last executing test programs: 3.468199697s ago: executing program 3 (id=15419): bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'bridge0\x00', 0x0}) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r3, &(0x7f00000000c0)="3f03fe7ff0e8120006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548", 0x36, 0x0, &(0x7f0000000540)={0xc9, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) 3.407052032s ago: executing program 3 (id=15420): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000180)={0x0, 0x0}) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, 0x0, 0x0) timerfd_create(0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r1 = syz_usb_connect$cdc_ecm(0x0, 0x56, &(0x7f0000000000)=ANY=[@ANYBLOB="120100000900000801000080000000000101090244000101000000090400001202060000052406000005240000000d240f01000000000000000000090581030002ee000909058202100000000009050302"], 0x0) syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0) syz_usb_control_io$cdc_ecm(r1, 0x0, 0x0) r2 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000014000080b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r3}, 0x10) r4 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r4, 0x8933, &(0x7f00000002c0)={'veth1_to_batadv\x00', 0x0}) r6 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000ac0)=ANY=[@ANYBLOB="1800000000000000000000000000000018010000786c6c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b7030000fdffffff850000002d00000095"], &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r6}, 0x10) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) open$dir(&(0x7f0000000100)='./file0\x00', 0x0, 0x0) open$dir(&(0x7f0000000080)='./file0\x00', 0x1, 0x0) sendmsg$nl_xfrm(0xffffffffffffffff, &(0x7f0000000180)={0x0, 0x0, &(0x7f0000000340)={&(0x7f0000000000)=@newsa={0x154, 0x10, 0x713, 0x0, 0x0, {{@in=@remote, @in=@multicast1, 0x0, 0x0, 0x0, 0x0, 0xa}, {@in=@multicast2, 0x0, 0x32}, @in=@dev, {}, {}, {}, 0x0, 0x0, 0x2, 0x4}, [@algo_crypt={0x48, 0x2, {{'ecb(cipher_null)\x00'}}}, @encap={0x1c, 0x4, {0x7, 0x0, 0x0, @in=@multicast1}}]}, 0x154}}, 0x0) setsockopt$packet_int(r4, 0x107, 0xf, &(0x7f0000000040)=0x101, 0x4) recvfrom$packet(0xffffffffffffffff, &(0x7f00000004c0)=""/256, 0x100, 0x0, &(0x7f0000000300)={0x11, 0xf8, r5, 0x1, 0x6, 0x6, @multicast}, 0x14) ioctl$TUNSETIFF(0xffffffffffffffff, 0x400454ca, 0x0) syz_usb_control_io$cdc_ecm(r1, &(0x7f00000002c0)={0x14, 0x0, &(0x7f00000001c0)={0x0, 0x3, 0x1a, {0x1a}}}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) getpid() 2.965280508s ago: executing program 4 (id=15428): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000940), 0xfc, 0x564, &(0x7f00000003c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) prlimit64(0x0, 0xe, &(0x7f0000000140), 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000bc0)={@ifindex, r0, 0x12, 0x2, r1, @prog_fd}, 0x20) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) ioctl$HIDIOCGFEATURE(r0, 0xc0404807, &(0x7f0000000300)={0x3, "fa7d5deb4fa71ee137e2c30fc4a2609d5aa63d04428a4d4702bb844b5e5fff5c8e8fcfc900260a1351d5171d78acb8081cd91173bf30c7b597961aea6b76ac58"}) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r6, &(0x7f0000000000), 0x248800) socket$nl_route(0x10, 0x3, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{}, {0x81}, {0x6}]}) 2.217860019s ago: executing program 1 (id=15431): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000000d0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42916fd1f59576fd) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000300)=@filename='./file0\x00', 0x0, &(0x7f0000000380)='./file0\x00') 2.169548583s ago: executing program 1 (id=15432): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) flock(r1, 0x2) dup3(r1, r0, 0x0) 2.150450494s ago: executing program 1 (id=15433): socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) timer_create(0x0, &(0x7f0000000040)={0x0, 0x12}, &(0x7f0000000200)) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0) timer_create(0x2, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000500)=0x0) timer_settime(r2, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socket(0x0, 0x0, 0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) unshare(0x40000000) ioprio_set$pid(0x0, 0x0, 0x4007) 2.013767526s ago: executing program 4 (id=15435): prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x2ee}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x4) timer_create(0x0, &(0x7f0000000000)={0x0, 0x21, 0x0, @tid=0xffffffffffffffff}, &(0x7f0000000100)) timer_settime(0x0, 0x0, &(0x7f000006b000)={{0x0, 0x8}, {0x0, 0x9}}, 0x0) r0 = syz_open_procfs(0x0, &(0x7f0000000000)='fd\x00') getdents64(r0, &(0x7f0000000300)=""/212, 0xd4) 1.817080701s ago: executing program 4 (id=15436): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000004c0)) 1.816691302s ago: executing program 4 (id=15437): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) flock(r1, 0x1) flock(r1, 0x2) dup3(r1, r0, 0x0) 1.741632448s ago: executing program 1 (id=15438): syz_read_part_table(0x5d4, &(0x7f0000000000)="$eJzs279rW1cUB/AjxcI0GbJkyuRkaKFkScgYQZMgKQkJCDVeQgsJJIQ0mhQIKFRgSIZEQ0I0GI9ejEGLf0yWRXEXGxs8G9PBYPBgKC32UvBiFdu3S4fiYplS+Hzgcbj3fu877/wBL/hfy8bvvV4vExG9wcONb/6e6P3D7eF2oXh3qHyz8jAiEz9ExK9DX/10cJL56/bRW+NyWm+k9cT42e6H3Tu59i/f/vHl48VmNp2PlLIxEhHnJjvDfRuSUzOVXzr/9l2t9LGef7Feamy9X1t9ML1TqHTuN1sz93K3n6bccqoDqb6KeryJl/EkqlGNZ1HrU/+x9ubV/Yul9tzzG3vF7qeFaylXjogzJ5z1OP1fX/r8qNW4dWX2wuj1+vxKZfuwaS+qg6fQHAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAACAvpvKL51/+65W+ljPv1gvNbber60+mN4pVDr3m62Ze7nbT1NuOdWBVF9FPd7Ey3gS1cjEs6j1qf9Ye/Pq/sVSe+75jb1i99PCtZQrn3DO4/Z/fenzo1bj1pXZC6PX6/Mrle0zR7nq4Cl9AAAAAAAAAAAAAAAAAAAAAEREoXh3qHyz8jAiE9/FQHz924/Zg/1e+t89E/H9zxFxOeU30v7E+Nnuh907ufbB4vFi84t0PpKec5Od4f9gHP6lPwMAAP//+g2V7g==") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, 0x0) r3 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000340), 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0) r4 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r3, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4) ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000c00)={0x1, 0x0, [{0x0, 0xaf, &(0x7f00000007c0)=""/175}]}) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f00000005c0)={0x1, r4}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000680)=""/79, 0x0, 0x6000}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f0000000480)=""/83, &(0x7f00000001c0)=""/72}) ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1) write$binfmt_script(r0, &(0x7f0000000600)={'#! ', './file0'}, 0xfffffffffffffffa) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) read$FUSE(r2, &(0x7f0000001600)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000000680)={0x50, 0x0, r5, {0x7, 0x28, 0x1, 0x20a0000, 0x4, 0x4, 0x8000, 0xffff}}, 0x50) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000640)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) 1.733380458s ago: executing program 4 (id=15439): syz_mount_image$ext4(&(0x7f0000000280)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x200000, &(0x7f0000000940), 0xfc, 0x564, &(0x7f00000003c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000240)='cgroup.controllers\x00', 0x26e1, 0x0) ioctl$sock_ipv4_tunnel_SIOCADDTUNNEL(0xffffffffffffffff, 0x89f1, 0x0) bpf$MAP_CREATE(0x0, 0x0, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='memory.events\x00', 0x26e1, 0x0) prlimit64(0x0, 0xe, 0x0, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r2 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) bpf$BPF_PROG_ATTACH(0x8, &(0x7f0000000bc0)={@ifindex, r0, 0x12, 0x2, r1, @prog_fd}, 0x20) sched_setscheduler(r2, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r3, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r4, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r3, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) ioctl$HIDIOCGFEATURE(r0, 0xc0404807, &(0x7f0000000300)={0x3, "fa7d5deb4fa71ee137e2c30fc4a2609d5aa63d04428a4d4702bb844b5e5fff5c8e8fcfc900260a1351d5171d78acb8081cd91173bf30c7b597961aea6b76ac58"}) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f0000000240)=@framed, &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r5}, 0x10) r6 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000140)='memory.events\x00', 0x7a05, 0x1700) write$cgroup_type(r6, &(0x7f0000000000), 0x248800) socket$nl_route(0x10, 0x3, 0x0) seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f0000000040)={0x3, &(0x7f0000000000)=[{}, {0x81}, {0x6}]}) 1.726859339s ago: executing program 1 (id=15440): openat$kvm(0xffffffffffffff9c, &(0x7f0000000240), 0x0, 0x0) bpf$PROG_LOAD(0x5, 0x0, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000400)={0x0, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180800000000000000000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000007000000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000080)='sched_switch\x00', r0}, 0x10) sched_setscheduler(0x0, 0x1, &(0x7f0000000300)=0x7) sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) r1 = getpid() sched_setscheduler(r1, 0x1, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000001480)={0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(0xffffffffffffffff, &(0x7f00000bd000), 0x318, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) socket$nl_generic(0x10, 0x3, 0x10) r3 = syz_init_net_socket$bt_hci(0x1f, 0x3, 0x1) bind$bt_hci(r3, &(0x7f0000000100)={0x1f, 0xffff}, 0x6) r4 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r4, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r5 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r5}, 0x10) write$binfmt_misc(r3, &(0x7f0000000200)=ANY=[@ANYBLOB="72b9800007"], 0xd) 1.532144375s ago: executing program 2 (id=15441): bpf$BPF_GET_PROG_INFO(0xf, &(0x7f0000000000)={0xffffffffffffffff, 0xe0, &(0x7f0000000780)={0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, ""/16, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffdb4, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0xfffffffffffffe15, 