x32/0x1f0 [ 229.623662][ T8391] inode_init_always+0x37c/0x800 [ 229.628571][ T8391] ? ovl_lookup_inode+0x120/0x120 [ 229.634261][ T8391] iget5_locked+0xb9/0x3e0 [ 229.638651][ T8391] ? ovl_get_trap_inode+0x190/0x190 [ 229.643822][ T8391] ovl_get_trap_inode+0x88/0x190 [ 229.648732][ T8391] ovl_fill_super+0x240e/0x4df0 [ 229.653557][ T8391] ? ovl_mount+0x30/0x30 [ 229.657774][ T8391] ? up_read+0x10/0x10 [ 229.661815][ T8391] ? sget+0x4cb/0x4e0 [ 229.665773][ T8391] ? free_anon_bdev+0x20/0x20 [ 229.670423][ T8391] ? ovl_mount+0x30/0x30 [ 229.674653][ T8391] mount_nodev+0x52/0xe0 [ 229.678885][ T8391] legacy_get_tree+0xde/0x170 [ 229.683548][ T8391] ? fuse_emit+0x7d0/0x7d0 [ 229.687938][ T8391] vfs_get_tree+0x85/0x260 [ 229.692326][ T8391] do_mount+0x1a15/0x28c0 [ 229.696628][ T8391] ? copy_mount_string+0x30/0x30 [ 229.701540][ T8391] ? page_fault+0x2f/0x40 [ 229.705859][ T8391] ? copy_mount_options+0x1e8/0x320 [ 229.711030][ T8391] ? copy_mount_options+0x293/0x320 [ 229.716197][ T8391] ksys_mount+0xc2/0xf0 [ 229.720325][ T8391] __x64_sys_mount+0xb1/0xc0 [ 229.724885][ T8391] do_syscall_64+0xcb/0x150 [ 229.729390][ T8391] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 229.735253][ T8391] RIP: 0033:0x45c829 [ 229.739139][ T8391] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 229.758827][ T8391] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 229.767226][ T8391] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 229.775171][ T8391] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 229.783114][ T8391] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 229.791069][ T8391] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 229.799028][ T8391] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 230.083718][ T3082] usbhid 1-1:0.0: can't add hid device: -71 [ 230.089777][ T3082] usbhid: probe of 1-1:0.0 failed with error -71 [ 230.098605][ T3082] usb 1-1: USB disconnect, device number 61 09:43:40 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:40 executing program 3 (fault-call:3 fault-nth:65): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:40 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x34, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:40 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x20a3, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xa00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x34, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 230.570993][ T8409] FAULT_INJECTION: forcing a failure. [ 230.570993][ T8409] name failslab, interval 1, probability 0, space 0, times 0 [ 230.589594][ T8409] CPU: 1 PID: 8409 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 230.600178][ T8409] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.610279][ T8409] Call Trace: [ 230.613586][ T8409] dump_stack+0x14a/0x1ce [ 230.617898][ T8409] ? devkmsg_release+0x11c/0x11c [ 230.622814][ T8409] ? show_regs_print_info+0x12/0x12 [ 230.627992][ T8409] ? find_inode+0x40d/0x4c0 [ 230.632478][ T8409] should_fail+0x6fb/0x860 [ 230.636921][ T8409] ? setup_fault_attr+0x3d0/0x3d0 [ 230.641960][ T8409] ? alloc_vfsmnt+0x24/0x470 [ 230.646578][ T8409] should_failslab+0x5/0x20 [ 230.651073][ T8409] kmem_cache_alloc+0x36/0x260 [ 230.655904][ T8409] ? kmem_cache_alloc+0x1d5/0x260 [ 230.660911][ T8409] alloc_vfsmnt+0x24/0x470 [ 230.665311][ T8409] clone_mnt+0x68/0xca0 [ 230.669517][ T8409] clone_private_mount+0x8d/0xe0 [ 230.674435][ T8409] ovl_fill_super+0x247d/0x4df0 [ 230.679470][ T8409] ? ovl_mount+0x30/0x30 [ 230.683723][ T8409] ? up_read+0x10/0x10 [ 230.687778][ T8409] ? sget+0x4cb/0x4e0 [ 230.691743][ T8409] ? free_anon_bdev+0x20/0x20 [ 230.696400][ T8409] ? ovl_mount+0x30/0x30 [ 230.700620][ T8409] mount_nodev+0x52/0xe0 [ 230.704847][ T8409] legacy_get_tree+0xde/0x170 [ 230.709504][ T8409] ? fuse_emit+0x7d0/0x7d0 [ 230.713944][ T8409] vfs_get_tree+0x85/0x260 [ 230.718350][ T8409] do_mount+0x1a15/0x28c0 [ 230.722837][ T8409] ? copy_mount_string+0x30/0x30 [ 230.727754][ T8409] ? page_fault+0x2f/0x40 [ 230.732206][ T8409] ? copy_mount_options+0x1e8/0x320 [ 230.737662][ T8409] ? copy_mount_options+0x293/0x320 [ 230.742892][ T8409] ksys_mount+0xc2/0xf0 [ 230.747125][ T8409] __x64_sys_mount+0xb1/0xc0 [ 230.751703][ T8409] do_syscall_64+0xcb/0x150 [ 230.756197][ T8409] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 230.762075][ T8409] RIP: 0033:0x45c829 [ 230.766075][ T8409] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 230.785873][ T8409] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 230.794443][ T8409] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 230.802398][ T8409] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 230.810795][ T8409] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x35, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:40 executing program 3 (fault-call:3 fault-nth:66): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 230.818771][ T8409] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 230.826815][ T8409] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 230.842309][ T8409] overlayfs: failed to clone lowerpath [ 230.925647][ T8431] FAULT_INJECTION: forcing a failure. [ 230.925647][ T8431] name failslab, interval 1, probability 0, space 0, times 0 [ 230.941053][ T8431] CPU: 1 PID: 8431 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 230.951229][ T8431] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 230.961820][ T8431] Call Trace: [ 230.965104][ T8431] dump_stack+0x14a/0x1ce [ 230.969607][ T8431] ? devkmsg_release+0x11c/0x11c [ 230.974526][ T8431] ? show_regs_print_info+0x12/0x12 [ 230.979716][ T8431] ? find_inode+0x40d/0x4c0 [ 230.984242][ T8431] should_fail+0x6fb/0x860 [ 230.988653][ T8431] ? setup_fault_attr+0x3d0/0x3d0 [ 230.993671][ T8431] ? alloc_vfsmnt+0x24/0x470 [ 230.999460][ T8431] should_failslab+0x5/0x20 [ 231.003950][ T8431] kmem_cache_alloc+0x36/0x260 [ 231.008692][ T8431] ? kmem_cache_alloc+0x1d5/0x260 [ 231.013699][ T8431] alloc_vfsmnt+0x24/0x470 [ 231.018110][ T8431] clone_mnt+0x68/0xca0 [ 231.022257][ T8431] clone_private_mount+0x8d/0xe0 [ 231.027280][ T8431] ovl_fill_super+0x247d/0x4df0 [ 231.032119][ T8431] ? ovl_mount+0x30/0x30 [ 231.036356][ T8431] ? up_read+0x10/0x10 [ 231.040410][ T8431] ? sget+0x4cb/0x4e0 [ 231.044378][ T8431] ? free_anon_bdev+0x20/0x20 [ 231.049121][ T8431] ? ovl_mount+0x30/0x30 [ 231.053468][ T8431] mount_nodev+0x52/0xe0 [ 231.057693][ T8431] legacy_get_tree+0xde/0x170 [ 231.062389][ T8431] ? fuse_emit+0x7d0/0x7d0 [ 231.067478][ T8431] vfs_get_tree+0x85/0x260 [ 231.071878][ T8431] do_mount+0x1a15/0x28c0 [ 231.076194][ T8431] ? copy_mount_string+0x30/0x30 [ 231.081327][ T8431] ? page_fault+0x2f/0x40 [ 231.085691][ T8431] ? copy_mount_options+0x1e8/0x320 [ 231.090910][ T8431] ? copy_mount_options+0x293/0x320 [ 231.096698][ T8431] ksys_mount+0xc2/0xf0 [ 231.100883][ T8431] __x64_sys_mount+0xb1/0xc0 [ 231.105458][ T8431] do_syscall_64+0xcb/0x150 [ 231.109947][ T8431] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 231.115819][ T8431] RIP: 0033:0x45c829 [ 231.119699][ T8431] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 231.139481][ T8431] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 231.147874][ T8431] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 231.155915][ T8431] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 231.163875][ T8431] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x104a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 231.171881][ T8431] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 231.179926][ T8431] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 231.193806][ T3082] usb 1-1: new high-speed USB device number 62 using dummy_hcd 09:43:40 executing program 3 (fault-call:3 fault-nth:67): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 231.223479][ T8431] overlayfs: failed to clone lowerpath 09:43:40 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x20a4, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 231.313741][ T3082] usb 1-1: Using ep0 maxpacket: 16 09:43:40 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x35, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 231.370243][ T8441] FAULT_INJECTION: forcing a failure. [ 231.370243][ T8441] name failslab, interval 1, probability 0, space 0, times 0 [ 231.383781][ T8441] CPU: 0 PID: 8441 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 231.394294][ T8441] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 231.404598][ T8441] Call Trace: [ 231.407880][ T8441] dump_stack+0x14a/0x1ce [ 231.412199][ T8441] ? devkmsg_release+0x11c/0x11c [ 231.417355][ T8441] ? show_regs_print_info+0x12/0x12 [ 231.422542][ T8441] ? find_next_bit+0xd8/0x120 [ 231.427274][ T8441] ? cpumask_next+0xc/0x20 [ 231.431684][ T8441] ? pcpu_alloc+0xd17/0x11f0 [ 231.436259][ T8441] should_fail+0x6fb/0x860 [ 231.440860][ T8441] ? setup_fault_attr+0x3d0/0x3d0 [ 231.446048][ T8441] ? memset+0x1f/0x40 [ 231.450041][ T8441] ? alloc_vfsmnt+0x349/0x470 [ 231.454820][ T8441] ? kzalloc+0x1b/0x30 [ 231.458872][ T8441] should_failslab+0x5/0x20 [ 231.463525][ T8441] __kmalloc+0x5f/0x2d0 [ 231.467677][ T8441] kzalloc+0x1b/0x30 [ 231.471694][ T8441] ovl_alloc_entry+0x1a/0x70 [ 231.476420][ T8441] ovl_fill_super+0x401f/0x4df0 [ 231.481407][ T8441] ? ovl_mount+0x30/0x30 [ 231.485825][ T8441] ? up_read+0x10/0x10 [ 231.489897][ T8441] ? sget+0x4cb/0x4e0 [ 231.494005][ T8441] ? free_anon_bdev+0x20/0x20 [ 231.498858][ T8441] ? ovl_mount+0x30/0x30 [ 231.503277][ T8441] mount_nodev+0x52/0xe0 [ 231.507653][ T8441] legacy_get_tree+0xde/0x170 [ 231.512535][ T8441] ? fuse_emit+0x7d0/0x7d0 [ 231.517160][ T8441] vfs_get_tree+0x85/0x260 [ 231.522214][ T8441] do_mount+0x1a15/0x28c0 [ 231.526538][ T8441] ? copy_mount_string+0x30/0x30 [ 231.531659][ T8441] ? page_fault+0x2f/0x40 [ 231.536371][ T8441] ? copy_mount_options+0x1e8/0x320 [ 231.541894][ T8441] ? copy_mount_options+0x293/0x320 [ 231.547632][ T8441] ksys_mount+0xc2/0xf0 [ 231.552012][ T8441] __x64_sys_mount+0xb1/0xc0 [ 231.558198][ T8441] do_syscall_64+0xcb/0x150 [ 231.563326][ T8441] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 231.569419][ T8441] RIP: 0033:0x45c829 [ 231.573370][ T8441] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 231.593922][ T8441] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 231.602584][ T8441] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 231.610736][ T8441] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 231.619164][ T8441] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 231.627122][ T8441] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 231.635378][ T8441] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 231.693649][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 231.705158][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 231.716609][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 231.729961][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 231.739876][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 231.749150][ T3082] usb 1-1: config 0 descriptor?? [ 232.483573][ T3082] usbhid 1-1:0.0: can't add hid device: -71 [ 232.490061][ T3082] usbhid: probe of 1-1:0.0 failed with error -71 [ 232.498718][ T3082] usb 1-1: USB disconnect, device number 62 09:43:42 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:42 executing program 3 (fault-call:3 fault-nth:68): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x36, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:42 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:42 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x20a5, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:42 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x36, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x37, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 232.962047][ T8468] FAULT_INJECTION: forcing a failure. [ 232.962047][ T8468] name failslab, interval 1, probability 0, space 0, times 0 [ 232.977829][ T8468] CPU: 1 PID: 8468 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 232.987918][ T8468] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 232.997976][ T8468] Call Trace: [ 233.001273][ T8468] dump_stack+0x14a/0x1ce [ 233.005635][ T8468] ? devkmsg_release+0x11c/0x11c [ 233.010586][ T8468] ? show_regs_print_info+0x12/0x12 [ 233.015783][ T8468] should_fail+0x6fb/0x860 [ 233.020356][ T8468] ? setup_fault_attr+0x3d0/0x3d0 [ 233.025480][ T8468] ? ovl_lookup_inode+0x120/0x120 [ 233.030660][ T8468] ? inode_insert5+0x570/0x570 [ 233.035460][ T8468] ? ovl_alloc_inode+0x1b/0x90 [ 233.040246][ T8468] should_failslab+0x5/0x20 [ 233.044734][ T8468] kmem_cache_alloc+0x36/0x260 [ 233.049478][ T8468] ? ovl_free_fs+0x640/0x640 [ 233.054178][ T8468] ovl_alloc_inode+0x1b/0x90 [ 233.058922][ T8468] ? ovl_free_fs+0x640/0x640 [ 233.063494][ T8468] new_inode_pseudo+0x64/0x240 [ 233.068327][ T8468] new_inode+0x25/0x1d0 [ 233.072465][ T8468] ? dput+0x4ed/0x5e0 [ 233.076424][ T8468] ? dget_parent+0x76/0x1d0 [ 233.080921][ T8468] ovl_new_inode+0x20/0x340 [ 233.085406][ T8468] ovl_fill_super+0x3647/0x4df0 [ 233.090238][ T8468] ? ovl_mount+0x30/0x30 [ 233.094466][ T8468] ? up_read+0x10/0x10 [ 233.098519][ T8468] ? sget+0x4cb/0x4e0 [ 233.102495][ T8468] ? free_anon_bdev+0x20/0x20 [ 233.107389][ T8468] ? ovl_mount+0x30/0x30 [ 233.111771][ T8468] mount_nodev+0x52/0xe0 [ 233.115998][ T8468] legacy_get_tree+0xde/0x170 [ 233.120770][ T8468] ? fuse_emit+0x7d0/0x7d0 [ 233.125166][ T8468] vfs_get_tree+0x85/0x260 [ 233.129568][ T8468] do_mount+0x1a15/0x28c0 [ 233.133928][ T8468] ? copy_mount_string+0x30/0x30 [ 233.138844][ T8468] ? page_fault+0x2f/0x40 [ 233.143159][ T8468] ? copy_mount_options+0x1e8/0x320 [ 233.148341][ T8468] ? copy_mount_options+0x293/0x320 [ 233.153652][ T8468] ksys_mount+0xc2/0xf0 [ 233.157787][ T8468] __x64_sys_mount+0xb1/0xc0 [ 233.162360][ T8468] do_syscall_64+0xcb/0x150 [ 233.167018][ T8468] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 233.172889][ T8468] RIP: 0033:0x45c829 [ 233.176762][ T8468] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 233.196437][ T8468] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 233.204911][ T8468] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:42 executing program 3 (fault-call:3 fault-nth:69): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 233.212920][ T8468] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 233.220934][ T8468] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 233.228896][ T8468] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 233.237025][ T8468] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 233.355096][ T8489] FAULT_INJECTION: forcing a failure. [ 233.355096][ T8489] name failslab, interval 1, probability 0, space 0, times 0 [ 233.367817][ T8489] CPU: 1 PID: 8489 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 233.378604][ T8489] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.389077][ T8489] Call Trace: [ 233.392369][ T8489] dump_stack+0x14a/0x1ce [ 233.393422][ T3969] usb 1-1: new high-speed USB device number 63 using dummy_hcd [ 233.396696][ T8489] ? devkmsg_release+0x11c/0x11c [ 233.396706][ T8489] ? show_regs_print_info+0x12/0x12 [ 233.396716][ T8489] should_fail+0x6fb/0x860 [ 233.396729][ T8489] ? setup_fault_attr+0x3d0/0x3d0 [ 233.424712][ T8489] ? make_kgid+0x228/0x3a0 [ 233.429442][ T8489] ? security_inode_alloc+0x32/0x1f0 [ 233.434935][ T8489] should_failslab+0x5/0x20 [ 233.439560][ T8489] kmem_cache_alloc+0x36/0x260 [ 233.444487][ T8489] security_inode_alloc+0x32/0x1f0 [ 233.449738][ T8489] inode_init_always+0x37c/0x800 [ 233.454671][ T8489] ? ovl_free_fs+0x640/0x640 [ 233.459241][ T8489] new_inode_pseudo+0x7b/0x240 [ 233.464431][ T8489] new_inode+0x25/0x1d0 [ 233.468761][ T8489] ? dput+0x4ed/0x5e0 [ 233.472997][ T8489] ? dget_parent+0x76/0x1d0 [ 233.477510][ T8489] ovl_new_inode+0x20/0x340 [ 233.482112][ T8489] ovl_fill_super+0x3647/0x4df0 [ 233.487017][ T8489] ? ovl_mount+0x30/0x30 [ 233.491414][ T8489] ? up_read+0x10/0x10 [ 233.493476][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 233.495678][ T8489] ? sget+0x4cb/0x4e0 [ 233.495687][ T8489] ? free_anon_bdev+0x20/0x20 [ 233.495694][ T8489] ? ovl_mount+0x30/0x30 [ 233.495700][ T8489] mount_nodev+0x52/0xe0 [ 233.495714][ T8489] legacy_get_tree+0xde/0x170 [ 233.523582][ T8489] ? fuse_emit+0x7d0/0x7d0 [ 233.528120][ T8489] vfs_get_tree+0x85/0x260 [ 233.532526][ T8489] do_mount+0x1a15/0x28c0 [ 233.536847][ T8489] ? copy_mount_string+0x30/0x30 [ 233.542099][ T8489] ? page_fault+0x2f/0x40 [ 233.546544][ T8489] ? copy_mount_options+0x1e8/0x320 [ 233.551769][ T8489] ? copy_mount_options+0x293/0x320 [ 233.557025][ T8489] ksys_mount+0xc2/0xf0 [ 233.561183][ T8489] __x64_sys_mount+0xb1/0xc0 [ 233.565813][ T8489] do_syscall_64+0xcb/0x150 [ 233.570452][ T8489] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 233.576708][ T8489] RIP: 0033:0x45c829 [ 233.580609][ T8489] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:43 executing program 3 (fault-call:3 fault-nth:70): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 233.600827][ T8489] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 233.609658][ T8489] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 233.613520][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 233.617791][ T8489] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 233.617796][ T8489] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 233.617800][ T8489] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:43 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x37, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 233.617805][ T8489] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 233.664120][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 233.687121][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 233.702041][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 233.712047][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 233.721086][ T3969] usb 1-1: config 0 descriptor?? [ 233.749846][ T8495] FAULT_INJECTION: forcing a failure. [ 233.749846][ T8495] name failslab, interval 1, probability 0, space 0, times 0 [ 233.763837][ T8495] CPU: 1 PID: 8495 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 233.774343][ T8495] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 233.784790][ T8495] Call Trace: [ 233.788087][ T8495] dump_stack+0x14a/0x1ce [ 233.792574][ T8495] ? devkmsg_release+0x11c/0x11c [ 233.797526][ T8495] ? show_regs_print_info+0x12/0x12 [ 233.802862][ T8495] should_fail+0x6fb/0x860 [ 233.807453][ T8495] ? setup_fault_attr+0x3d0/0x3d0 [ 233.812568][ T8495] ? _raw_spin_lock+0xa1/0x170 [ 233.818186][ T8495] ? _raw_spin_trylock_bh+0x190/0x190 [ 233.823545][ T8495] ? __d_alloc+0x2a/0x6b0 [ 233.827870][ T8495] should_failslab+0x5/0x20 [ 233.832372][ T8495] kmem_cache_alloc+0x36/0x260 [ 233.838079][ T8495] ? _raw_spin_unlock+0x5/0x20 [ 233.843308][ T8495] __d_alloc+0x2a/0x6b0 [ 233.847468][ T8495] d_make_root+0x46/0xd0 [ 233.851893][ T8495] ovl_fill_super+0x364f/0x4df0 [ 233.856969][ T8495] ? ovl_mount+0x30/0x30 [ 233.861408][ T8495] ? up_read+0x10/0x10 [ 233.865654][ T8495] ? sget+0x4cb/0x4e0 [ 233.869788][ T8495] ? free_anon_bdev+0x20/0x20 [ 233.874451][ T8495] ? ovl_mount+0x30/0x30 [ 233.878676][ T8495] mount_nodev+0x52/0xe0 [ 233.882906][ T8495] legacy_get_tree+0xde/0x170 [ 233.887565][ T8495] ? fuse_emit+0x7d0/0x7d0 [ 233.892021][ T8495] vfs_get_tree+0x85/0x260 [ 233.896507][ T8495] do_mount+0x1a15/0x28c0 [ 233.900906][ T8495] ? copy_mount_string+0x30/0x30 [ 233.905827][ T8495] ? page_fault+0x2f/0x40 [ 233.910140][ T8495] ? copy_mount_options+0x1e8/0x320 [ 233.915321][ T8495] ? copy_mount_options+0x293/0x320 [ 233.920618][ T8495] ksys_mount+0xc2/0xf0 [ 233.924760][ T8495] __x64_sys_mount+0xb1/0xc0 [ 233.929516][ T8495] do_syscall_64+0xcb/0x150 [ 233.934047][ T8495] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 233.940155][ T8495] RIP: 0033:0x45c829 [ 233.944175][ T8495] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 233.963938][ T8495] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 233.973853][ T8495] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 233.982421][ T8495] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 233.990552][ T8495] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x38, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:43 executing program 3 (fault-call:3 fault-nth:71): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 233.998555][ T8495] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 234.006524][ T8495] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 234.131860][ T8506] FAULT_INJECTION: forcing a failure. [ 234.131860][ T8506] name failslab, interval 1, probability 0, space 0, times 0 [ 234.145887][ T8506] CPU: 1 PID: 8506 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 234.156357][ T8506] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 234.167182][ T8506] Call Trace: [ 234.170494][ T8506] dump_stack+0x14a/0x1ce [ 234.175017][ T8506] ? devkmsg_release+0x11c/0x11c [ 234.180350][ T8506] ? show_regs_print_info+0x12/0x12 [ 234.185637][ T8506] should_fail+0x6fb/0x860 [ 234.190044][ T8506] ? setup_fault_attr+0x3d0/0x3d0 [ 234.195216][ T8506] ? _raw_spin_lock+0xa1/0x170 [ 234.200089][ T8506] ? _raw_spin_trylock_bh+0x190/0x190 [ 234.205618][ T8506] ? __d_alloc+0x2a/0x6b0 [ 234.210019][ T8506] should_failslab+0x5/0x20 [ 234.214774][ T8506] kmem_cache_alloc+0x36/0x260 [ 234.219535][ T8506] ? _raw_spin_unlock+0x5/0x20 [ 234.224451][ T8506] __d_alloc+0x2a/0x6b0 [ 234.228724][ T8506] d_make_root+0x46/0xd0 [ 234.233086][ T8506] ovl_fill_super+0x364f/0x4df0 [ 234.238118][ T8506] ? ovl_mount+0x30/0x30 [ 234.242348][ T8506] ? up_read+0x10/0x10 [ 234.246630][ T8506] ? sget+0x4cb/0x4e0 [ 234.250596][ T8506] ? free_anon_bdev+0x20/0x20 [ 234.255398][ T8506] ? ovl_mount+0x30/0x30 [ 234.259769][ T8506] mount_nodev+0x52/0xe0 [ 234.264005][ T8506] legacy_get_tree+0xde/0x170 [ 234.268676][ T8506] ? fuse_emit+0x7d0/0x7d0 [ 234.273378][ T8506] vfs_get_tree+0x85/0x260 [ 234.277792][ T8506] do_mount+0x1a15/0x28c0 [ 234.282509][ T8506] ? copy_mount_string+0x30/0x30 [ 234.287433][ T8506] ? page_fault+0x2f/0x40 [ 234.291870][ T8506] ? copy_mount_options+0x1e8/0x320 [ 234.297108][ T8506] ? copy_mount_options+0x293/0x320 [ 234.302346][ T8506] ksys_mount+0xc2/0xf0 [ 234.306602][ T8506] __x64_sys_mount+0xb1/0xc0 [ 234.311227][ T8506] do_syscall_64+0xcb/0x150 [ 234.315739][ T8506] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 234.321628][ T8506] RIP: 0033:0x45c829 [ 234.325507][ T8506] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 234.345095][ T8506] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 234.353752][ T8506] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 234.361718][ T8506] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 234.370537][ T8506] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 234.378665][ T8506] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 234.387209][ T8506] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 234.523354][ T3969] usbhid 1-1:0.0: can't add hid device: -71 [ 234.529978][ T3969] usbhid: probe of 1-1:0.0 failed with error -71 [ 234.539062][ T3969] usb 1-1: USB disconnect, device number 63 09:43:44 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:44 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26cf, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:44 executing program 3 (fault-call:3 fault-nth:72): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:44 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1a00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:44 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x38, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:44 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x39, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:44 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 234.998359][ T8520] FAULT_INJECTION: forcing a failure. [ 234.998359][ T8520] name failslab, interval 1, probability 0, space 0, times 0 [ 235.047448][ T8520] CPU: 0 PID: 8520 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 235.057858][ T8520] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.068181][ T8520] Call Trace: [ 235.071612][ T8520] dump_stack+0x14a/0x1ce [ 235.075979][ T8520] ? devkmsg_release+0x11c/0x11c [ 235.080947][ T8520] ? show_regs_print_info+0x12/0x12 [ 235.086131][ T8520] ? ext4_xattr_get+0x5a9/0x810 [ 235.091008][ T8520] ? _raw_spin_lock+0xa1/0x170 [ 235.095757][ T8520] ? _raw_spin_trylock_bh+0x190/0x190 [ 235.101288][ T8520] should_fail+0x6fb/0x860 [ 235.105696][ T8520] ? setup_fault_attr+0x3d0/0x3d0 [ 235.110706][ T8520] ? inode_doinit_use_xattr+0x58/0x3f0 [ 235.116235][ T8520] should_failslab+0x5/0x20 [ 235.120725][ T8520] kmem_cache_alloc_trace+0x39/0x280 [ 235.126326][ T8520] ? blk_crypto_keyslot_evict+0x160/0x160 [ 235.132029][ T8520] inode_doinit_use_xattr+0x58/0x3f0 [ 235.137311][ T8520] inode_doinit_with_dentry+0x8da/0x10e0 [ 235.143058][ T8520] ? __vfs_getxattr+0x630/0x6e0 [ 235.147985][ T8520] ? sb_finish_set_opts+0x7e0/0x7e0 [ 235.153219][ T8520] ? mutex_lock+0xa6/0x110 [ 235.158057][ T8520] sb_finish_set_opts+0x4f0/0x7e0 [ 235.163121][ T8520] selinux_set_mnt_opts+0x175b/0x2460 [ 235.168663][ T8520] ? delayed_superblock_init+0x20/0x20 [ 235.174150][ T8520] ? ovl_mount+0x30/0x30 [ 235.178464][ T8520] security_sb_set_mnt_opts+0x7a/0xe0 [ 235.183818][ T8520] vfs_get_tree+0x146/0x260 [ 235.188329][ T8520] do_mount+0x1a15/0x28c0 [ 235.192643][ T8520] ? copy_mount_string+0x30/0x30 [ 235.197788][ T8520] ? page_fault+0x2f/0x40 [ 235.202104][ T8520] ? copy_mount_options+0x1e8/0x320 [ 235.207373][ T8520] ? copy_mount_options+0x293/0x320 [ 235.212557][ T8520] ksys_mount+0xc2/0xf0 [ 235.216718][ T8520] __x64_sys_mount+0xb1/0xc0 [ 235.221411][ T8520] do_syscall_64+0xcb/0x150 [ 235.225902][ T8520] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 235.231778][ T8520] RIP: 0033:0x45c829 [ 235.235657][ T8520] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 235.255422][ T8520] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 235.263817][ T8520] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 235.271813][ T8520] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 235.279781][ T8520] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 235.287738][ T8520] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:44 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26d1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:44 executing program 3 (fault-call:3 fault-nth:73): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 235.295744][ T8520] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 235.453113][ T8542] FAULT_INJECTION: forcing a failure. [ 235.453113][ T8542] name failslab, interval 1, probability 0, space 0, times 0 [ 235.467460][ T8542] CPU: 0 PID: 8542 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 235.478223][ T8542] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.488895][ T8542] Call Trace: [ 235.492509][ T8542] dump_stack+0x14a/0x1ce [ 235.497387][ T8542] ? devkmsg_release+0x11c/0x11c [ 235.502399][ T8542] ? show_regs_print_info+0x12/0x12 [ 235.507713][ T8542] ? do_syscall_64+0xcb/0x150 [ 235.512642][ T8542] should_fail+0x6fb/0x860 [ 235.517190][ T8542] ? setup_fault_attr+0x3d0/0x3d0 [ 235.522451][ T8542] ? __vfs_getxattr+0x630/0x6e0 [ 235.527724][ T8542] ? ksys_mount+0xc2/0xf0 [ 235.532381][ T8542] ? security_context_to_sid_core+0xc0/0x710 [ 235.538679][ T8542] should_failslab+0x5/0x20 [ 235.543437][ T8542] __kmalloc_track_caller+0x5d/0x2c0 [ 235.548882][ T8542] ? vfs_getxattr_alloc+0x570/0x570 [ 235.554112][ T8542] kmemdup_nul+0x27/0xa0 [ 235.558360][ T8542] security_context_to_sid_core+0xc0/0x710 [ 235.564375][ T8542] ? ovl_xattr_get+0xd5/0xf0 [ 235.569292][ T8542] ? security_context_to_sid+0x50/0x50 [ 235.574783][ T8542] ? vfs_getxattr_alloc+0x570/0x570 [ 235.580396][ T8542] ? inode_doinit_use_xattr+0x58/0x3f0 [ 235.585892][ T8542] security_context_to_sid_default+0x3a/0x50 [ 235.591863][ T8542] inode_doinit_use_xattr+0x1c4/0x3f0 [ 235.597360][ T8542] inode_doinit_with_dentry+0x8da/0x10e0 [ 235.603177][ T8542] ? __vfs_getxattr+0x630/0x6e0 [ 235.608014][ T8542] ? sb_finish_set_opts+0x7e0/0x7e0 [ 235.613313][ T8542] ? mutex_lock+0xa6/0x110 [ 235.617717][ T8542] sb_finish_set_opts+0x4f0/0x7e0 [ 235.622735][ T8542] selinux_set_mnt_opts+0x175b/0x2460 [ 235.628149][ T8542] ? delayed_superblock_init+0x20/0x20 [ 235.633595][ T8542] ? ovl_mount+0x30/0x30 [ 235.638102][ T8542] security_sb_set_mnt_opts+0x7a/0xe0 [ 235.643747][ T8542] vfs_get_tree+0x146/0x260 [ 235.648629][ T8542] do_mount+0x1a15/0x28c0 [ 235.652994][ T8542] ? copy_mount_string+0x30/0x30 [ 235.658105][ T8542] ? page_fault+0x2f/0x40 [ 235.662479][ T8542] ? copy_mount_options+0x1e8/0x320 [ 235.667801][ T8542] ? copy_mount_options+0x293/0x320 [ 235.674504][ T8542] ksys_mount+0xc2/0xf0 [ 235.679315][ T8542] __x64_sys_mount+0xb1/0xc0 [ 235.684849][ T8542] do_syscall_64+0xcb/0x150 [ 235.689342][ T8542] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 235.696152][ T8542] RIP: 0033:0x45c829 [ 235.700189][ T8542] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 235.725623][ T8542] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 235.735536][ T8542] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 235.743962][ T8542] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:45 executing program 3 (fault-call:3 fault-nth:74): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 235.752570][ T8542] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 235.760821][ T8542] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 235.769269][ T8542] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 235.777785][ T3969] usb 1-1: new high-speed USB device number 64 using dummy_hcd [ 235.789587][ T8542] SELinux: inode_doinit_use_xattr: context_to_sid(system_u:object_r:unlabeled_t:s0) returned 12 for dev=overlay ino=15825 09:43:45 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26af, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 235.851712][ T8553] FAULT_INJECTION: forcing a failure. [ 235.851712][ T8553] name failslab, interval 1, probability 0, space 0, times 0 [ 235.865577][ T8553] CPU: 0 PID: 8553 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 235.875773][ T8553] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 235.886288][ T8553] Call Trace: [ 235.889657][ T8553] dump_stack+0x14a/0x1ce [ 235.894039][ T8553] ? devkmsg_release+0x11c/0x11c [ 235.899342][ T8553] ? stack_trace_save+0x123/0x1f0 [ 235.904480][ T8553] ? show_regs_print_info+0x12/0x12 [ 235.909863][ T8553] ? stack_trace_snprint+0x150/0x150 [ 235.915140][ T8553] should_fail+0x6fb/0x860 [ 235.919849][ T8553] ? setup_fault_attr+0x3d0/0x3d0 [ 235.925244][ T8553] ? __kasan_kmalloc+0x189/0x1c0 [ 235.930310][ T8553] ? ebitmap_cmp+0x1c8/0x230 [ 235.935042][ T8553] ? mls_compute_context_len+0x81b/0x850 [ 235.941697][ T8553] ? context_struct_to_string+0x3e4/0x820 [ 235.947703][ T8553] should_failslab+0x5/0x20 [ 235.952748][ T8553] __kmalloc+0x5f/0x2d0 [ 235.956986][ T8553] context_struct_to_string+0x3e4/0x820 [ 235.962524][ T8553] ? security_bounded_transition+0x560/0x560 [ 235.968503][ T8553] context_add_hash+0x145/0x280 [ 235.973849][ T8553] ? mls_context_isvalid+0x98/0x380 [ 235.979157][ T8553] ? security_sid_to_context_inval+0x40/0x40 [ 235.985755][ T8553] ? string_to_context_struct+0x486/0x640 [ 235.991792][ T8553] security_context_to_sid_core+0x406/0x710 [ 235.997686][ T8553] ? security_context_to_sid+0x50/0x50 [ 236.003194][ T8553] ? vfs_getxattr_alloc+0x570/0x570 [ 236.008442][ T8553] ? inode_doinit_use_xattr+0x58/0x3f0 [ 236.014058][ T8553] security_context_to_sid_default+0x3a/0x50 [ 236.020405][ T8553] inode_doinit_use_xattr+0x1c4/0x3f0 [ 236.026037][ T8553] inode_doinit_with_dentry+0x8da/0x10e0 [ 236.032181][ T8553] ? __vfs_getxattr+0x630/0x6e0 [ 236.037343][ T8553] ? sb_finish_set_opts+0x7e0/0x7e0 [ 236.042617][ T8553] ? mutex_lock+0xa6/0x110 [ 236.047555][ T8553] sb_finish_set_opts+0x4f0/0x7e0 [ 236.053279][ T8553] selinux_set_mnt_opts+0x175b/0x2460 [ 236.058851][ T8553] ? delayed_superblock_init+0x20/0x20 [ 236.064409][ T8553] ? ovl_mount+0x30/0x30 [ 236.068808][ T8553] security_sb_set_mnt_opts+0x7a/0xe0 [ 236.074213][ T8553] vfs_get_tree+0x146/0x260 [ 236.078759][ T8553] do_mount+0x1a15/0x28c0 [ 236.083138][ T8553] ? copy_mount_string+0x30/0x30 [ 236.088338][ T8553] ? page_fault+0x2f/0x40 [ 236.092847][ T8553] ? copy_mount_options+0x1e8/0x320 [ 236.098240][ T8553] ? copy_mount_options+0x293/0x320 [ 236.103421][ T8553] ksys_mount+0xc2/0xf0 [ 236.107564][ T8553] __x64_sys_mount+0xb1/0xc0 [ 236.112139][ T8553] do_syscall_64+0xcb/0x150 [ 236.116706][ T8553] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 236.122583][ T8553] RIP: 0033:0x45c829 [ 236.126460][ T8553] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 236.146872][ T8553] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 236.155434][ T8553] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 236.163594][ T8553] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 236.171848][ T8553] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 236.179958][ T8553] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 236.187984][ T8553] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:45 executing program 3 (fault-call:3 fault-nth:75): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 236.197009][ T8553] SELinux: inode_doinit_use_xattr: context_to_sid(system_u:object_r:unlabeled_t:s0) returned 12 for dev=overlay ino=15841 [ 236.203222][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 236.270057][ T8559] FAULT_INJECTION: forcing a failure. [ 236.270057][ T8559] name failslab, interval 1, probability 0, space 0, times 0 [ 236.283290][ T8559] CPU: 0 PID: 8559 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 236.293450][ T8559] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 236.303919][ T8559] Call Trace: [ 236.307309][ T8559] dump_stack+0x14a/0x1ce [ 236.311800][ T8559] ? devkmsg_release+0x11c/0x11c [ 236.316730][ T8559] ? show_regs_print_info+0x12/0x12 [ 236.321914][ T8559] ? avc_has_perm+0xd5/0x280 [ 236.326568][ T8559] ? avc_has_perm+0x176/0x280 [ 236.331233][ T8559] ? mutex_unlock+0x19/0x40 [ 236.335721][ T8559] should_fail+0x6fb/0x860 [ 236.340251][ T8559] ? setup_fault_attr+0x3d0/0x3d0 [ 236.345307][ T8559] ? alloc_vfsmnt+0x24/0x470 [ 236.349951][ T8559] should_failslab+0x5/0x20 [ 236.354553][ T8559] kmem_cache_alloc+0x36/0x260 [ 236.359337][ T8559] alloc_vfsmnt+0x24/0x470 [ 236.364232][ T8559] vfs_create_mount+0x96/0x560 [ 236.369387][ T8559] do_mount+0x238c/0x28c0 [ 236.373893][ T8559] ? copy_mount_string+0x30/0x30 [ 236.379227][ T8559] ? copy_mount_options+0x1e8/0x320 [ 236.384654][ T8559] ? copy_mount_options+0x293/0x320 [ 236.390132][ T8559] ksys_mount+0xc2/0xf0 [ 236.394437][ T8559] __x64_sys_mount+0xb1/0xc0 [ 236.399407][ T8559] do_syscall_64+0xcb/0x150 [ 236.404020][ T8559] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 236.409906][ T8559] RIP: 0033:0x45c829 [ 236.413893][ T8559] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 236.434650][ T8559] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 236.443048][ T8559] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 236.451509][ T8559] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 236.459513][ T8559] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 236.467816][ T8559] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 236.476028][ T8559] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 236.553033][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 236.565724][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 236.578865][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 236.593101][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 236.605531][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 236.623135][ T3969] usb 1-1: config 0 descriptor?? [ 237.093770][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.100938][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.109674][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.118373][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.126521][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.134541][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.141715][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.150101][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.158115][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.166004][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.174216][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.181304][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.190148][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.198207][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.206200][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.214189][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.221227][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.230048][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.238191][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.246485][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.254717][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.262123][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.270833][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.279576][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.288128][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.297061][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.305628][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.313600][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.320670][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.329046][ T3969] appleir 0003:05AC:1440.0028: unknown main item tag 0x0 [ 237.337652][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0028/input/input46 [ 237.352152][ T3969] appleir 0003:05AC:1440.0028: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 237.367800][ T3969] usb 1-1: USB disconnect, device number 64 09:43:47 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:47 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:47 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x39, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:47 executing program 3 (fault-call:3 fault-nth:76): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:47 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26c9, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 237.823268][ T8580] FAULT_INJECTION: forcing a failure. [ 237.823268][ T8580] name failslab, interval 1, probability 0, space 0, times 0 [ 237.864482][ T8580] CPU: 0 PID: 8580 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 237.875107][ T8580] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 237.885711][ T8580] Call Trace: [ 237.889046][ T8580] dump_stack+0x14a/0x1ce [ 237.893398][ T8580] ? devkmsg_release+0x11c/0x11c [ 237.898487][ T8580] ? show_regs_print_info+0x12/0x12 [ 237.903906][ T8580] ? ida_alloc_range+0xa59/0xac0 [ 237.908828][ T8580] should_fail+0x6fb/0x860 [ 237.913410][ T8580] ? setup_fault_attr+0x3d0/0x3d0 [ 237.918622][ T8580] ? idr_replace+0x240/0x240 [ 237.923201][ T8580] ? alloc_vfsmnt+0xa3/0x470 [ 237.927797][ T8580] should_failslab+0x5/0x20 [ 237.932375][ T8580] __kmalloc_track_caller+0x5d/0x2c0 [ 237.937717][ T8580] ? alloc_vfsmnt+0x24/0x470 [ 237.942436][ T8580] kstrdup_const+0x51/0x90 [ 237.946999][ T8580] alloc_vfsmnt+0xa3/0x470 [ 237.951488][ T8580] vfs_create_mount+0x96/0x560 [ 237.956459][ T8580] do_mount+0x238c/0x28c0 [ 237.961076][ T8580] ? copy_mount_string+0x30/0x30 [ 237.966113][ T8580] ? copy_mount_options+0x1e8/0x320 [ 237.971308][ T8580] ? copy_mount_options+0x293/0x320 [ 237.976549][ T8580] ksys_mount+0xc2/0xf0 [ 237.980741][ T8580] __x64_sys_mount+0xb1/0xc0 [ 237.985630][ T8580] do_syscall_64+0xcb/0x150 [ 237.990507][ T8580] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 237.996770][ T8580] RIP: 0033:0x45c829 [ 238.000659][ T8580] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 238.021256][ T8580] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 238.029747][ T8580] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 238.037969][ T8580] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 238.046156][ T8580] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 238.054253][ T8580] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:47 executing program 3 (fault-call:3 fault-nth:77): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 238.062369][ T8580] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 238.102690][ T3082] usb 1-1: new high-speed USB device number 65 using dummy_hcd [ 238.127244][ T8599] FAULT_INJECTION: forcing a failure. [ 238.127244][ T8599] name failslab, interval 1, probability 0, space 0, times 0 [ 238.140622][ T8599] CPU: 1 PID: 8599 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 238.150976][ T8599] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.161177][ T8599] Call Trace: [ 238.164821][ T8599] dump_stack+0x14a/0x1ce [ 238.169198][ T8599] ? devkmsg_release+0x11c/0x11c [ 238.174127][ T8599] ? show_regs_print_info+0x12/0x12 [ 238.179476][ T8599] ? ida_alloc_range+0xa59/0xac0 [ 238.184535][ T8599] should_fail+0x6fb/0x860 [ 238.189359][ T8599] ? setup_fault_attr+0x3d0/0x3d0 [ 238.194385][ T8599] ? idr_replace+0x240/0x240 [ 238.199102][ T8599] ? alloc_vfsmnt+0xa3/0x470 [ 238.203682][ T8599] should_failslab+0x5/0x20 [ 238.208178][ T8599] __kmalloc_track_caller+0x5d/0x2c0 [ 238.213668][ T8599] ? alloc_vfsmnt+0x24/0x470 [ 238.218406][ T8599] kstrdup_const+0x51/0x90 [ 238.222981][ T8599] alloc_vfsmnt+0xa3/0x470 [ 238.227389][ T8599] vfs_create_mount+0x96/0x560 [ 238.232509][ T8599] do_mount+0x238c/0x28c0 [ 238.236845][ T8599] ? copy_mount_string+0x30/0x30 [ 238.241774][ T8599] ? copy_mount_options+0x1e8/0x320 [ 238.246961][ T8599] ? copy_mount_options+0x293/0x320 [ 238.252562][ T8599] ksys_mount+0xc2/0xf0 [ 238.256983][ T8599] __x64_sys_mount+0xb1/0xc0 [ 238.261684][ T8599] do_syscall_64+0xcb/0x150 [ 238.266179][ T8599] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 238.272214][ T8599] RIP: 0033:0x45c829 [ 238.276178][ T8599] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:47 executing program 3 (fault-call:3 fault-nth:78): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 238.296672][ T8599] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 238.305940][ T8599] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 238.314314][ T8599] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 238.322779][ T8599] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 238.331332][ T8599] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 238.339294][ T8599] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 238.412751][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 238.457286][ T8605] FAULT_INJECTION: forcing a failure. [ 238.457286][ T8605] name failslab, interval 1, probability 0, space 0, times 0 [ 238.470527][ T8605] CPU: 1 PID: 8605 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 238.481748][ T8605] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.491793][ T8605] Call Trace: [ 238.495077][ T8605] dump_stack+0x14a/0x1ce [ 238.499521][ T8605] ? devkmsg_release+0x11c/0x11c [ 238.505112][ T8605] ? show_regs_print_info+0x12/0x12 [ 238.510563][ T8605] should_fail+0x6fb/0x860 [ 238.515273][ T8605] ? setup_fault_attr+0x3d0/0x3d0 [ 238.520410][ T8605] ? __rcu_read_lock+0x50/0x50 [ 238.525528][ T8605] ? get_mountpoint+0x216/0x410 [ 238.530374][ T8605] should_failslab+0x5/0x20 [ 238.535369][ T8605] kmem_cache_alloc_trace+0x39/0x280 [ 238.541237][ T8605] get_mountpoint+0x216/0x410 [ 238.546324][ T8605] lock_mount+0xc0/0x2f0 [ 238.550702][ T8605] ? memset+0x1f/0x40 [ 238.554969][ T8605] do_add_mount+0x25/0x480 [ 238.559729][ T8605] ? _raw_spin_unlock+0x5/0x20 [ 238.565106][ T8605] do_mount+0x2465/0x28c0 [ 238.569608][ T8605] ? copy_mount_string+0x30/0x30 [ 238.574946][ T8605] ? copy_mount_options+0x1e8/0x320 [ 238.580270][ T8605] ? copy_mount_options+0x293/0x320 [ 238.585457][ T8605] ksys_mount+0xc2/0xf0 [ 238.589604][ T8605] __x64_sys_mount+0xb1/0xc0 [ 238.594235][ T8605] do_syscall_64+0xcb/0x150 [ 238.598729][ T8605] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 238.606066][ T8605] RIP: 0033:0x45c829 [ 238.610103][ T8605] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 238.629969][ T8605] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 238.642953][ T8605] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:48 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26ce, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:48 executing program 3 (fault-call:3 fault-nth:79): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:48 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 238.651023][ T8605] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 238.659309][ T8605] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 238.667549][ T8605] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 238.676137][ T8605] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 238.738494][ T8614] FAULT_INJECTION: forcing a failure. [ 238.738494][ T8614] name failslab, interval 1, probability 0, space 0, times 0 [ 238.742646][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 238.764924][ T8614] CPU: 0 PID: 8614 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 238.775357][ T8614] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 238.779856][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 238.785884][ T8614] Call Trace: [ 238.785908][ T8614] dump_stack+0x14a/0x1ce [ 238.785917][ T8614] ? devkmsg_release+0x11c/0x11c [ 238.785924][ T8614] ? show_regs_print_info+0x12/0x12 [ 238.785936][ T8614] should_fail+0x6fb/0x860 [ 238.785944][ T8614] ? setup_fault_attr+0x3d0/0x3d0 [ 238.785953][ T8614] ? __kasan_kmalloc+0x12c/0x1c0 [ 238.785960][ T8614] ? kmem_cache_alloc_trace+0xc3/0x280 [ 238.785974][ T8614] ? get_mountpoint+0x216/0x410 [ 238.799858][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 238.803643][ T8614] ? attach_recursive_mnt+0x173/0x1ef0 [ 238.803652][ T8614] ? do_mount+0x2465/0x28c0 [ 238.803660][ T8614] ? alloc_vfsmnt+0x24/0x470 [ 238.803666][ T8614] should_failslab+0x5/0x20 [ 238.803674][ T8614] kmem_cache_alloc+0x36/0x260 [ 238.803687][ T8614] ? _raw_spin_lock+0x170/0x170 [ 238.810074][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 238.813929][ T8614] ? xas_find_marked+0x8c8/0xa10 [ 238.813940][ T8614] alloc_vfsmnt+0x24/0x470 [ 238.813947][ T8614] clone_mnt+0x68/0xca0 [ 238.813955][ T8614] ? ida_alloc_range+0xa59/0xac0 [ 238.813963][ T8614] copy_tree+0x116/0xc00 [ 238.813971][ T8614] ? is_subdir+0xe7/0x110 [ 238.813984][ T8614] propagate_one+0x385/0x5d0 [ 238.820443][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.823742][ T8614] propagate_mnt+0xc8/0x900 [ 238.823753][ T8614] attach_recursive_mnt+0x787/0x1ef0 [ 238.823761][ T8614] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 238.823770][ T8614] ? _raw_spin_unlock+0x5/0x20 [ 238.823782][ T8614] ? get_mountpoint+0x410/0x410 [ 238.836342][ T3082] usb 1-1: config 0 descriptor?? [ 238.839259][ T8614] ? lock_mount+0x109/0x2f0 [ 238.839269][ T8614] ? memset+0x1f/0x40 [ 238.839277][ T8614] do_add_mount+0x335/0x480 [ 238.839289][ T8614] do_mount+0x2465/0x28c0 [ 238.984295][ T8614] ? copy_mount_string+0x30/0x30 [ 238.989271][ T8614] ? copy_mount_options+0x1e8/0x320 [ 238.994596][ T8614] ? copy_mount_options+0x293/0x320 [ 238.999989][ T8614] ksys_mount+0xc2/0xf0 [ 239.004183][ T8614] __x64_sys_mount+0xb1/0xc0 [ 239.008960][ T8614] do_syscall_64+0xcb/0x150 [ 239.013452][ T8614] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 239.019446][ T8614] RIP: 0033:0x45c829 [ 239.023455][ T8614] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 239.043044][ T8614] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 239.051684][ T8614] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 239.059789][ T8614] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 239.067975][ T8614] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 239.076051][ T8614] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 239.084310][ T8614] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 239.373409][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.380615][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.389665][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.397912][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.405922][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.414252][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.421764][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.430653][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.438909][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.447046][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.455104][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.463242][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.470968][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.479982][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.488445][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.496722][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.504585][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.512048][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.520435][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.528766][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.536724][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.544640][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.553344][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.561510][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.570052][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.578451][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.587351][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.595793][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.603994][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.611355][ T3082] appleir 0003:05AC:1440.0029: unknown main item tag 0x0 [ 239.620496][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0029/input/input47 [ 239.635110][ T3082] appleir 0003:05AC:1440.0029: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 239.650004][ T3082] usb 1-1: USB disconnect, device number 65 09:43:49 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:49 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:49 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:49 executing program 3 (fault-call:3 fault-nth:80): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:49 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x26d1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:49 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 240.098160][ T8639] FAULT_INJECTION: forcing a failure. [ 240.098160][ T8639] name failslab, interval 1, probability 0, space 0, times 0 [ 240.118450][ T8639] CPU: 0 PID: 8639 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 240.130086][ T8639] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 240.141411][ T8639] Call Trace: [ 240.144913][ T8639] dump_stack+0x14a/0x1ce [ 240.149245][ T8639] ? devkmsg_release+0x11c/0x11c [ 240.154206][ T8639] ? show_regs_print_info+0x12/0x12 [ 240.160101][ T8639] ? ida_alloc_range+0xa59/0xac0 [ 240.165055][ T8639] should_fail+0x6fb/0x860 [ 240.169632][ T8639] ? setup_fault_attr+0x3d0/0x3d0 [ 240.174916][ T8639] ? idr_replace+0x240/0x240 [ 240.179810][ T8639] ? alloc_vfsmnt+0xa3/0x470 [ 240.184389][ T8639] should_failslab+0x5/0x20 [ 240.188882][ T8639] __kmalloc_track_caller+0x5d/0x2c0 [ 240.194291][ T8639] ? alloc_vfsmnt+0x24/0x470 [ 240.198963][ T8639] kstrdup_const+0x51/0x90 [ 240.203376][ T8639] alloc_vfsmnt+0xa3/0x470 [ 240.207838][ T8639] clone_mnt+0x68/0xca0 [ 240.212049][ T8639] ? ida_alloc_range+0xa59/0xac0 [ 240.217040][ T8639] copy_tree+0x116/0xc00 [ 240.221690][ T8639] ? is_subdir+0xe7/0x110 [ 240.226488][ T8639] propagate_one+0x385/0x5d0 [ 240.231434][ T8639] propagate_mnt+0xc8/0x900 [ 240.236184][ T8639] attach_recursive_mnt+0x787/0x1ef0 [ 240.241695][ T8639] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 240.247325][ T8639] ? _raw_spin_unlock+0x5/0x20 [ 240.252102][ T8639] ? get_mountpoint+0x410/0x410 [ 240.256939][ T8639] ? lock_mount+0x109/0x2f0 [ 240.261517][ T8639] ? memset+0x1f/0x40 [ 240.265631][ T8639] do_add_mount+0x335/0x480 [ 240.270134][ T8639] do_mount+0x2465/0x28c0 [ 240.274569][ T8639] ? copy_mount_string+0x30/0x30 [ 240.279496][ T8639] ? copy_mount_options+0x1e8/0x320 [ 240.285346][ T8639] ? copy_mount_options+0x293/0x320 [ 240.290581][ T8639] ksys_mount+0xc2/0xf0 [ 240.294890][ T8639] __x64_sys_mount+0xb1/0xc0 [ 240.299592][ T8639] do_syscall_64+0xcb/0x150 [ 240.304128][ T8639] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 240.310010][ T8639] RIP: 0033:0x45c829 [ 240.313928][ T8639] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 240.334264][ T8639] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 09:43:49 executing program 3 (fault-call:3 fault-nth:81): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 240.343003][ T8639] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 240.351084][ T8639] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 240.359263][ T8639] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 240.367425][ T8639] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 240.375997][ T8639] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 240.441791][ T8657] FAULT_INJECTION: forcing a failure. [ 240.441791][ T8657] name failslab, interval 1, probability 0, space 0, times 0 [ 240.468271][ T8657] CPU: 1 PID: 8657 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 240.478663][ T8657] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 240.489194][ T8657] Call Trace: [ 240.492681][ T8657] dump_stack+0x14a/0x1ce [ 240.497261][ T8657] ? devkmsg_release+0x11c/0x11c [ 240.502221][ T8657] ? show_regs_print_info+0x12/0x12 [ 240.507596][ T8657] ? ida_alloc_range+0xa59/0xac0 [ 240.512676][ T8657] should_fail+0x6fb/0x860 [ 240.517331][ T8657] ? setup_fault_attr+0x3d0/0x3d0 [ 240.522918][ T8657] ? idr_replace+0x240/0x240 [ 240.528594][ T8657] ? alloc_vfsmnt+0xa3/0x470 [ 240.532347][ T3969] usb 1-1: new high-speed USB device number 66 using dummy_hcd 09:43:50 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 240.533326][ T8657] should_failslab+0x5/0x20 [ 240.533338][ T8657] __kmalloc_track_caller+0x5d/0x2c0 [ 240.533352][ T8657] ? alloc_vfsmnt+0x24/0x470 [ 240.557799][ T8657] kstrdup_const+0x51/0x90 [ 240.562357][ T8657] alloc_vfsmnt+0xa3/0x470 [ 240.567086][ T8657] clone_mnt+0x68/0xca0 [ 240.571754][ T8657] ? ida_alloc_range+0xa59/0xac0 [ 240.577154][ T8657] copy_tree+0x116/0xc00 [ 240.581533][ T8657] ? is_subdir+0xe7/0x110 [ 240.585937][ T8657] propagate_one+0x385/0x5d0 [ 240.590526][ T8657] propagate_mnt+0xc8/0x900 [ 240.595059][ T8657] attach_recursive_mnt+0x787/0x1ef0 [ 240.600420][ T8657] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 240.606198][ T8657] ? _raw_spin_unlock+0x5/0x20 [ 240.610960][ T8657] ? get_mountpoint+0x410/0x410 [ 240.615809][ T8657] ? lock_mount+0x109/0x2f0 [ 240.620460][ T8657] ? memset+0x1f/0x40 [ 240.622408][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 240.624436][ T8657] do_add_mount+0x335/0x480 [ 240.624445][ T8657] do_mount+0x2465/0x28c0 [ 240.624459][ T8657] ? copy_mount_string+0x30/0x30 [ 240.644008][ T8657] ? copy_mount_options+0x1e8/0x320 [ 240.649254][ T8657] ? copy_mount_options+0x293/0x320 [ 240.654628][ T8657] ksys_mount+0xc2/0xf0 [ 240.658874][ T8657] __x64_sys_mount+0xb1/0xc0 [ 240.664299][ T8657] do_syscall_64+0xcb/0x150 [ 240.670221][ T8657] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 240.676703][ T8657] RIP: 0033:0x45c829 [ 240.681325][ T8657] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 240.703144][ T8657] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 240.712063][ T8657] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 240.720413][ T8657] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 240.728571][ T8657] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:50 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:50 executing program 3 (fault-call:3 fault-nth:82): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 240.736532][ T8657] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 240.742407][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 240.744864][ T8657] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 240.765077][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 240.776340][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 240.789207][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 240.799241][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 240.813260][ T3969] usb 1-1: config 0 descriptor?? [ 240.823489][ T8663] FAULT_INJECTION: forcing a failure. [ 240.823489][ T8663] name failslab, interval 1, probability 0, space 0, times 0 [ 240.837646][ T8663] CPU: 0 PID: 8663 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 240.847919][ T8663] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 240.857962][ T8663] Call Trace: [ 240.863500][ T8663] dump_stack+0x14a/0x1ce [ 240.867822][ T8663] ? devkmsg_release+0x11c/0x11c [ 240.872788][ T8663] ? show_regs_print_info+0x12/0x12 [ 240.877968][ T8663] ? ida_alloc_range+0xa59/0xac0 [ 240.882926][ T8663] should_fail+0x6fb/0x860 [ 240.887327][ T8663] ? setup_fault_attr+0x3d0/0x3d0 [ 240.892335][ T8663] ? idr_replace+0x240/0x240 [ 240.896938][ T8663] ? alloc_vfsmnt+0xa3/0x470 [ 240.901531][ T8663] should_failslab+0x5/0x20 [ 240.906019][ T8663] __kmalloc_track_caller+0x5d/0x2c0 [ 240.911401][ T8663] ? alloc_vfsmnt+0x24/0x470 [ 240.916159][ T8663] kstrdup_const+0x51/0x90 [ 240.920567][ T8663] alloc_vfsmnt+0xa3/0x470 [ 240.924989][ T8663] clone_mnt+0x68/0xca0 [ 240.929120][ T8663] copy_tree+0x116/0xc00 [ 240.933338][ T8663] ? is_subdir+0xe7/0x110 [ 240.937675][ T8663] propagate_one+0x385/0x5d0 [ 240.942246][ T8663] propagate_mnt+0xc8/0x900 [ 240.946730][ T8663] attach_recursive_mnt+0x787/0x1ef0 [ 240.952003][ T8663] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 240.961202][ T8663] ? _raw_spin_unlock+0x5/0x20 [ 240.966162][ T8663] ? get_mountpoint+0x410/0x410 [ 240.971008][ T8663] ? lock_mount+0x109/0x2f0 [ 240.975485][ T8663] ? memset+0x1f/0x40 [ 240.979441][ T8663] do_add_mount+0x335/0x480 [ 240.983920][ T8663] do_mount+0x2465/0x28c0 [ 240.988234][ T8663] ? copy_mount_string+0x30/0x30 [ 240.993155][ T8663] ? copy_mount_options+0x1e8/0x320 [ 240.998327][ T8663] ? copy_mount_options+0x293/0x320 [ 241.003505][ T8663] ksys_mount+0xc2/0xf0 [ 241.007654][ T8663] __x64_sys_mount+0xb1/0xc0 [ 241.012225][ T8663] do_syscall_64+0xcb/0x150 [ 241.016711][ T8663] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 241.022842][ T8663] RIP: 0033:0x45c829 [ 241.026725][ T8663] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 241.046405][ T8663] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 241.054919][ T8663] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 241.063005][ T8663] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 241.071003][ T8663] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 241.079066][ T8663] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:43:50 executing program 3 (fault-call:3 fault-nth:83): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 241.087035][ T8663] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:50 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 241.199977][ T8673] FAULT_INJECTION: forcing a failure. [ 241.199977][ T8673] name failslab, interval 1, probability 0, space 0, times 0 [ 241.212647][ T8673] CPU: 1 PID: 8673 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 241.222795][ T8673] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 241.232931][ T8673] Call Trace: [ 241.236198][ T8673] dump_stack+0x14a/0x1ce [ 241.240522][ T8673] ? devkmsg_release+0x11c/0x11c [ 241.245433][ T8673] ? show_regs_print_info+0x12/0x12 [ 241.250618][ T8673] ? pcpu_alloc_area+0x7a2/0x8f0 [ 241.255637][ T8673] should_fail+0x6fb/0x860 [ 241.260035][ T8673] ? setup_fault_attr+0x3d0/0x3d0 [ 241.265187][ T8673] ? cpumask_next+0xc/0x20 [ 241.269599][ T8673] ? pcpu_alloc+0xd17/0x11f0 [ 241.274185][ T8673] ? alloc_vfsmnt+0x24/0x470 [ 241.278766][ T8673] should_failslab+0x5/0x20 [ 241.283244][ T8673] kmem_cache_alloc+0x36/0x260 [ 241.287997][ T8673] ? _raw_spin_trylock_bh+0x190/0x190 [ 241.293358][ T8673] alloc_vfsmnt+0x24/0x470 [ 241.297751][ T8673] clone_mnt+0x68/0xca0 [ 241.301885][ T8673] copy_tree+0x116/0xc00 [ 241.306103][ T8673] ? is_subdir+0xe7/0x110 [ 241.310407][ T8673] propagate_one+0x385/0x5d0 [ 241.314970][ T8673] propagate_mnt+0xc8/0x900 [ 241.319448][ T8673] attach_recursive_mnt+0x787/0x1ef0 [ 241.324704][ T8673] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 241.330307][ T8673] ? _raw_spin_unlock+0x5/0x20 [ 241.335068][ T8673] ? get_mountpoint+0x410/0x410 [ 241.339900][ T8673] ? lock_mount+0x109/0x2f0 [ 241.344389][ T8673] ? memset+0x1f/0x40 [ 241.348358][ T8673] do_add_mount+0x335/0x480 [ 241.352836][ T8673] do_mount+0x2465/0x28c0 [ 241.357146][ T8673] ? copy_mount_string+0x30/0x30 [ 241.362057][ T8673] ? copy_mount_options+0x1e8/0x320 [ 241.367227][ T8673] ? copy_mount_options+0x293/0x320 [ 241.372437][ T8673] ksys_mount+0xc2/0xf0 [ 241.376585][ T8673] __x64_sys_mount+0xb1/0xc0 [ 241.381152][ T8673] do_syscall_64+0xcb/0x150 [ 241.385787][ T8673] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 241.391706][ T8673] RIP: 0033:0x45c829 [ 241.395603][ T8673] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 241.415196][ T8673] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 241.423591][ T8673] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 241.431547][ T8673] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 241.439631][ T8673] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 241.447595][ T8673] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 241.455568][ T8673] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 241.532887][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.540238][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.547946][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.558076][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.571272][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.579367][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.587496][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.595726][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.603958][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.611077][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.623313][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.630503][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.638927][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.646770][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.654655][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.663265][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.670317][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.678755][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.686477][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.694671][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.701725][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.710480][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.718619][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.726692][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.735182][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.743277][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.750352][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.758693][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.766499][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.774255][ T3969] appleir 0003:05AC:1440.002A: unknown main item tag 0x0 [ 241.781833][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.002A/input/input48 [ 241.799641][ T3969] appleir 0003:05AC:1440.002A: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 241.814023][ T3969] usb 1-1: USB disconnect, device number 66 09:43:51 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:51 executing program 3 (fault-call:3 fault-nth:84): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:51 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:51 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:51 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xcc00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:51 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3c, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:51 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xcf, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 242.264727][ T8701] FAULT_INJECTION: forcing a failure. [ 242.264727][ T8701] name failslab, interval 1, probability 0, space 0, times 0 [ 242.291801][ T8701] CPU: 0 PID: 8701 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 242.302140][ T8701] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.312202][ T8701] Call Trace: [ 242.315478][ T8701] dump_stack+0x14a/0x1ce [ 242.319889][ T8701] ? devkmsg_release+0x11c/0x11c [ 242.324799][ T8701] ? show_regs_print_info+0x12/0x12 [ 242.329985][ T8701] ? pcpu_alloc_area+0x7a2/0x8f0 [ 242.334899][ T8701] should_fail+0x6fb/0x860 [ 242.339304][ T8701] ? setup_fault_attr+0x3d0/0x3d0 [ 242.344337][ T8701] ? cpumask_next+0xc/0x20 [ 242.348775][ T8701] ? pcpu_alloc+0xd17/0x11f0 [ 242.356393][ T8701] ? alloc_vfsmnt+0x24/0x470 [ 242.360954][ T8701] should_failslab+0x5/0x20 [ 242.365431][ T8701] kmem_cache_alloc+0x36/0x260 [ 242.370186][ T8701] ? _raw_spin_trylock_bh+0x190/0x190 [ 242.375543][ T8701] alloc_vfsmnt+0x24/0x470 [ 242.379955][ T8701] clone_mnt+0x68/0xca0 [ 242.384782][ T8701] copy_tree+0x116/0xc00 [ 242.389002][ T8701] ? is_subdir+0xe7/0x110 [ 242.393355][ T8701] propagate_one+0x385/0x5d0 [ 242.397920][ T8701] propagate_mnt+0xc8/0x900 [ 242.402406][ T8701] attach_recursive_mnt+0x787/0x1ef0 [ 242.407698][ T8701] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 242.413303][ T8701] ? _raw_spin_unlock+0x5/0x20 [ 242.418060][ T8701] ? get_mountpoint+0x410/0x410 [ 242.422896][ T8701] ? lock_mount+0x109/0x2f0 [ 242.427557][ T8701] ? memset+0x1f/0x40 [ 242.431508][ T8701] do_add_mount+0x335/0x480 [ 242.435987][ T8701] do_mount+0x2465/0x28c0 [ 242.440290][ T8701] ? copy_mount_string+0x30/0x30 [ 242.445216][ T8701] ? copy_mount_options+0x1e8/0x320 [ 242.450388][ T8701] ? copy_mount_options+0x293/0x320 [ 242.455564][ T8701] ksys_mount+0xc2/0xf0 [ 242.459702][ T8701] __x64_sys_mount+0xb1/0xc0 [ 242.464267][ T8701] do_syscall_64+0xcb/0x150 [ 242.468743][ T8701] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 242.475911][ T8701] RIP: 0033:0x45c829 [ 242.479783][ T8701] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 242.499447][ T8701] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 242.507829][ T8701] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 242.516304][ T8701] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 242.524276][ T8701] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 242.532225][ T8701] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 242.540358][ T8701] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:52 executing program 3 (fault-call:3 fault-nth:85): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:52 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf0, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 242.702134][ T3969] usb 1-1: new high-speed USB device number 67 using dummy_hcd [ 242.737074][ T8726] FAULT_INJECTION: forcing a failure. [ 242.737074][ T8726] name failslab, interval 1, probability 0, space 0, times 0 [ 242.750019][ T8726] CPU: 0 PID: 8726 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 242.760131][ T8726] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 242.770181][ T8726] Call Trace: [ 242.773468][ T8726] dump_stack+0x14a/0x1ce [ 242.777785][ T8726] ? devkmsg_release+0x11c/0x11c [ 242.782709][ T8726] ? show_regs_print_info+0x12/0x12 [ 242.787896][ T8726] ? pcpu_alloc_area+0x7a2/0x8f0 [ 242.792825][ T8726] should_fail+0x6fb/0x860 [ 242.797246][ T8726] ? setup_fault_attr+0x3d0/0x3d0 09:43:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xcf00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 242.802256][ T8726] ? cpumask_next+0xc/0x20 [ 242.806665][ T8726] ? pcpu_alloc+0xd17/0x11f0 [ 242.811246][ T8726] ? alloc_vfsmnt+0x24/0x470 [ 242.815852][ T8726] should_failslab+0x5/0x20 [ 242.820370][ T8726] kmem_cache_alloc+0x36/0x260 [ 242.825122][ T8726] ? _raw_spin_trylock_bh+0x190/0x190 [ 242.830499][ T8726] alloc_vfsmnt+0x24/0x470 [ 242.834950][ T8726] clone_mnt+0x68/0xca0 [ 242.839127][ T8726] copy_tree+0x116/0xc00 [ 242.843372][ T8726] ? is_subdir+0xe7/0x110 [ 242.847770][ T8726] propagate_one+0x385/0x5d0 [ 242.852369][ T8726] propagate_mnt+0xc8/0x900 [ 242.856904][ T8726] attach_recursive_mnt+0x787/0x1ef0 [ 242.862175][ T8726] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 242.867867][ T8726] ? _raw_spin_unlock+0x5/0x20 [ 242.872599][ T8726] ? get_mountpoint+0x410/0x410 [ 242.877430][ T8726] ? lock_mount+0x109/0x2f0 [ 242.881931][ T8726] ? memset+0x1f/0x40 [ 242.886257][ T8726] do_add_mount+0x335/0x480 [ 242.890773][ T8726] do_mount+0x2465/0x28c0 [ 242.895072][ T8726] ? copy_mount_string+0x30/0x30 [ 242.899997][ T8726] ? copy_mount_options+0x1e8/0x320 [ 242.905188][ T8726] ? copy_mount_options+0x293/0x320 [ 242.910360][ T8726] ksys_mount+0xc2/0xf0 [ 242.914537][ T8726] __x64_sys_mount+0xb1/0xc0 [ 242.919224][ T8726] do_syscall_64+0xcb/0x150 [ 242.923716][ T8726] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 242.929580][ T8726] RIP: 0033:0x45c829 [ 242.933794][ T8726] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:52 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 242.953378][ T8726] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 242.961868][ T8726] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 242.969823][ T8726] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 242.977768][ T8726] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 242.985710][ T8726] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 242.993666][ T8726] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:52 executing program 3 (fault-call:3 fault-nth:86): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 243.042029][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 243.084628][ T8736] FAULT_INJECTION: forcing a failure. [ 243.084628][ T8736] name failslab, interval 1, probability 0, space 0, times 0 [ 243.097359][ T8736] CPU: 1 PID: 8736 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 243.107416][ T8736] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 243.117459][ T8736] Call Trace: [ 243.120741][ T8736] dump_stack+0x14a/0x1ce [ 243.125062][ T8736] ? devkmsg_release+0x11c/0x11c [ 243.129994][ T8736] ? show_regs_print_info+0x12/0x12 [ 243.135185][ T8736] ? ida_alloc_range+0xa59/0xac0 [ 243.140143][ T8736] should_fail+0x6fb/0x860 [ 243.144565][ T8736] ? setup_fault_attr+0x3d0/0x3d0 [ 243.149579][ T8736] ? idr_replace+0x240/0x240 [ 243.154158][ T8736] ? alloc_vfsmnt+0xa3/0x470 [ 243.158749][ T8736] should_failslab+0x5/0x20 [ 243.162133][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 243.163263][ T8736] __kmalloc_track_caller+0x5d/0x2c0 [ 243.163280][ T8736] ? alloc_vfsmnt+0x24/0x470 [ 243.163314][ T8736] kstrdup_const+0x51/0x90 [ 243.180703][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 243.184005][ T8736] alloc_vfsmnt+0xa3/0x470 [ 243.184019][ T8736] clone_mnt+0x68/0xca0 [ 243.184029][ T8736] copy_tree+0x116/0xc00 [ 243.184043][ T8736] ? is_subdir+0xe7/0x110 [ 243.196210][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 243.198130][ T8736] propagate_one+0x385/0x5d0 [ 243.198144][ T8736] propagate_mnt+0xc8/0x900 [ 243.207280][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 243.211241][ T8736] attach_recursive_mnt+0x787/0x1ef0 [ 243.211250][ T8736] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 243.211263][ T8736] ? _raw_spin_unlock+0x5/0x20 [ 243.216443][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.228300][ T8736] ? get_mountpoint+0x410/0x410 [ 243.228308][ T8736] ? lock_mount+0x109/0x2f0 [ 243.228316][ T8736] ? memset+0x1f/0x40 [ 243.228324][ T8736] do_add_mount+0x335/0x480 [ 243.228333][ T8736] do_mount+0x2465/0x28c0 [ 243.228347][ T8736] ? copy_mount_string+0x30/0x30 [ 243.235332][ T3969] usb 1-1: config 0 descriptor?? [ 243.237408][ T8736] ? copy_mount_options+0x1e8/0x320 [ 243.237421][ T8736] ? copy_mount_options+0x293/0x320 [ 243.312213][ T8736] ksys_mount+0xc2/0xf0 [ 243.316340][ T8736] __x64_sys_mount+0xb1/0xc0 [ 243.320915][ T8736] do_syscall_64+0xcb/0x150 [ 243.325407][ T8736] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 243.331281][ T8736] RIP: 0033:0x45c829 [ 243.335145][ T8736] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 243.354720][ T8736] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 243.363100][ T8736] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 243.371044][ T8736] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 243.379009][ T8736] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 243.386955][ T8736] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 243.394903][ T8736] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 243.722420][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.729575][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.738104][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.745795][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.753627][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.760735][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.769723][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.777831][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.785681][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.793817][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.805251][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.813015][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.820063][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.828322][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.836428][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.844526][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.851564][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.859901][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.867617][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.875386][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.883234][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.890252][ T3969] appleir 0003:05AC:1440.002B: unknown main item tag 0x0 [ 243.899153][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.002B/input/input49 [ 243.912782][ T3969] appleir 0003:05AC:1440.002B: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 243.984466][ T3082] usb 1-1: USB disconnect, device number 67 09:43:54 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:54 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:54 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:54 executing program 3 (fault-call:3 fault-nth:87): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:54 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3d, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:54 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 244.514554][ T8764] FAULT_INJECTION: forcing a failure. [ 244.514554][ T8764] name failslab, interval 1, probability 0, space 0, times 0 [ 244.551728][ T8764] CPU: 0 PID: 8764 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 244.561816][ T8764] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.571856][ T8764] Call Trace: [ 244.575145][ T8764] dump_stack+0x14a/0x1ce [ 244.579470][ T8764] ? devkmsg_release+0x11c/0x11c [ 244.584415][ T8764] ? show_regs_print_info+0x12/0x12 [ 244.589602][ T8764] ? pcpu_alloc_area+0x7a2/0x8f0 [ 244.594537][ T8764] should_fail+0x6fb/0x860 [ 244.599037][ T8764] ? setup_fault_attr+0x3d0/0x3d0 [ 244.604057][ T8764] ? cpumask_next+0xc/0x20 [ 244.611679][ T8764] ? pcpu_alloc+0xd17/0x11f0 [ 244.616259][ T8764] ? alloc_vfsmnt+0x24/0x470 [ 244.620843][ T8764] should_failslab+0x5/0x20 [ 244.625357][ T8764] kmem_cache_alloc+0x36/0x260 [ 244.630115][ T8764] ? _raw_spin_trylock_bh+0x190/0x190 [ 244.635477][ T8764] alloc_vfsmnt+0x24/0x470 [ 244.640055][ T8764] clone_mnt+0x68/0xca0 [ 244.644210][ T8764] copy_tree+0x116/0xc00 [ 244.648876][ T8764] ? is_subdir+0xe7/0x110 [ 244.653192][ T8764] propagate_one+0x385/0x5d0 [ 244.658032][ T8764] propagate_mnt+0xc8/0x900 [ 244.662524][ T8764] attach_recursive_mnt+0x787/0x1ef0 [ 244.667787][ T8764] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 244.673560][ T8764] ? _raw_spin_unlock+0x5/0x20 [ 244.678298][ T8764] ? get_mountpoint+0x410/0x410 [ 244.683124][ T8764] ? lock_mount+0x109/0x2f0 [ 244.687742][ T8764] ? memset+0x1f/0x40 [ 244.691784][ T8764] do_add_mount+0x335/0x480 [ 244.696262][ T8764] do_mount+0x2465/0x28c0 [ 244.700576][ T8764] ? copy_mount_string+0x30/0x30 [ 244.705487][ T8764] ? copy_mount_options+0x1e8/0x320 [ 244.710668][ T8764] ? copy_mount_options+0x293/0x320 [ 244.717671][ T8764] ksys_mount+0xc2/0xf0 [ 244.721804][ T8764] __x64_sys_mount+0xb1/0xc0 [ 244.726375][ T8764] do_syscall_64+0xcb/0x150 [ 244.730856][ T8764] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 244.736737][ T8764] RIP: 0033:0x45c829 [ 244.740617][ T8764] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:54 executing program 3 (fault-call:3 fault-nth:88): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:54 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xa00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 244.760237][ T8764] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 244.768639][ T8764] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 244.776587][ T8764] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 244.784551][ T8764] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 244.792506][ T8764] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 244.800580][ T8764] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 244.831877][ T8778] FAULT_INJECTION: forcing a failure. [ 244.831877][ T8778] name failslab, interval 1, probability 0, space 0, times 0 [ 244.844715][ T8778] CPU: 1 PID: 8778 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 244.854773][ T8778] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 244.864822][ T8778] Call Trace: [ 244.868119][ T8778] dump_stack+0x14a/0x1ce [ 244.872444][ T8778] ? devkmsg_release+0x11c/0x11c [ 244.877351][ T8778] ? show_regs_print_info+0x12/0x12 [ 244.882520][ T8778] ? ida_alloc_range+0xa59/0xac0 [ 244.887431][ T8778] should_fail+0x6fb/0x860 [ 244.891817][ T8778] ? setup_fault_attr+0x3d0/0x3d0 [ 244.896808][ T8778] ? idr_replace+0x240/0x240 [ 244.901368][ T8778] ? alloc_vfsmnt+0xa3/0x470 [ 244.905926][ T8778] should_failslab+0x5/0x20 [ 244.910407][ T8778] __kmalloc_track_caller+0x5d/0x2c0 [ 244.915666][ T8778] ? alloc_vfsmnt+0x24/0x470 [ 244.920289][ T8778] kstrdup_const+0x51/0x90 [ 244.924728][ T8778] alloc_vfsmnt+0xa3/0x470 [ 244.929115][ T8778] clone_mnt+0x68/0xca0 [ 244.933279][ T8778] copy_tree+0x116/0xc00 [ 244.937496][ T8778] ? is_subdir+0xe7/0x110 [ 244.942940][ T8778] propagate_one+0x385/0x5d0 [ 244.947503][ T8778] propagate_mnt+0xc8/0x900 [ 244.951977][ T8778] attach_recursive_mnt+0x787/0x1ef0 [ 244.957235][ T8778] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 244.962858][ T8778] ? _raw_spin_unlock+0x5/0x20 [ 244.967590][ T8778] ? get_mountpoint+0x410/0x410 [ 244.972413][ T8778] ? lock_mount+0x109/0x2f0 [ 244.976887][ T8778] ? memset+0x1f/0x40 [ 244.980843][ T8778] do_add_mount+0x335/0x480 [ 244.985318][ T8778] do_mount+0x2465/0x28c0 [ 244.989707][ T8778] ? copy_mount_string+0x30/0x30 [ 244.994623][ T8778] ? copy_mount_options+0x1e8/0x320 [ 244.999789][ T8778] ? copy_mount_options+0x293/0x320 [ 245.004973][ T8778] ksys_mount+0xc2/0xf0 [ 245.009100][ T8778] __x64_sys_mount+0xb1/0xc0 [ 245.013660][ T8778] do_syscall_64+0xcb/0x150 [ 245.018133][ T8778] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 245.024010][ T8778] RIP: 0033:0x45c829 [ 245.028397][ T8778] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 245.047991][ T8778] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 245.056373][ T8778] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 245.064317][ T8778] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 245.072258][ T8778] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:54 executing program 3 (fault-call:3 fault-nth:89): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 245.080286][ T8778] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 245.088226][ T8778] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 245.181668][ T3969] usb 1-1: new high-speed USB device number 68 using dummy_hcd 09:43:54 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x184a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 245.276874][ T8791] FAULT_INJECTION: forcing a failure. [ 245.276874][ T8791] name failslab, interval 1, probability 0, space 0, times 0 [ 245.289833][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 245.326293][ T8791] CPU: 1 PID: 8791 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 245.336383][ T8791] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 245.346428][ T8791] Call Trace: [ 245.349894][ T8791] dump_stack+0x14a/0x1ce [ 245.354216][ T8791] ? devkmsg_release+0x11c/0x11c [ 245.359139][ T8791] ? show_regs_print_info+0x12/0x12 [ 245.364327][ T8791] ? pcpu_alloc_area+0x7a2/0x8f0 [ 245.369266][ T8791] should_fail+0x6fb/0x860 [ 245.373685][ T8791] ? setup_fault_attr+0x3d0/0x3d0 [ 245.378711][ T8791] ? cpumask_next+0xc/0x20 [ 245.383145][ T8791] ? pcpu_alloc+0xd17/0x11f0 [ 245.387733][ T8791] ? alloc_vfsmnt+0x24/0x470 [ 245.392318][ T8791] should_failslab+0x5/0x20 [ 245.396815][ T8791] kmem_cache_alloc+0x36/0x260 [ 245.401576][ T8791] ? _raw_spin_trylock_bh+0x190/0x190 [ 245.406951][ T8791] alloc_vfsmnt+0x24/0x470 [ 245.411364][ T8791] clone_mnt+0x68/0xca0 [ 245.415505][ T8791] copy_tree+0x116/0xc00 [ 245.419876][ T8791] ? is_subdir+0xe7/0x110 [ 245.424188][ T8791] propagate_one+0x385/0x5d0 [ 245.428773][ T8791] propagate_mnt+0xc8/0x900 [ 245.433362][ T8791] attach_recursive_mnt+0x787/0x1ef0 [ 245.438622][ T8791] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 245.444234][ T8791] ? _raw_spin_unlock+0x5/0x20 [ 245.448973][ T8791] ? get_mountpoint+0x410/0x410 [ 245.453796][ T8791] ? lock_mount+0x109/0x2f0 [ 245.458285][ T8791] ? memset+0x1f/0x40 [ 245.462250][ T8791] do_add_mount+0x335/0x480 [ 245.466725][ T8791] do_mount+0x2465/0x28c0 [ 245.471038][ T8791] ? copy_mount_string+0x30/0x30 [ 245.475954][ T8791] ? copy_mount_options+0x1e8/0x320 [ 245.481118][ T8791] ? copy_mount_options+0x293/0x320 [ 245.486284][ T8791] ksys_mount+0xc2/0xf0 [ 245.490586][ T8791] __x64_sys_mount+0xb1/0xc0 [ 245.495157][ T8791] do_syscall_64+0xcb/0x150 [ 245.499631][ T8791] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 245.505493][ T8791] RIP: 0033:0x45c829 09:43:55 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x3e, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:55 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 245.509357][ T8791] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 245.528929][ T8791] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 245.537328][ T8791] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 245.545279][ T8791] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 245.553239][ T8791] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 245.561276][ T8791] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 245.569220][ T8791] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 245.671641][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 245.683007][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 245.693046][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 245.706056][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 245.715760][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.760827][ T3969] usb 1-1: config 0 descriptor?? [ 246.242222][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.249304][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.257621][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.265362][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.273180][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.280237][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.288523][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.296469][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.304332][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.311372][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.319725][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.327564][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.336169][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.344074][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.351118][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.359642][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.367625][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.375574][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.383359][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.390388][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.398759][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.406790][ T3969] appleir 0003:05AC:1440.002C: unknown main item tag 0x0 [ 246.415246][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.002C/input/input50 [ 246.428915][ T3969] appleir 0003:05AC:1440.002C: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 246.493784][ T3082] usb 1-1: USB disconnect, device number 68 09:43:56 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:56 executing program 3 (fault-call:3 fault-nth:90): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:56 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1a00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:56 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:56 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4b, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 247.026580][ T8830] FAULT_INJECTION: forcing a failure. [ 247.026580][ T8830] name failslab, interval 1, probability 0, space 0, times 0 [ 247.040561][ T8830] CPU: 0 PID: 8830 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 247.050627][ T8830] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.060671][ T8830] Call Trace: [ 247.063974][ T8830] dump_stack+0x14a/0x1ce [ 247.068292][ T8830] ? devkmsg_release+0x11c/0x11c [ 247.073246][ T8830] ? show_regs_print_info+0x12/0x12 [ 247.078436][ T8830] ? pcpu_alloc_area+0x7a2/0x8f0 [ 247.083364][ T8830] should_fail+0x6fb/0x860 [ 247.087768][ T8830] ? setup_fault_attr+0x3d0/0x3d0 [ 247.092781][ T8830] ? cpumask_next+0xc/0x20 [ 247.097193][ T8830] ? pcpu_alloc+0xd17/0x11f0 [ 247.101772][ T8830] ? alloc_vfsmnt+0x24/0x470 [ 247.106350][ T8830] should_failslab+0x5/0x20 [ 247.110882][ T8830] kmem_cache_alloc+0x36/0x260 [ 247.115630][ T8830] ? _raw_spin_trylock_bh+0x190/0x190 [ 247.120987][ T8830] alloc_vfsmnt+0x24/0x470 [ 247.125393][ T8830] clone_mnt+0x68/0xca0 [ 247.129538][ T8830] copy_tree+0x116/0xc00 [ 247.133854][ T8830] ? is_subdir+0xe7/0x110 [ 247.138168][ T8830] propagate_one+0x385/0x5d0 [ 247.142752][ T8830] propagate_mnt+0xc8/0x900 [ 247.147276][ T8830] attach_recursive_mnt+0x787/0x1ef0 [ 247.152556][ T8830] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 247.158180][ T8830] ? _raw_spin_unlock+0x5/0x20 [ 247.162936][ T8830] ? get_mountpoint+0x410/0x410 [ 247.167776][ T8830] ? lock_mount+0x109/0x2f0 [ 247.172269][ T8830] ? memset+0x1f/0x40 [ 247.176248][ T8830] do_add_mount+0x335/0x480 [ 247.180748][ T8830] do_mount+0x2465/0x28c0 [ 247.185857][ T8830] ? copy_mount_string+0x30/0x30 [ 247.190792][ T8830] ? copy_mount_options+0x1ec/0x320 [ 247.195989][ T8830] ? copy_mount_options+0x293/0x320 [ 247.201188][ T8830] ksys_mount+0xc2/0xf0 [ 247.205339][ T8830] __x64_sys_mount+0xb1/0xc0 [ 247.210423][ T8830] do_syscall_64+0xcb/0x150 [ 247.214931][ T8830] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 247.220798][ T8830] RIP: 0033:0x45c829 [ 247.224670][ T8830] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 247.244440][ T8830] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 247.252837][ T8830] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 247.260780][ T8830] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 247.268734][ T8830] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:43:56 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 247.276679][ T8830] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 247.284639][ T8830] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:56 executing program 3 (fault-call:3 fault-nth:91): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:56 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 247.451331][ T3969] usb 1-1: new high-speed USB device number 69 using dummy_hcd [ 247.479722][ T8853] FAULT_INJECTION: forcing a failure. [ 247.479722][ T8853] name failslab, interval 1, probability 0, space 0, times 0 [ 247.493145][ T8853] CPU: 0 PID: 8853 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 247.505219][ T8853] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.515278][ T8853] Call Trace: [ 247.518576][ T8853] dump_stack+0x14a/0x1ce [ 247.522900][ T8853] ? devkmsg_release+0x11c/0x11c [ 247.527834][ T8853] ? show_regs_print_info+0x12/0x12 [ 247.533196][ T8853] ? ida_alloc_range+0xa59/0xac0 [ 247.538128][ T8853] should_fail+0x6fb/0x860 [ 247.542539][ T8853] ? setup_fault_attr+0x3d0/0x3d0 [ 247.547550][ T8853] ? idr_replace+0x240/0x240 [ 247.552130][ T8853] ? alloc_vfsmnt+0xa3/0x470 [ 247.556705][ T8853] should_failslab+0x5/0x20 [ 247.561205][ T8853] __kmalloc_track_caller+0x5d/0x2c0 [ 247.566488][ T8853] ? alloc_vfsmnt+0x24/0x470 [ 247.571080][ T8853] kstrdup_const+0x51/0x90 [ 247.575521][ T8853] alloc_vfsmnt+0xa3/0x470 [ 247.579936][ T8853] clone_mnt+0x68/0xca0 [ 247.584084][ T8853] copy_tree+0x116/0xc00 [ 247.588410][ T8853] ? is_subdir+0xe7/0x110 [ 247.592722][ T8853] propagate_one+0x385/0x5d0 [ 247.597350][ T8853] propagate_mnt+0xc8/0x900 [ 247.601866][ T8853] attach_recursive_mnt+0x787/0x1ef0 [ 247.607124][ T8853] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 247.612724][ T8853] ? _raw_spin_unlock+0x5/0x20 [ 247.617455][ T8853] ? get_mountpoint+0x410/0x410 [ 247.622286][ T8853] ? lock_mount+0x109/0x2f0 [ 247.626758][ T8853] ? memset+0x1f/0x40 [ 247.630713][ T8853] do_add_mount+0x335/0x480 [ 247.635376][ T8853] do_mount+0x2465/0x28c0 [ 247.639694][ T8853] ? copy_mount_string+0x30/0x30 [ 247.644620][ T8853] ? copy_mount_options+0x1e8/0x320 [ 247.649808][ T8853] ? copy_mount_options+0x293/0x320 [ 247.654981][ T8853] ksys_mount+0xc2/0xf0 [ 247.659120][ T8853] __x64_sys_mount+0xb1/0xc0 [ 247.663693][ T8853] do_syscall_64+0xcb/0x150 [ 247.668184][ T8853] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 247.674047][ T8853] RIP: 0033:0x45c829 [ 247.677913][ T8853] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:43:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1b00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:57 executing program 3 (fault-call:3 fault-nth:92): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 247.697489][ T8853] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 247.705893][ T8853] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 247.714027][ T8853] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 247.722032][ T8853] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 247.729985][ T8853] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 247.737954][ T8853] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:43:57 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 247.801341][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 247.817498][ T8858] FAULT_INJECTION: forcing a failure. [ 247.817498][ T8858] name failslab, interval 1, probability 0, space 0, times 0 [ 247.837629][ T8858] CPU: 0 PID: 8858 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 247.847715][ T8858] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 247.857764][ T8858] Call Trace: [ 247.861051][ T8858] dump_stack+0x14a/0x1ce [ 247.865367][ T8858] ? devkmsg_release+0x11c/0x11c [ 247.870281][ T8858] ? show_regs_print_info+0x12/0x12 [ 247.875460][ T8858] ? ida_alloc_range+0xa59/0xac0 [ 247.880370][ T8858] should_fail+0x6fb/0x860 [ 247.884758][ T8858] ? setup_fault_attr+0x3d0/0x3d0 [ 247.889760][ T8858] ? idr_replace+0x240/0x240 [ 247.894324][ T8858] ? alloc_vfsmnt+0xa3/0x470 [ 247.898883][ T8858] should_failslab+0x5/0x20 [ 247.903360][ T8858] __kmalloc_track_caller+0x5d/0x2c0 [ 247.908615][ T8858] ? alloc_vfsmnt+0x24/0x470 [ 247.913177][ T8858] kstrdup_const+0x51/0x90 [ 247.917565][ T8858] alloc_vfsmnt+0xa3/0x470 [ 247.921951][ T8858] clone_mnt+0x68/0xca0 [ 247.926080][ T8858] copy_tree+0x116/0xc00 [ 247.930296][ T8858] ? is_subdir+0xe7/0x110 [ 247.934613][ T8858] propagate_one+0x385/0x5d0 [ 247.939176][ T8858] propagate_mnt+0x428/0x900 [ 247.943872][ T8858] attach_recursive_mnt+0x787/0x1ef0 [ 247.949149][ T8858] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 247.954754][ T8858] ? _raw_spin_unlock+0x5/0x20 [ 247.959509][ T8858] ? get_mountpoint+0x410/0x410 [ 247.964357][ T8858] ? lock_mount+0x109/0x2f0 [ 247.968831][ T8858] ? memset+0x1f/0x40 [ 247.972785][ T8858] do_add_mount+0x335/0x480 [ 247.977276][ T8858] do_mount+0x2465/0x28c0 [ 247.981593][ T8858] ? copy_mount_string+0x30/0x30 [ 247.986500][ T8858] ? copy_mount_options+0x1e8/0x320 [ 247.991675][ T8858] ? copy_mount_options+0x293/0x320 [ 247.996958][ T8858] ksys_mount+0xc2/0xf0 [ 248.001116][ T8858] __x64_sys_mount+0xb1/0xc0 [ 248.005702][ T8858] do_syscall_64+0xcb/0x150 [ 248.010199][ T8858] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 248.016077][ T8858] RIP: 0033:0x45c829 [ 248.019967][ T8858] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 248.039579][ T8858] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 248.047992][ T8858] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 248.055995][ T8858] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 248.063946][ T8858] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 248.071896][ T8858] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 248.079862][ T8858] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 248.171389][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 248.183350][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 248.197371][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 248.211648][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 248.220708][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 248.229709][ T3969] usb 1-1: config 0 descriptor?? [ 248.701887][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.708963][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.716238][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.723336][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.730364][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.737437][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.744933][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.752015][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.759066][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.766117][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.773175][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.780202][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.787274][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.794333][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.801394][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.808417][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.815470][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.822569][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.829584][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.836631][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.843695][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.850708][ T3969] appleir 0003:05AC:1440.002D: unknown main item tag 0x0 [ 248.858670][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.002D/input/input51 [ 248.872275][ T3969] appleir 0003:05AC:1440.002D: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 248.942004][ T3969] usb 1-1: USB disconnect, device number 69 09:43:59 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa2"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:43:59 executing program 3 (fault-call:3 fault-nth:93): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:43:59 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:59 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:59 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xa00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 249.463622][ T8885] FAULT_INJECTION: forcing a failure. [ 249.463622][ T8885] name failslab, interval 1, probability 0, space 0, times 0 [ 249.492458][ T8885] CPU: 1 PID: 8885 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 249.502551][ T8885] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.512614][ T8885] Call Trace: [ 249.515911][ T8885] dump_stack+0x14a/0x1ce [ 249.520245][ T8885] ? devkmsg_release+0x11c/0x11c [ 249.525175][ T8885] ? show_regs_print_info+0x12/0x12 [ 249.530364][ T8885] ? pcpu_alloc_area+0x7a2/0x8f0 [ 249.535311][ T8885] should_fail+0x6fb/0x860 [ 249.539725][ T8885] ? setup_fault_attr+0x3d0/0x3d0 [ 249.544738][ T8885] ? cpumask_next+0xc/0x20 [ 249.549937][ T8885] ? pcpu_alloc+0xd17/0x11f0 [ 249.554516][ T8885] ? alloc_vfsmnt+0x24/0x470 [ 249.559098][ T8885] should_failslab+0x5/0x20 [ 249.563595][ T8885] kmem_cache_alloc+0x36/0x260 [ 249.568350][ T8885] ? _raw_spin_trylock_bh+0x190/0x190 [ 249.573805][ T8885] alloc_vfsmnt+0x24/0x470 [ 249.578373][ T8885] clone_mnt+0x68/0xca0 [ 249.582537][ T8885] copy_tree+0x116/0xc00 [ 249.587038][ T8885] ? is_subdir+0xe7/0x110 [ 249.591357][ T8885] propagate_one+0x385/0x5d0 [ 249.595941][ T8885] propagate_mnt+0x428/0x900 [ 249.600530][ T8885] attach_recursive_mnt+0x787/0x1ef0 [ 249.605803][ T8885] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 249.611427][ T8885] ? _raw_spin_unlock+0x5/0x20 [ 249.616195][ T8885] ? get_mountpoint+0x410/0x410 [ 249.621042][ T8885] ? lock_mount+0x109/0x2f0 [ 249.625625][ T8885] ? memset+0x1f/0x40 [ 249.629596][ T8885] do_add_mount+0x335/0x480 [ 249.634091][ T8885] do_mount+0x2465/0x28c0 [ 249.638422][ T8885] ? copy_mount_string+0x30/0x30 [ 249.643355][ T8885] ? copy_mount_options+0x1e8/0x320 [ 249.648538][ T8885] ? copy_mount_options+0x293/0x320 [ 249.653723][ T8885] ksys_mount+0xc2/0xf0 [ 249.657871][ T8885] __x64_sys_mount+0xb1/0xc0 [ 249.662551][ T8885] do_syscall_64+0xcb/0x150 [ 249.667059][ T8885] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 249.672945][ T8885] RIP: 0033:0x45c829 [ 249.676828][ T8885] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 249.696561][ T8885] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 249.704967][ T8885] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:43:59 executing program 3 (fault-call:3 fault-nth:94): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 249.712965][ T8885] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 249.720934][ T8885] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 249.728903][ T8885] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 249.736898][ T8885] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 249.814373][ T8907] FAULT_INJECTION: forcing a failure. [ 249.814373][ T8907] name failslab, interval 1, probability 0, space 0, times 0 [ 249.835843][ T8907] CPU: 0 PID: 8907 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 249.845929][ T8907] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 249.855981][ T8907] Call Trace: [ 249.859275][ T8907] dump_stack+0x14a/0x1ce [ 249.863598][ T8907] ? devkmsg_release+0x11c/0x11c [ 249.868523][ T8907] ? show_regs_print_info+0x12/0x12 [ 249.873706][ T8907] ? ida_alloc_range+0xa59/0xac0 [ 249.878631][ T8907] should_fail+0x6fb/0x860 [ 249.883041][ T8907] ? setup_fault_attr+0x3d0/0x3d0 [ 249.888050][ T8907] ? idr_replace+0x240/0x240 [ 249.892628][ T8907] ? alloc_vfsmnt+0xa3/0x470 [ 249.897200][ T8907] should_failslab+0x5/0x20 [ 249.901718][ T8907] __kmalloc_track_caller+0x5d/0x2c0 [ 249.906988][ T8907] ? alloc_vfsmnt+0x24/0x470 [ 249.911584][ T8907] kstrdup_const+0x51/0x90 [ 249.915985][ T8907] alloc_vfsmnt+0xa3/0x470 [ 249.920388][ T8907] clone_mnt+0x68/0xca0 [ 249.924533][ T8907] copy_tree+0x116/0xc00 [ 249.928762][ T8907] ? is_subdir+0xe7/0x110 [ 249.933079][ T8907] propagate_one+0x385/0x5d0 [ 249.937658][ T8907] propagate_mnt+0x428/0x900 [ 249.942261][ T8907] attach_recursive_mnt+0x787/0x1ef0 [ 249.947534][ T8907] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 249.953151][ T8907] ? _raw_spin_unlock+0x5/0x20 [ 249.957990][ T8907] ? get_mountpoint+0x410/0x410 [ 249.963005][ T8907] ? lock_mount+0x109/0x2f0 [ 249.967528][ T8907] ? memset+0x1f/0x40 [ 249.971485][ T8907] do_add_mount+0x335/0x480 [ 249.975976][ T8907] do_mount+0x2465/0x28c0 [ 249.980277][ T8907] ? copy_mount_string+0x30/0x30 [ 249.985211][ T8907] ? copy_mount_options+0x1e8/0x320 [ 249.990383][ T8907] ? copy_mount_options+0x293/0x320 [ 249.995551][ T8907] ksys_mount+0xc2/0xf0 [ 249.999696][ T8907] __x64_sys_mount+0xb1/0xc0 [ 250.004258][ T8907] do_syscall_64+0xcb/0x150 [ 250.008750][ T8907] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 250.014642][ T8907] RIP: 0033:0x45c829 [ 250.018597][ T8907] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 250.038193][ T8907] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 250.046577][ T8907] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 250.054520][ T8907] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 09:43:59 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:59 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x104a, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:59 executing program 3 (fault-call:3 fault-nth:95): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 250.062669][ T8907] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 250.070616][ T8907] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 250.078557][ T8907] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 250.091214][ T3082] usb 1-1: new high-speed USB device number 70 using dummy_hcd 09:43:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdc00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:43:59 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 250.180969][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 250.204930][ T8912] FAULT_INJECTION: forcing a failure. [ 250.204930][ T8912] name failslab, interval 1, probability 0, space 0, times 0 [ 250.219548][ T8912] CPU: 1 PID: 8912 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 250.229622][ T8912] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 250.239674][ T8912] Call Trace: [ 250.242965][ T8912] dump_stack+0x14a/0x1ce [ 250.247283][ T8912] ? devkmsg_release+0x11c/0x11c [ 250.252208][ T8912] ? show_regs_print_info+0x12/0x12 [ 250.257393][ T8912] ? pcpu_alloc_area+0x7a2/0x8f0 [ 250.262318][ T8912] should_fail+0x6fb/0x860 [ 250.266725][ T8912] ? setup_fault_attr+0x3d0/0x3d0 [ 250.271731][ T8912] ? cpumask_next+0xc/0x20 [ 250.276135][ T8912] ? pcpu_alloc+0xd17/0x11f0 [ 250.280713][ T8912] ? alloc_vfsmnt+0x24/0x470 [ 250.285319][ T8912] should_failslab+0x5/0x20 [ 250.289826][ T8912] kmem_cache_alloc+0x36/0x260 [ 250.294578][ T8912] ? _raw_spin_trylock_bh+0x190/0x190 [ 250.299942][ T8912] alloc_vfsmnt+0x24/0x470 [ 250.304345][ T8912] clone_mnt+0x68/0xca0 [ 250.308491][ T8912] copy_tree+0x116/0xc00 [ 250.312722][ T8912] ? is_subdir+0xe7/0x110 [ 250.317041][ T8912] propagate_one+0x385/0x5d0 [ 250.321620][ T8912] propagate_mnt+0x428/0x900 [ 250.326202][ T8912] attach_recursive_mnt+0x787/0x1ef0 [ 250.331485][ T8912] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 250.337114][ T8912] ? _raw_spin_unlock+0x5/0x20 [ 250.341866][ T8912] ? get_mountpoint+0x410/0x410 [ 250.346703][ T8912] ? lock_mount+0x109/0x2f0 [ 250.351555][ T8912] ? memset+0x1f/0x40 [ 250.355580][ T8912] do_add_mount+0x335/0x480 [ 250.360083][ T8912] do_mount+0x2465/0x28c0 [ 250.364407][ T8912] ? copy_mount_string+0x30/0x30 [ 250.369358][ T8912] ? copy_mount_options+0x1e8/0x320 [ 250.374556][ T8912] ? copy_mount_options+0x293/0x320 [ 250.379754][ T8912] ksys_mount+0xc2/0xf0 [ 250.383908][ T8912] __x64_sys_mount+0xb1/0xc0 [ 250.388489][ T8912] do_syscall_64+0xcb/0x150 [ 250.392974][ T8912] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 250.398919][ T8912] RIP: 0033:0x45c829 [ 250.402787][ T8912] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 250.422624][ T8912] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 250.431010][ T8912] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 250.439030][ T8912] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 250.447030][ T8912] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 250.455182][ T8912] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 250.463125][ T8912] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 250.561015][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 250.580889][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 250.590640][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 250.608310][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 250.617644][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 250.626566][ T3082] usb 1-1: config 0 descriptor?? [ 251.111587][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.118733][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.125803][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.132877][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.139910][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.146984][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.154150][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.161195][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.168241][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.175308][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.182375][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.189399][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.196482][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.203556][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.210589][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.217642][ T3082] appleir 0003:05AC:1440.002E: unknown main item tag 0x0 [ 251.225267][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.002E/input/input52 [ 251.238864][ T3082] appleir 0003:05AC:1440.002E: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 251.313185][ T3082] usb 1-1: USB disconnect, device number 70 09:44:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:01 executing program 3 (fault-call:3 fault-nth:96): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdd00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:01 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1a00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:01 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa2"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) [ 251.850917][ T8944] FAULT_INJECTION: forcing a failure. [ 251.850917][ T8944] name failslab, interval 1, probability 0, space 0, times 0 [ 251.876842][ T8944] CPU: 1 PID: 8944 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 251.887444][ T8944] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 251.897579][ T8944] Call Trace: [ 251.900956][ T8944] dump_stack+0x14a/0x1ce [ 251.905276][ T8944] ? devkmsg_release+0x11c/0x11c [ 251.910202][ T8944] ? show_regs_print_info+0x12/0x12 [ 251.915396][ T8944] ? ida_alloc_range+0xa59/0xac0 [ 251.920323][ T8944] should_fail+0x6fb/0x860 [ 251.924755][ T8944] ? setup_fault_attr+0x3d0/0x3d0 [ 251.929767][ T8944] ? idr_replace+0x240/0x240 [ 251.934348][ T8944] ? alloc_vfsmnt+0xa3/0x470 [ 251.938929][ T8944] should_failslab+0x5/0x20 [ 251.943421][ T8944] __kmalloc_track_caller+0x5d/0x2c0 [ 251.948699][ T8944] ? alloc_vfsmnt+0x24/0x470 [ 251.953281][ T8944] kstrdup_const+0x51/0x90 [ 251.957701][ T8944] alloc_vfsmnt+0xa3/0x470 [ 251.962117][ T8944] clone_mnt+0x68/0xca0 [ 251.966272][ T8944] copy_tree+0x116/0xc00 [ 251.970511][ T8944] ? is_subdir+0xe7/0x110 [ 251.974833][ T8944] propagate_one+0x385/0x5d0 [ 251.979425][ T8944] propagate_mnt+0x428/0x900 [ 251.984009][ T8944] attach_recursive_mnt+0x787/0x1ef0 [ 251.989286][ T8944] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 251.994912][ T8944] ? _raw_spin_unlock+0x5/0x20 [ 251.999677][ T8944] ? get_mountpoint+0x410/0x410 [ 252.004526][ T8944] ? lock_mount+0x109/0x2f0 [ 252.009109][ T8944] ? memset+0x1f/0x40 [ 252.013085][ T8944] do_add_mount+0x335/0x480 [ 252.017580][ T8944] do_mount+0x2465/0x28c0 [ 252.021908][ T8944] ? copy_mount_string+0x30/0x30 [ 252.026838][ T8944] ? copy_mount_options+0x1e8/0x320 [ 252.032024][ T8944] ? copy_mount_options+0x293/0x320 [ 252.037212][ T8944] ksys_mount+0xc2/0xf0 [ 252.041359][ T8944] __x64_sys_mount+0xb1/0xc0 [ 252.045940][ T8944] do_syscall_64+0xcb/0x150 [ 252.050441][ T8944] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 252.056461][ T8944] RIP: 0033:0x45c829 [ 252.060357][ T8944] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 252.079954][ T8944] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 252.088356][ T8944] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 09:44:01 executing program 3 (fault-call:3 fault-nth:97): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 252.096336][ T8944] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 252.104324][ T8944] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 252.112298][ T8944] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 252.120266][ T8944] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 252.173106][ T8962] FAULT_INJECTION: forcing a failure. [ 252.173106][ T8962] name failslab, interval 1, probability 0, space 0, times 0 [ 252.185872][ T8962] CPU: 1 PID: 8962 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 252.195971][ T8962] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.206024][ T8962] Call Trace: [ 252.209309][ T8962] dump_stack+0x14a/0x1ce [ 252.213631][ T8962] ? devkmsg_release+0x11c/0x11c [ 252.218557][ T8962] ? show_regs_print_info+0x12/0x12 [ 252.223751][ T8962] ? ida_alloc_range+0xa59/0xac0 [ 252.228683][ T8962] should_fail+0x6fb/0x860 [ 252.233090][ T8962] ? setup_fault_attr+0x3d0/0x3d0 [ 252.238103][ T8962] ? alloc_vfsmnt+0x24/0x470 [ 252.242680][ T8962] should_failslab+0x5/0x20 [ 252.247176][ T8962] kmem_cache_alloc+0x36/0x260 [ 252.251926][ T8962] ? _raw_spin_trylock_bh+0x190/0x190 [ 252.257284][ T8962] alloc_vfsmnt+0x24/0x470 [ 252.261690][ T8962] clone_mnt+0x68/0xca0 [ 252.265834][ T8962] copy_tree+0x116/0xc00 [ 252.270065][ T8962] ? is_subdir+0xe7/0x110 [ 252.274381][ T8962] propagate_one+0x385/0x5d0 [ 252.278958][ T8962] propagate_mnt+0x428/0x900 [ 252.283537][ T8962] attach_recursive_mnt+0x787/0x1ef0 [ 252.288810][ T8962] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 252.294455][ T8962] ? _raw_spin_unlock+0x5/0x20 [ 252.299206][ T8962] ? get_mountpoint+0x410/0x410 [ 252.304047][ T8962] ? lock_mount+0x109/0x2f0 [ 252.308538][ T8962] ? memset+0x1f/0x40 [ 252.312508][ T8962] do_add_mount+0x335/0x480 [ 252.317001][ T8962] do_mount+0x2465/0x28c0 [ 252.321321][ T8962] ? copy_mount_string+0x30/0x30 [ 252.326250][ T8962] ? copy_mount_options+0x1e8/0x320 [ 252.331439][ T8962] ? copy_mount_options+0x293/0x320 [ 252.336626][ T8962] ksys_mount+0xc2/0xf0 [ 252.340803][ T8962] __x64_sys_mount+0xb1/0xc0 [ 252.345381][ T8962] do_syscall_64+0xcb/0x150 [ 252.349905][ T8962] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 252.355804][ T8962] RIP: 0033:0x45c829 [ 252.359689][ T8962] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 252.379281][ T8962] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 252.387705][ T8962] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 252.395821][ T8962] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 252.403770][ T8962] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 252.411717][ T8962] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 09:44:02 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:02 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xde00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:02 executing program 3 (fault-call:3 fault-nth:98): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 252.419685][ T8962] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 09:44:02 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:02 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1b00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 252.500611][ T3969] usb 1-1: new high-speed USB device number 71 using dummy_hcd [ 252.534324][ T8971] FAULT_INJECTION: forcing a failure. [ 252.534324][ T8971] name failslab, interval 1, probability 0, space 0, times 0 [ 252.547985][ T8971] CPU: 1 PID: 8971 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 252.558051][ T8971] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.568104][ T8971] Call Trace: [ 252.571396][ T8971] dump_stack+0x14a/0x1ce [ 252.575721][ T8971] ? devkmsg_release+0x11c/0x11c [ 252.580745][ T8971] ? show_regs_print_info+0x12/0x12 [ 252.585930][ T8971] ? ida_alloc_range+0xa59/0xac0 [ 252.590859][ T8971] should_fail+0x6fb/0x860 [ 252.595268][ T8971] ? setup_fault_attr+0x3d0/0x3d0 [ 252.600281][ T8971] ? idr_replace+0x240/0x240 [ 252.604860][ T8971] ? alloc_vfsmnt+0xa3/0x470 [ 252.609436][ T8971] should_failslab+0x5/0x20 [ 252.613930][ T8971] __kmalloc_track_caller+0x5d/0x2c0 [ 252.619203][ T8971] ? alloc_vfsmnt+0x24/0x470 [ 252.623782][ T8971] kstrdup_const+0x51/0x90 [ 252.628193][ T8971] alloc_vfsmnt+0xa3/0x470 [ 252.632598][ T8971] clone_mnt+0x68/0xca0 [ 252.637034][ T8971] copy_tree+0x116/0xc00 [ 252.641440][ T8971] ? is_subdir+0xe7/0x110 [ 252.645780][ T8971] propagate_one+0x385/0x5d0 [ 252.650739][ T8971] propagate_mnt+0x428/0x900 [ 252.655320][ T8971] attach_recursive_mnt+0x787/0x1ef0 [ 252.660681][ T8971] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 252.666300][ T8971] ? _raw_spin_unlock+0x5/0x20 [ 252.671055][ T8971] ? get_mountpoint+0x410/0x410 [ 252.675897][ T8971] ? lock_mount+0x109/0x2f0 [ 252.680388][ T8971] ? memset+0x1f/0x40 [ 252.684357][ T8971] do_add_mount+0x335/0x480 [ 252.688849][ T8971] do_mount+0x2465/0x28c0 [ 252.693169][ T8971] ? copy_mount_string+0x30/0x30 [ 252.698185][ T8971] ? copy_mount_options+0x1e8/0x320 [ 252.703457][ T8971] ? copy_mount_options+0x293/0x320 [ 252.708649][ T8971] ksys_mount+0xc2/0xf0 [ 252.712797][ T8971] __x64_sys_mount+0xb1/0xc0 [ 252.717374][ T8971] do_syscall_64+0xcb/0x150 [ 252.721867][ T8971] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 252.727746][ T8971] RIP: 0033:0x45c829 [ 252.731632][ T8971] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 09:44:02 executing program 3 (fault-call:3 fault-nth:99): mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 252.751233][ T8971] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 252.759641][ T8971] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 252.767636][ T8971] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 252.776246][ T8971] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 [ 252.784240][ T8971] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 252.792298][ T8971] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 252.840603][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 252.956825][ T8983] FAULT_INJECTION: forcing a failure. [ 252.956825][ T8983] name failslab, interval 1, probability 0, space 0, times 0 [ 252.969715][ T8983] CPU: 1 PID: 8983 Comm: syz-executor.3 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 252.979751][ T8983] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 252.989810][ T8983] Call Trace: [ 252.993094][ T8983] dump_stack+0x14a/0x1ce [ 252.997413][ T8983] ? devkmsg_release+0x11c/0x11c [ 253.002325][ T8983] ? show_regs_print_info+0x12/0x12 [ 253.007502][ T8983] ? pcpu_alloc_area+0x7a2/0x8f0 [ 253.012439][ T8983] should_fail+0x6fb/0x860 [ 253.016830][ T8983] ? setup_fault_attr+0x3d0/0x3d0 [ 253.021823][ T8983] ? cpumask_next+0xc/0x20 [ 253.026224][ T8983] ? pcpu_alloc+0xd17/0x11f0 [ 253.030783][ T8983] ? alloc_vfsmnt+0x24/0x470 [ 253.035346][ T8983] should_failslab+0x5/0x20 [ 253.039837][ T8983] kmem_cache_alloc+0x36/0x260 [ 253.044658][ T8983] ? _raw_spin_trylock_bh+0x190/0x190 [ 253.050019][ T8983] alloc_vfsmnt+0x24/0x470 [ 253.054518][ T8983] clone_mnt+0x68/0xca0 [ 253.058672][ T8983] copy_tree+0x116/0xc00 [ 253.062915][ T8983] ? is_subdir+0xe7/0x110 [ 253.067249][ T8983] propagate_one+0x385/0x5d0 [ 253.071886][ T8983] propagate_mnt+0x428/0x900 [ 253.076576][ T8983] attach_recursive_mnt+0x787/0x1ef0 [ 253.081856][ T8983] ? blk_crypto_keyslot_evict+0xe0/0x160 [ 253.087461][ T8983] ? _raw_spin_unlock+0x5/0x20 [ 253.092197][ T8983] ? get_mountpoint+0x410/0x410 [ 253.097019][ T8983] ? lock_mount+0x109/0x2f0 [ 253.101495][ T8983] ? memset+0x1f/0x40 [ 253.105468][ T8983] do_add_mount+0x335/0x480 [ 253.109946][ T8983] do_mount+0x2465/0x28c0 [ 253.114250][ T8983] ? copy_mount_string+0x30/0x30 [ 253.119158][ T8983] ? copy_mount_options+0x1e8/0x320 [ 253.124325][ T8983] ? copy_mount_options+0x293/0x320 [ 253.129492][ T8983] ksys_mount+0xc2/0xf0 [ 253.133630][ T8983] __x64_sys_mount+0xb1/0xc0 [ 253.138200][ T8983] do_syscall_64+0xcb/0x150 [ 253.142674][ T8983] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 253.148553][ T8983] RIP: 0033:0x45c829 [ 253.152418][ T8983] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 253.171993][ T8983] RSP: 002b:00007fe4fb5c8c78 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 253.180390][ T8983] RAX: ffffffffffffffda RBX: 00000000004f6040 RCX: 000000000045c829 [ 253.188350][ T8983] RDX: 0000000020000080 RSI: 0000000020000000 RDI: 0000000000400000 [ 253.196292][ T8983] RBP: 000000000078bf00 R08: 0000000020000300 R09: 0000000000000000 09:44:02 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 253.204248][ T8983] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000003 [ 253.212193][ T8983] R13: 0000000000000756 R14: 00000000004ca122 R15: 00007fe4fb5c96d4 [ 253.226054][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 253.237491][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 09:44:02 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6a00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:02 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x200000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 253.250569][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 253.274127][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 253.298125][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 253.310058][ T3969] usb 1-1: config 0 descriptor?? 