0x5, 0x0, 0x0, 0x0, 0x0, 0x8, 0xffffffffffffff4b, 0x0}}, 0x10) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0xc9d7, 0x9, 0x1}, 0x48) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000080), &(0x7f0000000200)=""/166}, 0x20) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000580), &(0x7f00000005c0)}, 0x20) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xd, &(0x7f00000002c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000000000008500000003000000650000000800000095"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000140)='kmem_cache_free\x00', r2}, 0x10) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000740)={r0, &(0x7f0000000000), &(0x7f00000000c0)=""/109}, 0x20) r3 = socket$packet(0x11, 0x3, 0x300) ioctl$sock_SIOCGIFINDEX(r3, 0x8933, &(0x7f00000001c0)={'bridge0\x00', 0x0}) setsockopt$packet_int(r3, 0x107, 0xf, &(0x7f0000000000)=0xf3f, 0x4) sendto$packet(r3, &(0x7f00000000c0)="3f03fe7ff0e8120006001e0089e9aaa911d7c2290f0086dd1327c9167c643c4a1b7880610cc96655b1b141ab059b24d0fbc50df71548", 0x36, 0x0, &(0x7f0000000540)={0xc9, 0x0, r4, 0x1, 0x0, 0x6, @multicast}, 0x14) 1.421520094s ago: executing program 2 (id=15442): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000004c0)) 1.420480714s ago: executing program 3 (id=15443): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000004c0)) 1.413027365s ago: executing program 2 (id=15444): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b702000003000000850000008600"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) flock(r1, 0x2) dup3(r1, r0, 0x0) 1.363857069s ago: executing program 3 (id=15445): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xc, &(0x7f0000000b80)=ANY=[@ANYBLOB="18000000000000000000000000000000850000006d000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000005000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000b40)={&(0x7f0000000600)='kfree\x00', r0}, 0x10) r1 = add_key$fscrypt_v1(0x0, &(0x7f0000000040)={'fscrypt:', @desc2}, &(0x7f0000000080)={0x0, "69dcaf20127e9a854528f45826cb35be51ca0700000000000000221daeccfda56b75cfe21cab614fec2236da7d88ea0f0700"}, 0x48, 0xfffffffffffffffe) keyctl$search(0xa, r1, &(0x7f0000000300)='asymmetric\x00', &(0x7f0000000100)={'syz', 0x0}, 0x0) 1.305136834s ago: executing program 3 (id=15446): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000000d0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42916fd1f59576fd) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000300)=@filename='./file0\x00', 0x0, &(0x7f0000000380)='./file0\x00') 1.304786864s ago: executing program 2 (id=15447): r0 = signalfd(0xffffffffffffffff, &(0x7f00000001c0), 0x8) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0xe, 0x4, 0x8, 0x8}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000000000000000200000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b70800000000396f7b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r2}, 0x10) openat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x440, 0x0) r3 = openat$fuse(0xffffffffffffff9c, &(0x7f00000001c0), 0x2, 0x0) mount$fuse(0x0, &(0x7f0000002540)='./file0\x00', &(0x7f0000000140), 0x0, &(0x7f00000005c0)=ANY=[@ANYBLOB='fd=', @ANYRESHEX=r3, @ANYBLOB=',rootmode=00000000000000000020000,user_id=', @ANYRESDEC=0x0, @ANYBLOB=',group_id=', @ANYRESDEC=0x0]) read$FUSE(r3, &(0x7f0000008ec0)={0x2020, 0x0, 0x0}, 0x2020) syz_fuse_handle_req(r3, &(0x7f0000002580)="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", 0x2000, &(0x7f0000004dc0)={0x0, 0x0, 0x0, 0x0, &(0x7f0000002280)={0x18}, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}) write$FUSE_INIT(r3, &(0x7f0000004e40)={0x50, 0x0, r4, {0x7, 0x9}}, 0x50) llistxattr(&(0x7f00000000c0)='./file0\x00', 0x0, 0x20) mkdir(&(0x7f0000000140)='./control\x00', 0x0) close(r0) r5 = inotify_init1(0x0) fcntl$setstatus(r0, 0x4, 0x2c00) r6 = gettid() fcntl$setown(r0, 0x8, r6) rt_sigtimedwait(&(0x7f0000000040), 0x0, 0x0, 0x8) inotify_add_watch(r5, &(0x7f0000000180)='./control\x00', 0xa4000960) rmdir(&(0x7f0000000100)='./control\x00') seccomp$SECCOMP_SET_MODE_FILTER_LISTENER(0x1, 0x0, &(0x7f00000000c0)={0x3, &(0x7f0000000140)=[{0x25, 0x0, 0x1}, {}, {0x6}]}) 1.235147619s ago: executing program 3 (id=15448): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000500000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) syz_mount_image$ext4(0x0, &(0x7f0000000440)='./file0\x00', 0x0, 0x0, 0x0, 0x0, 0x0) r1 = syz_usb_connect(0x0, 0xac8, &(0x7f0000000a80)={{0x12, 0x1, 0x250, 0x23, 0x95, 0x3a, 0x8, 0x1bc7, 0x1207, 0x2233, 0x1, 0x2, 0x3, 0x1, [{{0x9, 0x2, 0xab6, 0x2, 0x20, 0x0, 0x40, 0x7f, [{{0x9, 0x4, 0x4d, 0x40, 0xb, 0xa5, 0xfa, 0x26, 0x9e, [@cdc_ecm={{0x7, 0x24, 0x6, 0x0, 0x0, "0e99"}, {0x5, 0x24, 0x0, 0x7ff}, {0xd, 0x24, 0xf, 0x1, 0x0, 0x5dd5, 0x2, 0x81}, [@obex={0x5}, @mdlm={0x15, 0x24, 0x12, 0x4d35}, @network_terminal={0x7, 0x24, 0xa, 0x5, 0x8, 0x2, 0x1}]}], [{{0x9, 0x5, 0xd, 0x4, 0x200, 0x40, 0x7d, 0x1f, [@generic={0xe, 0x24, "2006701111d062a981f3bfa2"}, @generic={0xb5, 0x9, "e64f00b3ca0c28e566d09e3b0d1522c1333f222f8e5fb275af51dfd593dd1a461b74edfb618bb102c2c43a1ce4ec2a0fbbc2cca6009c6dae6c8d0d158826bc2838296063c924874b65e7be368a259379a5fb8c678934a0a1e4d4fae02397533bb82daa4e73d08a96f5cdb5d3569bc6ad8d10bfb66308d9859f6e773b98887d97179c748700c9197056524c7f00d66e66b0f5e90b3ded8018d408e2845afb2bdb7d1d2f8e12684e8415a11f7c14b908f75aa722"}]}}, {{0x9, 0x5, 0x1, 0x10, 0x200, 0x7c, 0x0, 0x4, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0xc6, 0xfffd}, @uac_iso={0x7, 0x25, 0x1, 0x40, 0x6, 0x9}]}}, {{0x9, 0x5, 0xb, 0x0, 0x3ff, 0x56, 0x6, 0x1f, [@generic={0xd1, 0xd, "716614785f29ea9897fcaab240d09400f95b8fabdb8f1edf0b12c8086aae12ac9c068ed46293264a7abef59f3393ea4ba7fcc8962901ec2f7b48cf6e500aacd558364458cafbbb737cbc816fd6ca14dcb5b91803e0aa8b3af1a4bbebd00b4ab5043df85fb4eb0e418ffa3452c5ed81a55cb486291e338178952f80d705eec3f97d5fe1aadd3999f143862ffb74e9b531aa332510f39a2541bb97b7688af68d0f2e244859f3dc9d6d15b5b8452e1ed51184bae7d79308c7bfa467cf9c579ea87bfa64ca6fcf1353853e5d6edba0c83d"}]}}, {{0x9, 0x5, 0xf, 0x8, 0x200, 0x0, 0x7, 0xff, [@uac_iso={0x7, 0x25, 0x1, 0x2, 0x4, 0x1}]}}, {{0x9, 0x5, 0x0, 0x0, 0x10, 0x0, 0x4f, 0x6, [@generic={0x7f, 0x30, "29dec15f4a179c3401cd46072a9a3d725f12b6dfb437260365c1da6a8d2ef476fca9bf8dd146e6d9598b04923af70a494206a2d166e083e12fa4f4abcf3a933964001e00c11734b0cd6a4ab67838947f55a522cc5a950fa694cab262fd14615130f3a953def18a1d3e42bc9196bb52cbd303ff4f2219d2216fdb9dcc70"}]}}, {{0x9, 0x5, 0x1, 0x4, 0x20, 0x3, 0x1, 0xca, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x72, 0x5}, @uac_iso={0x7, 0x25, 0x1, 0x2, 0x5, 0x1}]}}, {{0x9, 0x5, 0xa, 0x4, 0x400, 0xd5, 0x8, 0x3, [@generic={0x37, 0x6, "2e0ae1adbc76145206118fb7b1edab298dc9c0da115f4f739a39e4aa7e0ad9c328aa64a33c5431450b5affa7d298e78a5a63bdbad1"}]}}, {{0x9, 0x5, 0xe, 0x8, 0x400, 0x1, 0x40, 0x81, [@generic={0x16, 0x21, "e0f63fc39573b4658be53186e37a845f80df8a65"}]}}, {{0x9, 0x5, 0x2, 0x8, 0x400, 0xc9, 0xf7, 0x5, [@generic={0x1c, 0x1, "9f38621e6a22e8ac8ba06b0d18b89d4b38b787a7ae3c4ab9c593"}]}}, {{0x9, 0x5, 0xb, 0x10, 0x20, 0x7, 0x2, 0x4, [@generic={0xf, 0x6, "9cab973e0cd63797de3ba50061"}, @generic={0x4c, 0x23, "0c5643084eb23871007146acb54626f7149445dc4e32cabd6bc8eecc6377b610a69be1b963a59edca7de4cc08db41e7998fad0798bd443806ad8eb048ad4232210d72c50401a4c888999"}]}}, {{0x9, 0x5, 0x7, 0x3, 0x3ff, 0x8, 0xff, 0x80, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x3, 0x6}, @uac_iso={0x7, 0x25, 0x1, 0x81, 0x6, 0x6}]}}]}}, {{0x9, 0x4, 0x0, 0x0, 0xc, 0x66, 0x30, 0x9c, 0x8, [@cdc_ncm={{0xb, 0x24, 0x6, 0x0, 0x1, "187ee9b75330"}, {0x5}, {0xd, 0x24, 0xf, 0x1, 0xffffff49, 0x7fff, 0x5, 0x40}, {0x6, 0x24, 0x1a, 0x0, 0x38}, [@mdlm={0x15, 0x24, 0x12, 0x7}]}], [{{0x9, 0x5, 0x0, 0x1, 0x8, 0x94, 0x81, 0x81, [@generic={0xa0, 0x31, "ef221049d04039f0fcbd9fb8cfb4359898b5240d0649ac4d62704a19c6359067e6b98c8578ec289bfcf23b137adba0dc174a39a98564f2bc20436000bdbac70e8e7cd3b75db760b2c957af1e2208c5edb1b9f521adfaa0aa80daded9463a82f41bb63053568222a035336a8f20f04c480e3f7d22d848cc071f3bf353d555e2a8523c62fd69f5dc88edc158164293ecc0e6e61bac623cd7437866d0ea599b"}]}}, {{0x9, 0x5, 0x4, 0x3, 0x8, 0x2, 0x9, 0x4, [@generic={0xe2, 0x8, "0e7ac1df4787193b05682197ccf0411088c7dfa2126889c9817ddd667591801cdbe713f53348281c87bca73a22ab1c4489fb0f6bad42c4b37646a63823a0fe533e41c207aa298e34d34661b0351ce422e3f671be4a5ab186cfb6f12b79c3516c84cbc26826f779b035e2a869cd5eac066d4f2a90c7799710d53109868998cf8616aa98e6e540c470c9f4b8229ca5bd1cf738a55e5679c5026d080d5ffdd15a79c65ff765ab68d3f1b53ec5b72c0b10f8eebd0a8293ca0d93c93b17edce34becdf3265a000bd7f7c26502efb57e2719d64d803d40ecd18d17ed5f1a1198318e1b"}]}}, {{0x9, 0x5, 0x4, 0x0, 0x20, 0xfa, 0x9, 0xff, [@generic={0x93, 0x7, "9cf5500decc67ceb49280b67d7b5f340302647683ed1fba8895f37fd2dfa82ff5f03cc4bbf556736fa3f1813439a165b4c062453f0443b2905fcdd2c5cbc9f033d49d3560fd7abb134d1e2c61b655fabb20a2a1f5bdc5c464f4e78827e2ed836b3d3cb8b97a6ef1165cfd51548e673be79649c6939d7e7296a75829a8dd3255762bf2332243390ba706a4300c131cd23bc"}, @generic={0xc8, 0xc, "2e97b3b6ff2aa8c52fb206f3117b83056bf51421542589df7d619c78dea7498ffb7ff2a98fbb772a67a9d59be53e6003866fcab4e3a862ef7239ee2764c953f59da3313fe1440e3934a0f77ccd2f4faf4d3faeaad024afa195069c186adbbfe24d14038189afca895b6ed81804c1ea80e7547b03bb314360c11c5f939b646d6441abcfc81ee79f7f8065e8686f4652a990365a43d76a9c3619f1e90922f408c437d0e135ed9082bc43776bad542088af9e1fbed9afec3b0317c6d6bfaf93c20ea27e9bb11a2b"}]}}, {{0x9, 0x5, 0xb, 0x0, 0x3ff, 0x3, 0x3, 0x7, [@generic={0xc7, 0x6, "8ce4f32bb36685ee47cf97d8cda8655b56c531e3f9b22c4aabeabf02f703a4e32fb1debc23177dd99248e01d826cf0552188801f8abed4e4aafce5a54903fc8f563e2a6709c709381109928fc8da984201c3372feb467d2545444adf93a89ccbfe943055e65f0a27aa6e63a59e47eea40c0a8e19bddcc594fa17213164e995dcdbada5fe8ad5755e53ad5aa8cdbda09c98be1a3ccc3f5fc1f558df17e006aae7c288dbf2ac13d9a55935cec3bc2838f937b00f815ec3fde697b89086a414a0b968503d400f"}, @generic={0xf0, 0x3, "95e7cb0048136eed1ab22f935e9bbbb429bcd90280020fffca166a7701e3afc1f8836a93e8f4a6cd05155c1618e617a5837c7087685f214b056026655fec5a966a89fc1bc70ef9279093e1abe7d3d522a1fe7533027666b5db7947af0b96710c2223ffbf8bf72e0b9c9afb086b7f93f04ef888fc1199e6ee60d41cca1dba5e0ae56d35673e6794dd8c62960b3660f44feb0dbc75917da8992f473e5613680722c6a230c599d5506101a8f856412119a4c9f0b3d3bf10822b3960ca00f02c42858a72755a3d491edd321f045ad29f03378835cb044194b5220a9f6347642293fa8968995afb7602577566ce42fc67"}]}}, {{0x9, 0x5, 0xe, 0x8, 0x13e43f4e801cf167, 0x73, 0x1, 0x3, [@uac_iso={0x7, 0x25, 0x1, 0x83, 0x9, 0x8001}, @generic={0x2e, 0x15, "ef0f20b289785269443f0d255d3541214826ed463f9233bc4d47194280cba5ac840fdc028cf9d93615499d87"}]}}, {{0x9, 0x5, 0x5, 0x0, 0x10, 0x3f, 0x6, 0x20, [@generic={0x45, 0xa, "15bdf91a5a691afb637ba965a20f2e9db5466482a775775bc67af22916155f0bc7a9d1e1a355f968deda3a41365fa486951f113b54de9b41ff1d0ac6e59576468119c9"}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x9, 0x7}]}}, {{0x9, 0x5, 0x7, 0x3, 0x8, 0x1, 0x5, 0x8e, [@uac_iso={0x7, 0x25, 0x1, 0x0, 0x3f}, @uac_iso={0x7, 0x25, 0x1, 0x1, 0x2, 0xfff7}]}}, {{0x9, 0x5, 0x5, 0x0, 0x200, 0x2, 0x4, 0x6, [@uac_iso={0x7, 0x25, 0x1, 0x1, 0x2, 0x3}]}}, {{0x9, 0x5, 0x8, 0x18, 0x20, 0x75, 0xda, 0x7f, [@uac_iso={0x7, 0x25, 0x1, 0x3, 0x6, 0xe860}]}}, {{0x9, 0x5, 0x6, 0x10, 0x20, 0x5, 0x92, 0x1, [@uac_iso={0x7, 0x25, 0x1, 0x80, 0x2, 0x340}, @uac_iso={0x7, 0x25, 0x1, 0x0, 0x8, 0x7fff}]}}, {{0x9, 0x5, 0x0, 0x8, 0x3ff, 0x2, 0x3, 0x8, [@generic={0x26, 0x37, "f1e218779c7e679a500ee73d833fd12a35089c0e70a52e26afa9bf56fd439138459b29b1"}]}}, {{0x9, 0x5, 0xb, 0x0, 0x0, 0xb0, 0x6, 0x6, [@generic={0xed, 0x11, "df4ba362c5909a76eab17b78dbca9f208ef22f1ddd1d354ff38b99c1efdce0418784cea9da1684a1c20c636847849604cdf7b1ec69555210d358099eea463fd5bd82943761200d7202fa0ff0cc3747ca57da1ee84eb1b1a8c688eaf8bdacd4149100efd030558b63f6633a167b7fd44285cd1f5c73ad5b45f4a36c14bba14e7273e17891bb3d2a8b22477c19314f2805e4c5370b4725fcdd3753c81c6c72301c7a857965b2ce047cdbdf85a9e70298b6b063f618ecf8c7f16dfa2f01e2a32a82821b90a96c1b9214b707f468d613df5433c72430f2d3f68f0d8391b793456c1beb5cf301f4c5f90c7a5709"}]}}]}}]}}]}}, &(0x7f0000001880)={0xa, &(0x7f0000001740)={0xa, 0x6, 0x310, 0x2, 0x6, 0x7, 0x40}, 0xa3, &(0x7f0000001780)=ANY=[@ANYBLOB="050fa3000383100ae6249272ecb276ee2263af5180cab760b8ba033f791c5bfe7078837ffb1fad1193a93a81af8f41ecf76eff4b984ed897f57df8346b0c8e7c6fdc349d1e7377f2dc8994576e73a9775928814f210fb3b6f06e02db6fb719af3227a35ae67f9f62d40b389cfbde26078a5074a2a422dfe397d4db08ef9d76d1ff9bae88866b2f5714100a20c23e1300000f99003000ff0000c0000007100200570100"], 0x1, [{0x4, &(0x7f0000001840)=@lang_id={0x4, 0x3, 0x200a}}]}) syz_usb_ep_write(r1, 0x6, 0x3c, &(0x7f00000018c0)="23a851e17829be9f5481f3683dc84cbab3774e4ac80466d0a826e8de3e98cbd767b1eac8328ea15b3ef0fa38b3fbf1c9380a881f6a554bf7618a3905") r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r2], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f0000000080)='9p_client_res\x00', r3}, 0x10) socket$inet6_udp(0xa, 0x2, 0x0) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="1800000000000100000000000000fe0018110000", @ANYRES32, @ANYBLOB="0000000000000000b7080000f70000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b700000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000040)='kmem_cache_free\x00', r4}, 0x10) ioctl$AUTOFS_IOC_CATATONIC(0xffffffffffffffff, 0x9362, 0x0) ioctl$TIOCGPGRP(0xffffffffffffffff, 0x540f, &(0x7f00000019c0)=0x0) r6 = fcntl$getown(r0, 0x9) r7 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='hugetlb.2MB.usage_in_bytes\x00', 0x275a, 0x0) write$binfmt_script(r7, &(0x7f0000000240), 0x208e24b) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x280000b, 0x28011, r7, 0x0) syz_clone3(&(0x7f0000001a40)={0x880200, &(0x7f0000001680), &(0x7f00000016c0), &(0x7f0000001700), {0x3f}, &(0x7f0000001900)=""/67, 0x43, &(0x7f0000001980)=""/1, &(0x7f0000001a00)=[r5, r6], 0x2, {r7}}, 0x58) r8 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r8, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000140)={&(0x7f0000000180)=@newlink={0x50, 0x10, 0x403, 0x0, 0x0, {0x0, 0x0, 0xffff}, [@IFLA_IFNAME={0x14, 0x3, 'xfrm0\x00'}, @IFLA_LINKINFO={0x1c, 0x12, 0x0, 0x1, @xfrm={{0x9}, {0xc, 0x2, 0x0, 0x1, [@IFLA_XFRM_IF_ID={0x8, 0x2, 0x3}]}}}]}, 0x50}}, 0x0) 819.820573ms ago: executing program 4 (id=15452): openat$ppp(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) close(0xffffffffffffffff) r0 = open(&(0x7f0000000080)='./bus\x00', 0x400141042, 0x0) mmap(&(0x7f0000001000/0xa000)=nil, 0xa000, 0x0, 0x13, r0, 0x0) r1 = syz_open_dev$usbfs(&(0x7f0000000100), 0xe596, 0x0) r2 = fcntl$dupfd(r1, 0x0, r1) mkdirat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000)='./cgroup/syz0\x00', 0x1ff) r3 = openat$cgroup_root(0xffffffffffffff9c, &(0x7f0000000000), 0x200002, 0x0) r4 = openat$cgroup_ro(r3, &(0x7f0000000040)='cgroup.freeze\x00', 0x275a, 0x0) write$cgroup_int(r4, &(0x7f0000000200)=0x1, 0x12) mkdirat$cgroup(r3, &(0x7f00000000c0)='syz1\x00', 0x1ff) ioctl$USBDEVFS_SUBMITURB(r2, 0x8038550a, &(0x7f0000000000)=@urb_type_control={0x2, {}, 0x0, 0x0, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0x7995}, 0x8, 0x40, 0x0, 0x48000000, 0x0, 0x0, 0x0}) syz_mount_image$ext4(&(0x7f00000000c0)='ext2\x00', &(0x7f0000000100)='./file0\x00', 0x2000000, &(0x7f0000000180), 0x1, 0x520, &(0x7f00000010c0)="$eJzs3d1rLGcZAPBnNtmer+iu2otaaHuwlZyiZzdpbBu8aCuIdwWl3h9Dsgkhm2zIbupJKJqD9woi2tteeSMI3grS/0BRCnovKkrRUwV7oY7M7OTkZLub5JD9oMnvB2/mnZmdeZ53kn3n85wJ4NK6GRGvRcRURDwfEZVieqkocdAt2ec+uP/WclaSSNM3/p5EUkzLPpYUJXOjWOxqd5D7d3o8bntvf2Op2WzsFOP1zuZ2vb23f3t9c2mtsdbYWliYf2nx5cUXF+eG0s6sXa989S8//sFPv/bKr7747T/e+dut72T5zhTzD9sxbN1tUs62xQPTEbEzimATMFW0pzzpRAAAOJPsGP/TEfG5/Pi/ElP50dzZJCPNDAAAABiW9NWZ+E8SkQIAAAAXVil/BjYp1YpnAWaiVKrVus/wPh7XS81Wu/OF1dbu1kr3WdlqlEur683GXPFMbTXKSTY+n9ePxl94MJ4cPHy94UeVa/n82nKruTK5yx4AAABwqdzoOf//V6V7/n+Ce2NLDgAAABie6lE1rUwyEQAAAGBkqh+Z8s5E8gAAAABG56Pn/wAAAMAF8vXXX89Kmr//uhqx8ube7kbrzdsrjfZGbXN3ubbc2tmurbVaa830SsTmaetrtlrbX4qt3bv1TqPdqbf39u9stna3OnfWj70CGwAAABijTz3z7h+SiDj48rW8ZB7LfkwNWMCzAnBhlB7lw38eXR7A+A3azQMX3/SkEwAmptwdJJPOA5ic0zqAgQ/v/Gb4uQAAAKMx+9n+9/+nj64NABfUI93/By4U9//h8nL/Hy6vsiMAuPRGf/8/TU9dFwAAMFIzeUlKteJe4EyUPky7ohrlZHW92ZiLiE9GxO8r5SvZ+Hy+ZOIfDQAAAAAAAAAAAAAAAAAAAAAAAADAGaVpEikAAABwoUWU/poU7/+arTw303t94LHkw0o+zN8O8MZP7i51Ojvz2fR/FNMjOm8X0194lCsP3jwOAAAAo3J4nn54Hg8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAw/TB/beWD8vxOaWRxn3/KxFR7Rd/Oq7mw6tRjojr/0xi+nChZyKSiJgaQvyDexHxRL/4SZZWVIssjsUvtsq1PIuRx38qTdPv9ot/49zR4XJ7N+t/Xuv3/SvFzXzY//s/XZTzGtz/lR70f1N94mc9zyfOsP4rEfHkez+vD54b8eR0//7nMH4yIP6z/VbZZ6N865v7+4PyS9+JmD3a/3z/eISjWr2zuV1v7+3fXt9cWmusNbYWFuZfWnx58cXFufrqerNR/Owb44dP/fJ/g+K/fy/iet/9X7f/faj9S73tfy6rlAet+ch/37t7/zN5rZL2rCKPf+vZ/r//J47HP7Zps7+Jzxf7gWz+7GH9oFt/2NM/++3TJ7V/ZUD7T/v93+pZ16D98fPf+N6fTtxAAMBYtff2N5aazcbOyCtvp2k6plj5gci42nXuyuMfn1Tbe7/4Xbfyau+smye0Ir0y7j82lXNXenuKX4+/cwIAAIbq6KB/0pkAAAAAAAAAAAAAAAAAAADA5TWO/06sN+bBZJoKAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAHCi/wcAAP//rgHbtw==") r5 = socket$packet(0x11, 0x3, 0x300) bpf$MAP_CREATE(0x0, &(0x7f00000017c0)=@base={0x0, 0x0, 0x2, 0x0, 0x0, 0x1}, 0x48) prlimit64(0x0, 0x3, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x2, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r6, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r7, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r6, &(0x7f0000001700)=[{{0x0, 0x0, &(0x7f0000000800)=[{&(0x7f0000000240)=""/162, 0xa2}, {&(0x7f0000000300)=""/116, 0x74}, {&(0x7f0000000540)=""/187, 0xbb}, {&(0x7f0000000600)=""/158, 0x9e}, {&(0x7f0000000700)=""/224, 0xe0}], 0x5}, 0x10001}, {{&(0x7f0000000880)=@nl, 0x80, &(0x7f0000000c40)=[{&(0x7f0000000380)=""/58, 0x3a}, {&(0x7f0000000900)=""/114, 0x72}, {&(0x7f0000000980)=""/253, 0xfd}, {&(0x7f00000004c0)=""/8, 0x8}, {&(0x7f0000000a80)=""/202, 0xca}, {&(0x7f0000000b80)=""/135, 0x87}, {&(0x7f0000002b00)=""/4096, 0x1000}], 0x7}, 0x6}, {{&(0x7f0000000cc0)=@pppoe={0x18, 0x0, {0x0, @multicast}}, 0x80, &(0x7f0000001000)=[{&(0x7f0000000d40)=""/211, 0xd3}, {&(0x7f0000000e40)=""/193, 0xc1}, {&(0x7f0000000f40)=""/185, 0xb9}, {&(0x7f0000001600)=""/232, 0xe8}], 0x4, &(0x7f0000001040)=""/75, 0x4b}, 0x7}], 0x3, 0x2, 0x0) r8 = syz_open_procfs(0xffffffffffffffff, &(0x7f0000000000)='net/ip_tables_targets\x00') preadv(r8, &(0x7f0000000040)=[{&(0x7f00000003c0)=""/231, 0xe7}], 0x1, 0xa0, 0x0) sendto$inet6(0xffffffffffffffff, &(0x7f0000000000)='q', 0x1, 0x0, 0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000500)='./bus\x00', 0x2041002, &(0x7f0000001f40)={[{@nombcache}, {@sysvgroups}, {@stripe={'stripe', 0x3d, 0x678}}], [{@euid_gt}, {@obj_user={'obj_user', 0x3d, '.@\\,@!(-,-}/\xab\':\xc6/$-,+&-)'}}, {@subj_role={'subj_role', 0x3d, '*\\/\'}*&.