09:44:02 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 253.791192][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.798281][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.806587][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.814351][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.822213][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.829264][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.837580][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.845455][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.853226][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.860255][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.868695][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.876516][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.884279][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.892087][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.899106][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.907371][ T3969] appleir 0003:05AC:1440.002F: unknown main item tag 0x0 [ 253.915663][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.002F/input/input53 [ 253.929344][ T3969] appleir 0003:05AC:1440.002F: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 254.001279][ T3082] usb 1-1: USB disconnect, device number 71 09:44:04 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa2"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400002, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:04 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdf00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x4000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:04 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6b00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:04 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400003, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400004, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 254.640716][ T9038] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400005, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 254.680362][ T9038] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400006, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:04 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xda00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400007, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 254.790284][ T3969] usb 1-1: new high-speed USB device number 72 using dummy_hcd [ 254.911432][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 255.030360][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 255.041687][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 255.051687][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 255.064549][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 255.073994][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 255.083100][ T3969] usb 1-1: config 0 descriptor?? [ 255.561029][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.568161][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.576644][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.584386][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.592066][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.599084][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.607246][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.614971][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.622776][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.629811][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.638056][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.645996][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.653872][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.662057][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.669110][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.677551][ T3969] appleir 0003:05AC:1440.0030: unknown main item tag 0x0 [ 255.686868][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0030/input/input54 [ 255.700673][ T3969] appleir 0003:05AC:1440.0030: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 255.781069][ T3082] usb 1-1: USB disconnect, device number 72 09:44:05 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b08"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:05 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400008, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:05 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6c00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:05 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:05 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xc200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:05 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdb00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:05 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400009, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40000a, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 256.378110][ T9101] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 256.402004][ T9101] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40000b, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:06 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6d00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40000c, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 256.580087][ T3082] usb 1-1: new high-speed USB device number 73 using dummy_hcd 09:44:06 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdc00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 256.654174][ T9122] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 256.674763][ T9122] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 256.689055][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 256.810102][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.822111][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.832784][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 256.867428][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 256.884687][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 256.899130][ T3082] usb 1-1: config 0 descriptor?? [ 257.380759][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.387820][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.397795][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.404897][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.412005][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.419139][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.426222][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.433309][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.440380][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.447422][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.454670][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.462035][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.469060][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.476335][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.483558][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.490635][ T3082] appleir 0003:05AC:1440.0031: unknown main item tag 0x0 [ 257.498362][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0031/input/input55 [ 257.511860][ T3082] appleir 0003:05AC:1440.0031: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 257.584475][ T3082] usb 1-1: USB disconnect, device number 73 09:44:07 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40000d, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:07 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6e00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:07 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdd00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:07 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:07 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b08"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40000e, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40000f, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 258.241091][ T9176] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400010, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 258.297115][ T9176] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:07 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x6f00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400011, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 258.389807][ T3082] usb 1-1: new high-speed USB device number 74 using dummy_hcd 09:44:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400012, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 258.509893][ T3082] usb 1-1: Using ep0 maxpacket: 16 09:44:08 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:08 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xde00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400013, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400017, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 258.629846][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 258.651916][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 258.681248][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 258.694674][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 258.704127][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 258.715176][ T3082] usb 1-1: config 0 descriptor?? [ 258.770141][ T9215] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 258.798016][ T9215] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:08 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 259.190661][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.197928][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.206894][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.215152][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.223395][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.231814][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.238912][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.248070][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.256286][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.264568][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.272828][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.281073][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.288201][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.297312][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.305743][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.313893][ T3082] appleir 0003:05AC:1440.0032: unknown main item tag 0x0 [ 259.322744][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0032/input/input56 [ 259.337660][ T3082] appleir 0003:05AC:1440.0032: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 259.420559][ T3082] usb 1-1: USB disconnect, device number 74 09:44:09 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b08"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:09 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400018, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:09 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:09 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:09 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdf00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:09 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 259.958313][ T9254] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:09 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40001a, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 260.001788][ T9254] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:09 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400022, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:09 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400024, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 260.164994][ T9274] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 260.179348][ T9274] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:09 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 260.219583][ T3969] usb 1-1: new high-speed USB device number 75 using dummy_hcd 09:44:09 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:09 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40002c, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 260.319643][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 260.361374][ T9290] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 260.395320][ T9290] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 260.459607][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 260.497215][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 260.517838][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 260.548886][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 260.567737][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 260.579952][ T3969] usb 1-1: config 0 descriptor?? [ 261.060237][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.067297][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.077221][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.084318][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.091395][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.098421][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.105497][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.112661][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.119838][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.127560][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.134621][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.141707][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.148718][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.155767][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.162857][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.170012][ T3969] appleir 0003:05AC:1440.0033: unknown main item tag 0x0 [ 261.177597][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0033/input/input57 [ 261.191093][ T3969] appleir 0003:05AC:1440.0033: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 261.263823][ T3969] usb 1-1: USB disconnect, device number 75 09:44:11 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b0888"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:11 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:11 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:11 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400030, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:11 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:11 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:11 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400038, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:11 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40003a, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 261.867329][ T9333] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 261.892309][ T9333] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:11 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 261.996290][ T9341] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 262.030845][ T9341] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:11 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40005c, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 262.059308][ T3969] usb 1-1: new high-speed USB device number 76 using dummy_hcd 09:44:11 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40008a, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:11 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 262.169381][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 262.299438][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 262.311212][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 262.326379][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 262.342298][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 262.361605][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 262.382772][ T3969] usb 1-1: config 0 descriptor?? [ 262.860055][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.867114][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.875618][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.883605][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.891313][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.898337][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.906559][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.914409][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.922193][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.930038][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.937252][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.945676][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.953487][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.961296][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.968320][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.976633][ T3969] appleir 0003:05AC:1440.0034: unknown main item tag 0x0 [ 262.984995][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0034/input/input58 [ 262.998685][ T3969] appleir 0003:05AC:1440.0034: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 263.061563][ T3082] usb 1-1: USB disconnect, device number 76 09:44:13 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b0888"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40008c, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:13 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40008e, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40009d, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 263.706740][ T9405] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 263.732951][ T9405] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4000e0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4001c0, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4001cc, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 263.872106][ T3082] usb 1-1: new high-speed USB device number 77 using dummy_hcd [ 263.969138][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 264.089198][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 264.109051][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 264.129336][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 264.150553][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 264.159861][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 264.168707][ T3082] usb 1-1: config 0 descriptor?? [ 264.649783][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.657705][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.665411][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.672926][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.680102][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.687183][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.694267][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.701484][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.708689][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.715774][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.722852][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.730446][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.738796][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.746248][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.753366][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.760473][ T3082] appleir 0003:05AC:1440.0035: unknown main item tag 0x0 [ 264.768283][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0035/input/input59 [ 264.781770][ T3082] appleir 0003:05AC:1440.0035: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 264.851393][ T3969] usb 1-1: USB disconnect, device number 77 09:44:14 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b0888"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:14 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4001fc, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:14 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:14 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:14 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:14 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:14 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400202, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 265.441652][ T9468] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 265.480765][ T9468] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400232, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40023e, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:15 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:15 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 265.648857][ T3082] usb 1-1: new high-speed USB device number 78 using dummy_hcd 09:44:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400300, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 265.722584][ T9484] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 265.745087][ T9484] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 265.748913][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 265.855113][ T9495] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 265.891208][ T9495] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 265.908893][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 265.926484][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 265.947188][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 265.989084][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 266.007959][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 266.030234][ T3082] usb 1-1: config 0 descriptor?? [ 266.519515][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.526654][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.533822][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.540992][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.548926][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.555978][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.563051][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.570133][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.577177][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.584245][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.591677][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.598745][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.605801][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.612978][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.620067][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.627078][ T3082] appleir 0003:05AC:1440.0036: unknown main item tag 0x0 [ 266.635003][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0036/input/input60 [ 266.648676][ T3082] appleir 0003:05AC:1440.0036: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 266.723628][ T3082] usb 1-1: USB disconnect, device number 78 09:44:16 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(0x0, 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40031e, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:16 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:16 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400361, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400370, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 267.311761][ T9535] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 267.339969][ T9535] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400372, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400374, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4003c6, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 267.538665][ T3082] usb 1-1: new high-speed USB device number 79 using dummy_hcd [ 267.638651][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 267.762171][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.778480][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.791543][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 267.805483][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 267.815082][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.824465][ T3082] usb 1-1: config 0 descriptor?? [ 268.309412][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.316533][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.325487][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.333311][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.341262][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.348318][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.356619][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.364515][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.372386][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.380200][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.387334][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.395802][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.403637][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.411375][ T3082] appleir 0003:05AC:1440.0037: unknown main item tag 0x0 [ 268.420089][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0037/input/input61 [ 268.433834][ T3082] appleir 0003:05AC:1440.0037: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 268.512927][ T3082] usb 1-1: USB disconnect, device number 79 09:44:18 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(0x0, 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4003d5, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:18 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xd900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4003d7, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 269.062088][ T9599] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 269.088863][ T9599] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4003e5, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 269.185352][ T9606] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 269.200559][ T9606] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400408, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7a00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 269.318384][ T3969] usb 1-1: new high-speed USB device number 80 using dummy_hcd 09:44:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400480, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 269.408466][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 269.426937][ T9628] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:19 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xea00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 269.450641][ T9628] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 269.528417][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 269.550297][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 269.577997][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 269.598363][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 269.607479][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.617591][ T3969] usb 1-1: config 0 descriptor?? [ 270.099175][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.106240][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.114719][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.122504][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.130267][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.137315][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.145602][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.153422][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.161261][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.169247][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.176286][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.185223][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.192985][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.200809][ T3969] appleir 0003:05AC:1440.0038: unknown main item tag 0x0 [ 270.209361][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0038/input/input62 [ 270.222886][ T3969] appleir 0003:05AC:1440.0038: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 270.300673][ T3969] usb 1-1: USB disconnect, device number 80 09:44:20 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(0x0, 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:20 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:20 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7b00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4004f5, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:20 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xda00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:20 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xeb00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400500, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400600, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400700, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400804, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:20 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7c00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 271.088179][ T3082] usb 1-1: new high-speed USB device number 81 using dummy_hcd 09:44:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400900, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 271.178244][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 271.298282][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 271.309295][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 271.319312][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 271.332411][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 271.341742][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.352695][ T3082] usb 1-1: config 0 descriptor?? [ 271.828918][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.836084][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.845998][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.853140][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.860217][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.867354][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.874418][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.881492][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.888554][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.895587][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.902640][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.909705][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.916736][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.923895][ T3082] appleir 0003:05AC:1440.0039: unknown main item tag 0x0 [ 271.931596][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0039/input/input63 [ 271.945109][ T3082] appleir 0003:05AC:1440.0039: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 272.032191][ T3082] usb 1-1: USB disconnect, device number 81 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400a00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xec00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7d00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:22 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdb00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:22 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x0, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400b00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400c00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 272.650610][ T9742] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 272.674830][ T9742] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 272.771215][ T9749] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400d00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 272.813217][ T9749] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 272.847948][ T3969] usb 1-1: new high-speed USB device number 82 using dummy_hcd 09:44:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7e00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 272.905122][ T9761] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 272.937986][ T3969] usb 1-1: Using ep0 maxpacket: 16 09:44:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xea00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xed00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400e00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 272.948919][ T9761] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 273.058453][ T9771] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 273.072891][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 273.089763][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400f00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 273.104628][ T9771] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 273.118850][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 273.146410][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 273.155730][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 273.164794][ T3969] usb 1-1: config 0 descriptor?? 09:44:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401020, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x7f00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:23 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdc00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 273.648798][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.656003][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.664504][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.673922][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.686754][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.695272][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.706313][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.713691][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.721313][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.728549][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.735768][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.743028][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.750359][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.757432][ T3969] appleir 0003:05AC:1440.003A: unknown main item tag 0x0 [ 273.765697][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.003A/input/input64 [ 273.783369][ T3969] appleir 0003:05AC:1440.003A: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 273.863620][ T3082] usb 1-1: USB disconnect, device number 82 09:44:23 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x0, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:23 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401100, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:23 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xee00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:23 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xeb00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:23 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27ebe, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:23 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdd00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:24 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401200, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:24 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401300, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:24 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401700, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 274.511866][ T9841] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 274.537785][ T9841] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 274.621189][ T9845] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 274.648216][ T9845] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:24 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401800, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 274.677774][ T3969] usb 1-1: new high-speed USB device number 83 using dummy_hcd 09:44:24 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xef00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:24 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xec00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 274.797726][ T3969] usb 1-1: Using ep0 maxpacket: 16 [ 274.917738][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 274.939556][ T3969] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 274.971065][ T3969] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 274.996984][ T3969] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 275.017472][ T3969] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.042845][ T3969] usb 1-1: config 0 descriptor?? [ 275.518674][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.525813][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.532922][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.539973][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.547089][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.554347][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.561405][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.568471][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.575515][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.582729][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.589793][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.596871][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.603917][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.611043][ T3969] appleir 0003:05AC:1440.003B: unknown main item tag 0x0 [ 275.619123][ T3969] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.003B/input/input65 [ 275.632671][ T3969] appleir 0003:05AC:1440.003B: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 275.723447][ T3969] usb 1-1: USB disconnect, device number 83 09:44:25 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x0, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401a00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906c6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:25 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xed00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:25 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xde00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906e6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x401e03, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6a66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:26 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6c66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:26 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x402000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 276.371887][ T9914] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 276.397051][ T9914] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:26 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x402010, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 276.537542][ T5] usb 1-1: new high-speed USB device number 84 using dummy_hcd [ 276.667514][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 276.787516][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 276.799557][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 276.810210][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 276.823852][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 276.834003][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.842828][ T5] usb 1-1: config 0 descriptor?? [ 277.338271][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.345406][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.352526][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.359597][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.366625][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.373677][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.380740][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.387803][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.394844][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.401948][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.409006][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.416021][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.423068][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.430147][ T5] appleir 0003:05AC:1440.003C: unknown main item tag 0x0 [ 277.438134][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.003C/input/input66 [ 277.451556][ T5] appleir 0003:05AC:1440.003C: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 277.543368][ T5] usb 1-1: USB disconnect, device number 84 09:44:27 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2e732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x402200, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:27 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xee00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xdf00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2f732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x402400, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b65732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4026d1, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b67732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x4026d3, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 278.242575][ T9986] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 278.268723][ T9986] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 278.337979][ T3082] usb 1-1: new high-speed USB device number 85 using dummy_hcd [ 278.447310][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 278.577327][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 278.593683][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 278.608689][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 278.623685][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 278.633004][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 278.641636][ T3082] usb 1-1: config 0 descriptor?? [ 279.117998][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.125164][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.132689][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.139767][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.146798][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.153889][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.160965][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.168060][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.175156][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.182231][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.189334][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.197362][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.204751][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.211851][ T3082] appleir 0003:05AC:1440.003D: unknown main item tag 0x0 [ 279.219562][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.003D/input/input67 [ 279.233074][ T3082] appleir 0003:05AC:1440.003D: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 279.323745][ T3082] usb 1-1: USB disconnect, device number 85 09:44:29 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66722e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xef00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x402c00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:29 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:29 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66742e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x402e84, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732f666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x403000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2e6174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 279.963983][T10041] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 279.979814][T10041] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2f6174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 280.107057][ T5] usb 1-1: new high-speed USB device number 86 using dummy_hcd [ 280.197107][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 280.317098][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 280.337006][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 280.351942][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 280.365570][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 280.374902][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 280.383849][ T5] usb 1-1: config 0 descriptor?? [ 280.867842][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.875240][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.882744][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.890047][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.897756][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.905091][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.912632][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.919889][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.927429][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.935006][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.942388][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.949651][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.956813][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.964482][ T5] appleir 0003:05AC:1440.003E: unknown main item tag 0x0 [ 280.973023][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.003E/input/input68 [ 280.987075][ T5] appleir 0003:05AC:1440.003E: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 281.073774][ T5] usb 1-1: USB disconnect, device number 86 09:44:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e656174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x403202, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:31 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x0) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:31 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27ebe, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e676174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666173000204010002000270fff8", 0x16}], 0x0, 0x0) [ 281.616192][T10088] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:31 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x403800, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 281.673368][T10088] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666175000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x403a00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:31 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040004010002000270fff8", 0x16}], 0x0, 0x0) 09:44:31 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x403e02, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 281.876900][ T5] usb 1-1: new high-speed USB device number 87 using dummy_hcd [ 281.911450][T10117] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 281.933312][T10116] FAT-fs (loop1): bogus logical sector size 4 [ 281.942825][T10116] FAT-fs (loop1): Can't find a valid FAT filesystem [ 281.957048][T10117] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 281.986884][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 282.044777][T10116] FAT-fs (loop1): bogus logical sector size 4 [ 282.060768][T10116] FAT-fs (loop1): Can't find