$'}}, {@obj_role={'obj_role', 0x3d, '^'}}, {@defcontext={'defcontext', 0x3d, 'system_u'}}, {@subj_type}]}, 0x1, 0x53f, &(0x7f0000001a00)="$eJzs3c9vI1cdAPDvTH52mzZb6AEqYBcoLGi19sbbrqpe2r2AUFUJUXFAHLYh8UZh7XWIndKESKR/A0ggcYI/gQMSB6SeOHDjyA0hlQPSAhFog0SF0YwnqZvYjWkcm8afjzQ78+bF7/tesuP3/CaZF8DEuhoRexExGxGvR8RicT4ptni5s2Vf92h/d+Vgf3cl/tNuv/a3JM/PzkXXazKPF2XOR8Q3vhrxneRk3Ob2zv3lWq26WaTLrfpGubm9c2O9vrxWXas+qFRuL92++cKt5ytDa+uV+i8ffmX9lW/+5teffuf3e1/+QVathSKvux3D1Gn6zFGczHREvHIewcZgqtjPjrkefDhpRHwsIj6XX/+LMZX/7wQALrJ2ezHai91pAOCiS/M5sCQtFXMBC5GmpVJnDu/puJTWGs3W9XuNrQernbmyyzGTzhVjhe/l/84k99Zr1aU8L8/P05UiPVWkb0XEUxHx47nH8nRppVFbHc+QBwAm3uPH+v9/znX6/wH0uKsHAHxkzI+7AgDAyOn/AWDy6P8BYPIM0P8XN/v3zr0uAMBo+PwPAJNH/w8Ak0f/DwAT5euvvppt7YPi+derb2xv3W+8cWO12rxfqm+tlFYamxultUZjLX9mT/208mqNxsbSc7H1ZrlVbbbKze2du/XG1oPW3fy53nerMyNpFQDwQZ668vYfkojYe/GxfAtrOcDESMddAWBspsZdAWBsrPYFk2vw+fjfnWs9gPHp+TDv+Z6H7/fT/yGI3zOC/yvXPtl//v/42MB9AbhYzP/D5Ppw8/8vDb0ewOj1mv83zofJ0G4nx9f8nz3KAgAupDP8PV77h8MahABjddpi3kO5/w8AAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAXzEJEfDeStFSsBb4QaVoqRTwREZdjJrm3XqvejIgn40pEzMxl6aVxVxoAOKP0L0mx/te1xWcXjufOJv+ai2JN8O//7LWfvLncam0uZef/fnR+7nD5sMp7rzvDuoIAwJDl/Xel2Hd9kH+0v7tyuI2yPg/vxLvFUsQrB/u7+dbJmY7pfD+fjyUu/SMp0p21SJ+JiKkhxN97KyI+cdT+5N12u4if5HMjl4uVT7vjRxH7ieHH7/r+H4+fvi9+mud19tng6+PHyk2HUDe46N6+ExEv97r+0ria73tf//P5O9TZPbzTKezwve+gK/7h+99Uj/jZNX910BjP/fZrJ062Fzt5b0U8M90rfnIUP+kT/9kB4//xU5/50Ut98to/j7gWveN3xyq36hvl5vbOjfX68lp1rfqgUrm9dPvmC7eer5TzOery4Uz1SX998fqT/eqWtf9Sn/jzPds/e/TaLwzY/l/8+/Vvf/YD4n/p871//k/3jN+R9YlfHDD+8qVf9V2+O4u/2qf9p/38rw8Y/50/76wO+KUAwAg0t3fuL9dq1c0zHWSfNodRzomDrIpDLfCUgz/F6GKdejBzXt/Vcz+YPhorDrfkb2Uljrg56dBbcaaDR6OKNd73JeD8vXfRj7smAAAAAAAAAAAAAABAP6P406VxtxEAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAICL678BAAD//86cyvg=") openat(0xffffffffffffff9c, &(0x7f0000000200)='./bus\x00', 0x141842, 0x0) ioctl$sock_SIOCGPGRP(r5, 0x8904, &(0x7f00000001c0)) ioctl$SECCOMP_IOCTL_NOTIF_RECV(0xffffffffffffffff, 0xc0502100, &(0x7f0000001840)) 819.307903ms ago: executing program 1 (id=15453): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x0, 0x10001, 0x9}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) memfd_create(0x0, 0x0) syz_mount_image$ext4(&(0x7f0000000100)='ext4\x00', &(0x7f0000000500)='./file0\x00', 0x2008002, &(0x7f0000000080), 0x1, 0x53d, &(0x7f0000000a80)="$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") syz_mount_image$vfat(&(0x7f0000000140), &(0x7f00000003c0)='\x13\x13w\xc5\xfc5\xd4\x14T\xd5\xd4\x1d)\xad\x1a`)Y\x81F\xe6\xbe\x16nA\xad\r\xbd@T\x03<\x9f3\xbb\xda\x82$\xa2\xf3\xd7r\xe7cnH\xb3<\xbfp\x83r\xe8\xf1\xb9\x93>\xc5\x12wC\xbe\"\x06 \x9e\xf0-\xf9\xcb\xf2\xf6\xe8\x80\xd38/\x00', 0x80205b, 0x0, 0xfb, 0x0, &(0x7f00000000c0)) ioctl$FS_IOC_SETFLAGS(0xffffffffffffffff, 0x40086602, &(0x7f0000000080)) openat$cgroup_ro(0xffffffffffffff9c, 0x0, 0x275a, 0x0) syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000480)='./file0\x00', 0xc0ed0040, &(0x7f0000000300)={[], [{@uid_lt}, {@defcontext={'defcontext', 0x3d, 'root'}}, {@hash}, {@permit_directio}]}, 0x0, 0x472, &(0x7f0000000940)="$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") prlimit64(0x0, 0x0, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x2, &(0x7f0000000200)=0x4) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x2, 0x0, &(0x7f0000000200)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f0000000240)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) bpf$PROG_LOAD(0x5, &(0x7f0000000680)={0x11, 0xf, &(0x7f0000000600)=ANY=[@ANYRES32, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000001dc0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) r4 = socket$inet6(0xa, 0x802, 0x0) setsockopt$inet6_buf(r4, 0x29, 0x39, &(0x7f0000000040)="ff02040000ffffffffffffffff1f2be82db1af0000000000", 0x18) connect$inet6(r4, &(0x7f0000000000)={0xa, 0x0, 0x0, @loopback}, 0x1c) sendmmsg$inet6(r4, &(0x7f0000001700)=[{{0x0, 0x10000000, 0x0, 0x0, 0x0, 0x0, 0xfc}, 0x1030000}], 0x40000000000035c, 0x0) 789.425506ms ago: executing program 0 (id=15454): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000080)={{r0}, 0x0, &(0x7f00000002c0)}, 0x20) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000004c0)) 729.58903ms ago: executing program 0 (id=15455): prctl$PR_SET_SECCOMP(0x16, 0x2, &(0x7f0000000000)={0x1, &(0x7f00000000c0)=[{0x200000000006, 0x0, 0x0, 0x7ffc1ffb}]}) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="18000000000000000000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x0) stat(&(0x7f00000003c0)='./file0\x00', &(0x7f00000004c0)) 729.41455ms ago: executing program 0 (id=15456): socket$nl_generic(0x10, 0x3, 0x10) bpf$PROG_LOAD(0x5, 0x0, 0x0) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x4}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYRES32=r0, @ANYBLOB], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x41100, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000080)='sched_switch\x00', r1}, 0x10) timer_create(0x0, &(0x7f0000000040)={0x0, 0x12}, &(0x7f0000000200)) timer_settime(0x0, 0x0, &(0x7f0000000180)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) clock_nanosleep(0x2, 0x0, &(0x7f0000000300)={0x0, 0x989680}, 0x0) timer_create(0x2, &(0x7f0000000000)={0x0, 0x14}, &(0x7f0000000500)=0x0) timer_settime(r2, 0x1, &(0x7f0000000480)={{0x0, 0x989680}, {0x0, 0x1c9c380}}, 0x0) socket(0x0, 0x0, 0x0) sendmsg$TIPC_CMD_SHOW_LINK_STATS(0xffffffffffffffff, &(0x7f0000000380)={0x0, 0x0, &(0x7f0000000340)={0x0}}, 0x0) socket$inet6_tcp(0xa, 0x1, 0x0) unshare(0x40000000) socket$inet_tcp(0x2, 0x1, 0x0) socket$nl_netfilter(0x10, 0x3, 0xc) ioprio_set$pid(0x0, 0x0, 0x4007) 478.737581ms ago: executing program 0 (id=15457): r0 = openat(0xffffffffffffff9c, &(0x7f0000000580)='./file0\x00', 0x2c41, 0x0) flock(r0, 0x5) r1 = openat(0xffffffffffffff9c, &(0x7f00000001c0)='./file0\x00', 0x0, 0x0) r2 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000}, 0x48) r3 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x7, &(0x7f0000000540)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r2, @ANYBLOB="0000000000000000b7020000030000008500000086000000"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000280)={&(0x7f0000000040)='kmem_cache_free\x00', r3}, 0x10) flock(r1, 0x2) dup3(r1, r0, 0x0) 455.202803ms ago: executing program 2 (id=15458): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0x20000000000000d0, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b70400000000000085"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) mkdirat(0xffffffffffffff9c, &(0x7f0000000000)='./file0\x00', 0x42916fd1f59576fd) quotactl$Q_QUOTAON(0xffffffff80000201, &(0x7f0000000300)=@filename='./file0\x00', 0x0, &(0x7f0000000380)='./file0\x00') 337.497473ms ago: executing program 0 (id=15459): sendmmsg$inet(0xffffffffffffffff, 0x0, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r1}, 0x10) bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x11, 0xc, &(0x7f0000002280)=ANY=[@ANYRES32, @ANYRESDEC=r0, @ANYRES64=r1], &(0x7f00000001c0)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x60, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$MAP_CREATE(0x0, &(0x7f00000000c0), 0x48) syz_mount_image$ext4(&(0x7f0000000180)='ext4\x00', &(0x7f0000002380)='./file2\x00', 0x0, &(0x7f0000002300)={[{@nomblk_io_submit}, {@init_itable_val={'init_itable', 0x3d, 0x3}}, {@jqfmt_vfsold}, {@test_dummy_encryption}, {@auto_da_alloc_val={'auto_da_alloc', 0x3d, 0x8}}]}, 0xfe, 0x483, &(0x7f0000001d00)="$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") chdir(&(0x7f0000000000)='./file0\x00') creat(&(0x7f0000000040)='./bus\x00', 0x0) mount(&(0x7f0000000380)=@loop={'/dev/loop', 0x0}, &(0x7f0000000140)='./bus\x00', 0x0, 0x1000, 0x0) r2 = open(&(0x7f0000000080)='./bus\x00', 0x185102, 0x0) mmap(&(0x7f0000000000/0x800000)=nil, 0x800000, 0x2, 0x28011, r2, 0x0) syz_mount_image$ext4(&(0x7f0000000040)='ext2\x00', &(0x7f0000000200)='./file1\x00', 0x408e, &(0x7f0000000240)={[{@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x2e}}, {@nombcache}, {@inode_readahead_blks={'inode_readahead_blks', 0x3d, 0x2}}, {@stripe={'stripe', 0x3d, 0x2004000}}, {@max_batch_time={'max_batch_time', 0x3d, 0x2}}, {@max_batch_time={'max_batch_time', 0x3d, 0x1000000000204}}]}, 0x3, 0x442, &(0x7f0000000e40)="$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") openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000180)='pids.events\x00', 0x275a, 0x0) mkdir(&(0x7f00000020c0)='./file0\x00', 0x0) r3 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x16, 0x0, 0x4, 0xff, 0x0, 0x1}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r3, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000005900000095"], 0x0}, 0x90) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f00000003c0)={{r3}, 0x0, &(0x7f0000000040)}, 0x20) r4 = bpf$PROG_LOAD(0x5, &(0x7f00000021c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x6, 0x2b, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f0000000100)='kmem_cache_free\x00', r4}, 0x10) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r6, &(0x7f0000000080)=ANY=[@ANYBLOB="1500000065ffff097b00000800395032303030"], 0x15) r7 = dup(r6) write$FUSE_BMAP(r7, &(0x7f0000000100)={0x18}, 0x18) mount$9p_fd(0x0, &(0x7f0000000040)='./file0\x00', &(0x7f0000000b80), 0x0, &(0x7f0000000380)={'trans=fd,', {'rfdno', 0x3d, r5}, 0x2c, {'wfdno', 0x3d, r7}}) syz_open_dev$usbmon(&(0x7f0000000140), 0x0, 0x0) syz_open_procfs(0x0, 0x0) read$FUSE(0xffffffffffffffff, &(0x7f0000000180)={0x2020}, 0x2020) dup(0xffffffffffffffff) 231.035651ms ago: executing program 2 (id=15460): syz_mount_image$ext4(&(0x7f0000000780)='ext4\x00', &(0x7f0000000240)='./file0\x00', 0x2000480, &(0x7f0000000040)={[{@stripe={'stripe', 0x3d, 0x401}}, {@errors_remount}]}, 0x1, 0x784, &(0x7f00000007c0)="$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") r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x9, 0x4, 0xfff, 0x5}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800"/15, @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x90) prlimit64(0x0, 0xe, &(0x7f0000000140)={0x8, 0x8b}, 0x0) sched_setscheduler(0x0, 0x1, &(0x7f0000000080)=0x7) r1 = getpid() sched_setaffinity(0x0, 0x8, &(0x7f00000002c0)=0x2) sched_setscheduler(r1, 0x1, &(0x7f0000000200)=0x5) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0xb635773f06ebbeee, 0x8031, 0xffffffffffffffff, 0x0) socketpair$unix(0x1, 0x3, 0x0, &(0x7f0000000380)={0xffffffffffffffff, 0xffffffffffffffff}) connect$unix(r2, &(0x7f000057eff8)=@abs, 0x6e) sendmmsg$unix(r3, &(0x7f0000000000), 0x651, 0x0) recvmmsg(r2, &(0x7f00000000c0), 0x10106, 0x2, 0x0) r4 = openat(0xffffffffffffff9c, &(0x7f0000000100)='./file1\x00', 0x42, 0x1ff) write$binfmt_elf64(r4, &(0x7f00000005c0)=ANY=[@ANYBLOB="7f454c4600010001000000000000000003003e00000000000000000000000000400000100000000000000000000000000000000000003800010000000000000000000070f2ffffffc50e000000000000080000000000000001000000000000000800000000000000010000000000008006000000000000000300000001040000ffffff7f00000000ffffffffffffffffa7000000000000000f000000000000000a00000000000000080000000000000074ecb587e808e8de82adcf0538944a57c82147d081c801ce4087c28d3e4f426dd7e21288cc90bd0a5f3e1ab6f680490e00b875f02d52ffe687dc4c59152d335e"], 0x14b) close(r4) execveat(0xffffffffffffff9c, &(0x7f0000000140)='./file1\x00', 0x0, 0x0, 0x0) 0s ago: executing program 0 (id=15461): syz_read_part_table(0x5d4, &(0x7f0000000000)="$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") r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000040), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f00000001c0)='blkio.bfq.io_wait_time_recursive\x00', 0x275a, 0x0) ioctl$sock_SIOCGIFINDEX_80211(0xffffffffffffffff, 0x8933, &(0x7f0000000000)={'wlan1\x00'}) r3 = openat$vhost_vsock(0xffffffffffffff9c, 0x0, 0x2, 0x0) ioctl$VHOST_SET_VRING_BASE(r3, 0xaf01, 0x0) r4 = eventfd(0x0) ioctl$VHOST_SET_VRING_BASE(r3, 0x4008af12, &(0x7f0000000080)={0x1, 0x7f}) ioctl$VHOST_SET_LOG_FD(r3, 0x4004af07, &(0x7f0000000240)=r4) ioctl$VHOST_SET_MEM_TABLE(r3, 0x4008af03, &(0x7f0000000c00)={0x1, 0x0, [{0x0, 0xaf, &(0x7f00000007c0)=""/175}]}) ioctl$VHOST_SET_VRING_KICK(r3, 0x4008af20, &(0x7f00000005c0)={0x1, r4}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f0000000140)={0x0, 0x0, 0x0, &(0x7f0000000680)=""/79, 0x0, 0x6000}) ioctl$VHOST_SET_VRING_ADDR(r3, 0x4028af11, &(0x7f00000000c0)={0x1, 0x1, &(0x7f0000000380)=""/247, &(0x7f0000000480)=""/83, &(0x7f00000001c0)=""/72}) ioctl$VHOST_VSOCK_SET_RUNNING(r3, 0x4004af61, &(0x7f0000000000)=0x1) write$binfmt_script(r0, &(0x7f0000000600)={'#! ', './file0'}, 0xfffffffffffffffa) mmap(&(0x7f0000000000/0xb36000)=nil, 0xb36000, 0x2, 0x28011, r2, 0x0) read$FUSE(r2, &(0x7f0000001600)={0x2020, 0x0, 0x0}, 0x2020) write$FUSE_INIT(r1, &(0x7f0000000680)={0x50, 0x0, r5, {0x7, 0x28, 0x1, 0x20a0000, 0x4, 0x4, 0x8000, 0xffff}}, 0x50) preadv(r2, &(0x7f00000015c0)=[{&(0x7f0000000080)=""/124, 0xffffff23}], 0x1, 0x0, 0x0) ioctl$KVM_SET_USER_MEMORY_REGION(r1, 0x4020ae46, &(0x7f0000000400)={0x0, 0x0, 0x0, 0x20002000, &(0x7f0000000000/0x2000)=nil}) r6 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) syz_kvm_setup_cpu$x86(0xffffffffffffffff, r6, &(0x7f0000000000/0x18000)=nil, &(0x7f0000000640)=[@text64={0x40, 0x0}], 0x1, 0x64, 0x0, 0x0) sendmsg$NL80211_CMD_SET_REKEY_OFFLOAD(0xffffffffffffffff, &(0x7f0000000300)={0x0, 0x0, 0x0}, 0x0) ioctl$KVM_RUN(r6, 0xae80, 0x0) kernel console output (not intermixed with test programs): 596283][T10798] hub: probe of 1-1:1.0 failed with error -5 [ 3283.625893][T10798] cdc_ether: probe of 1-1:1.0 failed with error -22 [ 3283.632882][ T548] usb 4-1: new high-speed USB device number 23 using dummy_hcd [ 3283.661676][ T537] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 3283.743470][ T537] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 3283.765019][ T537] F2FS-fs (loop2): invalid crc value [ 3283.776583][ T537] F2FS-fs (loop2): Found nat_bits in checkpoint [ 3283.789793][ T561] fuse: Bad value for 'rootmode' [ 3283.826356][ T537] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 3283.833882][ T537] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 3283.867265][ T24] audit: type=1107 audit(1721097179.604:143467): pid=565 uid=0 auid=4294967295 ses=4294967295 subj=root:sysadm_r:sysadm_t msg='ξR\4M' [ 3283.967487][ T572] device pim6reg1 entered promiscuous mode [ 3284.057210][ T548] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3284.068670][ T548] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3284.080628][ T548] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 3284.095015][ T548] usb 4-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 3284.105724][ T548] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3284.124762][ T548] usb 4-1: config 0 descriptor?? [ 3284.303655][ T579] xt_CT: netfilter: NOTRACK target is deprecated, use CT instead or upgrade iptables [ 3284.348778][ T581] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3284.357168][T10798] usb 5-1: new high-speed USB device number 107 using dummy_hcd [ 3284.357740][ T581] ext4 filesystem being mounted at /115/file0 supports timestamps until 2038 (0x7fffffff) [ 3284.381414][ T581] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3284.389744][ T581] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.15158: mark_inode_dirty error [ 3284.401325][ T581] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3284.409973][ T581] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.15158: mark_inode_dirty error [ 3284.546988][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3284.559722][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3284.572205][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3284.597116][T10798] usb 5-1: Using ep0 maxpacket: 32 [ 3284.631333][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3284.644393][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3284.657440][ T287] usb 1-1: USB disconnect, device number 8 [ 3284.670904][ T539] device syzkaller0 entered promiscuous mode [ 3284.682460][ T593] EXT4-fs (loop0): Ignoring removed orlov option [ 3284.690197][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3284.703230][ T548] prodikeys 0003:041E:2801.01A8: unknown main item tag 0x0 [ 3284.712352][ T593] EXT4-fs (loop0): Test dummy encryption mode enabled [ 3284.719457][T10798] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3284.730523][ T548] prodikeys 0003:041E:2801.01A8: unknown main item tag 0x0 [ 3284.737965][T10798] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3284.748027][ T548] prodikeys 0003:041E:2801.01A8: unknown main item tag 0x0 [ 3284.762225][T10798] usb 5-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 3284.762453][ T593] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 3284.771782][ T548] prodikeys 0003:041E:2801.01A8: unknown main item tag 0x0 [ 3284.787073][T10798] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3284.787672][ T593] System zones: 1-12 [ 3284.799570][ T593] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.15161: casefold flag without casefold feature [ 3284.812497][ T593] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.15161: missing EA_INODE flag [ 3284.814756][ T548] prodikeys 0003:041E:2801.01A8: unknown main item tag 0x0 [ 3284.824453][ T593] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.15161: error while reading EA inode 12 err=-117 [ 3284.837481][T10798] usb 5-1: config 0 descriptor?? [ 3284.843546][ T593] EXT4-fs (loop0): 1 orphan inode deleted [ 3284.853752][ T593] EXT4-fs (loop0): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 3284.861651][ T548] prodikeys 0003:041E:2801.01A8: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.3-1/input0 [ 3284.897845][T10798] hub 5-1:0.0: USB hub found [ 3284.951022][ T539] FAT-fs (loop3): Unrecognized mount option "uid=00000000000000000000IAcO [ 3284.951022][ T539] )Ld$' ڷ/IєL„3pe39" or missing value [ 3285.077894][ T548] usb 4-1: USB disconnect, device number 23 [ 3285.101415][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3285.113898][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3285.126804][ T24] audit: type=1326 audit(1721097180.864:143468): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.127008][T10798] hub 5-1:0.0: 1 port detected [ 3285.161506][ T24] audit: type=1326 audit(1721097180.884:143469): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.168932][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3285.199175][ T24] audit: type=1326 audit(1721097180.884:143470): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.224091][ T24] audit: type=1326 audit(1721097180.884:143471): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.249465][ T24] audit: type=1326 audit(1721097180.884:143472): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.276914][ T24] audit: type=1326 audit(1721097180.884:143473): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.303791][ T24] audit: type=1326 audit(1721097180.884:143474): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.338716][ T24] audit: type=1326 audit(1721097180.884:143475): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=603 comm="syz.1.15164" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fa1c1decbd9 code=0x7ffc0000 [ 3285.367117][ T287] usb 1-1: new high-speed USB device number 9 using dummy_hcd [ 3285.717133][T28475] usb 3-1: new high-speed USB device number 29 using dummy_hcd [ 3285.727495][ T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3285.755674][ T287] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3285.827286][T10798] hub 5-1:0.0: activate --> -90 [ 3285.856606][ T287] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 3285.874424][ T287] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 3285.883772][ T625] EXT4-fs (loop3): Ignoring removed orlov option [ 3285.890092][ T287] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3285.891756][ T625] EXT4-fs (loop3): Test dummy encryption mode enabled [ 3285.899242][ T287] usb 1-1: config 0 descriptor?? [ 3285.910548][ T625] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 3285.918358][ T625] System zones: 1-12 [ 3285.922705][ T625] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.15172: casefold flag without casefold feature [ 3285.935588][ T625] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.15172: missing EA_INODE flag [ 3285.947668][ T625] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.15172: error while reading EA inode 12 err=-117 [ 3285.960649][ T625] EXT4-fs (loop3): 1 orphan inode deleted [ 3285.966212][ T625] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 3286.007145][T28475] usb 3-1: Using ep0 maxpacket: 8 [ 3286.086804][T22614] usb 5-1: USB disconnect, device number 107 [ 3286.097300][T10798] hub 5-1:0.0: hub_ext_port_status failed (err = -71) [ 3286.127191][T28475] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3286.142276][T28475] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3286.160895][T28475] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3286.170789][T28475] usb 3-1: config 1 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 18 [ 3286.257212][T28475] usb 3-1: New USB device found, idVendor=0001, idProduct=8000, bcdDevice= 0.00 [ 3286.266783][T28475] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 3286.275176][T28475] usb 3-1: SerialNumber: syz [ 3286.308755][ T642] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 3286.317814][ T642] ext4 filesystem being mounted at /102/file0 supports