a valid FAT filesystem [ 282.106878][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 282.121995][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 282.133390][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 282.151346][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 282.163321][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 282.172792][ T5] usb 1-1: config 0 descriptor?? [ 282.647600][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.655163][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.663981][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.672301][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.680119][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.688082][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.695819][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.704355][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.712330][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.721530][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.729562][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.737632][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.745213][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.753697][ T5] appleir 0003:05AC:1440.003F: unknown main item tag 0x0 [ 282.762287][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.003F/input/input69 [ 282.776291][ T5] appleir 0003:05AC:1440.003F: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 282.853270][ T5] usb 1-1: USB disconnect, device number 87 09:44:32 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174020204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:32 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x403f00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:32 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) socket$inet6(0xa, 0x3, 0x20) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:32 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="ea3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:32 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:32 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x404000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:33 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="ec3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:33 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x405c00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 283.390794][T10155] FAT-fs (loop1): bogus logical sector size 514 [ 283.408212][T10155] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:33 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2e732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 283.493202][T10155] FAT-fs (loop1): bogus logical sector size 514 [ 283.502101][T10155] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:33 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x406103, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:33 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174030204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:33 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x407003, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 283.646656][ T3082] usb 1-1: new high-speed USB device number 88 using dummy_hcd [ 283.746498][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 283.751870][T10194] FAT-fs (loop1): bogus logical sector size 515 [ 283.764707][T10194] FAT-fs (loop1): Can't find a valid FAT filesystem [ 283.876778][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 283.890238][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 283.900591][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 283.913594][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 283.922768][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 283.931554][ T3082] usb 1-1: config 0 descriptor?? [ 284.417485][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.424771][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.432234][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.439702][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.447129][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.454254][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.461381][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.470461][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.478110][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.485374][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.492613][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.499939][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.507362][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.514915][ T3082] appleir 0003:05AC:1440.0040: unknown main item tag 0x0 [ 284.523623][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0040/input/input70 [ 284.538429][ T3082] appleir 0003:05AC:1440.0040: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 284.619152][ T3082] usb 1-1: USB disconnect, device number 88 09:44:34 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) socket$inet6(0xa, 0x3, 0x20) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:34 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2f732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:34 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:34 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x407203, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:34 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe300, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:34 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:34 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x407403, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:34 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732f666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 285.154683][T10222] FAT-fs (loop1): bogus logical sector size 516 [ 285.183795][T10222] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:34 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x408004, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:34 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2e6174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 285.265071][T10222] FAT-fs (loop1): bogus logical sector size 516 [ 285.274488][T10222] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:34 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40842e, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:34 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174050204010002000270fff8", 0x16}], 0x0, 0x0) [ 285.303933][T10243] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 285.331700][T10243] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 285.394228][T10252] FAT-fs (loop1): bogus logical sector size 517 [ 285.400538][T10252] FAT-fs (loop1): Can't find a valid FAT filesystem [ 285.426409][ T3082] usb 1-1: new high-speed USB device number 89 using dummy_hcd [ 285.446818][T10255] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 285.461240][T10255] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 285.516478][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 285.636551][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 285.648252][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 285.659073][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 285.672697][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 285.682904][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 285.692085][ T3082] usb 1-1: config 0 descriptor?? [ 286.177164][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.184220][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.191289][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.198524][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.205544][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.212595][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.219745][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.226810][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.234286][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.241353][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.249386][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.256450][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.263477][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.270528][ T3082] appleir 0003:05AC:1440.0041: unknown main item tag 0x0 [ 286.278219][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0041/input/input71 [ 286.291678][ T3082] appleir 0003:05AC:1440.0041: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 286.378615][ T3082] usb 1-1: USB disconnect, device number 89 09:44:36 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174060204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:36 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) socket$inet6(0xa, 0x3, 0x20) r2 = dup(0xffffffffffffffff) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2f6174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:36 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:36 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x408a00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:36 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe400, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040004010002000270fff8", 0x16}], 0x0, 0x0) 09:44:36 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174070204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:36 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x408c00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 286.894399][T10282] FAT-fs (loop1): bogus logical sector size 518 [ 286.905472][T10282] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:36 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x408e00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 286.977252][T10295] FAT-fs (loop2): bogus logical sector size 4 [ 286.985590][T10295] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:36 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174020204010002000270fff8", 0x16}], 0x0, 0x0) [ 287.065803][T10299] FAT-fs (loop1): bogus logical sector size 519 [ 287.066967][T10295] FAT-fs (loop2): bogus logical sector size 4 [ 287.076939][T10299] FAT-fs (loop1): Can't find a valid FAT filesystem [ 287.078440][T10295] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:36 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x409d00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 287.105430][T10306] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 287.120796][T10306] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:36 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174080204010002000270fff8", 0x16}], 0x0, 0x0) [ 287.176223][ T5] usb 1-1: new high-speed USB device number 90 using dummy_hcd [ 287.238518][T10312] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 287.252882][T10312] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 287.296253][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 287.348500][T10316] FAT-fs (loop1): bogus logical sector size 520 [ 287.352403][T10315] FAT-fs (loop2): bogus logical sector size 514 [ 287.360160][T10316] FAT-fs (loop1): Can't find a valid FAT filesystem [ 287.361223][T10315] FAT-fs (loop2): Can't find a valid FAT filesystem [ 287.446244][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 287.457651][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 287.471291][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 287.486183][T10315] FAT-fs (loop2): bogus logical sector size 514 [ 287.487003][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 287.492434][T10315] FAT-fs (loop2): Can't find a valid FAT filesystem [ 287.502466][T10316] FAT-fs (loop1): bogus logical sector size 520 [ 287.508953][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 287.521393][T10316] FAT-fs (loop1): Can't find a valid FAT filesystem [ 287.528312][ T5] usb 1-1: config 0 descriptor?? [ 287.996944][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.004036][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.012449][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.020157][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.027894][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.034910][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.043134][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.050904][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.058739][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.065760][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.074121][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.081885][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.089632][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.097487][ T5] appleir 0003:05AC:1440.0042: unknown main item tag 0x0 [ 288.105125][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0042/input/input72 [ 288.119199][ T5] appleir 0003:05AC:1440.0042: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 288.198798][ T5] usb 1-1: USB disconnect, device number 90 09:44:38 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40c001, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:38 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe500, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174030204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174090204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40c603, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40cc01, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40d126, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 288.720768][T10334] FAT-fs (loop2): bogus logical sector size 515 [ 288.731465][T10335] FAT-fs (loop1): bogus logical sector size 521 [ 288.747044][T10334] FAT-fs (loop2): Can't find a valid FAT filesystem [ 288.755502][T10335] FAT-fs (loop1): Can't find a valid FAT filesystem [ 288.902109][T10334] FAT-fs (loop2): bogus logical sector size 515 [ 288.910654][T10334] FAT-fs (loop2): Can't find a valid FAT filesystem [ 288.923182][T10335] FAT-fs (loop1): bogus logical sector size 521 [ 288.929550][T10335] FAT-fs (loop1): Can't find a valid FAT filesystem [ 288.930448][T10359] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40d326, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 288.958862][T10359] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 288.986330][ T3082] usb 1-1: new high-speed USB device number 91 using dummy_hcd 09:44:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740a0204010002000270fff8", 0x16}], 0x0, 0x0) [ 289.076153][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 289.146396][T10371] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 289.170407][T10371] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 289.196077][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 289.215980][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 289.228761][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 289.242622][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 289.255672][T10372] FAT-fs (loop2): bogus logical sector size 516 [ 289.263346][T10370] FAT-fs (loop1): bogus logical sector size 522 [ 289.271780][T10372] FAT-fs (loop2): Can't find a valid FAT filesystem [ 289.283697][T10370] FAT-fs (loop1): Can't find a valid FAT filesystem [ 289.290369][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 289.299425][ T3082] usb 1-1: config 0 descriptor?? [ 289.453567][T10372] FAT-fs (loop2): bogus logical sector size 516 [ 289.459213][T10370] FAT-fs (loop1): bogus logical sector size 522 [ 289.465922][T10372] FAT-fs (loop2): Can't find a valid FAT filesystem [ 289.466310][T10370] FAT-fs (loop1): Can't find a valid FAT filesystem [ 289.786825][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.793893][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.803847][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.811830][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.819610][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.827298][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.834319][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.842670][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.850457][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.858332][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.865515][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.874415][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.882251][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.890016][ T3082] appleir 0003:05AC:1440.0043: unknown main item tag 0x0 [ 289.898450][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0043/input/input73 [ 289.912150][ T3082] appleir 0003:05AC:1440.0043: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 289.990208][ T3082] usb 1-1: USB disconnect, device number 91 09:44:40 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:40 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe600, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:40 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40d503, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174050204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:40 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740b0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:40 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40d703, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 290.508038][T10398] FAT-fs (loop2): bogus logical sector size 517 [ 290.521602][T10403] FAT-fs (loop1): bogus logical sector size 523 [ 290.528959][T10398] FAT-fs (loop2): Can't find a valid FAT filesystem [ 290.534495][T10403] FAT-fs (loop1): Can't find a valid FAT filesystem [ 290.568168][T10412] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 290.582812][T10412] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 290.590125][T10403] FAT-fs (loop1): bogus logical sector size 523 09:44:40 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40e000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 290.612640][T10403] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:40 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:40 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40e503, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 290.682856][T10398] FAT-fs (loop2): bogus logical sector size 517 [ 290.693656][T10398] FAT-fs (loop2): Can't find a valid FAT filesystem [ 290.702593][T10420] FAT-fs (loop1): bogus logical sector size 524 [ 290.710092][T10420] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174060204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:40 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740d0204010002000270fff8", 0x16}], 0x0, 0x0) [ 290.786262][T10424] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 290.800611][ T3082] usb 1-1: new high-speed USB device number 92 using dummy_hcd [ 290.808999][T10424] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 290.830912][T10426] FAT-fs (loop2): bogus logical sector size 518 [ 290.840240][T10426] FAT-fs (loop2): Can't find a valid FAT filesystem [ 290.895824][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 290.921183][T10432] FAT-fs (loop1): bogus logical sector size 525 [ 290.929283][T10432] FAT-fs (loop1): Can't find a valid FAT filesystem [ 290.949800][T10426] FAT-fs (loop2): bogus logical sector size 518 [ 290.958549][T10426] FAT-fs (loop2): Can't find a valid FAT filesystem [ 291.015852][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 291.027089][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 291.037106][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 291.052573][T10432] FAT-fs (loop1): bogus logical sector size 525 [ 291.059087][T10432] FAT-fs (loop1): Can't find a valid FAT filesystem [ 291.060100][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 291.074778][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 291.083340][ T3082] usb 1-1: config 0 descriptor?? [ 291.576491][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.583745][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.592229][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.599916][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.607660][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.614683][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.622907][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.630719][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.638405][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.645450][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.653837][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.661542][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.669310][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.677477][ T3082] appleir 0003:05AC:1440.0044: unknown main item tag 0x0 [ 291.685193][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0044/input/input74 [ 291.699889][ T3082] appleir 0003:05AC:1440.0044: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 291.793717][ T3082] usb 1-1: USB disconnect, device number 92 09:44:41 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:41 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40f504, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:41 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe700, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:41 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174070204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:41 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(0xffffffffffffffff, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:41 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:41 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40fc01, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:41 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740f0204010002000270fff8", 0x16}], 0x0, 0x0) [ 292.313890][T10453] FAT-fs (loop1): bogus logical sector size 526 [ 292.317412][T10452] FAT-fs (loop2): bogus logical sector size 519 [ 292.326986][T10452] FAT-fs (loop2): Can't find a valid FAT filesystem [ 292.349744][T10453] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:42 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40ff00, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:42 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40ff01, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 292.427860][T10452] FAT-fs (loop2): bogus logical sector size 519 [ 292.434498][T10471] FAT-fs (loop1): bogus logical sector size 527 [ 292.441021][T10452] FAT-fs (loop2): Can't find a valid FAT filesystem [ 292.448638][T10471] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:42 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40ff03, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:42 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174080204010002000270fff8", 0x16}], 0x0, 0x0) [ 292.550909][T10471] FAT-fs (loop1): bogus logical sector size 527 [ 292.557472][T10471] FAT-fs (loop1): Can't find a valid FAT filesystem [ 292.595568][ T3082] usb 1-1: new high-speed USB device number 93 using dummy_hcd [ 292.618148][T10484] FAT-fs (loop2): bogus logical sector size 520 [ 292.630770][T10484] FAT-fs (loop2): Can't find a valid FAT filesystem [ 292.695622][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 292.825627][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 292.845527][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 292.855252][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 09:44:42 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xfa00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:42 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x40ff0f, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:42 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe800, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:42 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174100204010002000270fff8", 0x16}], 0x0, 0x0) [ 292.873984][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 292.883767][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 292.902714][ T3082] usb 1-1: config 0 descriptor?? [ 292.934753][T10504] FAT-fs (loop1): bogus logical sector size 528 [ 292.953457][T10504] FAT-fs (loop1): Can't find a valid FAT filesystem [ 292.987698][T10504] FAT-fs (loop1): bogus logical sector size 528 [ 293.002389][T10504] FAT-fs (loop1): Can't find a valid FAT filesystem [ 293.386326][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.393391][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.401888][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.409680][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.417461][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.424485][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.432712][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.440545][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.448291][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.455309][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.463698][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.471416][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.479249][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.487075][ T3082] appleir 0003:05AC:1440.0045: unknown main item tag 0x0 [ 293.494869][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0045/input/input75 [ 293.510189][ T3082] appleir 0003:05AC:1440.0045: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 293.587884][ T3082] usb 1-1: USB disconnect, device number 93 09:44:43 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:43 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174110204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:43 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174090204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x600000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xfb00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:43 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xe900, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:43 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174120204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x80ffff, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 294.111338][T10536] FAT-fs (loop1): bogus logical sector size 529 [ 294.112809][T10537] FAT-fs (loop2): bogus logical sector size 521 [ 294.121980][T10536] FAT-fs (loop1): Can't find a valid FAT filesystem [ 294.133681][T10537] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0xa0ffff, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 294.176066][T10550] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 294.203991][T10550] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 294.264261][T10537] FAT-fs (loop2): bogus logical sector size 521 [ 294.270599][T10549] FAT-fs (loop1): bogus logical sector size 530 [ 294.290058][T10537] FAT-fs (loop2): Can't find a valid FAT filesystem [ 294.299971][T10549] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x20001000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 294.316199][T10555] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 294.333044][T10555] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:43 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x7ffffffff000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 294.379548][T10549] FAT-fs (loop1): bogus logical sector size 530 [ 294.385865][ T5] usb 1-1: new high-speed USB device number 94 using dummy_hcd [ 294.395753][T10549] FAT-fs (loop1): Can't find a valid FAT filesystem [ 294.408582][T10560] FAT-fs (loop2): bogus logical sector size 522 [ 294.415002][T10560] FAT-fs (loop2): Can't find a valid FAT filesystem [ 294.475444][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 294.595433][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 294.615620][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 294.627011][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 294.640194][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 294.651982][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 294.666735][ T5] usb 1-1: config 0 descriptor?? [ 295.146138][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.153271][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.161589][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.169298][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.176989][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.184036][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.192249][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.200125][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.207852][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.214878][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.223146][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.230969][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.238795][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.246573][ T5] appleir 0003:05AC:1440.0046: unknown main item tag 0x0 [ 295.254340][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0046/input/input76 [ 295.268496][ T5] appleir 0003:05AC:1440.0046: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 295.347838][ T5] usb 1-1: USB disconnect, device number 94 09:44:45 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:45 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:45 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174130204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:45 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xfc00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:45 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xea00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:45 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740b0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:45 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 295.868725][T10590] FAT-fs (loop2): bogus logical sector size 523 [ 295.879946][T10595] FAT-fs (loop1): bogus logical sector size 531 [ 295.884943][T10590] FAT-fs (loop2): Can't find a valid FAT filesystem [ 295.898366][T10595] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:45 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174140204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:45 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x4, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 295.962837][T10590] FAT-fs (loop2): bogus logical sector size 523 [ 295.971686][T10595] FAT-fs (loop1): bogus logical sector size 531 [ 295.978000][T10590] FAT-fs (loop2): Can't find a valid FAT filesystem [ 295.979139][T10595] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:45 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x5, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:45 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:45 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x6, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 296.145177][ T5] usb 1-1: new high-speed USB device number 95 using dummy_hcd [ 296.156205][T10616] FAT-fs (loop1): bogus logical sector size 532 [ 296.173483][T10616] FAT-fs (loop1): Can't find a valid FAT filesystem [ 296.187041][T10628] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 296.201247][T10628] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 296.235208][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 296.288737][T10629] FAT-fs (loop2): bogus logical sector size 524 [ 296.296173][T10629] FAT-fs (loop2): Can't find a valid FAT filesystem [ 296.346736][T10616] FAT-fs (loop1): bogus logical sector size 532 [ 296.353612][T10616] FAT-fs (loop1): Can't find a valid FAT filesystem [ 296.360475][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 296.371785][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 296.381674][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 296.394502][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 296.403580][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 296.412193][ T5] usb 1-1: config 0 descriptor?? [ 296.895990][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.903063][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.911462][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.919383][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.927248][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.934279][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.942588][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.950401][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.958301][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.966178][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.973239][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.981687][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.989577][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 296.997653][ T5] appleir 0003:05AC:1440.0047: unknown main item tag 0x0 [ 297.006077][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0047/input/input77 [ 297.019533][ T5] appleir 0003:05AC:1440.0047: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 297.097383][ T3082] usb 1-1: USB disconnect, device number 95 09:44:47 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x0) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:47 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x7, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xfff0, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:47 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xeb00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:47 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:47 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174150204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:47 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740e0204010002000270fff8", 0x16}], 0x0, 0x0) [ 297.628008][T10647] FAT-fs (loop2): bogus logical sector size 525 [ 297.634285][T10647] FAT-fs (loop2): Can't find a valid FAT filesystem [ 297.637298][T10651] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 297.663030][T10645] FAT-fs (loop1): bogus logical sector size 533 09:44:47 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174160204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:47 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 297.674084][T10645] FAT-fs (loop1): Can't find a valid FAT filesystem [ 297.681665][T10651] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:47 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740f0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:47 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x9, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 297.779536][T10660] FAT-fs (loop2): bogus logical sector size 526 [ 297.786274][T10660] FAT-fs (loop2): Can't find a valid FAT filesystem [ 297.794415][T10662] FAT-fs (loop1): bogus logical sector size 534 [ 297.806016][T10662] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:47 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xa, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 297.860854][T10668] FAT-fs (loop2): bogus logical sector size 527 [ 297.867696][T10668] FAT-fs (loop2): Can't find a valid FAT filesystem [ 297.878262][T10662] FAT-fs (loop1): bogus logical sector size 534 [ 297.885532][T10662] FAT-fs (loop1): Can't find a valid FAT filesystem [ 297.944990][ T5] usb 1-1: new high-speed USB device number 96 using dummy_hcd [ 298.023825][T10668] FAT-fs (loop2): bogus logical sector size 527 [ 298.030243][T10668] FAT-fs (loop2): Can't find a valid FAT filesystem [ 298.045061][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 298.055825][T10682] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 298.070319][T10682] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 298.164993][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 298.176570][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 298.195022][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 298.208962][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 298.218885][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 298.229626][ T5] usb 1-1: config 0 descriptor?? [ 298.715736][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.722793][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.732609][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.739701][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.746788][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.753804][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.760892][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.767953][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.775004][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.782035][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.789095][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.796180][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.803210][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.810273][ T5] appleir 0003:05AC:1440.0048: unknown main item tag 0x0 [ 298.817986][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0048/input/input78 [ 298.831503][ T5] appleir 0003:05AC:1440.0048: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 298.919347][ T5] usb 1-1: USB disconnect, device number 96 09:44:49 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x3, 0x20) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(0xffffffffffffffff, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:49 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27ebe, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:49 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174170204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:49 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174100204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:49 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xec00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xb, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 299.442087][T10701] FAT-fs (loop1): bogus logical sector size 535 [ 299.453134][T10702] FAT-fs (loop2): bogus logical sector size 528 [ 299.462797][T10701] FAT-fs (loop1): Can't find a valid FAT filesystem [ 299.480790][T10702] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 299.503410][T10714] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 299.518691][T10714] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 299.619305][T10701] FAT-fs (loop1): bogus logical sector size 535 [ 299.625768][T10702] FAT-fs (loop2): bogus logical sector size 528 [ 299.627764][T10722] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 299.634030][T10702] FAT-fs (loop2): Can't find a valid FAT filesystem [ 299.646899][T10722] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 299.667658][T10701] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:49 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174110204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:49 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174180204010002000270fff8", 0x16}], 0x0, 0x0) [ 299.711390][T10726] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 299.714753][ T3082] usb 1-1: new high-speed USB device number 97 using dummy_hcd [ 299.738055][T10726] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 299.815433][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 299.835824][T10735] FAT-fs (loop1): bogus logical sector size 536 [ 299.841368][T10737] FAT-fs (loop2): bogus logical sector size 529 [ 299.844360][T10735] FAT-fs (loop1): Can't find a valid FAT filesystem [ 299.850721][T10737] FAT-fs (loop2): Can't find a valid FAT filesystem [ 299.933016][T10737] FAT-fs (loop2): bogus logical sector size 529 [ 299.939477][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 299.950352][T10735] FAT-fs (loop1): bogus logical sector size 536 [ 299.957321][T10737] FAT-fs (loop2): Can't find a valid FAT filesystem [ 299.964122][T10735] FAT-fs (loop1): Can't find a valid FAT filesystem [ 299.972177][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 299.981995][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 299.994806][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 300.003860][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 300.012514][ T3082] usb 1-1: config 0 descriptor?? [ 300.495568][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.503738][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.510796][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.517862][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.524913][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.531939][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.538989][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.546149][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.553176][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.560233][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.567417][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.574487][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.581562][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.588625][ T3082] appleir 0003:05AC:1440.0049: unknown main item tag 0x0 [ 300.596625][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0049/input/input79 [ 300.609996][ T3082] appleir 0003:05AC:1440.0049: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 300.697391][ T5] usb 1-1: USB disconnect, device number 97 09:44:50 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x3, 0x20) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(0xffffffffffffffff, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:50 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174120204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:50 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x10, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:50 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174190204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:50 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xed00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:50 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xfffffff0, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 301.233013][T10764] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 301.234659][T10766] FAT-fs (loop2): bogus logical sector size 530 [ 301.255964][T10765] FAT-fs (loop1): bogus logical sector size 537 [ 301.256979][T10764] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 301.266880][T10765] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:50 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x11, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 301.284206][T10766] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:51 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:51 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x12, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 301.382450][T10765] FAT-fs (loop1): bogus logical sector size 537 [ 301.389731][T10765] FAT-fs (loop1): Can't find a valid FAT filesystem [ 301.396928][T10766] FAT-fs (loop2): bogus logical sector size 530 [ 301.404329][T10766] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:51 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174130204010002000270fff8", 0x16}], 0x0, 0x0) [ 301.484569][ T5] usb 1-1: new high-speed USB device number 98 using dummy_hcd 09:44:51 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x13, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 301.525376][T10787] FAT-fs (loop1): bogus logical sector size 538 [ 301.539435][T10788] FAT-fs (loop2): bogus logical sector size 531 [ 301.552407][T10787] FAT-fs (loop1): Can't find a valid FAT filesystem [ 301.564033][T10788] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:51 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x17, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 301.594643][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 301.658949][T10787] FAT-fs (loop1): bogus logical sector size 538 [ 301.668561][T10788] FAT-fs (loop2): bogus logical sector size 531 [ 301.675558][T10787] FAT-fs (loop1): Can't find a valid FAT filesystem [ 301.682744][T10788] FAT-fs (loop2): Can't find a valid FAT filesystem [ 301.714666][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 301.726492][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 301.737460][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 301.752032][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 301.761721][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 301.771177][ T5] usb 1-1: config 0 descriptor?? [ 302.255368][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.262433][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.270780][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.278519][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.286366][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.293394][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.301683][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.309446][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.317435][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.325358][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.332623][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.341246][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.349074][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.356837][ T5] appleir 0003:05AC:1440.004A: unknown main item tag 0x0 [ 302.365437][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.004A/input/input80 [ 302.378845][ T5] appleir 0003:05AC:1440.004A: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 302.458849][ T5] usb 1-1: USB disconnect, device number 98 09:44:52 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741b0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x18, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174140204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:52 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xee00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:52 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xfffffffffffffff0, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:52 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r1 = socket$inet6(0xa, 0x3, 0x20) r2 = dup(r1) ioctl$PERF_EVENT_IOC_ENABLE(r2, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(0xffffffffffffffff, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1a, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 302.980964][T10826] FAT-fs (loop2): bogus logical sector size 532 [ 302.988293][T10826] FAT-fs (loop2): Can't find a valid FAT filesystem [ 302.995530][T10830] FAT-fs (loop1): bogus logical sector size 539 [ 303.002144][T10830] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:52 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174150204010002000270fff8", 0x16}], 0x0, 0x0) [ 303.060114][T10841] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 303.075146][T10841] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 303.093934][T10826] FAT-fs (loop2): bogus logical sector size 532 [ 303.103816][T10826] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x22, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x24, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2c, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 303.237737][T10844] FAT-fs (loop1): bogus logical sector size 540 [ 303.243200][T10852] FAT-fs (loop2): bogus logical sector size 533 [ 303.246211][T10844] FAT-fs (loop1): Can't find a valid FAT filesystem [ 303.263205][T10852] FAT-fs (loop2): Can't find a valid FAT filesystem [ 303.267359][ T5] usb 1-1: new high-speed USB device number 99 using dummy_hcd [ 303.351605][T10852] FAT-fs (loop2): bogus logical sector size 533 [ 303.367755][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 303.373815][T10852] FAT-fs (loop2): Can't find a valid FAT filesystem [ 303.385803][T10844] FAT-fs (loop1): bogus logical sector size 540 [ 303.392625][T10844] FAT-fs (loop1): Can't find a valid FAT filesystem [ 303.484474][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 303.513114][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 303.523064][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 303.536073][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 303.545916][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 303.559431][ T5] usb 1-1: config 0 descriptor?? [ 304.035148][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.042213][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.051273][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.059111][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.066935][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.073974][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.082262][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.090092][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.097904][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.105669][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.112707][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.121241][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.129009][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.136754][ T5] appleir 0003:05AC:1440.004B: unknown main item tag 0x0 [ 304.145381][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.004B/input/input81 [ 304.158840][ T5] appleir 0003:05AC:1440.004B: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 304.238827][ T5] usb 1-1: USB disconnect, device number 99 09:44:54 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, 0x0) 09:44:54 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x30, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:54 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:54 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174160204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:54 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xef00, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:54 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="e03c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:54 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174170204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:54 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x38, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 304.759970][T10878] FAT-fs (loop2): bogus logical sector size 534 [ 304.768865][T10878] FAT-fs (loop2): Can't find a valid FAT filesystem [ 304.778975][T10883] FAT-fs (loop1): bogus logical sector size 541 [ 304.792659][T10883] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:54 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3a, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:54 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x5c, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:54 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="ea3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:54 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8a, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 304.892847][T10895] FAT-fs (loop2): bogus logical sector size 535 [ 304.902535][T10883] FAT-fs (loop1): bogus logical sector size 541 [ 304.907773][T10895] FAT-fs (loop2): Can't find a valid FAT filesystem [ 304.923420][T10883] FAT-fs (loop1): Can't find a valid FAT filesystem [ 305.034190][ T5] usb 1-1: new high-speed USB device number 100 using dummy_hcd [ 305.087518][T10895] FAT-fs (loop2): bogus logical sector size 535 [ 305.093840][T10895] FAT-fs (loop2): Can't find a valid FAT filesystem [ 305.113251][T10910] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 305.127592][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 305.129166][T10910] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 305.254272][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 305.265957][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 305.283580][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 305.299030][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 305.308733][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 305.318103][ T5] usb 1-1: config 0 descriptor?? [ 305.804966][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.812026][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.820689][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.828474][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.836241][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.843354][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.851721][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.859615][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.867369][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.875211][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.882253][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.890564][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.898359][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.906280][ T5] appleir 0003:05AC:1440.004C: unknown main item tag 0x0 [ 305.915065][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.004C/input/input82 [ 305.928660][ T5] appleir 0003:05AC:1440.004C: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 306.006574][ T3082] usb 1-1: USB disconnect, device number 100 09:44:56 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174180204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8c, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="ec3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf000, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, 0x0) 09:44:56 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8e, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 306.530873][T10937] FAT-fs (loop1): bogus logical sector size 542 [ 306.536458][T10940] FAT-fs (loop2): bogus logical sector size 536 [ 306.545351][T10940] FAT-fs (loop2): Can't find a valid FAT filesystem [ 306.556175][T10937] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2e732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x9d, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:56 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174190204010002000270fff8", 0x16}], 0x0, 0x0) [ 306.690593][T10940] FAT-fs (loop2): bogus logical sector size 536 [ 306.697043][T10937] FAT-fs (loop1): bogus logical sector size 542 [ 306.703312][T10937] FAT-fs (loop1): Can't find a valid FAT filesystem [ 306.711204][T10940] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:56 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174220204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf100, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 306.804033][ T3082] usb 1-1: new high-speed USB device number 101 using dummy_hcd [ 306.836930][T10966] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2f732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 306.851401][T10966] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 306.875633][T10965] FAT-fs (loop1): bogus logical sector size 546 [ 306.895676][T10967] FAT-fs (loop2): bogus logical sector size 537 09:44:56 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1c0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 306.898848][T10965] FAT-fs (loop1): Can't find a valid FAT filesystem [ 306.902036][T10967] FAT-fs (loop2): Can't find a valid FAT filesystem [ 306.924046][ T3082] usb 1-1: Using ep0 maxpacket: 16 09:44:56 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732f666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:56 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174260204010002000270fff8", 0x16}], 0x0, 0x0) [ 307.001487][T10965] FAT-fs (loop1): bogus logical sector size 546 [ 307.007924][T10965] FAT-fs (loop1): Can't find a valid FAT filesystem [ 307.017991][T10967] FAT-fs (loop2): bogus logical sector size 537 [ 307.029508][T10967] FAT-fs (loop2): Can't find a valid FAT filesystem [ 307.054077][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 307.065304][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 307.076087][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 307.089695][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 307.106645][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 307.115478][ T3082] usb 1-1: config 0 descriptor?? [ 307.171430][T10987] FAT-fs (loop1): bogus logical sector size 550 [ 307.178918][T10987] FAT-fs (loop1): Can't find a valid FAT filesystem [ 307.310109][T10987] FAT-fs (loop1): bogus logical sector size 550 [ 307.316456][T10987] FAT-fs (loop1): Can't find a valid FAT filesystem [ 307.604806][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.611960][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.621822][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.629104][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.636202][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.643273][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.650348][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.657438][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.664534][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.671577][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.678632][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.685700][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.692734][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.699813][ T3082] appleir 0003:05AC:1440.004D: unknown main item tag 0x0 [ 307.707519][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.004D/input/input83 [ 307.720998][ T3082] appleir 0003:05AC:1440.004D: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 307.808344][ T5] usb 1-1: USB disconnect, device number 101 09:44:57 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:57 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, 0x0) 09:44:57 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1cc, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2e6174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:57 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xf200, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:57 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174280204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:57 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661742a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:57 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1fc, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:57 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2f6174000204010002000270fff8", 0x16}], 0x0, 0x0) [ 308.330919][T11010] FAT-fs (loop1): bogus logical sector size 552 [ 308.338388][T11010] FAT-fs (loop1): Can't find a valid FAT filesystem [ 308.350261][T11017] FAT-fs (loop2): bogus logical sector size 538 09:44:57 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661742c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:57 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x202, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 308.382774][T11017] FAT-fs (loop2): Can't find a valid FAT filesystem [ 308.418051][T11033] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:44:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x232, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 308.432534][T11033] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 308.452077][T11032] FAT-fs (loop1): bogus logical sector size 556 [ 308.459466][T11032] FAT-fs (loop1): Can't find a valid FAT filesystem [ 308.546444][T11017] FAT-fs (loop2): bogus logical sector size 538 [ 308.553205][T11017] FAT-fs (loop2): Can't find a valid FAT filesystem [ 308.603890][ T5] usb 1-1: new high-speed USB device number 102 using dummy_hcd [ 308.693838][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 308.833857][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 308.844758][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 308.854514][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 308.867322][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 308.876381][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 308.885007][ T5] usb 1-1: config 0 descriptor?? [ 309.354675][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.361895][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.370312][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.378031][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.385734][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.392891][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.401227][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.409054][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.416787][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.424778][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.431809][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.440093][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.447889][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.455812][ T5] appleir 0003:05AC:1440.004E: unknown main item tag 0x0 [ 309.463518][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.004E/input/input84 [ 309.477842][ T5] appleir 0003:05AC:1440.004E: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 309.556330][ T3082] usb 1-1: USB disconnect, device number 102 09:44:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174020204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:59 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x0, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:44:59 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x23e, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:59 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661742d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:59 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741b0204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:59 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x27ebe, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:59 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x300, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 310.077361][T11062] FAT-fs (loop5): bogus logical sector size 514 [ 310.087088][T11063] FAT-fs (loop2): bogus logical sector size 539 [ 310.087577][T11062] FAT-fs (loop5): Can't find a valid FAT filesystem [ 310.094567][T11063] FAT-fs (loop2): Can't find a valid FAT filesystem [ 310.117941][T11066] FAT-fs (loop1): bogus logical sector size 557 09:44:59 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x31e, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 310.125359][T11066] FAT-fs (loop1): Can't find a valid FAT filesystem 09:44:59 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x361, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174030204010002000270fff8", 0x16}], 0x0, 0x0) 09:44:59 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x370, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:44:59 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741c0204010002000270fff8", 0x16}], 0x0, 0x0) [ 310.253751][T11062] FAT-fs (loop5): bogus logical sector size 514 [ 310.255531][T11066] FAT-fs (loop1): bogus logical sector size 557 [ 310.260017][T11062] FAT-fs (loop5): Can't find a valid FAT filesystem [ 310.264183][T11063] FAT-fs (loop2): bogus logical sector size 539 [ 310.266621][T11066] FAT-fs (loop1): Can't find a valid FAT filesystem [ 310.272839][T11063] FAT-fs (loop2): Can't find a valid FAT filesystem 09:44:59 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x372, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 310.343615][ T5] usb 1-1: new high-speed USB device number 103 using dummy_hcd [ 310.433696][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 310.524389][T11091] FAT-fs (loop5): bogus logical sector size 515 [ 310.530733][T11091] FAT-fs (loop5): Can't find a valid FAT filesystem [ 310.553662][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 310.564857][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 310.574649][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 310.596177][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 310.605341][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 310.614562][ T5] usb 1-1: config 0 descriptor?? [ 310.641067][T11102] FAT-fs (loop2): bogus logical sector size 540 [ 310.648513][T11091] FAT-fs (loop5): bogus logical sector size 515 [ 310.655150][T11102] FAT-fs (loop2): Can't find a valid FAT filesystem [ 310.655207][T11091] FAT-fs (loop5): Can't find a valid FAT filesystem [ 311.094380][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.101625][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.110053][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.117950][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.125632][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.133221][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.141439][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.149411][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.157185][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.164974][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.172013][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.180381][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.188177][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.196108][ T5] appleir 0003:05AC:1440.004F: unknown main item tag 0x0 [ 311.204648][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.004F/input/input85 [ 311.218151][ T5] appleir 0003:05AC:1440.004F: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 311.295857][ T5] usb 1-1: USB disconnect, device number 103 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x374, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174380204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x0, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:45:01 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0xffffffffffffffff, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3c6, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 311.810783][T11119] FAT-fs (loop5): bogus logical sector size 516 [ 311.818464][T11120] FAT-fs (loop2): bogus logical sector size 541 [ 311.820846][T11117] FAT-fs (loop1): bogus logical sector size 568 [ 311.825424][T11119] FAT-fs (loop5): Can't find a valid FAT filesystem [ 311.840591][T11120] FAT-fs (loop2): Can't find a valid FAT filesystem [ 311.843004][T11117] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3d5, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 311.883949][T11136] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 311.898236][T11136] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3d7, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 312.015596][T11139] FAT-fs (loop2): bogus logical sector size 542 [ 312.022094][T11139] FAT-fs (loop2): Can't find a valid FAT filesystem [ 312.064304][T11119] FAT-fs (loop5): bogus logical sector size 516 [ 312.070687][T11119] FAT-fs (loop5): Can't find a valid FAT filesystem [ 312.079521][T11139] FAT-fs (loop2): bogus logical sector size 542 [ 312.085859][T11139] FAT-fs (loop2): Can't find a valid FAT filesystem [ 312.085885][T11117] FAT-fs (loop1): bogus logical sector size 568 [ 312.103417][ T5] usb 1-1: new high-speed USB device number 104 using dummy_hcd 09:45:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174220204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174050204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3e5, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 312.103946][T11117] FAT-fs (loop1): Can't find a valid FAT filesystem [ 312.193426][ T5] usb 1-1: Using ep0 maxpacket: 16 09:45:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661743e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x408, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 312.234395][T11151] FAT-fs (loop2): bogus logical sector size 546 [ 312.240846][T11151] FAT-fs (loop2): Can't find a valid FAT filesystem [ 312.313411][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 312.324409][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 312.335146][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 312.348510][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 09:45:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x480, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 312.368743][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 312.381632][ T5] usb 1-1: config 0 descriptor?? [ 312.416807][T11157] FAT-fs (loop5): bogus logical sector size 517 [ 312.425752][T11157] FAT-fs (loop5): Can't find a valid FAT filesystem [ 312.434544][T11162] FAT-fs (loop1): bogus logical sector size 574 [ 312.441331][T11162] FAT-fs (loop1): Can't find a valid FAT filesystem [ 312.530451][T11157] FAT-fs (loop5): bogus logical sector size 517 [ 312.536997][T11162] FAT-fs (loop1): bogus logical sector size 574 [ 312.543224][T11162] FAT-fs (loop1): Can't find a valid FAT filesystem [ 312.548867][T11157] FAT-fs (loop5): Can't find a valid FAT filesystem [ 312.874187][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.881396][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.891363][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.899311][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.907093][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.914895][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.921938][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.930299][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.938105][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.945850][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.952882][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.961393][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.969211][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.977072][ T5] appleir 0003:05AC:1440.0050: unknown main item tag 0x0 [ 312.985616][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0050/input/input86 [ 312.999265][ T5] appleir 0003:05AC:1440.0050: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 313.075813][ T5] usb 1-1: USB disconnect, device number 104 09:45:03 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x0, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:45:03 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x4f5, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:03 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661742c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:03 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174480204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:03 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174060204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:03 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="ea3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:03 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x500, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:03 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x600, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 313.595096][T11183] FAT-fs (loop2): bogus logical sector size 556 [ 313.601746][T11183] FAT-fs (loop2): Can't find a valid FAT filesystem [ 313.616944][T11187] FAT-fs (loop5): bogus logical sector size 518 [ 313.624409][T11184] FAT-fs (loop1): bogus logical sector size 584 [ 313.630705][T11184] FAT-fs (loop1): Can't find a valid FAT filesystem [ 313.638084][T11187] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:03 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x700, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 313.667507][T11183] FAT-fs (loop2): bogus logical sector size 556 [ 313.676173][T11183] FAT-fs (loop2): Can't find a valid FAT filesystem [ 313.685047][T11206] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 313.699269][T11206] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:03 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174070204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:03 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174380204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:03 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x804, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 313.819432][T11212] FAT-fs (loop5): bogus logical sector size 519 [ 313.827528][T11212] FAT-fs (loop5): Can't find a valid FAT filesystem [ 313.831199][T11217] FAT-fs (loop2): bogus logical sector size 568 [ 313.840960][T11217] FAT-fs (loop2): Can't find a valid FAT filesystem [ 313.863285][ T3082] usb 1-1: new high-speed USB device number 105 using dummy_hcd [ 313.896443][T11217] FAT-fs (loop2): bogus logical sector size 568 [ 313.902761][T11217] FAT-fs (loop2): Can't find a valid FAT filesystem [ 313.953302][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 314.083304][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 314.094222][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 314.103961][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 314.116776][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 314.126244][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 314.134797][ T3082] usb 1-1: config 0 descriptor?? [ 314.613992][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.621056][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.629331][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.637136][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.644991][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.652024][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.660337][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.668242][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.675989][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.683014][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.691313][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.699096][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.706947][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.714792][ T3082] appleir 0003:05AC:1440.0051: unknown main item tag 0x0 [ 314.722448][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0051/input/input87 [ 314.736780][ T3082] appleir 0003:05AC:1440.0051: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 314.815529][ T3082] usb 1-1: USB disconnect, device number 105 09:45:04 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x400, 0x4}) 09:45:04 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174080204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:04 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661744c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x900, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="ec3c906d6b66732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:04 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661743e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xa00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:05 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xb00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 315.336517][T11235] FAT-fs (loop1): bogus logical sector size 588 [ 315.344324][T11235] FAT-fs (loop1): Can't find a valid FAT filesystem [ 315.356091][T11236] FAT-fs (loop5): bogus logical sector size 520 [ 315.362629][T11237] FAT-fs (loop2): bogus logical sector size 574 [ 315.369685][T11237] FAT-fs (loop2): Can't find a valid FAT filesystem [ 315.370951][T11236] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:05 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174680204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:05 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:05 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174480204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:05 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174090204010002000270fff8", 0x16}], 0x0, 0x0) [ 315.487151][T11256] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 315.501575][T11256] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 315.547296][T11263] FAT-fs (loop2): bogus logical sector size 584 [ 315.554666][T11263] FAT-fs (loop2): Can't find a valid FAT filesystem [ 315.557431][T11262] FAT-fs (loop5): bogus logical sector size 521 [ 315.569315][T11262] FAT-fs (loop5): Can't find a valid FAT filesystem [ 315.613118][ T3082] usb 1-1: new high-speed USB device number 106 using dummy_hcd [ 315.633300][T11259] FAT-fs (loop1): bogus logical sector size 616 [ 315.639620][T11259] FAT-fs (loop1): Can't find a valid FAT filesystem [ 315.695576][T11262] FAT-fs (loop5): bogus logical sector size 521 [ 315.703001][T11262] FAT-fs (loop5): Can't find a valid FAT filesystem [ 315.703556][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 315.833077][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 315.843980][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 315.854286][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 315.867436][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 315.876950][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 315.886023][ T3082] usb 1-1: config 0 descriptor?? [ 316.363831][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.370903][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.379940][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.387827][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.395712][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.402741][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.411161][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.418992][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.426798][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.434768][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.441848][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.450202][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.458048][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.465797][ T3082] appleir 0003:05AC:1440.0052: unknown main item tag 0x0 [ 316.474227][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0052/input/input88 [ 316.487571][ T3082] appleir 0003:05AC:1440.0052: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 316.567736][ T3082] usb 1-1: USB disconnect, device number 106 09:45:06 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661744c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2e732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:06 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661746c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x400, 0x4}) 09:45:06 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 317.085468][T11287] FAT-fs (loop1): bogus logical sector size 620 [ 317.098567][T11292] FAT-fs (loop5): bogus logical sector size 522 [ 317.106164][T11287] FAT-fs (loop1): Can't find a valid FAT filesystem [ 317.113495][T11293] FAT-fs (loop2): bogus logical sector size 588 [ 317.119984][T11293] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:06 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740b0204010002000270fff8", 0x16}], 0x0, 0x0) [ 317.129686][T11292] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 317.215879][T11287] FAT-fs (loop1): bogus logical sector size 620 [ 317.222430][T11287] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:06 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174740204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174680204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b2f732e666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:06 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1020, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 317.264073][T11308] FAT-fs (loop5): bogus logical sector size 523 [ 317.272074][T11308] FAT-fs (loop5): Can't find a valid FAT filesystem [ 317.372853][ T5] usb 1-1: new high-speed USB device number 107 using dummy_hcd [ 317.399870][T11318] FAT-fs (loop2): bogus logical sector size 616 [ 317.401239][T11314] FAT-fs (loop1): bogus logical sector size 628 [ 317.407797][T11318] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1100, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:07 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740c0204010002000270fff8", 0x16}], 0x0, 0x0) [ 317.412997][T11314] FAT-fs (loop1): Can't find a valid FAT filesystem [ 317.420114][T11308] FAT-fs (loop5): bogus logical sector size 523 [ 317.432265][T11308] FAT-fs (loop5): Can't find a valid FAT filesystem [ 317.462895][ T5] usb 1-1: Using ep0 maxpacket: 16 09:45:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1200, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 317.550156][T11318] FAT-fs (loop2): bogus logical sector size 616 [ 317.557565][T11314] FAT-fs (loop1): bogus logical sector size 628 [ 317.563912][T11318] FAT-fs (loop2): Can't find a valid FAT filesystem [ 317.567507][T11329] FAT-fs (loop5): bogus logical sector size 524 [ 317.570533][T11314] FAT-fs (loop1): Can't find a valid FAT filesystem [ 317.582852][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 317.587897][T11329] FAT-fs (loop5): Can't find a valid FAT filesystem [ 317.597850][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 317.610730][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 317.624265][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 317.633321][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 317.644470][ T5] usb 1-1: config 0 descriptor?? [ 317.750426][T11329] FAT-fs (loop5): bogus logical sector size 524 [ 317.756771][T11329] FAT-fs (loop5): Can't find a valid FAT filesystem [ 318.123611][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.130675][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.139038][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.146874][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.154645][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.161692][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.169953][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.177742][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.185583][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.192622][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.200945][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.208739][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.216567][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.224437][ T5] appleir 0003:05AC:1440.0053: unknown main item tag 0x0 [ 318.232188][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0053/input/input89 [ 318.246455][ T5] appleir 0003:05AC:1440.0053: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 318.327436][ T5] usb 1-1: USB disconnect, device number 107 09:45:08 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0x0, 0x0, 0x0, 0x400, 0x4}) 09:45:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1300, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:08 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661746c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:08 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174780204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:08 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:08 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732f666174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1700, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:08 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174740204010002000270fff8", 0x16}], 0x0, 0x0) [ 318.849370][T11349] FAT-fs (loop1): bogus logical sector size 632 [ 318.850853][T11351] FAT-fs (loop2): bogus logical sector size 620 [ 318.859926][T11349] FAT-fs (loop1): Can't find a valid FAT filesystem [ 318.868413][T11351] FAT-fs (loop2): Can't find a valid FAT filesystem [ 318.887640][T11352] FAT-fs (loop5): bogus logical sector size 525 09:45:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1800, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1a00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 318.896129][T11352] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:08 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661747a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:08 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1e03, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 319.001564][T11372] FAT-fs (loop2): bogus logical sector size 628 [ 319.008099][T11352] FAT-fs (loop5): bogus logical sector size 525 [ 319.015544][T11352] FAT-fs (loop5): Can't find a valid FAT filesystem [ 319.022242][T11372] FAT-fs (loop2): Can't find a valid FAT filesystem [ 319.134544][T11379] FAT-fs (loop1): bogus logical sector size 634 [ 319.141448][T11372] FAT-fs (loop2): bogus logical sector size 628 [ 319.148625][T11372] FAT-fs (loop2): Can't find a valid FAT filesystem [ 319.152693][ T5] usb 1-1: new high-speed USB device number 108 using dummy_hcd [ 319.155494][T11379] FAT-fs (loop1): Can't find a valid FAT filesystem [ 319.252720][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 319.265177][T11379] FAT-fs (loop1): bogus logical sector size 634 [ 319.273886][T11379] FAT-fs (loop1): Can't find a valid FAT filesystem [ 319.392702][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 319.403603][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 319.413346][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 319.426144][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 319.435170][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 319.443675][ T5] usb 1-1: config 0 descriptor?? [ 319.943416][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.950472][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.959441][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.967160][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.974888][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.981914][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.990351][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 319.998147][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.005894][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.013944][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.020994][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.029413][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.037339][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.045157][ T5] appleir 0003:05AC:1440.0054: unknown main item tag 0x0 [ 320.053664][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0054/input/input90 [ 320.067136][ T5] appleir 0003:05AC:1440.0054: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 320.145241][ T5] usb 1-1: USB disconnect, device number 108 09:45:10 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x4}) 09:45:10 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2e6174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174780204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:10 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661748a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661747a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2010, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2200, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 320.668576][T11405] FAT-fs (loop2): bogus logical sector size 632 [ 320.676012][T11405] FAT-fs (loop2): Can't find a valid FAT filesystem [ 320.685472][T11409] FAT-fs (loop5): bogus logical sector size 526 [ 320.696023][T11411] FAT-fs (loop1): bogus logical sector size 650 [ 320.697885][T11409] FAT-fs (loop5): Can't find a valid FAT filesystem [ 320.705260][T11411] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740f0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2400, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:10 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661748c0204010002000270fff8", 0x16}], 0x0, 0x0) [ 320.878020][T11421] FAT-fs (loop2): bogus logical sector size 634 [ 320.884760][T11421] FAT-fs (loop2): Can't find a valid FAT filesystem [ 320.899040][T11433] FAT-fs (loop5): bogus logical sector size 527 [ 320.905405][T11433] FAT-fs (loop5): Can't find a valid FAT filesystem [ 320.932529][ T3082] usb 1-1: new high-speed USB device number 109 using dummy_hcd [ 320.941821][T11436] FAT-fs (loop1): bogus logical sector size 652 [ 320.948504][T11436] FAT-fs (loop1): Can't find a valid FAT filesystem [ 321.032498][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 321.085103][T11436] FAT-fs (loop1): bogus logical sector size 652 [ 321.092770][T11436] FAT-fs (loop1): Can't find a valid FAT filesystem [ 321.162535][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 321.173431][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 321.183757][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 321.196844][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 321.205905][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 321.214474][ T3082] usb 1-1: config 0 descriptor?? [ 321.693242][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.700306][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.708765][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.716634][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.724385][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.731431][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.739739][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.747581][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.755363][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.763172][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.770284][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.778716][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.786518][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.794379][ T3082] appleir 0003:05AC:1440.0055: unknown main item tag 0x0 [ 321.802089][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0055/input/input91 [ 321.816333][ T3082] appleir 0003:05AC:1440.0055: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 321.894847][ T3082] usb 1-1: USB disconnect, device number 109 09:45:11 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x4}) 09:45:11 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174e00204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:11 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e2f6174000204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:11 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661748a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:11 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174100204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:11 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x26d1, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:12 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x26d3, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:12 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661748c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:12 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2c00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 322.416457][T11455] FAT-fs (loop5): bogus logical sector size 528 [ 322.422808][T11456] FAT-fs (loop1): bogus logical sector size 736 [ 322.430268][T11455] FAT-fs (loop5): Can't find a valid FAT filesystem [ 322.439035][T11463] FAT-fs (loop2): bogus logical sector size 650 [ 322.439383][T11456] FAT-fs (loop1): Can't find a valid FAT filesystem [ 322.445354][T11463] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:12 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174110204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:12 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2e84, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:12 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 322.573740][T11456] FAT-fs (loop1): bogus logical sector size 736 [ 322.580069][T11456] FAT-fs (loop1): Can't find a valid FAT filesystem [ 322.691964][T11479] FAT-fs (loop2): bogus logical sector size 652 [ 322.698508][T11486] FAT-fs (loop5): bogus logical sector size 529 [ 322.699449][T11479] FAT-fs (loop2): Can't find a valid FAT filesystem [ 322.711452][ T5] usb 1-1: new high-speed USB device number 110 using dummy_hcd [ 322.711539][T11486] FAT-fs (loop5): Can't find a valid FAT filesystem [ 322.802306][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 322.915770][T11486] FAT-fs (loop5): bogus logical sector size 529 [ 322.922694][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 322.929116][T11486] FAT-fs (loop5): Can't find a valid FAT filesystem [ 322.938648][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 322.955444][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 322.968420][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 322.977552][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 322.986286][ T5] usb 1-1: config 0 descriptor?? [ 323.463122][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.470205][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.477271][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.484337][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.491350][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.499488][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.506565][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.513622][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.520663][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.527733][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.534827][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.541860][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.548911][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.556046][ T5] appleir 0003:05AC:1440.0056: unknown main item tag 0x0 [ 323.563837][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0056/input/input92 [ 323.577323][ T5] appleir 0003:05AC:1440.0056: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 323.664739][ T5] usb 1-1: USB disconnect, device number 110 09:45:13 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x0, 0x4}) 09:45:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3202, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661748e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:13 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174100004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174120204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661749d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3800, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 324.189340][T11509] FAT-fs (loop2): bogus logical sector size 654 [ 324.195752][T11509] FAT-fs (loop2): Can't find a valid FAT filesystem [ 324.208242][T11510] FAT-fs (loop1): bogus logical sector size 768 [ 324.215570][T11510] FAT-fs (loop1): Can't find a valid FAT filesystem [ 324.226530][T11521] FAT-fs (loop4): bogus logical sector size 16 09:45:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3a00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 324.233635][T11521] FAT-fs (loop4): Can't find a valid FAT filesystem [ 324.243891][T11516] FAT-fs (loop5): bogus logical sector size 530 [ 324.250256][T11516] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3e02, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:14 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3f00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 324.355493][T11510] FAT-fs (loop1): bogus logical sector size 768 [ 324.361855][T11510] FAT-fs (loop1): Can't find a valid FAT filesystem [ 324.369938][T11525] FAT-fs (loop2): bogus logical sector size 669 [ 324.376286][T11525] FAT-fs (loop2): Can't find a valid FAT filesystem [ 324.452203][ T3082] usb 1-1: new high-speed USB device number 111 using dummy_hcd 09:45:14 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000504010002000270fff8", 0x16}], 0x0, 0x0) [ 324.496883][T11516] FAT-fs (loop5): bogus logical sector size 530 [ 324.503516][T11516] FAT-fs (loop5): Can't find a valid FAT filesystem [ 324.507535][T11525] FAT-fs (loop2): bogus logical sector size 669 [ 324.516774][T11525] FAT-fs (loop2): Can't find a valid FAT filesystem [ 324.527678][T11544] FAT-fs (loop1): bogus logical sector size 1280 [ 324.534399][T11544] FAT-fs (loop1): Can't find a valid FAT filesystem [ 324.542633][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 324.662200][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 324.673287][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 324.685767][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 324.698590][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 324.704595][T11544] FAT-fs (loop1): bogus logical sector size 1280 [ 324.714767][T11544] FAT-fs (loop1): Can't find a valid FAT filesystem [ 324.726556][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 324.727056][T11521] FAT-fs (loop4): bogus logical sector size 16 [ 324.740125][ T3082] usb 1-1: config 0 descriptor?? [ 324.740747][T11521] FAT-fs (loop4): Can't find a valid FAT filesystem [ 325.222882][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.229944][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.237120][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.244199][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.251235][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.258286][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.265431][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.272480][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.279520][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.286576][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.293642][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.300861][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.307910][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.314978][ T3082] appleir 0003:05AC:1440.0057: unknown main item tag 0x0 [ 325.323022][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0057/input/input93 [ 325.336496][ T3082] appleir 0003:05AC:1440.0057: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 325.424511][ T3082] usb 1-1: USB disconnect, device number 111 09:45:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x4000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:15 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174130204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174e00204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000604010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:15 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174020204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x5c00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 325.947755][T11564] FAT-fs (loop1): bogus logical sector size 1536 [ 325.954231][T11564] FAT-fs (loop1): Can't find a valid FAT filesystem [ 325.967197][T11563] FAT-fs (loop5): bogus logical sector size 531 [ 325.974740][T11563] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:15 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174140204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x6103, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x7003, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 326.001374][T11569] FAT-fs (loop2): bogus logical sector size 736 [ 326.009182][T11575] FAT-fs (loop4): bogus logical sector size 514 [ 326.015711][T11564] FAT-fs (loop1): bogus logical sector size 1536 [ 326.027627][T11569] FAT-fs (loop2): Can't find a valid FAT filesystem [ 326.034475][T11564] FAT-fs (loop1): Can't find a valid FAT filesystem [ 326.037146][T11575] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:15 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000704010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x7203, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 326.167611][T11585] FAT-fs (loop5): bogus logical sector size 532 [ 326.174212][T11585] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:15 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174150204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:15 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x7403, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 326.221901][ T3082] usb 1-1: new high-speed USB device number 112 using dummy_hcd [ 326.302507][T11569] FAT-fs (loop2): bogus logical sector size 736 [ 326.308768][T11569] FAT-fs (loop2): Can't find a valid FAT filesystem [ 326.321955][ T3082] usb 1-1: Using ep0 maxpacket: 16 09:45:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8004, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 326.441952][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 326.452830][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 326.463032][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 326.477286][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 326.486528][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 326.495395][ T3082] usb 1-1: config 0 descriptor?? [ 326.513621][T11600] FAT-fs (loop5): bogus logical sector size 533 [ 326.514833][T11604] FAT-fs (loop1): bogus logical sector size 1792 [ 326.519882][T11600] FAT-fs (loop5): Can't find a valid FAT filesystem [ 326.535293][T11604] FAT-fs (loop1): Can't find a valid FAT filesystem [ 326.553676][T11575] FAT-fs (loop4): bogus logical sector size 514 [ 326.560104][T11575] FAT-fs (loop4): Can't find a valid FAT filesystem [ 326.665424][T11611] FAT-fs (loop2): bogus logical sector size 768 [ 326.671741][T11600] FAT-fs (loop5): bogus logical sector size 533 [ 326.678120][T11611] FAT-fs (loop2): Can't find a valid FAT filesystem [ 326.678163][T11600] FAT-fs (loop5): Can't find a valid FAT filesystem [ 326.774188][T11604] FAT-fs (loop1): bogus logical sector size 1792 [ 326.780906][T11604] FAT-fs (loop1): Can't find a valid FAT filesystem [ 326.783453][T11611] FAT-fs (loop2): bogus logical sector size 768 [ 326.794086][T11611] FAT-fs (loop2): Can't find a valid FAT filesystem [ 326.972555][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 326.979819][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 326.988356][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 326.996129][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.008510][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.016371][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.024221][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.031258][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.040215][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.048374][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.056481][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.064924][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.074688][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.081749][ T3082] appleir 0003:05AC:1440.0058: unknown main item tag 0x0 [ 327.091613][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0058/input/input94 [ 327.105340][ T3082] appleir 0003:05AC:1440.0058: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 327.189452][ T3082] usb 1-1: USB disconnect, device number 112 09:45:17 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000904010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x842e, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:17 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174030204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174160204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 0: perf_event_open(&(0x7f0000000040)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x9, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffbfffffffff, 0xffffffffffffffff, 0x0) prctl$PR_SET_MM_MAP(0x23, 0xe, &(0x7f0000000000)={&(0x7f00000c2000/0x4000)=nil, &(0x7f0000ffd000/0x2000)=nil, &(0x7f0000172000/0x1000)=nil, &(0x7f0000ffb000/0x2000)=nil, &(0x7f0000ffd000/0x3000)=nil, &(0x7f0000fff000/0x1000)=nil, &(0x7f0000ffe000/0x2000)=nil, &(0x7f0000935000/0x1000)=nil, &(0x7f0000ff9000/0x2000)=nil, &(0x7f0000ff9000/0x1000)=nil, &(0x7f0000ffc000/0x4000)=nil, 0x0}, 0x68) syz_open_procfs(0x0, 0x0) 09:45:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000504010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174170204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 0: r0 = socket$inet_udp(0x2, 0x2, 0x0) r1 = socket$inet(0x2, 0x3, 0x80000000002) dup3(r1, r0, 0x0) bind$inet(r0, &(0x7f0000000100)={0x2, 0x0, @local}, 0x10) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000040)={0xffffffffffffffff, 0xffffffffffffffff}) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) setsockopt$sock_int(r0, 0x1, 0x6, &(0x7f0000000140)=0x32, 0xfe51) connect$inet(r0, &(0x7f0000000440)={0x2, 0x0, @broadcast}, 0x10) sendto$inet(r0, 0x0, 0x0, 0x0, 0x0, 0x0) 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8a00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 327.709074][T11629] FAT-fs (loop5): bogus logical sector size 534 [ 327.715427][T11629] FAT-fs (loop5): Can't find a valid FAT filesystem [ 327.730940][T11635] FAT-fs (loop1): bogus logical sector size 2304 [ 327.737913][T11636] FAT-fs (loop2): bogus logical sector size 1280 [ 327.749752][T11642] FAT-fs (loop4): bogus logical sector size 515 09:45:17 executing program 0: perf_event_open(&(0x7f0000000100)={0x1, 0x70, 0x0, 0x0, 0x0, 0x0, 0x0, 0x3c43, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @perf_config_ext}, 0x0, 0xffffffffffffffff, 0xffffffffffffffff, 0x0) r0 = socket$inet_tcp(0x2, 0x1, 0x0) bind$inet(r0, 0x0, 0x0) r1 = socket$inet6(0xa, 0x802, 0x0) r2 = inotify_init1(0x0) fcntl$setown(r2, 0x8, 0xffffffffffffffff) fcntl$getownex(r2, 0x10, &(0x7f0000000080)={0x0, 0x0}) capget(&(0x7f00000001c0)={0x19980330}, &(0x7f0000000200)={0x0, 0x0, 0x0, 0x4}) fcntl$setownex(0xffffffffffffffff, 0xf, &(0x7f0000000240)={0x0, r3}) setsockopt$sock_int(r1, 0x1, 0x5, &(0x7f0000000440)=0x7, 0x4) sendto$inet(r0, 0x0, 0x0, 0x24044001, &(0x7f0000000080)={0x2, 0x4e20, @local}, 0x10) sendmmsg(0xffffffffffffffff, 0x0, 0x0, 0x0) dup(0xffffffffffffffff) 09:45:17 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174180204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8c00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 327.760871][T11635] FAT-fs (loop1): Can't find a valid FAT filesystem [ 327.765070][T11642] FAT-fs (loop4): Can't find a valid FAT filesystem [ 327.768967][T11636] FAT-fs (loop2): Can't find a valid FAT filesystem [ 327.800041][T11654] capability: warning: `syz-executor.0' uses 32-bit capabilities (legacy support in use) [ 327.873915][T11661] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 327.888050][T11661] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 327.909813][T11635] FAT-fs (loop1): bogus logical sector size 2304 [ 327.917620][T11635] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:17 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000a04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 0: syz_mount_image$ext4(&(0x7f0000000080)='ext2\x00', &(0x7f0000000000)='./file0\x00', 0x0, 0x3, &(0x7f0000002280)=[{&(0x7f00000000c0)="800000003804000019000300e60100006c00fec9000000000100000001000000000700000040000080000000101308006d5ebe5a0000ffff53ef", 0x3a, 0x400}, {0x0, 0x0, 0x60000004}, {&(0x7f0000000140)="fcba5820c3ef1b77e8a23dd18b16961616356dd7fdeb89769b12def3b6cfd1ab4505524f78c1aa2bf4de120e650f04d278edd8006ad9f89c8b6d8ed96e63d878ff15074525d84e21090fcf500adea45e5683baf409b890f14dec72b7819a765b1f523b740006fa097ad63376050c8f865b5ffbd88b998d1665f951439c15e32429223f310ee8e4d1652b156fd2a1b1c7deec970e41e7a4", 0x97, 0x6}], 0x4801, 0x0) r0 = socket$inet6_tcp(0xa, 0x1, 0x0) r1 = fcntl$dupfd(r0, 0x0, r0) ioctl$PERF_EVENT_IOC_ENABLE(r1, 0x8912, 0x400200) mount$fuseblk(0x0, &(0x7f0000000280)='./file0\x00', 0x0, 0x28400a4, 0x0) [ 327.929755][T11636] FAT-fs (loop2): bogus logical sector size 1280 [ 327.937824][T11636] FAT-fs (loop2): Can't find a valid FAT filesystem [ 327.941868][T11659] FAT-fs (loop5): bogus logical sector size 536 [ 327.950663][T11659] FAT-fs (loop5): Can't find a valid FAT filesystem [ 327.962610][T11642] FAT-fs (loop4): bogus logical sector size 515 [ 327.971236][T11642] FAT-fs (loop4): Can't find a valid FAT filesystem [ 328.016930][T11668] EXT4-fs (loop0): mounting ext2 file system using the ext4 subsystem [ 328.018334][T11672] FAT-fs (loop1): bogus logical sector size 2560 [ 328.031537][T11672] FAT-fs (loop1): Can't find a valid FAT filesystem [ 328.031980][T11668] EXT4-fs (loop0): ext4_check_descriptors: Block bitmap for group 0 overlaps superblock [ 328.047970][T11668] EXT4-fs (loop0): ext4_check_descriptors: Inode bitmap for group 0 overlaps superblock 09:45:17 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8e00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:17 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000604010002000270fff8", 0x16}], 0x0, 0x0) [ 328.058281][T11668] EXT4-fs (loop0): ext4_check_descriptors: Inode table for group 0 overlaps superblock [ 328.084568][T11668] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x9d00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.155633][T11678] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 328.169941][T11678] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc001, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.225291][T11683] EXT4-fs (loop0): warning: mounting unchecked fs, running e2fsck is recommended [ 328.238980][T11659] FAT-fs (loop5): bogus logical sector size 536 [ 328.242133][T11683] EXT4-fs (loop0): re-mounted. Opts: (null) [ 328.248954][T11659] FAT-fs (loop5): Can't find a valid FAT filesystem [ 328.251442][T11681] FAT-fs (loop2): bogus logical sector size 1536 [ 328.264645][T11672] FAT-fs (loop1): bogus logical sector size 2560 09:45:17 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x1b0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="e68f45b99f4b517a70", 0x9) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x7) fcntl$setstatus(r0, 0x4, 0x80000000002c00) 09:45:17 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc603, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.272549][T11681] FAT-fs (loop2): Can't find a valid FAT filesystem [ 328.283165][T11672] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xcc01, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.372146][T11695] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 328.386375][T11695] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174190204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040a04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 0: r0 = socket$inet6_tcp(0xa, 0x1, 0x0) setsockopt$inet6_tcp_int(r0, 0x6, 0x200000000000013, &(0x7f0000000280)=0x400100000001, 0x1b0) connect$inet6(r0, &(0x7f0000000000)={0xa, 0x0, 0x0, @empty}, 0x1c) setsockopt$inet6_tcp_TCP_REPAIR_OPTIONS(r0, 0x6, 0x16, &(0x7f0000000440), 0x12f7e5) clone(0x2000000002000100, 0x0, 0xfffffffffffffffe, 0x0, 0xffffffffffffffff) r1 = gettid() setsockopt$inet6_buf(r0, 0x29, 0x39, &(0x7f0000000040)="e68f45b99f4b517a70d9041b6f384a5b39062bd107722b5648d1851894ff43db77cec9ed5793a33f2cca1633981f79fcae12dc938a4da36a6849710f724bd1c94d9caca7d05bc175", 0x48) ptrace$setopts(0x4206, r1, 0x0, 0x0) tkill(r1, 0x2f) fcntl$setstatus(r0, 0x4, 0x80000000002c00) [ 328.468394][T11691] FAT-fs (loop4): bogus logical sector size 516 [ 328.474979][T11691] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd126, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.523263][T11702] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 328.537787][T11702] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 328.574206][T11681] FAT-fs (loop2): bogus logical sector size 1536 [ 328.581030][T11681] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:18 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174050204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd326, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:18 executing program 0: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000704010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd503, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:18 executing program 0: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x9, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.642520][T11711] FAT-fs (loop1): bogus logical sector size 2564 [ 328.643143][T11691] FAT-fs (loop4): bogus logical sector size 516 [ 328.653257][T11711] FAT-fs (loop1): Can't find a valid FAT filesystem [ 328.655431][T11691] FAT-fs (loop4): Can't find a valid FAT filesystem [ 328.671279][T11712] FAT-fs (loop5): bogus logical sector size 537 [ 328.684233][T11712] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:18 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(0x0, 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd703, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741a0204010002000270fff8", 0x16}], 0x0, 0x0) [ 328.724545][T11721] FAT-fs (loop2): bogus logical sector size 1792 [ 328.733179][T11721] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000b04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.858858][T11732] FAT-fs (loop4): bogus logical sector size 517 [ 328.865427][T11737] FAT-fs (loop5): bogus logical sector size 538 [ 328.883643][T11737] FAT-fs (loop5): Can't find a valid FAT filesystem [ 328.884921][T11732] FAT-fs (loop4): Can't find a valid FAT filesystem [ 328.901028][T11721] FAT-fs (loop2): bogus logical sector size 1792 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe503, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 328.901748][T11744] FAT-fs (loop1): bogus logical sector size 2816 [ 328.909234][T11721] FAT-fs (loop2): Can't find a valid FAT filesystem [ 328.913909][T11744] FAT-fs (loop1): Can't find a valid FAT filesystem [ 329.061595][ T3082] usb 1-1: new high-speed USB device number 113 using dummy_hcd [ 329.081015][T11737] FAT-fs (loop5): bogus logical sector size 538 [ 329.085618][T11732] FAT-fs (loop4): bogus logical sector size 517 [ 329.088822][T11737] FAT-fs (loop5): Can't find a valid FAT filesystem [ 329.098596][T11744] FAT-fs (loop1): bogus logical sector size 2816 [ 329.113409][T11744] FAT-fs (loop1): Can't find a valid FAT filesystem [ 329.116989][T11732] FAT-fs (loop4): Can't find a valid FAT filesystem [ 329.181664][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 329.321647][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 329.332544][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 329.351789][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 09:45:18 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174060204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000904010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xedc0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741b0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040b04010002000270fff8", 0x16}], 0x0, 0x0) [ 329.371429][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 329.381117][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 329.394434][ T3082] usb 1-1: config 0 descriptor?? [ 329.401274][T11761] FAT-fs (loop1): bogus logical sector size 2820 [ 329.402571][T11760] FAT-fs (loop5): bogus logical sector size 539 [ 329.409170][T11761] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:19 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf504, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 329.427805][T11760] FAT-fs (loop5): Can't find a valid FAT filesystem [ 329.435678][T11759] FAT-fs (loop2): bogus logical sector size 2304 [ 329.442925][T11759] FAT-fs (loop2): Can't find a valid FAT filesystem [ 329.495372][T11761] FAT-fs (loop1): bogus logical sector size 2820 [ 329.502609][T11761] FAT-fs (loop1): Can't find a valid FAT filesystem [ 329.544909][T11759] FAT-fs (loop2): bogus logical sector size 2304 [ 329.555698][T11759] FAT-fs (loop2): Can't find a valid FAT filesystem [ 329.556576][T11772] FAT-fs (loop4): bogus logical sector size 518 [ 329.568690][T11772] FAT-fs (loop4): Can't find a valid FAT filesystem [ 329.836244][T11772] FAT-fs (loop4): bogus logical sector size 518 [ 329.842614][T11772] FAT-fs (loop4): Can't find a valid FAT filesystem [ 329.862386][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.869526][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.877049][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.884154][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.891272][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.898337][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.905485][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.912546][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.919569][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.926634][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.933691][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.940720][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.947756][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.954823][ T3082] appleir 0003:05AC:1440.0059: unknown main item tag 0x0 [ 329.962895][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0059/input/input95 [ 329.976398][ T3082] appleir 0003:05AC:1440.0059: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 330.070697][ T3082] usb 1-1: USB disconnect, device number 113 09:45:20 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:45:20 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfc01, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:20 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000a04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:20 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000c04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:20 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174070204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:20 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000b04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 330.590520][T11787] FAT-fs (loop2): bogus logical sector size 2560 [ 330.598122][T11787] FAT-fs (loop2): Can't find a valid FAT filesystem [ 330.605280][T11788] FAT-fs (loop1): bogus logical sector size 3072 [ 330.609406][T11785] FAT-fs (loop5): bogus logical sector size 540 [ 330.614470][T11788] FAT-fs (loop1): Can't find a valid FAT filesystem [ 330.618423][T11785] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff01, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 330.719044][T11788] FAT-fs (loop1): bogus logical sector size 3072 [ 330.725972][T11788] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:20 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174040c04010002000270fff8", 0x16}], 0x0, 0x0) [ 330.762636][T11803] FAT-fs (loop2): bogus logical sector size 2816 [ 330.779289][T11785] FAT-fs (loop5): bogus logical sector size 540 [ 330.780723][T11803] FAT-fs (loop2): Can't find a valid FAT filesystem [ 330.785922][T11785] FAT-fs (loop5): Can't find a valid FAT filesystem [ 330.799733][T11801] FAT-fs (loop4): bogus logical sector size 519 09:45:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff03, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:20 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff0f, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 330.806653][T11801] FAT-fs (loop4): Can't find a valid FAT filesystem [ 330.891469][ T5] usb 1-1: new high-speed USB device number 114 using dummy_hcd [ 330.991545][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 331.003897][T11803] FAT-fs (loop2): bogus logical sector size 2816 [ 331.011451][T11814] FAT-fs (loop1): bogus logical sector size 3076 [ 331.012767][T11803] FAT-fs (loop2): Can't find a valid FAT filesystem [ 331.018950][T11814] FAT-fs (loop1): Can't find a valid FAT filesystem [ 331.121482][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 331.132436][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 331.149366][T11814] FAT-fs (loop1): bogus logical sector size 3076 [ 331.149406][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 331.166484][T11814] FAT-fs (loop1): Can't find a valid FAT filesystem [ 331.171844][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 331.187666][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 331.192152][T11801] FAT-fs (loop4): bogus logical sector size 519 [ 331.202429][ T5] usb 1-1: config 0 descriptor?? [ 331.209185][T11801] FAT-fs (loop4): Can't find a valid FAT filesystem [ 331.682018][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.689273][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.698231][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.705997][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.713821][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.720845][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.729117][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.736935][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.744683][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.752474][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.759507][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.768055][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.775888][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.783697][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.790753][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.799273][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.807052][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.814863][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.822895][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.829938][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.838342][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.846161][ T5] appleir 0003:05AC:1440.005A: unknown main item tag 0x0 [ 331.854545][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.005A/input/input96 [ 331.868098][ T5] appleir 0003:05AC:1440.005A: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 331.932311][ T5] usb 1-1: USB disconnect, device number 114 09:45:22 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400, 0x4}) 09:45:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x40000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000d04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000c04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:22 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174080204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x7ff00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741e0204010002000270fff8", 0x16}], 0x0, 0x0) [ 332.461067][T11843] FAT-fs (loop5): bogus logical sector size 541 [ 332.468872][T11843] FAT-fs (loop5): Can't find a valid FAT filesystem [ 332.479811][T11848] FAT-fs (loop2): bogus logical sector size 3072 [ 332.489834][T11848] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x80000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 332.533775][T11849] FAT-fs (loop1): bogus logical sector size 3328 [ 332.540126][T11849] FAT-fs (loop1): Can't find a valid FAT filesystem [ 332.550395][T11858] FAT-fs (loop5): bogus logical sector size 542 [ 332.558449][T11858] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x80040, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 332.623437][T11854] FAT-fs (loop4): bogus logical sector size 520 [ 332.629986][T11854] FAT-fs (loop4): Can't find a valid FAT filesystem [ 332.653455][T11849] FAT-fs (loop1): bogus logical sector size 3328 [ 332.660025][T11849] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x100000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 332.669784][T11848] FAT-fs (loop2): bogus logical sector size 3072 [ 332.674834][T11858] FAT-fs (loop5): bogus logical sector size 542 [ 332.677339][T11848] FAT-fs (loop2): Can't find a valid FAT filesystem [ 332.682447][T11858] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1fffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 332.741225][ T5] usb 1-1: new high-speed USB device number 115 using dummy_hcd [ 332.831329][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 332.839677][T11854] FAT-fs (loop4): bogus logical sector size 520 [ 332.846088][T11854] FAT-fs (loop4): Can't find a valid FAT filesystem [ 332.961315][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 332.973488][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 332.983249][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 332.996068][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 333.005106][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 333.013662][ T5] usb 1-1: config 0 descriptor?? [ 333.481885][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.488949][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.496224][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.503301][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.510336][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.517418][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.524489][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.531537][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.538711][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.545780][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.552841][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.559870][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.566928][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.574010][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.581022][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.588084][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.595264][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.602336][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.609371][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.616425][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.623537][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.630552][ T5] appleir 0003:05AC:1440.005B: unknown main item tag 0x0 [ 333.638493][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.005B/input/input97 [ 333.653017][ T5] appleir 0003:05AC:1440.005B: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 333.732165][ T3082] usb 1-1: USB disconnect, device number 115 09:45:23 executing program 0 (fault-call:7 fault-nth:0): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:23 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000e04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:23 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000d04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:23 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x200000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:23 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174220204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:23 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174090204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:23 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x400000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 334.273686][T11898] FAT-fs (loop1): bogus logical sector size 3584 [ 334.273729][T11896] FAT-fs (loop5): bogus logical sector size 546 [ 334.286431][T11897] FAT-fs (loop2): bogus logical sector size 3328 [ 334.286644][T11898] FAT-fs (loop1): Can't find a valid FAT filesystem [ 334.295154][T11897] FAT-fs (loop2): Can't find a valid FAT filesystem [ 334.302288][T11896] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:23 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x800000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 334.341664][T11909] FAT-fs (loop4): bogus logical sector size 521 [ 334.348044][T11909] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:24 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff0700, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 334.425277][T11917] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 334.439790][T11917] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:24 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000e04010002000270fff8", 0x16}], 0x0, 0x0) [ 334.489189][T11898] FAT-fs (loop1): bogus logical sector size 3584 [ 334.496350][T11898] FAT-fs (loop1): Can't find a valid FAT filesystem [ 334.511083][T11896] FAT-fs (loop5): bogus logical sector size 546 [ 334.517413][T11896] FAT-fs (loop5): Can't find a valid FAT filesystem [ 334.531130][ T5] usb 1-1: new high-speed USB device number 116 using dummy_hcd 09:45:24 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000f04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:24 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 334.531970][T11909] FAT-fs (loop4): bogus logical sector size 521 [ 334.548277][T11909] FAT-fs (loop4): Can't find a valid FAT filesystem [ 334.631119][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 334.668628][T11930] FAT-fs (loop1): bogus logical sector size 3840 [ 334.673319][T11925] FAT-fs (loop2): bogus logical sector size 3584 [ 334.678184][T11930] FAT-fs (loop1): Can't find a valid FAT filesystem [ 334.690592][T11925] FAT-fs (loop2): Can't find a valid FAT filesystem [ 334.751101][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 334.762026][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 334.772353][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 334.785663][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 334.795036][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 334.803873][ T5] usb 1-1: config 0 descriptor?? [ 334.838362][T11925] FAT-fs (loop2): bogus logical sector size 3584 [ 334.845224][T11925] FAT-fs (loop2): Can't find a valid FAT filesystem [ 335.281853][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.289022][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.297332][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.305111][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.312990][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.320010][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.328217][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.336019][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.343729][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.350752][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.359527][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.367459][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.375271][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.383177][ T5] appleir 0003:05AC:1440.005C: unknown main item tag 0x0 [ 335.390823][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.005C/input/input98 [ 335.405548][ T5] appleir 0003:05AC:1440.005C: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 335.483226][T11899] FAULT_INJECTION: forcing a failure. [ 335.483226][T11899] name failslab, interval 1, probability 0, space 0, times 0 [ 335.495971][T11899] CPU: 1 PID: 11899 Comm: syz-executor.0 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 335.506089][T11899] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 335.516273][T11899] Call Trace: [ 335.519548][T11899] dump_stack+0x14a/0x1ce [ 335.524398][T11899] ? devkmsg_release+0x11c/0x11c [ 335.529328][T11899] ? show_regs_print_info+0x12/0x12 [ 335.534512][T11899] ? is_bpf_text_address+0x290/0x2b0 [ 335.539782][T11899] should_fail+0x6fb/0x860 [ 335.544192][T11899] ? setup_fault_attr+0x3d0/0x3d0 [ 335.549201][T11899] ? arch_stack_walk+0xd8/0x120 [ 335.554108][T11899] ? usbhid_wait_io+0x121/0x390 [ 335.558963][T11899] ? hiddev_ioctl_usage+0x7a/0x1830 [ 335.564144][T11899] should_failslab+0x5/0x20 [ 335.568820][T11899] kmem_cache_alloc_trace+0x39/0x280 [ 335.574081][T11899] ? avc_has_extended_perms+0x730/0x1160 [ 335.579723][T11899] hiddev_ioctl_usage+0x7a/0x1830 [ 335.584740][T11899] ? mutex_lock+0xa6/0x110 [ 335.589138][T11899] ? mutex_trylock+0xb0/0xb0 [ 335.593703][T11899] ? usbhid_init_reports+0x28d/0x2a0 [ 335.598960][T11899] hiddev_ioctl+0x7a7/0x29a0 [ 335.603531][T11899] ? hiddev_poll+0x1c0/0x1c0 [ 335.608094][T11899] ? proc_fail_nth_write+0x18f/0x250 [ 335.613358][T11899] ? memset+0x1f/0x40 [ 335.617306][T11899] ? fsnotify+0x13a0/0x1460 [ 335.621780][T11899] ? hiddev_poll+0x1c0/0x1c0 [ 335.626338][T11899] do_vfs_ioctl+0x770/0x1750 [ 335.630907][T11899] ? selinux_file_ioctl+0x73b/0x990 [ 335.636075][T11899] ? ioctl_preallocate+0x250/0x250 [ 335.641167][T11899] ? __fget+0x37c/0x3c0 [ 335.645300][T11899] ? vfs_write+0x427/0x4f0 [ 335.649686][T11899] ? fget_many+0x20/0x20 [ 335.653984][T11899] ? ksys_write+0x25d/0x2c0 [ 335.658466][T11899] ? file_open_root+0x450/0x450 [ 335.663287][T11899] ? security_file_ioctl+0xad/0xc0 [ 335.668379][T11899] __x64_sys_ioctl+0xd4/0x110 [ 335.673041][T11899] do_syscall_64+0xcb/0x150 [ 335.677574][T11899] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 335.683458][T11899] RIP: 0033:0x45c829 [ 335.687331][T11899] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 335.706932][T11899] RSP: 002b:00007f947696ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 335.715315][T11899] RAX: ffffffffffffffda RBX: 00000000004e5700 RCX: 000000000045c829 [ 335.723273][T11899] RDX: 0000000020000000 RSI: 0000000040184810 RDI: 0000000000000004 [ 335.731215][T11899] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 335.739155][T11899] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000007 [ 335.747111][T11899] R13: 0000000000000331 R14: 00000000004c596e R15: 00007f947696f6d4 [ 335.761497][ T5] usb 1-1: USB disconnect, device number 116 09:45:25 executing program 0 (fault-call:7 fault-nth:1): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661742d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:25 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174011004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:25 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000f04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2020000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661743e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:25 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174011004010002000270fff8", 0x16}], 0x0, 0x0) [ 336.278983][T11947] FAT-fs (loop1): bogus logical sector size 4097 [ 336.289722][T11947] FAT-fs (loop1): Can't find a valid FAT filesystem [ 336.301394][T11955] FAT-fs (loop5): bogus logical sector size 557 [ 336.305444][T11954] FAT-fs (loop2): bogus logical sector size 3840 [ 336.313885][T11955] FAT-fs (loop5): Can't find a valid FAT filesystem [ 336.314502][T11954] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:26 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174480204010002000270fff8", 0x16}], 0x0, 0x0) [ 336.420995][T11969] FAT-fs (loop5): bogus logical sector size 574 [ 336.426019][T11947] FAT-fs (loop1): bogus logical sector size 4097 [ 336.432285][T11969] FAT-fs (loop5): Can't find a valid FAT filesystem [ 336.435931][T11947] FAT-fs (loop1): Can't find a valid FAT filesystem [ 336.443786][T11974] FAT-fs (loop2): bogus logical sector size 4097 [ 336.454284][T11974] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:26 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x4000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 336.468662][T11962] FAT-fs (loop4): bogus logical sector size 522 [ 336.476123][T11962] FAT-fs (loop4): Can't find a valid FAT filesystem [ 336.550868][ T5] usb 1-1: new high-speed USB device number 117 using dummy_hcd [ 336.640877][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 336.676765][T11979] FAT-fs (loop5): bogus logical sector size 584 [ 336.683124][T11979] FAT-fs (loop5): Can't find a valid FAT filesystem [ 336.760947][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 336.774311][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 336.774566][T11962] FAT-fs (loop4): bogus logical sector size 522 [ 336.787283][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 336.790682][T11962] FAT-fs (loop4): Can't find a valid FAT filesystem [ 336.806213][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 336.819731][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 336.828781][ T5] usb 1-1: config 0 descriptor?? [ 337.311620][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.318739][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.327059][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.335091][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.342846][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.349886][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.358149][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.365889][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.373677][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.381543][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.388786][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.397281][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.405044][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.412802][ T5] appleir 0003:05AC:1440.005D: unknown main item tag 0x0 [ 337.420440][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.005D/input/input99 [ 337.434662][ T5] appleir 0003:05AC:1440.005D: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 337.513641][ T5] usb 1-1: USB disconnect, device number 117 09:45:27 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40184810, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:27 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001104010002000270fff8", 0x16}], 0x0, 0x0) 09:45:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001104010002000270fff8", 0x16}], 0x0, 0x0) 09:45:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x5000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661744c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:27 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740b0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x6000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 338.035082][T11999] FAT-fs (loop1): bogus logical sector size 4352 [ 338.044553][T11997] FAT-fs (loop2): bogus logical sector size 4352 [ 338.048129][T11999] FAT-fs (loop1): Can't find a valid FAT filesystem [ 338.052901][T11997] FAT-fs (loop2): Can't find a valid FAT filesystem [ 338.067887][T12002] FAT-fs (loop5): bogus logical sector size 588 [ 338.074245][T12002] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:27 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x7000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 338.121288][T12009] FAT-fs (loop4): bogus logical sector size 523 [ 338.127647][T12009] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:27 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 338.165900][T11999] FAT-fs (loop1): bogus logical sector size 4352 [ 338.172324][T11999] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:27 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:27 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174680204010002000270fff8", 0x16}], 0x0, 0x0) [ 338.253607][T12021] FAT-fs (loop2): bogus logical sector size 4608 [ 338.262869][T12021] FAT-fs (loop2): Can't find a valid FAT filesystem [ 338.280854][T12027] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 338.295534][T12027] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 338.310934][ T5] usb 1-1: new high-speed USB device number 118 using dummy_hcd [ 338.328969][T12009] FAT-fs (loop4): bogus logical sector size 523 [ 338.335689][T12028] FAT-fs (loop1): bogus logical sector size 4608 [ 338.335870][T12009] FAT-fs (loop4): Can't find a valid FAT filesystem [ 338.342172][T12028] FAT-fs (loop1): Can't find a valid FAT filesystem [ 338.349605][T12021] FAT-fs (loop2): bogus logical sector size 4608 [ 338.362204][T12021] FAT-fs (loop2): Can't find a valid FAT filesystem [ 338.362890][T12029] FAT-fs (loop5): bogus logical sector size 616 [ 338.375397][T12029] FAT-fs (loop5): Can't find a valid FAT filesystem [ 338.400720][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 338.448682][T12028] FAT-fs (loop1): bogus logical sector size 4608 [ 338.456850][T12028] FAT-fs (loop1): Can't find a valid FAT filesystem [ 338.520709][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 338.532370][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 338.544614][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 338.557613][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 338.566681][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 338.575469][ T5] usb 1-1: config 0 descriptor?? [ 339.061409][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.068472][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.077142][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.085045][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.092894][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.099944][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.108222][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.116115][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.123871][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.131846][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.138896][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.147215][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.155015][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.165164][ T5] appleir 0003:05AC:1440.005E: unknown main item tag 0x0 [ 339.173621][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.005E/input/input100 [ 339.187432][ T5] appleir 0003:05AC:1440.005E: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 339.262253][ T5] usb 1-1: USB disconnect, device number 118 09:45:29 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x2, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8040000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:29 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:29 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661746c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x9000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xa000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 339.789453][T12048] FAT-fs (loop1): bogus logical sector size 4864 [ 339.797091][T12048] FAT-fs (loop1): Can't find a valid FAT filesystem [ 339.806141][T12049] FAT-fs (loop2): bogus logical sector size 4864 [ 339.810533][T12051] FAT-fs (loop5): bogus logical sector size 620 [ 339.816511][T12049] FAT-fs (loop2): Can't find a valid FAT filesystem [ 339.818982][T12051] FAT-fs (loop5): Can't find a valid FAT filesystem [ 339.851563][T12059] FAT-fs (loop4): bogus logical sector size 524 [ 339.858464][T12059] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xb000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:29 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174002004010002000270fff8", 0x16}], 0x0, 0x0) [ 339.921849][T12069] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 339.936201][T12069] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:29 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001404010002000270fff8", 0x16}], 0x0, 0x0) 09:45:29 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 340.030228][T12051] FAT-fs (loop5): bogus logical sector size 620 [ 340.030761][T12075] FAT-fs (loop1): bogus logical sector size 8192 [ 340.036684][T12051] FAT-fs (loop5): Can't find a valid FAT filesystem [ 340.050245][T12075] FAT-fs (loop1): Can't find a valid FAT filesystem [ 340.058543][ T5] usb 1-1: new high-speed USB device number 119 using dummy_hcd [ 340.066141][T12077] FAT-fs (loop2): bogus logical sector size 5120 [ 340.089625][T12077] FAT-fs (loop2): Can't find a valid FAT filesystem [ 340.112575][T12082] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 340.128951][T12082] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 340.160551][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 340.242428][T12075] FAT-fs (loop1): bogus logical sector size 8192 [ 340.250037][T12075] FAT-fs (loop1): Can't find a valid FAT filesystem [ 340.250824][T12077] FAT-fs (loop2): bogus logical sector size 5120 [ 340.263825][T12077] FAT-fs (loop2): Can't find a valid FAT filesystem [ 340.280541][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 340.294287][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 340.305299][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 340.318183][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 340.327431][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 340.336094][ T5] usb 1-1: config 0 descriptor?? [ 340.821344][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.828432][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.837442][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.845280][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.853134][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.860181][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.868469][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.876299][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.884082][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.891876][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.898932][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.907442][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.915228][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.923111][ T5] appleir 0003:05AC:1440.005F: unknown main item tag 0x0 [ 340.931620][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.005F/input/input101 [ 340.945121][ T5] appleir 0003:05AC:1440.005F: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 341.024844][ T5] usb 1-1: USB disconnect, device number 119 [ 341.800328][ T3082] usb 1-1: new high-speed USB device number 120 using dummy_hcd [ 341.890375][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 342.010409][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 342.021440][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 342.031181][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 342.043971][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 342.053010][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 342.061531][ T3082] usb 1-1: config 0 descriptor?? [ 342.361128][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.368191][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.376915][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.384698][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.392515][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.399563][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.407927][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.415978][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.423858][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.431672][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.438698][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.446916][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.454751][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.462544][ T3082] appleir 0003:05AC:1440.0060: unknown main item tag 0x0 [ 342.471633][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0060/input/input102 [ 342.485209][ T3082] appleir 0003:05AC:1440.0060: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:32 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4802, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:32 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174740204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:32 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:32 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003e04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:32 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174002004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:32 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 342.563303][ T3082] usb 1-1: USB disconnect, device number 120 [ 342.590151][T12118] FAT-fs (loop1): bogus logical sector size 15872 [ 342.600544][T12119] FAT-fs (loop2): bogus logical sector size 8192 [ 342.601649][T12118] FAT-fs (loop1): Can't find a valid FAT filesystem [ 342.607029][T12119] FAT-fs (loop2): Can't find a valid FAT filesystem [ 342.625491][T12122] FAT-fs (loop5): bogus logical sector size 628 [ 342.633454][T12122] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:32 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 342.670638][T12128] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 342.685016][T12128] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 342.716715][T12118] FAT-fs (loop1): bogus logical sector size 15872 [ 342.723250][T12118] FAT-fs (loop1): Can't find a valid FAT filesystem [ 342.724362][T12124] FAT-fs (loop4): bogus logical sector size 525 [ 342.736239][T12124] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:32 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174780204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:32 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003f04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:32 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174042804010002000270fff8", 0x16}], 0x0, 0x0) [ 342.817188][T12119] FAT-fs (loop2): bogus logical sector size 8192 [ 342.824454][T12119] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:32 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x10000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 342.870459][T12139] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 342.884832][T12139] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 342.905886][T12124] FAT-fs (loop4): bogus logical sector size 525 [ 342.914819][T12124] FAT-fs (loop4): Can't find a valid FAT filesystem [ 342.922846][T12138] FAT-fs (loop1): bogus logical sector size 16128 [ 342.927304][T12137] FAT-fs (loop5): bogus logical sector size 632 [ 342.935533][T12138] FAT-fs (loop1): Can't find a valid FAT filesystem [ 342.935813][T12144] FAT-fs (loop2): bogus logical sector size 10244 [ 342.945344][T12137] FAT-fs (loop5): Can't find a valid FAT filesystem [ 342.949829][T12144] FAT-fs (loop2): Can't find a valid FAT filesystem [ 342.980222][ T3082] usb 1-1: new high-speed USB device number 121 using dummy_hcd [ 343.044225][T12147] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 343.058583][T12147] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 343.080288][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 343.108210][T12138] FAT-fs (loop1): bogus logical sector size 16128 [ 343.114764][T12138] FAT-fs (loop1): Can't find a valid FAT filesystem [ 343.143190][T12144] FAT-fs (loop2): bogus logical sector size 10244 [ 343.149766][T12144] FAT-fs (loop2): Can't find a valid FAT filesystem [ 343.182976][T12137] FAT-fs (loop5): bogus logical sector size 632 [ 343.190560][T12137] FAT-fs (loop5): Can't find a valid FAT filesystem [ 343.200278][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 343.211392][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 343.221770][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 343.234597][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 343.243657][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 343.252497][ T3082] usb 1-1: config 0 descriptor?? [ 343.730995][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.738050][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.746689][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.754645][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.764938][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.772671][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.779694][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.788012][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.796728][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.804605][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.812508][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.819542][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.828135][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.836216][ T3082] appleir 0003:05AC:1440.0061: unknown main item tag 0x0 [ 343.845008][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0061/input/input103 [ 343.859342][ T3082] appleir 0003:05AC:1440.0061: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 343.932627][ T3082] usb 1-1: USB disconnect, device number 121 [ 344.710003][ T5] usb 1-1: new high-speed USB device number 122 using dummy_hcd [ 344.800076][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 344.920089][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 344.931146][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 344.941105][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 344.953912][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 344.962975][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 344.971630][ T5] usb 1-1: config 0 descriptor?? [ 345.260879][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.268118][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.276484][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.284447][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.292500][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.299706][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.308016][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.315805][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.323666][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.331442][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.338471][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.346794][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.354612][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.362418][ T5] appleir 0003:05AC:1440.0062: unknown main item tag 0x0 [ 345.370831][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0062/input/input104 [ 345.384537][ T5] appleir 0003:05AC:1440.0062: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:35 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4805, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:35 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:35 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x11000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:35 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174004004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:35 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174042904010002000270fff8", 0x16}], 0x0, 0x0) 09:45:35 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661747a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:35 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x12000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 345.462811][ T3082] usb 1-1: USB disconnect, device number 122 [ 345.500936][T12179] FAT-fs (loop1): bogus logical sector size 16384 [ 345.508276][T12181] FAT-fs (loop2): bogus logical sector size 10500 [ 345.515426][T12179] FAT-fs (loop1): Can't find a valid FAT filesystem [ 345.520198][T12171] FAT-fs (loop5): bogus logical sector size 634 [ 345.523617][T12181] FAT-fs (loop2): Can't find a valid FAT filesystem [ 345.534008][T12171] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:35 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174204604010002000270fff8", 0x16}], 0x0, 0x0) [ 345.585087][T12172] FAT-fs (loop4): bogus logical sector size 526 [ 345.591613][T12172] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:35 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x13000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 345.636110][T12190] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 345.650958][T12190] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:35 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x17000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 345.713472][T12181] FAT-fs (loop2): bogus logical sector size 10500 [ 345.722040][T12189] FAT-fs (loop1): bogus logical sector size 17952 [ 345.728840][T12181] FAT-fs (loop2): Can't find a valid FAT filesystem [ 345.730174][T12171] FAT-fs (loop5): bogus logical sector size 634 [ 345.736449][T12189] FAT-fs (loop1): Can't find a valid FAT filesystem [ 345.749167][T12171] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:35 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174042a04010002000270fff8", 0x16}], 0x0, 0x0) [ 345.772156][T12172] FAT-fs (loop4): bogus logical sector size 526 [ 345.778644][T12172] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:35 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x18000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 345.822830][T12199] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 345.837161][T12199] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 345.889941][ T3082] usb 1-1: new high-speed USB device number 123 using dummy_hcd [ 345.979921][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 346.018531][T12205] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 346.033131][T12205] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 346.062937][T12189] FAT-fs (loop1): bogus logical sector size 17952 [ 346.069368][T12189] FAT-fs (loop1): Can't find a valid FAT filesystem [ 346.081620][T12202] FAT-fs (loop2): bogus logical sector size 10756 [ 346.093529][T12202] FAT-fs (loop2): Can't find a valid FAT filesystem [ 346.129978][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 346.140958][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 346.153947][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 346.167265][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 346.176620][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 346.185439][ T3082] usb 1-1: config 0 descriptor?? [ 346.196466][T12202] FAT-fs (loop2): bogus logical sector size 10756 [ 346.203171][T12202] FAT-fs (loop2): Can't find a valid FAT filesystem [ 346.680719][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.687820][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.697868][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.704968][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.712048][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.719084][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.726287][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.733487][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.740540][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.747570][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.754638][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.761705][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.768732][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.776750][ T3082] appleir 0003:05AC:1440.0063: unknown main item tag 0x0 [ 346.784464][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0063/input/input105 [ 346.798535][ T3082] appleir 0003:05AC:1440.0063: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 346.884692][ T3082] usb 1-1: USB disconnect, device number 123 [ 347.649729][ T5] usb 1-1: new high-speed USB device number 124 using dummy_hcd [ 347.739804][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 347.859804][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 347.870686][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 347.880438][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 347.893341][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 347.902376][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 347.911012][ T5] usb 1-1: config 0 descriptor?? [ 348.200507][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.207569][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.216538][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.224346][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.232324][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.239367][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.247649][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.255538][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.263337][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.271122][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.278188][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.286654][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.294412][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.302116][ T5] appleir 0003:05AC:1440.0064: unknown main item tag 0x0 [ 348.310600][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0064/input/input106 [ 348.324126][ T5] appleir 0003:05AC:1440.0064: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:38 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4b47, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:38 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661740f0204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1a000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174104a04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:38 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174042b04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x1e030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 348.402459][ T3082] usb 1-1: USB disconnect, device number 124 [ 348.429729][T12234] FAT-fs (loop5): bogus logical sector size 768 [ 348.444949][T12234] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:38 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000504010002000270fff8", 0x16}], 0x0, 0x0) 09:45:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x20000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 348.459708][T12241] FAT-fs (loop1): bogus logical sector size 18960 [ 348.459713][T12238] FAT-fs (loop2): bogus logical sector size 11012 [ 348.459722][T12238] FAT-fs (loop2): Can't find a valid FAT filesystem [ 348.480352][T12241] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:38 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617420a304010002000270fff8", 0x16}], 0x0, 0x0) [ 348.586773][T12245] FAT-fs (loop4): bogus logical sector size 527 [ 348.593287][T12245] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x20100000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 348.637140][T12255] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 348.651550][T12255] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. 09:45:38 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x22000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 348.681808][T12238] FAT-fs (loop2): bogus logical sector size 11012 [ 348.688746][T12238] FAT-fs (loop2): Can't find a valid FAT filesystem [ 348.697037][T12245] FAT-fs (loop4): bogus logical sector size 527 [ 348.698817][T12254] FAT-fs (loop5): bogus logical sector size 1280 [ 348.703472][T12245] FAT-fs (loop4): Can't find a valid FAT filesystem [ 348.722671][T12254] FAT-fs (loop5): Can't find a valid FAT filesystem [ 348.799655][ T3082] usb 1-1: new high-speed USB device number 125 using dummy_hcd [ 348.882927][T12260] FAT-fs (loop1): bogus logical sector size 41760 [ 348.884932][T12254] FAT-fs (loop5): bogus logical sector size 1280 [ 348.889518][T12260] FAT-fs (loop1): Can't find a valid FAT filesystem [ 348.896108][T12254] FAT-fs (loop5): Can't find a valid FAT filesystem [ 348.903192][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 348.918074][T12268] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 348.932607][T12268] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 348.999435][T12260] FAT-fs (loop1): bogus logical sector size 41760 [ 349.008176][T12260] FAT-fs (loop1): Can't find a valid FAT filesystem [ 349.029701][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 349.040883][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 349.051558][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 349.066626][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 349.076047][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 349.084903][ T3082] usb 1-1: config 0 descriptor?? [ 349.570402][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.577484][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.585789][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.593581][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.601344][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.608369][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.616886][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.624686][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.632367][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.639394][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.647717][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.655562][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.663368][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.671178][ T3082] appleir 0003:05AC:1440.0065: unknown main item tag 0x0 [ 349.678812][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0065/input/input107 [ 349.693050][ T3082] appleir 0003:05AC:1440.0065: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 349.772207][ T3082] usb 1-1: USB disconnect, device number 125 [ 350.539469][ T5] usb 1-1: new high-speed USB device number 126 using dummy_hcd [ 350.629511][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 350.749490][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 350.760393][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 350.770140][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 350.782942][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 350.791976][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 350.800768][ T5] usb 1-1: config 0 descriptor?? [ 351.090229][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.097293][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.106249][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.114027][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.121762][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.128887][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.137328][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.145430][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.153205][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.160927][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.167982][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.176398][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.184209][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.192091][ T5] appleir 0003:05AC:1440.0066: unknown main item tag 0x0 [ 351.200674][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0066/input/input108 [ 351.214631][ T5] appleir 0003:05AC:1440.0066: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:40 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4b49, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:40 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174100204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174042c04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:40 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x24000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:40 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000604010002000270fff8", 0x16}], 0x0, 0x0) 09:45:40 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617420a404010002000270fff8", 0x16}], 0x0, 0x0) [ 351.292212][ T3082] usb 1-1: USB disconnect, device number 126 [ 351.314949][T12299] FAT-fs (loop2): bogus logical sector size 11268 [ 351.324325][T12298] FAT-fs (loop5): bogus logical sector size 1536 [ 351.327014][T12299] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:40 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2c000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:40 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003e04010002000270fff8", 0x16}], 0x0, 0x0) [ 351.339192][T12304] FAT-fs (loop1): bogus logical sector size 42016 [ 351.342963][T12298] FAT-fs (loop5): Can't find a valid FAT filesystem [ 351.354014][T12304] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:41 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x2e840000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:41 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617420a504010002000270fff8", 0x16}], 0x0, 0x0) 09:45:41 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x30000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 351.488635][T12304] FAT-fs (loop1): bogus logical sector size 42016 [ 351.496304][T12304] FAT-fs (loop1): Can't find a valid FAT filesystem [ 351.499619][T12307] FAT-fs (loop4): bogus logical sector size 528 [ 351.511442][T12298] FAT-fs (loop5): bogus logical sector size 1536 [ 351.518717][T12298] FAT-fs (loop5): Can't find a valid FAT filesystem [ 351.522421][T12307] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:41 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000704010002000270fff8", 0x16}], 0x0, 0x0) [ 351.595482][T12314] FAT-fs (loop2): bogus logical sector size 15872 [ 351.602024][T12314] FAT-fs (loop2): Can't find a valid FAT filesystem [ 351.646062][T12325] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 351.660297][T12325] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 351.689313][ T3082] usb 1-1: new high-speed USB device number 127 using dummy_hcd [ 351.701812][T12322] FAT-fs (loop1): bogus logical sector size 42272 [ 351.708682][T12322] FAT-fs (loop1): Can't find a valid FAT filesystem [ 351.720497][T12314] FAT-fs (loop2): bogus logical sector size 15872 [ 351.729319][T12314] FAT-fs (loop2): Can't find a valid FAT filesystem [ 351.731788][T12329] FAT-fs (loop5): bogus logical sector size 1792 [ 351.742720][T12329] FAT-fs (loop5): Can't find a valid FAT filesystem [ 351.779344][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 351.849901][T12322] FAT-fs (loop1): bogus logical sector size 42272 [ 351.856409][T12322] FAT-fs (loop1): Can't find a valid FAT filesystem [ 351.895874][T12307] FAT-fs (loop4): bogus logical sector size 528 [ 351.903398][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 351.911419][T12307] FAT-fs (loop4): Can't find a valid FAT filesystem [ 351.916836][T12329] FAT-fs (loop5): bogus logical sector size 1792 [ 351.928484][T12329] FAT-fs (loop5): Can't find a valid FAT filesystem [ 351.930904][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 351.944890][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 351.957950][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 351.967026][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 351.975608][ T3082] usb 1-1: config 0 descriptor?? [ 352.460093][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.467158][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.475623][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.483390][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.491087][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.498128][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.506342][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.514115][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.521936][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.529088][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.537608][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.545346][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.553126][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.560910][ T3082] appleir 0003:05AC:1440.0067: unknown main item tag 0x0 [ 352.568563][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0067/input/input109 [ 352.582792][ T3082] appleir 0003:05AC:1440.0067: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 352.661852][ T5] usb 1-1: USB disconnect, device number 127 [ 353.429163][ T3082] usb 1-1: new high-speed USB device number 2 using dummy_hcd [ 353.519220][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 353.639227][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 353.650116][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 353.660444][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 353.673611][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 353.683049][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 353.691926][ T3082] usb 1-1: config 0 descriptor?? [ 353.989946][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 353.997056][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.005546][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.013306][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.020995][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.028032][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.036274][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.044025][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.051732][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.058840][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.067211][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.074935][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.082728][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.090533][ T3082] appleir 0003:05AC:1440.0068: unknown main item tag 0x0 [ 354.098191][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0068/input/input110 [ 354.112525][ T3082] appleir 0003:05AC:1440.0068: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:43 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x541b, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x32020000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:43 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617426cf04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:43 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003f04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:43 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174110204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:43 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000904010002000270fff8", 0x16}], 0x0, 0x0) [ 354.192209][ T5] usb 1-1: USB disconnect, device number 2 [ 354.215317][T12355] FAT-fs (loop2): bogus logical sector size 16128 [ 354.222999][T12355] FAT-fs (loop2): Can't find a valid FAT filesystem [ 354.229650][T12356] FAT-fs (loop1): bogus logical sector size 53030 [ 354.236054][T12356] FAT-fs (loop1): Can't find a valid FAT filesystem 09:45:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x38000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:43 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3a000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 354.237579][T12361] FAT-fs (loop5): bogus logical sector size 2304 [ 354.261297][T12361] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:43 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174004004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:44 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3e020000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 354.395961][T12363] FAT-fs (loop4): bogus logical sector size 529 [ 354.396204][T12361] FAT-fs (loop5): bogus logical sector size 2304 [ 354.408906][T12356] FAT-fs (loop1): bogus logical sector size 53030 [ 354.415424][T12363] FAT-fs (loop4): Can't find a valid FAT filesystem [ 354.417968][T12356] FAT-fs (loop1): Can't find a valid FAT filesystem [ 354.423258][T12361] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:44 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617426d104010002000270fff8", 0x16}], 0x0, 0x0) 09:45:44 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x3f000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 354.490003][T12377] FAT-fs (loop2): bogus logical sector size 16384 [ 354.496500][T12377] FAT-fs (loop2): Can't find a valid FAT filesystem [ 354.545815][T12383] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 354.561065][T12383] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 354.609040][ T5] usb 1-1: new high-speed USB device number 3 using dummy_hcd [ 354.699050][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 354.699316][T12363] FAT-fs (loop4): bogus logical sector size 529 [ 354.706757][T12377] FAT-fs (loop2): bogus logical sector size 16384 [ 354.712280][T12388] FAT-fs (loop1): bogus logical sector size 53542 [ 354.718189][T12377] FAT-fs (loop2): Can't find a valid FAT filesystem [ 354.723820][T12388] FAT-fs (loop1): Can't find a valid FAT filesystem [ 354.739702][T12363] FAT-fs (loop4): Can't find a valid FAT filesystem [ 354.811366][T12388] FAT-fs (loop1): bogus logical sector size 53542 [ 354.822021][T12388] FAT-fs (loop1): Can't find a valid FAT filesystem [ 354.829056][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 354.840494][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 354.850602][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 354.864016][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 354.873641][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 354.882573][ T5] usb 1-1: config 0 descriptor?? [ 355.359791][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.367157][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.376220][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.383989][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.391745][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.398776][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.407160][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.415182][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.423085][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.430842][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.437864][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.446303][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.454025][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.464761][ T5] appleir 0003:05AC:1440.0069: unknown main item tag 0x0 [ 355.473149][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0069/input/input111 [ 355.493144][ T5] appleir 0003:05AC:1440.0069: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 355.563455][ T5] usb 1-1: USB disconnect, device number 3 [ 356.328863][ T3082] usb 1-1: new high-speed USB device number 4 using dummy_hcd [ 356.428918][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 356.548924][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 356.559792][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 356.569535][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 356.582443][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 356.591486][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 356.600029][ T3082] usb 1-1: config 0 descriptor?? [ 356.889645][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.896709][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.905230][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.913091][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.920807][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.927834][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.936131][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.943938][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.951821][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.959638][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.966663][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.975094][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.982884][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.990699][ T3082] appleir 0003:05AC:1440.006A: unknown main item tag 0x0 [ 356.998389][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.006A/input/input112 [ 357.012719][ T3082] appleir 0003:05AC:1440.006A: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:46 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x5421, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:46 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x40000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:46 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000a04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:46 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174120204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:46 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174104a04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:46 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403d604010002000270fff8", 0x16}], 0x0, 0x0) [ 357.098341][ T3082] usb 1-1: USB disconnect, device number 4 [ 357.114665][T12412] FAT-fs (loop1): bogus logical sector size 54787 [ 357.124683][T12412] FAT-fs (loop1): Can't find a valid FAT filesystem [ 357.127335][T12414] FAT-fs (loop5): bogus logical sector size 2560 [ 357.140829][T12414] FAT-fs (loop5): Can't find a valid FAT filesystem [ 357.159252][T12419] overlayfs: upperdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 357.173812][T12419] overlayfs: workdir is in-use as upperdir/workdir of another mount, accessing files from both mounts will result in undefined behavior. [ 357.178388][T12424] FAT-fs (loop4): bogus logical sector size 530 [ 357.187963][T12418] FAT-fs (loop2): bogus logical sector size 18960 [ 357.194377][T12424] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:46 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x40000800, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 357.201701][T12418] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:46 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x46a776de, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 357.334841][T12412] FAT-fs (loop1): bogus logical sector size 54787 [ 357.341552][T12418] FAT-fs (loop2): bogus logical sector size 18960 [ 357.349390][T12418] FAT-fs (loop2): Can't find a valid FAT filesystem [ 357.356139][T12412] FAT-fs (loop1): Can't find a valid FAT filesystem [ 357.365448][T12414] FAT-fs (loop5): bogus logical sector size 2560 [ 357.372314][T12414] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:47 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403d804010002000270fff8", 0x16}], 0x0, 0x0) 09:45:47 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000b04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:47 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x5c000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 357.406357][T12424] FAT-fs (loop4): bogus logical sector size 530 [ 357.412973][T12424] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:47 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617426af04010002000270fff8", 0x16}], 0x0, 0x0) [ 357.518738][ T3082] usb 1-1: new high-speed USB device number 5 using dummy_hcd [ 357.638776][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 357.644064][T12445] FAT-fs (loop5): bogus logical sector size 2816 [ 357.654126][T12445] FAT-fs (loop5): Can't find a valid FAT filesystem [ 357.692031][T12453] FAT-fs (loop1): bogus logical sector size 55299 [ 357.698472][T12453] FAT-fs (loop1): Can't find a valid FAT filesystem [ 357.708402][T12455] FAT-fs (loop2): bogus logical sector size 44838 [ 357.714990][T12455] FAT-fs (loop2): Can't find a valid FAT filesystem [ 357.768777][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 357.779762][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 357.794384][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 357.807454][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 357.812302][T12453] FAT-fs (loop1): bogus logical sector size 55299 [ 357.816719][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 357.824141][T12455] FAT-fs (loop2): bogus logical sector size 44838 [ 357.831822][ T3082] usb 1-1: config 0 descriptor?? [ 357.842926][T12453] FAT-fs (loop1): Can't find a valid FAT filesystem [ 357.844786][T12455] FAT-fs (loop2): Can't find a valid FAT filesystem [ 358.319484][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.326618][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.335358][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.343140][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.350904][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.357950][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.366261][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.374151][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.382003][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.389865][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.396891][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.405229][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.413048][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.421088][ T3082] appleir 0003:05AC:1440.006B: unknown main item tag 0x0 [ 358.429625][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.006B/input/input113 [ 358.443136][ T3082] appleir 0003:05AC:1440.006B: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 358.521420][ T3082] usb 1-1: USB disconnect, device number 5 [ 359.288584][ T5] usb 1-1: new high-speed USB device number 6 using dummy_hcd [ 359.388629][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 359.508611][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 359.519487][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 359.529243][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 359.542060][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 359.551094][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 359.559602][ T5] usb 1-1: config 0 descriptor?? [ 359.859342][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.866485][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.875086][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.883037][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.890790][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.897915][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.906108][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.913947][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.921666][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.929502][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.936552][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.944854][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.952757][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.960532][ T5] appleir 0003:05AC:1440.006C: unknown main item tag 0x0 [ 359.968208][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.006C/input/input114 [ 359.982394][ T5] appleir 0003:05AC:1440.006C: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x61030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:49 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174130204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:49 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000c04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:49 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403da04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:49 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617426c904010002000270fff8", 0x16}], 0x0, 0x0) 09:45:49 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x5450, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:49 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403f704010002000270fff8", 0x16}], 0x0, 0x0) [ 360.068171][ T3082] usb 1-1: USB disconnect, device number 6 [ 360.090916][T12481] FAT-fs (loop1): bogus logical sector size 55811 [ 360.097630][T12481] FAT-fs (loop1): Can't find a valid FAT filesystem [ 360.099865][T12480] FAT-fs (loop5): bogus logical sector size 3072 09:45:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x70030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 360.114242][T12480] FAT-fs (loop5): Can't find a valid FAT filesystem [ 360.119241][T12484] FAT-fs (loop2): bogus logical sector size 51494 [ 360.129558][T12484] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x72030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x74030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:49 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617426ce04010002000270fff8", 0x16}], 0x0, 0x0) [ 360.214808][T12491] FAT-fs (loop4): bogus logical sector size 531 [ 360.221349][T12492] FAT-fs (loop1): bogus logical sector size 63235 [ 360.224538][T12491] FAT-fs (loop4): Can't find a valid FAT filesystem [ 360.227778][T12492] FAT-fs (loop1): Can't find a valid FAT filesystem [ 360.256260][T12480] FAT-fs (loop5): bogus logical sector size 3072 09:45:49 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x80040000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:49 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403f804010002000270fff8", 0x16}], 0x0, 0x0) [ 360.264844][T12480] FAT-fs (loop5): Can't find a valid FAT filesystem [ 360.412716][T12507] FAT-fs (loop2): bogus logical sector size 52774 [ 360.419311][T12507] FAT-fs (loop2): Can't find a valid FAT filesystem [ 360.426782][T12491] FAT-fs (loop4): bogus logical sector size 531 [ 360.433975][T12491] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:50 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174140204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:50 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000d04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:50 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8a000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:50 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8bffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 360.466380][T12507] FAT-fs (loop2): bogus logical sector size 52774 [ 360.473105][T12507] FAT-fs (loop2): Can't find a valid FAT filesystem [ 360.473934][T12514] FAT-fs (loop1): bogus logical sector size 63491 [ 360.486815][T12514] FAT-fs (loop1): Can't find a valid FAT filesystem [ 360.508495][ T3082] usb 1-1: new high-speed USB device number 7 using dummy_hcd [ 360.527060][T12519] FAT-fs (loop5): bogus logical sector size 3328 [ 360.534385][T12519] FAT-fs (loop5): Can't find a valid FAT filesystem [ 360.618495][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 360.667545][T12519] FAT-fs (loop5): bogus logical sector size 3328 [ 360.673984][T12519] FAT-fs (loop5): Can't find a valid FAT filesystem [ 360.741844][T12528] FAT-fs (loop4): bogus logical sector size 532 [ 360.750298][T12528] FAT-fs (loop4): Can't find a valid FAT filesystem [ 360.768505][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 360.779701][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 360.789673][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 360.802693][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 360.811926][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 360.819004][T12528] FAT-fs (loop4): bogus logical sector size 532 [ 360.822186][ T3082] usb 1-1: config 0 descriptor?? [ 360.835747][T12528] FAT-fs (loop4): Can't find a valid FAT filesystem [ 361.309224][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.316281][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.323438][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.330749][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.337861][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.344924][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.352569][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.359791][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.366821][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.373881][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.381566][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.388709][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.395739][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.402805][ T3082] appleir 0003:05AC:1440.006D: unknown main item tag 0x0 [ 361.410500][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.006D/input/input115 [ 361.424398][ T3082] appleir 0003:05AC:1440.006D: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 361.511195][ T3082] usb 1-1: USB disconnect, device number 7 [ 362.278291][ T5] usb 1-1: new high-speed USB device number 8 using dummy_hcd [ 362.368341][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 362.488324][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 362.499191][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 362.508918][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 362.522520][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 362.531567][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 362.540108][ T5] usb 1-1: config 0 descriptor?? [ 362.829087][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.836246][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.844937][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.852712][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.860487][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.867596][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.876022][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.883823][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.891925][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.899736][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.906758][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.915006][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.923023][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.931384][ T5] appleir 0003:05AC:1440.006E: unknown main item tag 0x0 [ 362.939747][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.006E/input/input116 [ 362.953622][ T5] appleir 0003:05AC:1440.006E: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:52 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x5451, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:52 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403fa04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:52 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617426d104010002000270fff8", 0x16}], 0x0, 0x0) 09:45:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8c000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:52 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000e04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:52 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174150204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8cffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 363.031132][ T3082] usb 1-1: USB disconnect, device number 8 [ 363.061104][T12562] FAT-fs (loop1): bogus logical sector size 64003 [ 363.067670][T12562] FAT-fs (loop1): Can't find a valid FAT filesystem [ 363.069922][T12565] FAT-fs (loop2): bogus logical sector size 53542 09:45:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x8e000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 363.096023][T12568] FAT-fs (loop5): bogus logical sector size 3584 [ 363.103747][T12568] FAT-fs (loop5): Can't find a valid FAT filesystem [ 363.110426][T12565] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x9d000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:52 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:52 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000f04010002000270fff8", 0x16}], 0x0, 0x0) 09:45:52 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xa1ffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 363.229910][T12563] FAT-fs (loop4): bogus logical sector size 533 [ 363.236244][T12563] FAT-fs (loop4): Can't find a valid FAT filesystem [ 363.247464][T12565] FAT-fs (loop2): bogus logical sector size 53542 [ 363.254383][T12568] FAT-fs (loop5): bogus logical sector size 3584 [ 363.261091][T12568] FAT-fs (loop5): Can't find a valid FAT filesystem [ 363.268764][T12565] FAT-fs (loop2): Can't find a valid FAT filesystem [ 363.408635][T12590] FAT-fs (loop1): bogus logical sector size 768 [ 363.417536][T12590] FAT-fs (loop1): Can't find a valid FAT filesystem [ 363.461895][T12595] FAT-fs (loop5): bogus logical sector size 3840 [ 363.468357][T12595] FAT-fs (loop5): Can't find a valid FAT filesystem [ 363.478554][ T3082] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 363.568234][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 363.612661][T12595] FAT-fs (loop5): bogus logical sector size 3840 [ 363.620515][T12595] FAT-fs (loop5): Can't find a valid FAT filesystem [ 363.627783][T12590] FAT-fs (loop1): bogus logical sector size 768 [ 363.634158][T12590] FAT-fs (loop1): Can't find a valid FAT filesystem [ 363.688185][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 363.699080][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 363.709019][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 363.722842][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 363.733928][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 363.746124][ T3082] usb 1-1: config 0 descriptor?? [ 364.228957][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.236011][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.243228][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.250295][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.257314][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.264378][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.271456][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.278508][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.285552][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.292611][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.299694][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.306722][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.314046][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.321110][ T3082] appleir 0003:05AC:1440.006F: unknown main item tag 0x0 [ 364.329204][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.006F/input/input117 [ 364.342810][ T3082] appleir 0003:05AC:1440.006F: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 364.430613][ T5] usb 1-1: USB disconnect, device number 9 [ 365.198018][ T5] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 365.298056][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 365.418053][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 365.428938][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 365.440243][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 365.453061][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 365.462296][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 365.470849][ T5] usb 1-1: config 0 descriptor?? [ 365.758808][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.765888][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.776411][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.784313][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.792091][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.799827][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.806961][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.815281][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.823068][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.830892][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.838723][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.845745][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.854280][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.862082][ T5] appleir 0003:05AC:1440.0070: unknown main item tag 0x0 [ 365.870489][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0070/input/input118 [ 365.884308][ T5] appleir 0003:05AC:1440.0070: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:55 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x5452, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:55 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc0010000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:55 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174fff004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:55 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174160204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:55 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174011004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:55 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000404010002000270fff8", 0x16}], 0x0, 0x0) [ 365.960815][ T3082] usb 1-1: USB disconnect, device number 10 [ 365.987816][T12628] FAT-fs (loop5): bogus logical sector size 4097 [ 365.994756][T12628] FAT-fs (loop5): Can't find a valid FAT filesystem [ 366.004268][T12632] FAT-fs (loop2): bogus logical sector size 61695 09:45:55 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc0ed0000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 366.010789][T12632] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:55 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000504010002000270fff8", 0x16}], 0x0, 0x0) 09:45:55 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc6030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 366.090149][T12628] FAT-fs (loop5): bogus logical sector size 4097 [ 366.098018][T12628] FAT-fs (loop5): Can't find a valid FAT filesystem [ 366.110597][T12632] FAT-fs (loop2): bogus logical sector size 61695 [ 366.118362][T12632] FAT-fs (loop2): Can't find a valid FAT filesystem 09:45:55 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403f704010002000270fff8", 0x16}], 0x0, 0x0) 09:45:55 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xcc010000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:55 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001104010002000270fff8", 0x16}], 0x0, 0x0) [ 366.170876][T12641] FAT-fs (loop4): bogus logical sector size 534 [ 366.177795][T12641] FAT-fs (loop4): Can't find a valid FAT filesystem [ 366.387891][ T3082] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 366.434233][T12649] FAT-fs (loop1): bogus logical sector size 1280 [ 366.435834][T12641] FAT-fs (loop4): bogus logical sector size 534 [ 366.442129][T12649] FAT-fs (loop1): Can't find a valid FAT filesystem [ 366.447438][T12641] FAT-fs (loop4): Can't find a valid FAT filesystem [ 366.464961][T12660] FAT-fs (loop5): bogus logical sector size 4352 [ 366.467060][T12654] FAT-fs (loop2): bogus logical sector size 63235 [ 366.472035][T12660] FAT-fs (loop5): Can't find a valid FAT filesystem [ 366.481176][T12654] FAT-fs (loop2): Can't find a valid FAT filesystem [ 366.484552][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 366.607969][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 366.618979][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 366.630341][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 366.643193][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 366.652384][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 366.660974][ T3082] usb 1-1: config 0 descriptor?? [ 366.681822][T12660] FAT-fs (loop5): bogus logical sector size 4352 [ 366.683162][T12649] FAT-fs (loop1): bogus logical sector size 1280 [ 366.688240][T12660] FAT-fs (loop5): Can't find a valid FAT filesystem [ 366.706086][T12654] FAT-fs (loop2): bogus logical sector size 63235 [ 366.710920][T12649] FAT-fs (loop1): Can't find a valid FAT filesystem [ 366.714346][T12654] FAT-fs (loop2): Can't find a valid FAT filesystem [ 367.138664][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.145834][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.154899][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.162730][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.170559][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.178596][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.185628][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.194063][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.201980][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.209729][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.216759][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.225083][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.232870][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.241221][ T3082] appleir 0003:05AC:1440.0071: unknown main item tag 0x0 [ 367.249621][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0071/input/input119 [ 367.263404][ T3082] appleir 0003:05AC:1440.0071: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 367.342533][ T3082] usb 1-1: USB disconnect, device number 11 [ 368.107726][ T3082] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 368.197777][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 368.317774][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 368.328651][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 368.339024][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 368.352180][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 368.361546][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 368.370840][ T3082] usb 1-1: config 0 descriptor?? [ 368.658472][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.665593][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.673911][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.681891][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.689593][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.696632][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.704865][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.712691][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.720360][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.727413][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.735680][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.743391][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.751188][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.759831][ T3082] appleir 0003:05AC:1440.0072: unknown main item tag 0x0 [ 368.767502][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0072/input/input120 [ 368.783018][ T3082] appleir 0003:05AC:1440.0072: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:45:58 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174170204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd1260000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:45:58 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000604010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617403f904010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x5460, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd29428de, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 368.867144][ T5] usb 1-1: USB disconnect, device number 12 [ 368.889438][T12687] FAT-fs (loop2): bogus logical sector size 63747 [ 368.896611][T12688] FAT-fs (loop1): bogus logical sector size 1536 [ 368.897860][T12693] FAT-fs (loop5): bogus logical sector size 4608 [ 368.910023][T12693] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:58 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174002004010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd3260000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 368.921147][T12687] FAT-fs (loop2): Can't find a valid FAT filesystem [ 368.930361][T12688] FAT-fs (loop1): Can't find a valid FAT filesystem [ 368.959630][T12701] FAT-fs (loop4): bogus logical sector size 535 [ 368.966027][T12701] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd5030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 369.064887][T12700] FAT-fs (loop5): bogus logical sector size 8192 [ 369.071861][T12700] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd7030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 369.175253][T12700] FAT-fs (loop5): bogus logical sector size 8192 [ 369.181573][T12688] FAT-fs (loop1): bogus logical sector size 1536 [ 369.182349][T12687] FAT-fs (loop2): bogus logical sector size 63747 [ 369.188142][T12688] FAT-fs (loop1): Can't find a valid FAT filesystem [ 369.196764][T12687] FAT-fs (loop2): Can't find a valid FAT filesystem [ 369.204443][T12701] FAT-fs (loop4): bogus logical sector size 535 [ 369.211155][T12700] FAT-fs (loop5): Can't find a valid FAT filesystem 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xd8ffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 369.214640][T12701] FAT-fs (loop4): Can't find a valid FAT filesystem 09:45:58 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000704010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000304010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174180204010002000270fff8", 0x16}], 0x0, 0x0) 09:45:58 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xde2894d2, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 369.297624][ T5] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 369.387602][ T5] usb 1-1: Using ep0 maxpacket: 16 09:45:59 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003e04010002000270fff8", 0x16}], 0x0, 0x0) [ 369.507668][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 369.518765][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 369.529028][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 369.542107][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 369.551257][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 369.559738][ T5] usb 1-1: config 0 descriptor?? [ 369.588403][T12727] FAT-fs (loop1): bogus logical sector size 1792 [ 369.591420][T12733] FAT-fs (loop4): bogus logical sector size 536 [ 369.594779][T12727] FAT-fs (loop1): Can't find a valid FAT filesystem [ 369.595016][T12728] FAT-fs (loop2): bogus logical sector size 768 [ 369.601725][T12733] FAT-fs (loop4): Can't find a valid FAT filesystem [ 369.609978][T12728] FAT-fs (loop2): Can't find a valid FAT filesystem [ 369.629859][T12737] FAT-fs (loop5): bogus logical sector size 15872 [ 369.636257][T12737] FAT-fs (loop5): Can't find a valid FAT filesystem [ 369.718248][T12727] FAT-fs (loop1): bogus logical sector size 1792 [ 369.718791][T12728] FAT-fs (loop2): bogus logical sector size 768 [ 369.727135][T12727] FAT-fs (loop1): Can't find a valid FAT filesystem [ 369.731654][T12728] FAT-fs (loop2): Can't find a valid FAT filesystem [ 369.738442][T12737] FAT-fs (loop5): bogus logical sector size 15872 [ 369.750869][T12737] FAT-fs (loop5): Can't find a valid FAT filesystem [ 370.048603][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.055678][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.067631][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.074729][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.083473][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.093211][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.105158][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.127228][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.150095][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.157205][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.168161][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.175412][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.184042][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.192189][ T5] appleir 0003:05AC:1440.0073: unknown main item tag 0x0 [ 370.200552][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0073/input/input121 [ 370.214424][ T5] appleir 0003:05AC:1440.0073: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 370.278414][ T3082] usb 1-1: USB disconnect, device number 13 [ 371.047448][ T5] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 371.137511][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 371.257480][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 371.268382][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 371.278723][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 371.291891][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 371.301238][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 371.310039][ T5] usb 1-1: config 0 descriptor?? [ 371.608202][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.615261][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.623700][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.631492][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.639304][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.646343][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.654611][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.662411][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.670175][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.677210][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.685548][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.693407][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.701222][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.709164][ T5] appleir 0003:05AC:1440.0074: unknown main item tag 0x0 [ 371.716870][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0074/input/input122 [ 371.731233][ T5] appleir 0003:05AC:1440.0074: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:01 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4004480f, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000804010002000270fff8", 0x16}], 0x0, 0x0) 09:46:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xde76a746, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000404010002000270fff8", 0x16}], 0x0, 0x0) 09:46:01 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003f04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:01 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174190204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000904010002000270fff8", 0x16}], 0x0, 0x0) [ 371.810249][ T3082] usb 1-1: USB disconnect, device number 14 [ 371.847089][T12771] FAT-fs (loop5): bogus logical sector size 16128 09:46:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe0000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:01 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000504010002000270fff8", 0x16}], 0x0, 0x0) [ 371.855539][T12778] FAT-fs (loop4): bogus logical sector size 537 [ 371.871114][T12778] FAT-fs (loop4): Can't find a valid FAT filesystem [ 371.872722][T12771] FAT-fs (loop5): Can't find a valid FAT filesystem [ 371.895968][T12784] FAT-fs (loop1): bogus logical sector size 2304 09:46:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe4ffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 371.905058][T12784] FAT-fs (loop1): Can't find a valid FAT filesystem [ 371.913413][T12778] FAT-fs (loop4): bogus logical sector size 537 [ 371.919971][T12778] FAT-fs (loop4): Can't find a valid FAT filesystem 09:46:01 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe5030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:01 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000a04010002000270fff8", 0x16}], 0x0, 0x0) [ 372.128294][T12795] FAT-fs (loop2): bogus logical sector size 1280 [ 372.134690][T12795] FAT-fs (loop2): Can't find a valid FAT filesystem [ 372.247295][ T3082] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 372.296851][T12800] FAT-fs (loop1): bogus logical sector size 2560 [ 372.303271][T12800] FAT-fs (loop1): Can't find a valid FAT filesystem [ 372.304489][T12795] FAT-fs (loop2): bogus logical sector size 1280 [ 372.316240][T12795] FAT-fs (loop2): Can't find a valid FAT filesystem [ 372.348965][T12800] FAT-fs (loop1): bogus logical sector size 2560 [ 372.355353][T12800] FAT-fs (loop1): Can't find a valid FAT filesystem [ 372.367342][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 372.518086][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 372.529009][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 372.539297][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 372.552490][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 372.561899][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 372.570942][ T3082] usb 1-1: config 0 descriptor?? [ 373.048053][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.055109][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.063683][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.071632][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.079303][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.086353][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.094704][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.102536][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.110405][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.118219][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.125240][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.133462][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.141209][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.148947][ T3082] appleir 0003:05AC:1440.0075: unknown main item tag 0x0 [ 373.156710][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0075/input/input123 [ 373.171033][ T3082] appleir 0003:05AC:1440.0075: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 373.249794][ T3082] usb 1-1: USB disconnect, device number 15 [ 374.017155][ T5] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 374.107198][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 374.227195][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 374.238176][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 374.247900][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 374.260690][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 374.269710][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 374.278433][ T5] usb 1-1: config 0 descriptor?? [ 374.567987][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.575132][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.584275][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.592050][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.599750][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.606770][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.615021][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.622805][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.630561][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.638491][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.645540][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.653867][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.661610][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.669307][ T5] appleir 0003:05AC:1440.0076: unknown main item tag 0x0 [ 374.678023][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0076/input/input124 [ 374.691492][ T5] appleir 0003:05AC:1440.0076: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:04 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40049409, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:04 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174004004010002000270fff8", 0x16}], 0x0, 0x0) 09:46:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xe6c8aaef, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741a0204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:04 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000604010002000270fff8", 0x16}], 0x0, 0x0) 09:46:04 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000b04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:04 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174184a04010002000270fff8", 0x16}], 0x0, 0x0) [ 374.770113][ T3082] usb 1-1: USB disconnect, device number 16 [ 374.797802][T12832] FAT-fs (loop5): bogus logical sector size 16384 [ 374.804371][T12832] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xeaffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 374.820340][T12827] FAT-fs (loop1): bogus logical sector size 2816 [ 374.827291][T12827] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xefaac8e6, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 374.871046][T12831] FAT-fs (loop2): bogus logical sector size 1536 [ 374.878102][T12831] FAT-fs (loop2): Can't find a valid FAT filesystem 09:46:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf0ffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 374.931050][T12835] FAT-fs (loop4): bogus logical sector size 538 [ 374.937397][T12835] FAT-fs (loop4): Can't find a valid FAT filesystem [ 374.963832][T12843] FAT-fs (loop5): bogus logical sector size 18968 [ 374.970475][T12843] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:04 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf4ffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 374.978322][T12831] FAT-fs (loop2): bogus logical sector size 1536 [ 374.984779][T12831] FAT-fs (loop2): Can't find a valid FAT filesystem [ 374.991679][T12827] FAT-fs (loop1): bogus logical sector size 2816 [ 374.998392][T12827] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:04 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741b0204010002000270fff8", 0x16}], 0x0, 0x0) [ 375.207030][ T3082] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 375.283293][T12857] FAT-fs (loop4): bogus logical sector size 539 [ 375.291650][T12857] FAT-fs (loop4): Can't find a valid FAT filesystem [ 375.300961][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 375.338037][T12857] FAT-fs (loop4): bogus logical sector size 539 [ 375.344486][T12857] FAT-fs (loop4): Can't find a valid FAT filesystem [ 375.427074][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 375.438134][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 375.448463][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 375.461629][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 375.471002][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 375.479895][ T3082] usb 1-1: config 0 descriptor?? [ 375.957806][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 375.964861][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 375.973139][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 375.980885][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 375.988596][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 375.995629][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.004078][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.011877][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.019557][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.026596][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.034939][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.042674][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.050513][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.058392][ T3082] appleir 0003:05AC:1440.0077: unknown main item tag 0x0 [ 376.066079][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0077/input/input125 [ 376.080343][ T3082] appleir 0003:05AC:1440.0077: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 376.159434][ T3082] usb 1-1: USB disconnect, device number 17 [ 376.926870][ T5] usb 1-1: new high-speed USB device number 18 using dummy_hcd [ 377.016901][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 377.146895][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 377.157795][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 377.167527][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 377.180328][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 377.189352][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 377.197876][ T5] usb 1-1: config 0 descriptor?? [ 377.487637][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.494707][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.504495][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.511582][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.518660][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.525666][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.532708][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.539888][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.546942][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.553967][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.561026][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.568084][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.575096][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.582158][ T5] appleir 0003:05AC:1440.0078: unknown main item tag 0x0 [ 377.589853][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0078/input/input126 [ 377.603401][ T5] appleir 0003:05AC:1440.0078: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:07 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40086602, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf5040000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:07 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000c04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:07 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e66617400cf04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:07 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000704010002000270fff8", 0x16}], 0x0, 0x0) 09:46:07 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741c0204010002000270fff8", 0x16}], 0x0, 0x0) [ 377.689639][ T3082] usb 1-1: USB disconnect, device number 18 [ 377.712498][T12889] FAT-fs (loop2): bogus logical sector size 1792 [ 377.720592][T12889] FAT-fs (loop2): Can't find a valid FAT filesystem [ 377.721402][T12890] FAT-fs (loop1): bogus logical sector size 3072 09:46:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf6ffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:07 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000804010002000270fff8", 0x16}], 0x0, 0x0) [ 377.744745][T12890] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xf9fdffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 377.831260][T12902] FAT-fs (loop4): bogus logical sector size 540 [ 377.836390][T12896] FAT-fs (loop5): bogus logical sector size 52992 [ 377.843002][T12890] FAT-fs (loop1): bogus logical sector size 3072 [ 377.843953][T12896] FAT-fs (loop5): Can't find a valid FAT filesystem [ 377.853159][T12902] FAT-fs (loop4): Can't find a valid FAT filesystem [ 377.864322][T12890] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfc010000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:07 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000d04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:07 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfeffffff, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 377.894331][T12896] FAT-fs (loop5): bogus logical sector size 52992 [ 377.900961][T12896] FAT-fs (loop5): Can't find a valid FAT filesystem [ 378.097489][T12925] FAT-fs (loop1): bogus logical sector size 3328 [ 378.106774][T12925] FAT-fs (loop1): Can't find a valid FAT filesystem [ 378.136784][ T3082] usb 1-1: new high-speed USB device number 19 using dummy_hcd [ 378.227222][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 378.346796][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 378.357664][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 378.367997][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 378.381435][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 378.390781][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 378.399640][ T3082] usb 1-1: config 0 descriptor?? [ 378.877529][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.884675][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.891743][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.898809][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.905829][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.912909][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.920074][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.927158][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.934194][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.941259][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.948328][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.955340][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.962559][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.970240][ T3082] appleir 0003:05AC:1440.0079: unknown main item tag 0x0 [ 378.978295][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0079/input/input127 [ 378.991859][ T3082] appleir 0003:05AC:1440.0079: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 379.079267][ T5] usb 1-1: USB disconnect, device number 19 [ 379.846658][ T3082] usb 1-1: new high-speed USB device number 20 using dummy_hcd [ 379.936660][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 380.056643][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 380.067525][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 380.077253][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 380.090511][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 380.099543][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 380.108107][ T3082] usb 1-1: config 0 descriptor?? [ 380.407351][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.414411][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.423018][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.430832][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.438702][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.445724][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.453958][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.461750][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.469524][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.477372][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.484586][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.492851][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.500677][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.515713][ T3082] appleir 0003:05AC:1440.007A: unknown main item tag 0x0 [ 380.524120][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.007A/input/input128 [ 380.538182][ T3082] appleir 0003:05AC:1440.007A: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:10 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000400010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000904010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:10 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000e04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x40087602, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) [ 380.616242][ T5] usb 1-1: USB disconnect, device number 20 [ 380.643121][T12953] FAT-fs (loop1): bogus logical sector size 3584 [ 380.653046][T12953] FAT-fs (loop1): Can't find a valid FAT filesystem [ 380.655683][T12955] FAT-fs (loop5): bogus sectors per cluster 0 09:46:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff010000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff030000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 380.666616][T12955] FAT-fs (loop5): Can't find a valid FAT filesystem [ 380.693734][T12959] FAT-fs (loop2): bogus logical sector size 2304 [ 380.700138][T12959] FAT-fs (loop2): Can't find a valid FAT filesystem 09:46:10 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000f04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff0f0000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 380.717705][T12953] FAT-fs (loop1): bogus logical sector size 3584 [ 380.724300][T12953] FAT-fs (loop1): Can't find a valid FAT filesystem [ 380.728097][T12962] FAT-fs (loop4): bogus logical sector size 541 [ 380.746774][T12962] FAT-fs (loop4): Can't find a valid FAT filesystem [ 380.753495][T12955] FAT-fs (loop5): bogus sectors per cluster 0 [ 380.759722][T12955] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000304010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffff1f00, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 380.894539][T12978] FAT-fs (loop1): bogus logical sector size 3840 [ 380.902415][T12978] FAT-fs (loop1): Can't find a valid FAT filesystem [ 380.909267][T12959] FAT-fs (loop2): bogus logical sector size 2304 [ 380.915582][T12959] FAT-fs (loop2): Can't find a valid FAT filesystem [ 381.026494][ T5] usb 1-1: new high-speed USB device number 21 using dummy_hcd [ 381.041744][T12987] FAT-fs (loop5): bogus logical sector size 768 [ 381.048118][T12987] FAT-fs (loop5): Can't find a valid FAT filesystem [ 381.103410][T12962] FAT-fs (loop4): bogus logical sector size 541 [ 381.116521][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 381.117021][T12962] FAT-fs (loop4): Can't find a valid FAT filesystem 09:46:10 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661741e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfffffdf9, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:10 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000a04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001004010002000270fff8", 0x16}], 0x0, 0x0) 09:46:10 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000404010002000270fff8", 0x16}], 0x0, 0x0) [ 381.236602][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 381.253186][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 381.272439][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 381.285470][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 381.294539][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 381.303193][ T5] usb 1-1: config 0 descriptor?? [ 381.363191][T12998] FAT-fs (loop2): bogus logical sector size 2560 [ 381.370745][T12998] FAT-fs (loop2): Can't find a valid FAT filesystem [ 381.404156][T12998] FAT-fs (loop2): bogus logical sector size 2560 [ 381.413820][T13006] FAT-fs (loop4): bogus logical sector size 542 [ 381.415892][T12998] FAT-fs (loop2): Can't find a valid FAT filesystem [ 381.420438][T13006] FAT-fs (loop4): Can't find a valid FAT filesystem [ 381.615523][T13006] FAT-fs (loop4): bogus logical sector size 542 [ 381.621899][T13006] FAT-fs (loop4): Can't find a valid FAT filesystem [ 381.787217][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.794288][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.801355][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.808439][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.816053][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.823117][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.830202][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.837286][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.844324][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.851607][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.858693][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.865721][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.872794][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.879871][ T5] appleir 0003:05AC:1440.007B: unknown main item tag 0x0 [ 381.887951][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.007B/input/input129 [ 381.901510][ T5] appleir 0003:05AC:1440.007B: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 381.990973][ T5] usb 1-1: USB disconnect, device number 21 [ 382.756316][ T3082] usb 1-1: new high-speed USB device number 22 using dummy_hcd [ 382.846350][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 382.966343][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 382.977355][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 382.987798][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 383.001014][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 383.010367][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 383.019213][ T3082] usb 1-1: config 0 descriptor?? [ 383.307075][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.314159][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.322628][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.330559][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.338368][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.345400][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.353780][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.361689][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.369437][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.377319][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.384366][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.392639][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.400493][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.408521][ T3082] appleir 0003:05AC:1440.007C: unknown main item tag 0x0 [ 383.417292][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.007C/input/input130 [ 383.430847][ T3082] appleir 0003:05AC:1440.007C: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:13 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x400c4807, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000504010002000270fff8", 0x16}], 0x0, 0x0) 09:46:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffff7f, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:13 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001104010002000270fff8", 0x16}], 0x0, 0x0) 09:46:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000b04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:13 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174220204010002000270fff8", 0x16}], 0x0, 0x0) [ 383.509153][ T5] usb 1-1: USB disconnect, device number 22 [ 383.537360][T13034] FAT-fs (loop5): bogus logical sector size 1280 [ 383.546020][T13039] FAT-fs (loop2): bogus logical sector size 2816 [ 383.551652][T13034] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffff8b, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffff8c, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 383.552763][T13039] FAT-fs (loop2): Can't find a valid FAT filesystem 09:46:13 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000c04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffffa1, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:13 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffffd8, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 383.627697][T13042] FAT-fs (loop4): bogus logical sector size 546 [ 383.634418][T13040] FAT-fs (loop1): bogus logical sector size 4352 [ 383.645333][T13042] FAT-fs (loop4): Can't find a valid FAT filesystem [ 383.655212][T13034] FAT-fs (loop5): bogus logical sector size 1280 [ 383.661803][T13040] FAT-fs (loop1): Can't find a valid FAT filesystem [ 383.669095][T13034] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:13 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000604010002000270fff8", 0x16}], 0x0, 0x0) [ 383.798666][T13055] FAT-fs (loop2): bogus logical sector size 3072 [ 383.806104][T13040] FAT-fs (loop1): bogus logical sector size 4352 [ 383.812750][T13040] FAT-fs (loop1): Can't find a valid FAT filesystem [ 383.815141][T13055] FAT-fs (loop2): Can't find a valid FAT filesystem [ 383.820523][T13042] FAT-fs (loop4): bogus logical sector size 546 [ 383.833614][T13042] FAT-fs (loop4): Can't find a valid FAT filesystem [ 383.916360][ T5] usb 1-1: new high-speed USB device number 23 using dummy_hcd [ 383.921825][T13066] FAT-fs (loop5): bogus logical sector size 1536 [ 383.928089][T13055] FAT-fs (loop2): bogus logical sector size 3072 [ 383.936907][T13055] FAT-fs (loop2): Can't find a valid FAT filesystem [ 383.941299][T13066] FAT-fs (loop5): Can't find a valid FAT filesystem [ 384.006241][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 384.126235][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 384.139738][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 384.151397][T13066] FAT-fs (loop5): bogus logical sector size 1536 [ 384.154202][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 384.164364][T13066] FAT-fs (loop5): Can't find a valid FAT filesystem [ 384.171307][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 384.187063][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 384.195506][ T5] usb 1-1: config 0 descriptor?? [ 384.676957][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.684015][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.692445][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.700247][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.708045][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.715088][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.723417][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.731310][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.739070][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.746854][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.753879][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.762187][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.770190][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.778060][ T5] appleir 0003:05AC:1440.007D: unknown main item tag 0x0 [ 384.785826][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.007D/input/input131 [ 384.800043][ T5] appleir 0003:05AC:1440.007D: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 384.878862][ T5] usb 1-1: USB disconnect, device number 23 [ 385.656022][ T3082] usb 1-1: new high-speed USB device number 24 using dummy_hcd [ 385.746070][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 385.866095][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 385.876984][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 385.886856][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 385.899748][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 385.908791][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 385.917335][ T3082] usb 1-1: config 0 descriptor?? [ 386.206900][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.213979][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.222358][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.230160][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.237893][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.244914][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.253183][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.260998][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.268727][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.275748][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.284148][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.291844][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.299640][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.307441][ T3082] appleir 0003:05AC:1440.007E: unknown main item tag 0x0 [ 386.315145][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.007E/input/input132 [ 386.329447][ T3082] appleir 0003:05AC:1440.007E: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:16 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffffe4, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:16 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174240204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000d04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x400c4808, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000704010002000270fff8", 0x16}], 0x0, 0x0) [ 386.408824][ T5] usb 1-1: USB disconnect, device number 24 [ 386.430228][T13094] FAT-fs (loop5): bogus logical sector size 1792 [ 386.436834][T13094] FAT-fs (loop5): Can't find a valid FAT filesystem [ 386.446980][T13097] FAT-fs (loop2): bogus logical sector size 3328 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xffffffea, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 386.447447][T13093] FAT-fs (loop1): bogus logical sector size 4608 [ 386.453589][T13097] FAT-fs (loop2): Can't find a valid FAT filesystem [ 386.468276][T13093] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfffffff0, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfffffff4, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 386.568842][T13106] FAT-fs (loop4): bogus logical sector size 548 [ 386.572421][T13094] FAT-fs (loop5): bogus logical sector size 1792 [ 386.582980][T13097] FAT-fs (loop2): bogus logical sector size 3328 [ 386.593003][T13097] FAT-fs (loop2): Can't find a valid FAT filesystem [ 386.600640][T13094] FAT-fs (loop5): Can't find a valid FAT filesystem [ 386.605835][T13106] FAT-fs (loop4): Can't find a valid FAT filesystem 09:46:16 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000e04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfffffff6, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 386.614659][T13093] FAT-fs (loop1): bogus logical sector size 4608 [ 386.621677][T13093] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:16 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000804010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001304010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xfffffffe, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 386.825903][ T5] usb 1-1: new high-speed USB device number 25 using dummy_hcd [ 386.909534][T13122] FAT-fs (loop2): bogus logical sector size 3584 [ 386.919757][T13122] FAT-fs (loop2): Can't find a valid FAT filesystem [ 386.936005][ T5] usb 1-1: Using ep0 maxpacket: 16 09:46:16 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174260204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:16 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x80000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 386.973434][T13134] FAT-fs (loop1): bogus logical sector size 4864 [ 386.982166][T13134] FAT-fs (loop1): Can't find a valid FAT filesystem [ 386.991655][T13122] FAT-fs (loop2): bogus logical sector size 3584 [ 387.000674][T13122] FAT-fs (loop2): Can't find a valid FAT filesystem [ 387.065990][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 387.077094][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 387.086854][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 387.099653][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 387.108753][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 387.117469][ T5] usb 1-1: config 0 descriptor?? [ 387.180824][T13134] FAT-fs (loop1): bogus logical sector size 4864 [ 387.187403][T13134] FAT-fs (loop1): Can't find a valid FAT filesystem [ 387.387239][T13142] FAT-fs (loop4): bogus logical sector size 550 [ 387.393584][T13142] FAT-fs (loop4): Can't find a valid FAT filesystem [ 387.439295][T13142] FAT-fs (loop4): bogus logical sector size 550 [ 387.445618][T13142] FAT-fs (loop4): Can't find a valid FAT filesystem [ 387.596680][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.603737][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.610795][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.617855][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.629158][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.636233][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.643556][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.650679][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.657732][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.664737][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.671804][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.678858][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.685985][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.693218][ T5] appleir 0003:05AC:1440.007F: unknown main item tag 0x0 [ 387.701261][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.007F/input/input133 [ 387.714886][ T5] appleir 0003:05AC:1440.007F: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 387.798675][ T5] usb 1-1: USB disconnect, device number 25 [ 388.565743][ T3082] usb 1-1: new high-speed USB device number 26 using dummy_hcd [ 388.655802][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 388.785773][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 388.796943][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 388.806676][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 388.819473][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 388.828507][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 388.837036][ T3082] usb 1-1: config 0 descriptor?? [ 389.126563][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.133663][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.142134][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.149924][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.157750][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.164778][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.173169][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.181062][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.188763][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.196583][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.204252][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.212555][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.220580][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.228397][ T3082] appleir 0003:05AC:1440.0080: unknown main item tag 0x0 [ 389.236791][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0080/input/input134 [ 389.250385][ T3082] appleir 0003:05AC:1440.0080: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:18 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4018480c, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:18 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000904010002000270fff8", 0x16}], 0x0, 0x0) 09:46:18 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000f04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xedc000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:18 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003e04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:18 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661742d0204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:18 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x4000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 389.328541][ T5] usb 1-1: USB disconnect, device number 26 [ 389.360202][T13169] FAT-fs (loop1): bogus logical sector size 15872 [ 389.364503][T13174] FAT-fs (loop2): bogus logical sector size 3840 09:46:19 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x10000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 389.368285][T13169] FAT-fs (loop1): Can't find a valid FAT filesystem [ 389.373710][T13174] FAT-fs (loop2): Can't find a valid FAT filesystem [ 389.389243][T13172] FAT-fs (loop5): bogus logical sector size 2304 [ 389.397277][T13177] FAT-fs (loop4): bogus logical sector size 557 [ 389.404367][T13177] FAT-fs (loop4): Can't find a valid FAT filesystem [ 389.407637][T13172] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:19 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001004010002000270fff8", 0x16}], 0x0, 0x0) [ 389.480720][T13169] FAT-fs (loop1): bogus logical sector size 15872 [ 389.487534][T13169] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:19 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000005010002000270fff8", 0x16}], 0x0, 0x0) 09:46:19 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x20000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:19 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x40000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 389.651645][T13172] FAT-fs (loop5): bogus logical sector size 2304 [ 389.659304][T13172] FAT-fs (loop5): Can't find a valid FAT filesystem [ 389.680845][T13177] FAT-fs (loop4): bogus logical sector size 557 [ 389.688669][T13177] FAT-fs (loop4): Can't find a valid FAT filesystem [ 389.726816][T13199] FAT-fs (loop1): bogus logical sector size 0 [ 389.733003][T13199] FAT-fs (loop1): Can't find a valid FAT filesystem [ 389.765644][ T5] usb 1-1: new high-speed USB device number 27 using dummy_hcd [ 389.836726][T13184] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 389.855764][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 389.876343][ T178] blk_update_request: I/O error, dev loop4, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 389.880866][T13199] FAT-fs (loop1): bogus logical sector size 0 [ 389.887281][ T178] buffer_io_error: 2 callbacks suppressed [ 389.887286][ T178] Buffer I/O error on dev loop4, logical block 0, async page read [ 389.896716][T13199] FAT-fs (loop1): Can't find a valid FAT filesystem [ 389.900463][ T178] blk_update_request: I/O error, dev loop4, sector 1 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 389.924363][ T178] Buffer I/O error on dev loop4, logical block 1, async page read [ 389.932199][ T178] blk_update_request: I/O error, dev loop4, sector 2 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 389.943093][ T178] Buffer I/O error on dev loop4, logical block 2, async page read [ 389.951102][ T178] blk_update_request: I/O error, dev loop4, sector 3 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 389.962058][ T178] Buffer I/O error on dev loop4, logical block 3, async page read [ 389.969890][ T178] blk_update_request: I/O error, dev loop4, sector 4 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 389.975673][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 389.980770][ T178] Buffer I/O error on dev loop4, logical block 4, async page read [ 389.992405][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 389.999423][ T178] blk_update_request: I/O error, dev loop4, sector 5 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 390.009968][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 390.020409][ T178] Buffer I/O error on dev loop4, logical block 5, async page read [ 390.020441][ T178] blk_update_request: I/O error, dev loop4, sector 6 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 390.034106][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 390.040968][ T178] Buffer I/O error on dev loop4, logical block 6, async page read [ 390.040997][ T178] blk_update_request: I/O error, dev loop4, sector 7 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 390.052659][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 390.060897][ T178] Buffer I/O error on dev loop4, logical block 7, async page read [ 390.073782][ T5] usb 1-1: config 0 descriptor?? [ 390.576328][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.583531][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.590601][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.597682][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.604782][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.611824][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.618877][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.625934][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.632951][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.640378][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.647937][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.655106][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.662162][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.669235][ T5] appleir 0003:05AC:1440.0081: unknown main item tag 0x0 [ 390.677410][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0081/input/input135 [ 390.690882][ T5] appleir 0003:05AC:1440.0081: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 390.778012][T13176] ================================================================== [ 390.786182][T13176] BUG: KASAN: slab-out-of-bounds in hiddev_ioctl_usage+0x1764/0x1830 [ 390.794244][T13176] Write of size 4 at addr ffff8881c455ca58 by task syz-executor.0/13176 [ 390.802542][T13176] [ 390.804860][T13176] CPU: 0 PID: 13176 Comm: syz-executor.0 Not tainted 5.4.35-syzkaller-00686-g5d7b3b73e9a8 #0 [ 390.815060][T13176] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 390.825175][T13176] Call Trace: [ 390.828517][T13176] dump_stack+0x14a/0x1ce [ 390.832835][T13176] ? show_regs_print_info+0x12/0x12 [ 390.838029][T13176] ? printk+0xd2/0x114 [ 390.842190][T13176] print_address_description+0x93/0x620 [ 390.847725][T13176] __kasan_report+0x16d/0x1e0 [ 390.852401][T13176] ? hiddev_ioctl_usage+0x1764/0x1830 [ 390.857746][T13176] kasan_report+0x34/0x60 [ 390.862509][T13176] hiddev_ioctl_usage+0x1764/0x1830 [ 390.867703][T13176] ? usbhid_init_reports+0x28d/0x2a0 [ 390.873315][T13176] hiddev_ioctl+0x7a7/0x29a0 [ 390.877994][T13176] ? hiddev_poll+0x1c0/0x1c0 [ 390.882559][T13176] ? __mutex_init+0x9d/0xf0 [ 390.887037][T13176] ? alloc_file+0x81/0x4a0 [ 390.891425][T13176] ? memcpy+0x38/0x50 [ 390.895378][T13176] ? hiddev_poll+0x1c0/0x1c0 [ 390.899962][T13176] do_vfs_ioctl+0x770/0x1750 [ 390.904533][T13176] ? selinux_file_ioctl+0x73b/0x990 [ 390.909707][T13176] ? ioctl_preallocate+0x250/0x250 [ 390.914787][T13176] ? _copy_to_user+0x8e/0xb0 [ 390.919347][T13176] ? __fget+0x37c/0x3c0 [ 390.923474][T13176] ? get_timespec64+0x1d0/0x1d0 [ 390.928467][T13176] ? fget_many+0x20/0x20 [ 390.932690][T13176] ? __x64_sys_clock_gettime+0x20d/0x260 [ 390.938291][T13176] ? security_file_ioctl+0xad/0xc0 [ 390.943385][T13176] __x64_sys_ioctl+0xd4/0x110 [ 390.948061][T13176] do_syscall_64+0xcb/0x150 [ 390.952662][T13176] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 390.958545][T13176] RIP: 0033:0x45c829 [ 390.962440][T13176] Code: 0d b7 fb ff c3 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 0f 83 db b6 fb ff c3 66 2e 0f 1f 84 00 00 00 00 [ 390.982033][T13176] RSP: 002b:00007f947696ec78 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 390.990416][T13176] RAX: ffffffffffffffda RBX: 00000000004e5700 RCX: 000000000045c829 [ 390.998381][T13176] RDX: 0000000020000000 RSI: 000000004018480c RDI: 0000000000000004 [ 391.006340][T13176] RBP: 000000000078bf00 R08: 0000000000000000 R09: 0000000000000000 [ 391.014285][T13176] R10: 0000000000000000 R11: 0000000000000246 R12: 00000000ffffffff [ 391.022245][T13176] R13: 0000000000000331 R14: 00000000004c596e R15: 00007f947696f6d4 [ 391.030196][T13176] [ 391.032496][T13176] The buggy address belongs to the page: [ 391.038102][T13176] page:ffffea0007115400 refcount:1 mapcount:0 mapping:0000000000000000 index:0x0 compound_mapcount: 0 [ 391.048997][T13176] flags: 0x8000000000010000(head) [ 391.053993][T13176] raw: 8000000000010000 dead000000000100 dead000000000122 0000000000000000 [ 391.062684][T13176] raw: 0000000000000000 0000000000000000 00000001ffffffff 0000000000000000 [ 391.071258][T13176] page dumped because: kasan: bad access detected [ 391.077848][T13176] [ 391.080173][T13176] Memory state around the buggy address: [ 391.085777][T13176] ffff8881c455c900: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 391.093855][T13176] ffff8881c455c980: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 391.101972][T13176] >ffff8881c455ca00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 391.110099][T13176] ^ [ 391.117012][T13176] ffff8881c455ca80: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 391.125049][T13176] ffff8881c455cb00: fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe fe [ 391.133073][T13176] ================================================================== [ 391.141101][T13176] Disabling lock debugging due to kernel taint [ 391.152154][ T5] usb 1-1: USB disconnect, device number 27 [ 391.925429][ T5] usb 1-1: new high-speed USB device number 28 using dummy_hcd [ 392.015463][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 392.135465][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 392.146352][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 392.156636][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 392.169787][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 392.179150][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 392.187983][ T5] usb 1-1: config 0 descriptor?? [ 392.486226][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.493296][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.501661][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.509561][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.517297][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.524323][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 09:46:22 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x4020940d, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001104010002000270fff8", 0x16}], 0x0, 0x0) 09:46:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x80000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000a04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:22 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661743e0204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:22 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000204000002000270fff8", 0x16}], 0x0, 0x0) [ 392.532690][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.540476][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.550942][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.559017][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.579751][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 09:46:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xff070000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 392.591469][T13230] FAT-fs (loop2): bogus logical sector size 4352 [ 392.600437][T13229] FAT-fs (loop1): bogus number of reserved sectors [ 392.602165][T13230] FAT-fs (loop2): Can't find a valid FAT filesystem [ 392.613982][T13235] FAT-fs (loop5): bogus logical sector size 2560 [ 392.621867][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.630205][T13229] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x100000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 392.634169][T13235] FAT-fs (loop5): Can't find a valid FAT filesystem [ 392.638513][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.652549][ T5] appleir 0003:05AC:1440.0082: unknown main item tag 0x0 [ 392.661112][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0082/input/input136 [ 392.676912][T13245] FAT-fs (loop4): bogus logical sector size 574 09:46:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x200000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 392.683695][T13245] FAT-fs (loop4): Can't find a valid FAT filesystem [ 392.694944][ T5] appleir 0003:05AC:1440.0082: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 392.708613][ T5] usb 1-1: USB disconnect, device number 28 09:46:22 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x202000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:22 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000b04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:22 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001204010002000270fff8", 0x16}], 0x0, 0x0) [ 392.854957][T13229] FAT-fs (loop1): bogus number of reserved sectors [ 392.861958][T13229] FAT-fs (loop1): Can't find a valid FAT filesystem [ 392.869385][T13258] FAT-fs (loop5): bogus logical sector size 2816 [ 392.876099][T13258] FAT-fs (loop5): Can't find a valid FAT filesystem [ 392.906909][T13262] FAT-fs (loop2): bogus logical sector size 4608 [ 392.913292][T13262] FAT-fs (loop2): Can't find a valid FAT filesystem [ 393.006615][T13258] FAT-fs (loop5): bogus logical sector size 2816 [ 393.006792][T13262] FAT-fs (loop2): bogus logical sector size 4608 [ 393.014837][T13258] FAT-fs (loop5): Can't find a valid FAT filesystem [ 393.020212][T13262] FAT-fs (loop2): Can't find a valid FAT filesystem [ 393.085342][ T5] usb 1-1: new high-speed USB device number 29 using dummy_hcd [ 393.175363][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 393.295399][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 393.306286][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 393.316656][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 393.329934][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 393.339346][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 393.348151][ T5] usb 1-1: config 0 descriptor?? [ 393.816110][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.823170][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.831512][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.839292][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.847161][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.854279][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.862545][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.870396][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.878092][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.885122][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.893366][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.901234][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.909036][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.916828][ T5] appleir 0003:05AC:1440.0083: unknown main item tag 0x0 [ 393.924593][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0083/input/input137 [ 393.938959][ T5] appleir 0003:05AC:1440.0083: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 394.018479][ T3082] usb 1-1: USB disconnect, device number 29 [ 394.785184][ T5] usb 1-1: new high-speed USB device number 30 using dummy_hcd [ 394.875209][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 394.995216][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 395.006191][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 395.016758][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 395.029912][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 395.039320][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 395.048251][ T5] usb 1-1: config 0 descriptor?? [ 395.335978][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.343065][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.352949][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.360037][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.367278][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.374493][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.381586][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.388644][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.395709][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.402996][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.410075][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.417139][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.424169][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.431282][ T5] appleir 0003:05AC:1440.0084: unknown main item tag 0x0 [ 395.439070][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0084/input/input138 [ 395.453053][ T5] appleir 0003:05AC:1440.0084: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:25 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x501c4814, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000202010002000270fff8", 0x16}], 0x0, 0x0) 09:46:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x300000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:25 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174480204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:25 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001304010002000270fff8", 0x16}], 0x0, 0x0) 09:46:25 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000c04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x400000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:25 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000203010002000270fff8", 0x16}], 0x0, 0x0) [ 395.537990][ T3082] usb 1-1: USB disconnect, device number 30 [ 395.561981][T13293] FAT-fs (loop5): bogus logical sector size 3072 [ 395.571147][T13293] FAT-fs (loop5): Can't find a valid FAT filesystem 09:46:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x500000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 395.597271][T13291] FAT-fs (loop2): bogus logical sector size 4864 [ 395.606431][T13291] FAT-fs (loop2): Can't find a valid FAT filesystem 09:46:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x600000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x700000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 395.725804][T13291] FAT-fs (loop2): bogus logical sector size 4864 [ 395.732724][T13304] FAT-fs (loop4): bogus logical sector size 584 [ 395.733526][T13307] FAT-fs (loop1): bogus sectors per cluster 3 [ 395.740945][T13304] FAT-fs (loop4): Can't find a valid FAT filesystem [ 395.746000][T13291] FAT-fs (loop2): Can't find a valid FAT filesystem [ 395.759986][T13293] FAT-fs (loop5): bogus logical sector size 3072 09:46:25 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x800000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 395.770706][T13307] FAT-fs (loop1): Can't find a valid FAT filesystem [ 395.777811][T13293] FAT-fs (loop5): Can't find a valid FAT filesystem [ 395.985037][ T3082] usb 1-1: new high-speed USB device number 31 using dummy_hcd [ 396.026519][T13304] FAT-fs (loop4): bogus logical sector size 584 [ 396.032971][T13304] FAT-fs (loop4): Can't find a valid FAT filesystem [ 396.075102][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 396.195115][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 396.206384][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 396.216300][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 396.229187][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 396.238238][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 396.246793][ T3082] usb 1-1: config 0 descriptor?? [ 396.715833][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.722905][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.731222][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.739207][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.747024][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.754163][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.762445][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.770245][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.778089][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.785987][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.793013][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.801645][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.809633][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.817702][ T3082] appleir 0003:05AC:1440.0085: unknown main item tag 0x0 [ 396.826165][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0085/input/input139 [ 396.839752][ T3082] appleir 0003:05AC:1440.0085: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 396.917589][ T5] usb 1-1: USB disconnect, device number 31 [ 397.684898][ T3082] usb 1-1: new high-speed USB device number 32 using dummy_hcd [ 397.774937][ T3082] usb 1-1: Using ep0 maxpacket: 16 [ 397.894985][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 397.905958][ T3082] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 397.916423][ T3082] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 397.929759][ T3082] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 397.939113][ T3082] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 397.948061][ T3082] usb 1-1: config 0 descriptor?? [ 398.245676][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.252846][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.261569][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.269381][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.277142][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.284291][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.292592][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.300360][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.308203][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.316161][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.323213][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.331551][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.339451][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.347383][ T3082] appleir 0003:05AC:1440.0086: unknown main item tag 0x0 [ 398.355919][ T3082] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0086/input/input140 [ 398.369439][ T3082] appleir 0003:05AC:1440.0086: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 09:46:28 executing program 0: r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000000)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x10, 0x5ac, 0x1440, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x9, 0x3, 0x0, 0x0, 0x0, {0x9, 0x21, 0x0, 0x0, 0x1, {0x22, 0x40029}}}}]}}]}}, 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000340)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="100029000000290092a6896cefd79b87429d14ba21092abe07acbfa24b088891"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000740)='/dev/usb/hiddev#\x00', 0x0, 0x0) r2 = socket$inet6(0xa, 0x3, 0x20) r3 = dup(r2) ioctl$PERF_EVENT_IOC_ENABLE(r3, 0x8912, 0x400200) ioctl$HIDIOCGCOLLECTIONINDEX(r1, 0x80044801, &(0x7f0000000000)={0x2, 0xffffffff, 0x0, 0x0, 0x400}) 09:46:28 executing program 1: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000205010002000270fff8", 0x16}], 0x0, 0x0) 09:46:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000d04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:28 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174001404010002000270fff8", 0x16}], 0x0, 0x0) 09:46:28 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x804000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:28 executing program 4: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e6661744c0204010002000270fff8", 0x16}], 0x0, 0x0) 09:46:28 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0x900000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 398.447682][ T5] usb 1-1: USB disconnect, device number 32 [ 398.466105][T13356] FAT-fs (loop5): bogus logical sector size 3328 [ 398.474811][T13356] FAT-fs (loop5): Can't find a valid FAT filesystem [ 398.491685][T13362] FAT-fs (loop2): bogus logical sector size 5120 09:46:28 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xa00000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 398.498819][T13362] FAT-fs (loop2): Can't find a valid FAT filesystem [ 398.508425][T13356] FAT-fs (loop5): bogus logical sector size 3328 [ 398.512164][T13353] FAT-fs (loop1): bogus sectors per cluster 5 [ 398.515093][T13356] FAT-fs (loop5): Can't find a valid FAT filesystem [ 398.528337][T13353] FAT-fs (loop1): Can't find a valid FAT filesystem 09:46:28 executing program 5: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174000e04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:28 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xb00000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) 09:46:28 executing program 2: syz_mount_image$vfat(&(0x7f0000000540)='vfat\x00', &(0x7f00000002c0)='./file0\x00', 0x7fff, 0x1, &(0x7f0000000140)=[{&(0x7f0000010000)="eb3c906d6b66732e666174003e04010002000270fff8", 0x16}], 0x0, 0x0) 09:46:28 executing program 3: mkdir(&(0x7f0000000180)='./file1\x00', 0x0) mkdir(&(0x7f0000000300)='./bus\x00', 0x0) mkdir(&(0x7f0000000280)='./file0\x00', 0x0) mount$overlay(0x400000, &(0x7f0000000000)='./bus\x00', &(0x7f0000000080)='overlay\x00', 0xc00000000000000, &(0x7f0000000300)=ANY=[@ANYBLOB='lowerdir=./bus,workdir=./file1,upperdir=./file0']) [ 398.638779][T13366] FAT-fs (loop4): bogus logical sector size 588 [ 398.645568][T13366] FAT-fs (loop4): Can't find a valid FAT filesystem [ 398.654820][T13353] FAT-fs (loop1): bogus sectors per cluster 5 [ 398.668622][T13353] FAT-fs (loop1): Can't find a valid FAT filesystem [ 398.697614][T13385] FAT-fs (loop2): bogus logical sector size 15872 [ 398.704367][T13385] FAT-fs (loop2): Can't find a valid FAT filesystem [ 398.744277][T13384] FAT-fs (loop5): bogus logical sector size 3584 [ 398.751727][T13384] FAT-fs (loop5): Can't find a valid FAT filesystem [ 398.779833][T13385] FAT-fs (loop2): bogus logical sector size 15872 [ 398.786356][T13385] FAT-fs (loop2): Can't find a valid FAT filesystem [ 398.813785][T13384] FAT-fs (loop5): bogus logical sector size 3584 [ 398.820259][T13384] FAT-fs (loop5): Can't find a valid FAT filesystem [ 398.844776][ T5] usb 1-1: new high-speed USB device number 33 using dummy_hcd [ 398.882273][T13366] FAT-fs (loop4): bogus logical sector size 588 [ 398.889790][T13366] FAT-fs (loop4): Can't find a valid FAT filesystem [ 398.934833][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 399.054849][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 399.065998][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 399.076282][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 399.089560][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00 [ 399.099219][ T5] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 399.108315][ T5] usb 1-1: config 0 descriptor?? [ 399.585578][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.592675][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.601225][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.609424][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.617222][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.624252][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.632523][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.640806][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.648682][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.656541][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.663568][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.671783][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.679650][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.687482][ T5] appleir 0003:05AC:1440.0087: unknown main item tag 0x0 [ 399.695946][ T5] input: HID 05ac:1440 as /devices/platform/dummy_hcd.0/usb1/1-1/1-1:0.0/0003:05AC:1440.0087/input/input141 [ 399.709864][ T5] appleir 0003:05AC:1440.0087: input,hiddev96,hidraw0: USB HID v0.00 Device [HID 05ac:1440] on usb-dummy_hcd.0-1/input0 [ 399.787184][ T3082] usb 1-1: USB disconnect, device number 33 [ 400.554645][ T5] usb 1-1: new high-speed USB device number 34 using dummy_hcd [ 400.654690][ T5] usb 1-1: Using ep0 maxpacket: 16 [ 400.774690][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 400.785570][ T5] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 400.795311][ T5] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 400.808139][ T5] usb 1-1: New USB device found, idVendor=05ac, idProduct=1440, bcdDevice= 0.00