timestamps until 2038 (0x7fffffff) [ 3286.318075][T28475] hub 3-1:1.0: bad descriptor, ignoring hub [ 3286.370766][ T642] EXT4-fs error (device loop3) in ext4_do_update_inode:5275: error 27 [ 3286.379400][T28475] hub: probe of 3-1:1.0 failed with error -5 [ 3286.400253][ T642] EXT4-fs error (device loop3): ext4_dirty_inode:6079: inode #2: comm syz.3.15178: mark_inode_dirty error [ 3286.401424][T28475] cdc_ether: probe of 3-1:1.0 failed with error -22 [ 3286.412094][ T642] EXT4-fs error (device loop3) in ext4_do_update_inode:5275: error 27 [ 3286.426773][ T642] EXT4-fs error (device loop3): __ext4_ext_dirty:182: inode #2: comm syz.3.15178: mark_inode_dirty error [ 3286.479083][ T287] plantronics 0003:047F:FFFF.01A9: No inputs registered, leaving [ 3286.494951][ T287] plantronics 0003:047F:FFFF.01A9: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 3286.787105][ T287] usb 2-1: new high-speed USB device number 123 using dummy_hcd [ 3286.998439][ T657] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3287.007723][ T657] ext4 filesystem being mounted at /65/file0 supports timestamps until 2038 (0x7fffffff) [ 3287.027077][ T287] usb 2-1: Using ep0 maxpacket: 16 [ 3287.032985][ T657] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3287.041850][ T657] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.15180: mark_inode_dirty error [ 3287.054002][ T657] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3287.062397][ T648] udc-core: couldn't find an available UDC or it's busy [ 3287.069758][ T648] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 3287.077573][ T657] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.15180: mark_inode_dirty error [ 3287.167193][ T287] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 3287.200753][ T663] netlink: 20 bytes leftover after parsing attributes in process `syz.4.15181'. [ 3287.327183][ T287] usb 2-1: New USB device found, idVendor=0b57, idProduct=2bbd, bcdDevice=e7.cc [ 3287.340253][ T287] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3287.348574][ T287] usb 2-1: Product: syz [ 3287.352713][ T287] usb 2-1: Manufacturer: syz [ 3287.360784][ T287] usb 2-1: SerialNumber: syz [ 3287.371522][ T287] usb 2-1: config 0 descriptor?? [ 3287.409104][ T287] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 3287.420320][ T673] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 3287.429214][ T673] ext4 filesystem being mounted at /105/file0 supports timestamps until 2038 (0x7fffffff) [ 3287.457751][ T666] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 3287.473867][ T666] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 3287.483603][ T666] F2FS-fs (loop4): invalid crc value [ 3287.491248][ T666] F2FS-fs (loop4): Found nat_bits in checkpoint [ 3287.534923][ T666] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 3287.541938][ T666] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 3287.644518][ T688] FAULT_INJECTION: forcing a failure. [ 3287.644518][ T688] name failslab, interval 1, probability 0, space 0, times 0 [ 3287.657930][ T684] EXT4-fs (loop3): Test dummy encryption mode enabled [ 3287.660640][ T688] CPU: 1 PID: 688 Comm: syz.2.15187 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3287.674238][ T688] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3287.684126][ T688] Call Trace: [ 3287.687261][ T688] dump_stack_lvl+0x1e2/0x24b [ 3287.691768][ T688] ? panic+0x812/0x812 [ 3287.695673][ T688] ? bfq_pos_tree_add_move+0x43b/0x43b [ 3287.700967][ T688] dump_stack+0x15/0x17 [ 3287.704957][ T688] should_fail+0x3c6/0x510 [ 3287.709227][ T688] ? alloc_skb_with_frags+0xa1/0x570 [ 3287.714340][ T688] __should_failslab+0xa4/0xe0 [ 3287.718939][ T688] should_failslab+0x9/0x20 [ 3287.723279][ T688] __kmalloc_track_caller+0x5f/0x320 [ 3287.728393][ T688] ? kmem_cache_alloc+0x168/0x2e0 [ 3287.733253][ T688] ? __alloc_skb+0x80/0x510 [ 3287.737592][ T688] ? alloc_skb_with_frags+0xa1/0x570 [ 3287.742709][ T688] __alloc_skb+0xbc/0x510 [ 3287.746886][ T688] ? stack_trace_save+0x113/0x1c0 [ 3287.751740][ T688] alloc_skb_with_frags+0xa1/0x570 [ 3287.756780][ T688] ? stack_trace_save+0x113/0x1c0 [ 3287.761650][ T688] sock_alloc_send_pskb+0x915/0xa50 [ 3287.766763][ T688] ? __kasan_slab_alloc+0xb1/0xe0 [ 3287.771624][ T688] ? slab_post_alloc_hook+0x61/0x2f0 [ 3287.776745][ T688] ? sock_kzfree_s+0x60/0x60 [ 3287.781171][ T688] packet_sendmsg+0x39a2/0x60a0 [ 3287.785856][ T688] ? avc_has_perm+0x14d/0x400 [ 3287.790378][ T688] ? selinux_socket_sendmsg+0x243/0x340 [ 3287.795751][ T688] ? stack_trace_save+0x1c0/0x1c0 [ 3287.800617][ T688] ? selinux_socket_accept+0x5b0/0x5b0 [ 3287.805907][ T688] ? arch_stack_walk+0xf3/0x140 [ 3287.810594][ T688] ? packet_getsockopt+0xea0/0xea0 [ 3287.815540][ T688] ? check_stack_object+0x114/0x130 [ 3287.820575][ T688] ? security_socket_sendmsg+0x82/0xb0 [ 3287.825872][ T688] ? packet_getsockopt+0xea0/0xea0 [ 3287.830814][ T688] ____sys_sendmsg+0x59e/0x8f0 [ 3287.835415][ T688] ? __sys_sendmsg_sock+0x40/0x40 [ 3287.840365][ T688] ? import_iovec+0xe5/0x120 [ 3287.844792][ T688] ___sys_sendmsg+0x252/0x2e0 [ 3287.849304][ T688] ? __sys_sendmsg+0x280/0x280 [ 3287.853908][ T688] ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0 [ 3287.860498][ T688] ? proc_fail_nth_write+0x20b/0x290 [ 3287.865822][ T688] ? __fdget+0x1bc/0x240 [ 3287.869897][ T688] __sys_sendmmsg+0x2c3/0x510 [ 3287.874502][ T688] ? __ia32_sys_sendmsg+0x90/0x90 [ 3287.879358][ T688] ? mutex_lock+0xa5/0x110 [ 3287.883613][ T688] ? bpf_probe_read_kernel_str+0x49/0x70 [ 3287.889083][ T688] ? __ia32_sys_read+0x90/0x90 [ 3287.893681][ T688] ? __bpf_trace_sys_enter+0x62/0x70 [ 3287.898798][ T688] __x64_sys_sendmmsg+0xa0/0xb0 [ 3287.903494][ T688] do_syscall_64+0x34/0x70 [ 3287.907740][ T688] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3287.913463][ T688] RIP: 0033:0x7fb1ded18bd9 [ 3287.917724][ T688] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3287.937159][ T688] RSP: 002b:00007fb1ddf9a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000133 [ 3287.945409][ T688] RAX: ffffffffffffffda RBX: 00007fb1deea6f60 RCX: 00007fb1ded18bd9 [ 3287.953214][ T688] RDX: 0000000000000002 RSI: 0000000020000240 RDI: 0000000000000003 [ 3287.961025][ T688] RBP: 00007fb1ddf9a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 3287.968837][ T688] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3287.976652][ T688] R13: 000000000000000b R14: 00007fb1deea6f60 R15: 00007ffd9d433788 [ 3287.989223][ T684] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:163: inode #12: comm syz.3.15186: inline data xattr refers to an external xattr inode [ 3288.004943][ T684] EXT4-fs error (device loop3): ext4_orphan_get:1396: comm syz.3.15186: couldn't read orphan inode 12 (err -117) [ 3288.019054][ T684] EXT4-fs (loop3): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 3288.226522][T30421] usb 3-1: USB disconnect, device number 29 [ 3288.345716][ T697] FAT-fs (loop2): Directory bread(block 64) failed [ 3288.352322][ T697] FAT-fs (loop2): Directory bread(block 65) failed [ 3288.364815][ T697] FAT-fs (loop2): Directory bread(block 66) failed [ 3288.371427][ T697] FAT-fs (loop2): Directory bread(block 67) failed [ 3288.377903][ T697] FAT-fs (loop2): Directory bread(block 68) failed [ 3288.384342][ T697] FAT-fs (loop2): Directory bread(block 69) failed [ 3288.390698][ T697] FAT-fs (loop2): Directory bread(block 70) failed [ 3288.397278][ T697] FAT-fs (loop2): Directory bread(block 71) failed [ 3288.403684][ T697] FAT-fs (loop2): Directory bread(block 72) failed [ 3288.410171][ T697] FAT-fs (loop2): Directory bread(block 73) failed [ 3288.555189][ T705] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3288.575807][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3288.596337][ T705] ext4 filesystem being mounted at /70/file0 supports timestamps until 2038 (0x7fffffff) [ 3288.606412][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3288.619214][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3288.630417][ T705] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3288.640468][ T705] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.15191: mark_inode_dirty error [ 3288.654993][ T713] [EXT4 FS bs=2048, gc=1, bpg=16384, ipg=32, mo=2802c018, mo2=0002] [ 3288.664055][ T705] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3288.665990][ T713] System zones: 0-2, 18-18, 34-35 [ 3288.679614][ T705] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.15191: mark_inode_dirty error [ 3288.682886][ T713] EXT4-fs (loop0): mounted filesystem without journal. Opts: lazytime,noinit_itable,debug,,errors=continue [ 3288.705103][ T713] ext4 filesystem being mounted at /11/file0 supports timestamps until 2038 (0x7fffffff) [ 3288.787098][T18864] usb 3-1: new high-speed USB device number 30 using dummy_hcd [ 3288.809289][T28475] usb 1-1: USB disconnect, device number 9 [ 3288.867407][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3288.879872][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3288.891935][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3289.116067][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3289.129054][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3289.142087][ T2792] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3289.151524][T18864] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 3289.163554][T18864] usb 3-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 3289.175060][T18864] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 3289.183980][T18864] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3289.207240][ T708] raw-gadget.0 gadget: fail, usb_ep_enable returned -22 [ 3289.216178][ T731] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 3289.216475][ T730] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3289.233742][ T730] ext4 filesystem being mounted at /71/file0 supports timestamps until 2038 (0x7fffffff) [ 3289.250146][ T727] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 3289.267128][ T727] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 3289.272684][T30421] usb 2-1: USB disconnect, device number 123 [ 3289.277775][ T727] F2FS-fs (loop0): invalid crc value [ 3289.361169][ T727] F2FS-fs (loop0): Found nat_bits in checkpoint [ 3289.398350][ T727] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 3289.405491][ T727] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 3289.588915][ T24] kauditd_printk_skb: 22 callbacks suppressed [ 3289.588931][ T24] audit: type=1326 audit(1721097185.324:143498): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=729 comm="syz.3.15195" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fdfbf0e0bd9 code=0x0 [ 3290.121512][ T749] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 3290.139364][ T749] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 3290.153380][ T749] F2FS-fs (loop4): invalid crc value [ 3290.160973][ T749] F2FS-fs (loop4): Found nat_bits in checkpoint [ 3290.198035][ T749] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 3290.204974][ T749] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 3290.219501][ T762] netlink: 'syz.3.15202': attribute type 6 has an invalid length. [ 3290.290929][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3290.304609][T18864] aiptek 3-1:17.0: Aiptek using 400 ms programming speed [ 3290.312894][T18864] input: Aiptek as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:17.0/input/input716 [ 3290.326387][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3290.338779][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3290.367363][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3290.439502][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3290.452107][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3290.942213][ T775] FAULT_INJECTION: forcing a failure. [ 3290.942213][ T775] name failslab, interval 1, probability 0, space 0, times 0 [ 3290.954636][ T775] CPU: 0 PID: 775 Comm: syz.0.15204 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3290.964323][ T775] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3290.974216][ T775] Call Trace: [ 3290.977350][ T775] dump_stack_lvl+0x1e2/0x24b [ 3290.981862][ T775] ? panic+0x812/0x812 [ 3290.985765][ T775] ? bfq_pos_tree_add_move+0x43b/0x43b [ 3290.991063][ T775] dump_stack+0x15/0x17 [ 3290.995138][ T775] should_fail+0x3c6/0x510 [ 3290.999393][ T775] ? alloc_fs_context+0x64/0x680 [ 3291.004164][ T775] __should_failslab+0xa4/0xe0 [ 3291.008765][ T775] should_failslab+0x9/0x20 [ 3291.013104][ T775] kmem_cache_alloc_trace+0x3a/0x2e0 [ 3291.018228][ T775] alloc_fs_context+0x64/0x680 [ 3291.022825][ T775] ? _raw_read_unlock+0x25/0x40 [ 3291.027509][ T775] ? get_fs_type+0x460/0x4e0 [ 3291.031939][ T775] fs_context_for_mount+0x24/0x30 [ 3291.036798][ T775] do_new_mount+0x15c/0xb30 [ 3291.041139][ T775] ? do_move_mount_old+0x160/0x160 [ 3291.046084][ T775] ? security_capable+0x87/0xb0 [ 3291.050779][ T775] ? ns_capable+0x89/0xe0 [ 3291.054936][ T775] path_mount+0x56f/0xcb0 [ 3291.059104][ T775] __se_sys_mount+0x2c4/0x3b0 [ 3291.063639][ T775] ? __x64_sys_mount+0xd0/0xd0 [ 3291.068222][ T775] ? __bpf_trace_sys_enter+0x62/0x70 [ 3291.073355][ T775] __x64_sys_mount+0xbf/0xd0 [ 3291.077775][ T775] do_syscall_64+0x34/0x70 [ 3291.082022][ T775] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3291.087749][ T775] RIP: 0033:0x7f241717cbd9 [ 3291.092006][ T775] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3291.111437][ T775] RSP: 002b:00007f24163bc048 EFLAGS: 00000246 ORIG_RAX: 00000000000000a5 [ 3291.119689][ T775] RAX: ffffffffffffffda RBX: 00007f241730b110 RCX: 00007f241717cbd9 [ 3291.127495][ T775] RDX: 0000000020000b80 RSI: 0000000020000040 RDI: 0000000000000000 [ 3291.135321][ T775] RBP: 00007f24163bc0a0 R08: 0000000000000000 R09: 0000000000000000 [ 3291.143117][ T775] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3291.150926][ T775] R13: 000000000000006e R14: 00007f241730b110 R15: 00007ffdbae47e88 [ 3291.574883][ T708] EXT4-fs (loop2): Ignoring removed orlov option [ 3291.581718][ T708] EXT4-fs (loop2): Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 3291.609463][ T708] EXT4-fs (loop2): mounted filesystem without journal. Opts: orlov,noquota,barrier=0x0000000000000002,jqfmt=vfsv1,block_validity,dioread_nolock,noquota,min_batch_time=0x0000000000000008,delalloc,user_xattr,quota,,errors=continue [ 3291.641916][ T780] EXT4-fs (loop0): Test dummy encryption mode enabled [ 3291.700178][ T780] EXT4-fs error (device loop0): ext4_find_inline_data_nolock:163: inode #12: comm syz.0.15205: inline data xattr refers to an external xattr inode [ 3291.731241][ T780] EXT4-fs error (device loop0): ext4_orphan_get:1396: comm syz.0.15205: couldn't read orphan inode 12 (err -117) [ 3291.756073][ T780] EXT4-fs (loop0): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 3291.829792][ T791] EXT4-fs (loop3): mounted filesystem without journal. Opts: ,errors=continue [ 3291.869924][ T791] ext4 filesystem being mounted at /111/file0 supports timestamps until 2038 (0x7fffffff) [ 3291.888595][ T804] SELinux: unrecognized netlink message: protocol=0 nlmsg_type=0 sclass=netlink_route_socket pid=804 comm=syz.2.15192 [ 3291.889990][ T800] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3291.917609][ T800] ext4 filesystem being mounted at /73/file0 supports timestamps until 2038 (0x7fffffff) [ 3292.007988][ T800] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3292.016495][ T800] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.15206: mark_inode_dirty error [ 3292.116998][ T24] audit: type=1326 audit(1721097187.844:143499): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=801 comm="syz.1.15211" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa1c1decbd9 code=0x0 [ 3292.365827][ T800] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3292.387431][ T800] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.15206: mark_inode_dirty error [ 3292.551174][ T287] usb 3-1: USB disconnect, device number 30 [ 3292.557066][ C1] aiptek 3-1:17.0: aiptek_irq - usb_submit_urb failed with result -19 [ 3292.790505][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3292.793228][ T827] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3292.811410][ T827] ext4 filesystem being mounted at /76/file0 supports timestamps until 2038 (0x7fffffff) [ 3292.828372][ T827] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3292.836776][ T827] EXT4-fs error (device loop4): ext4_dirty_inode:6079: inode #2: comm syz.4.15217: mark_inode_dirty error [ 3292.848699][ T827] EXT4-fs error (device loop4) in ext4_do_update_inode:5275: error 27 [ 3292.856889][ T827] EXT4-fs error (device loop4): __ext4_ext_dirty:182: inode #2: comm syz.4.15217: mark_inode_dirty error [ 3292.919852][ T829] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 3292.937155][ T829] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 3292.958620][ T829] F2FS-fs (loop0): invalid crc value [ 3292.998467][ T829] F2FS-fs (loop0): Found nat_bits in checkpoint [ 3293.059255][ T829] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 3293.068412][ T829] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 3293.086119][ T846] FAULT_INJECTION: forcing a failure. [ 3293.086119][ T846] name failslab, interval 1, probability 0, space 0, times 0 [ 3293.122916][ T846] CPU: 1 PID: 846 Comm: syz.3.15221 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3293.132640][ T846] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3293.142533][ T846] Call Trace: [ 3293.145664][ T846] dump_stack_lvl+0x1e2/0x24b [ 3293.150344][ T846] ? bfq_pos_tree_add_move+0x43b/0x43b [ 3293.155614][ T846] dump_stack+0x15/0x17 [ 3293.159603][ T846] should_fail+0x3c6/0x510 [ 3293.163855][ T846] ? __vmalloc_node_range+0x2a9/0x7c0 [ 3293.169060][ T846] __should_failslab+0xa4/0xe0 [ 3293.173657][ T846] should_failslab+0x9/0x20 [ 3293.178005][ T846] __kmalloc+0x60/0x330 [ 3293.181992][ T846] __vmalloc_node_range+0x2a9/0x7c0 [ 3293.187029][ T846] ? get_random_u64+0x5b0/0x5b0 [ 3293.191707][ T846] bpf_map_area_alloc+0xd9/0xf0 [ 3293.196391][ T846] ? prealloc_init+0x13b/0x7f0 [ 3293.200995][ T846] prealloc_init+0x13b/0x7f0 [ 3293.205421][ T846] ? __kmalloc+0x1aa/0x330 [ 3293.209675][ T846] htab_map_alloc+0x68d/0x950 [ 3293.214187][ T846] __se_sys_bpf+0x620f/0x11cb0 [ 3293.218784][ T846] ? stack_trace_save+0x113/0x1c0 [ 3293.223642][ T846] ? terminate_walk+0x407/0x4f0 [ 3293.228340][ T846] ? stack_trace_snprint+0xf0/0xf0 [ 3293.233280][ T846] ? kmem_cache_free+0xa9/0x1e0 [ 3293.237961][ T846] ? kmem_cache_free+0xa9/0x1e0 [ 3293.242648][ T846] ? kasan_set_track+0x5d/0x70 [ 3293.247338][ T846] ? kasan_set_track+0x4b/0x70 [ 3293.251936][ T846] ? kasan_set_free_info+0x23/0x40 [ 3293.256881][ T846] ? ____kasan_slab_free+0x121/0x160 [ 3293.262007][ T846] ? __kasan_slab_free+0x11/0x20 [ 3293.266776][ T846] ? __x64_sys_bpf+0x90/0x90 [ 3293.271204][ T846] ? do_sys_openat2+0x5e1/0x6f0 [ 3293.275890][ T846] ? __x64_sys_openat+0x243/0x290 [ 3293.280753][ T846] ? do_syscall_64+0x34/0x70 [ 3293.285178][ T846] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3293.291080][ T846] ? _kstrtoull+0x3a0/0x4a0 [ 3293.295420][ T846] ? kstrtouint_from_user+0x20a/0x2a0 [ 3293.300628][ T846] ? kstrtol_from_user+0x310/0x310 [ 3293.305573][ T846] ? memset+0x35/0x40 [ 3293.309392][ T846] ? __fsnotify_parent+0x4b9/0x6c0 [ 3293.314345][ T846] ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0 [ 3293.320935][ T846] ? proc_fail_nth_write+0x20b/0x290 [ 3293.326058][ T846] ? proc_fail_nth_read+0x210/0x210 [ 3293.331094][ T846] ? security_file_permission+0x86/0xb0 [ 3293.336473][ T846] ? rw_verify_area+0x1c3/0x360 [ 3293.341160][ T846] ? preempt_count_add+0x92/0x1a0 [ 3293.346017][ T846] ? vfs_write+0x854/0xe70 [ 3293.350277][ T846] ? kernel_write+0x3d0/0x3d0 [ 3293.354895][ T846] ? __kasan_check_write+0x14/0x20 [ 3293.359817][ T846] ? mutex_lock+0xa5/0x110 [ 3293.364079][ T846] ? strncpy_from_kernel_nofault+0x169/0x1e0 [ 3293.369892][ T846] ? bpf_probe_read_kernel_str+0x49/0x70 [ 3293.375358][ T846] ? bpf_trace_run2+0xf4/0x280 [ 3293.379959][ T846] ? __bpf_trace_sys_enter+0x62/0x70 [ 3293.385085][ T846] __x64_sys_bpf+0x7b/0x90 [ 3293.389333][ T846] do_syscall_64+0x34/0x70 [ 3293.393587][ T846] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3293.399314][ T846] RIP: 0033:0x7fdfbf0e0bd9 [ 3293.403675][ T846] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3293.423114][ T846] RSP: 002b:00007fdfbe362048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 3293.431357][ T846] RAX: ffffffffffffffda RBX: 00007fdfbf26ef60 RCX: 00007fdfbf0e0bd9 [ 3293.439166][ T846] RDX: 0000000000000048 RSI: 0000000020000840 RDI: 0000000000000000 [ 3293.446977][ T846] RBP: 00007fdfbe3620a0 R08: 0000000000000000 R09: 0000000000000000 [ 3293.454788][ T846] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3293.462604][ T846] R13: 000000000000000b R14: 00007fdfbf26ef60 R15: 00007ffcfbd84a48 [ 3293.857273][ T849] EXT4-fs (loop3): Ignoring removed orlov option [ 3293.881156][ T849] EXT4-fs (loop3): Test dummy encryption mode enabled [ 3293.909322][ T849] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 3293.937360][ T849] System zones: 1-12 [ 3293.957521][ T849] EXT4-fs error (device loop3): ext4_orphan_get:1391: inode #15: comm syz.3.15223: casefold flag without casefold feature [ 3293.985593][ T849] EXT4-fs error (device loop3): ext4_xattr_inode_iget:404: inode #12: comm syz.3.15223: missing EA_INODE flag [ 3294.037426][ T849] EXT4-fs error (device loop3): ext4_xattr_inode_iget:409: comm syz.3.15223: error while reading EA inode 12 err=-117 [ 3294.069039][ T382] print_req_error: 2 callbacks suppressed [ 3294.069059][ T382] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3294.088719][ T849] EXT4-fs (loop3): 1 orphan inode deleted [ 3294.094595][ T849] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 3294.116306][ T382] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3294.128473][ T856] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3294.147386][ T856] ext4 filesystem being mounted at /122/file0 supports timestamps until 2038 (0x7fffffff) [ 3294.157574][ T382] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3294.497685][ T873] device pim6reg1 entered promiscuous mode [ 3294.547096][T30423] usb 5-1: new high-speed USB device number 108 using dummy_hcd [ 3294.615806][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3294.628576][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3294.640840][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3294.689904][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3294.702539][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3294.714682][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3294.729675][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3294.742112][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3294.754661][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3294.787095][ T548] usb 4-1: new high-speed USB device number 24 using dummy_hcd [ 3295.179632][ T287] usb 1-1: new high-speed USB device number 10 using dummy_hcd [ 3295.180250][T30423] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3295.208592][T30423] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3295.223174][T30423] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 3295.235968][T30423] usb 5-1: New USB device found, idVendor=041e, idProduct=2801, bcdDevice= 0.10 [ 3295.244889][T30423] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3295.253356][T30423] usb 5-1: config 0 descriptor?? [ 3295.307146][ T548] usb 4-1: Using ep0 maxpacket: 32 [ 3295.427149][ T287] usb 1-1: Using ep0 maxpacket: 8 [ 3295.432116][ T548] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 3295.442046][ T548] usb 4-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3295.455076][ T548] usb 4-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 3295.464050][ T548] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3295.473475][ T548] usb 4-1: config 0 descriptor?? [ 3295.517852][ T548] hub 4-1:0.0: bad descriptor, ignoring hub [ 3295.523663][ T548] hub: probe of 4-1:0.0 failed with error -5 [ 3295.529781][ T548] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 3295.637209][ T287] usb 1-1: config 32 has an invalid interface number: 77 but max is 1 [ 3295.645317][ T287] usb 1-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3295.654641][ T287] usb 1-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 3295.663397][ T287] usb 1-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 3295.673363][ T287] usb 1-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 3295.683526][ T287] usb 1-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 3295.692419][ T287] usb 1-1: config 32 has no interface number 0 [ 3295.700492][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3295.711465][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3295.722270][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3295.733261][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3295.744285][ T287] usb 1-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3295.753482][ T869] device syzkaller0 entered promiscuous mode [ 3295.755019][ T287] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3295.772231][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3295.783410][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3295.794702][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3295.805860][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 3295.822065][ T287] usb 1-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 3295.835573][ T287] usb 1-1: config 32 interface 77 has no altsetting 0 [ 3295.847989][T30423] prodikeys 0003:041E:2801.01AA: unknown main item tag 0x0 [ 3295.855037][T30423] prodikeys 0003:041E:2801.01AA: unknown main item tag 0x0 [ 3295.862211][T30423] prodikeys 0003:041E:2801.01AA: unknown main item tag 0x0 [ 3295.869284][T30423] prodikeys 0003:041E:2801.01AA: unknown main item tag 0x0 [ 3295.876329][T30423] prodikeys 0003:041E:2801.01AA: unknown main item tag 0x0 [ 3295.883966][T30423] prodikeys 0003:041E:2801.01AA: hidraw0: USB HID v0.00 Device [HID 041e:2801] on usb-dummy_hcd.4-1/input0 [ 3295.997337][ T287] usb 1-1: Dual-Role OTG device on HNP port [ 3296.091385][ T287] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3296.100448][ T287] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3296.108409][ T287] usb 1-1: Product: syz [ 3296.112594][ T287] usb 1-1: Manufacturer: syz [ 3296.114884][ T869] FAT-fs (loop4): Unrecognized mount option "uid=00000000000000000000IAcO [ 3296.114884][ T869] )Ld$' ڷ/IєL„3pe39" or missing value [ 3296.116998][ T287] usb 1-1: SerialNumber: syz [ 3296.244284][T30423] usb 5-1: USB disconnect, device number 108 [ 3296.324606][ T900] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 3296.334151][ T900] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 3296.344610][ T900] F2FS-fs (loop2): invalid crc value [ 3296.351453][ T900] F2FS-fs (loop2): Found nat_bits in checkpoint [ 3296.407449][ T900] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 3296.414544][ T900] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 3296.606972][ T287] usb 1-1: USB disconnect, device number 10 [ 3297.138765][ T927] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3297.147585][ T927] ext4 filesystem being mounted at /126/file0 supports timestamps until 2038 (0x7fffffff) [ 3297.161964][ T927] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3297.170333][ T927] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.15242: mark_inode_dirty error [ 3297.186071][ T927] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3297.195126][ T927] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.15242: mark_inode_dirty error [ 3297.206656][T18864] usb 4-1: reset high-speed USB device number 24 using dummy_hcd [ 3297.220897][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3297.253766][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3297.276028][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3297.303368][T18864] usb 4-1: device reset changed ep0 maxpacket size! [ 3297.311078][T18864] usb 4-1: USB disconnect, device number 24 [ 3297.377153][ T287] usb 5-1: new high-speed USB device number 109 using dummy_hcd [ 3297.667367][T18864] usb 4-1: new high-speed USB device number 25 using dummy_hcd [ 3297.768078][ T287] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3297.785939][ T287] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3297.807186][ T287] usb 5-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 3297.816174][ T287] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3297.830610][ T287] usb 5-1: config 0 descriptor?? [ 3298.037254][T18864] usb 4-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 3298.084359][ T925] udc-core: couldn't find an available UDC or it's busy [ 3298.105419][ T925] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 3298.217228][T18864] usb 4-1: New USB device found, idVendor=07fd, idProduct=0001, bcdDevice=48.99 [ 3298.236356][T18864] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3298.244734][T18864] usb 4-1: Product: syz [ 3298.248936][T18864] usb 4-1: Manufacturer: syz [ 3298.253349][T18864] usb 4-1: SerialNumber: syz [ 3298.258469][T18864] usb 4-1: config 0 descriptor?? [ 3298.284153][ T925] EXT4-fs (loop4): Ignoring removed mblk_io_submit option [ 3298.293224][ T24] audit: type=1326 audit(1721097194.034:143500): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.317985][ T2792] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3298.332604][ T925] EXT4-fs error (device loop4): __ext4_iget:4958: inode #11: block 1: comm syz.4.15243: invalid block [ 3298.343693][ T24] audit: type=1326 audit(1721097194.054:143501): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.367896][ T24] audit: type=1326 audit(1721097194.054:143502): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.369254][ T925] EXT4-fs (loop4): Remounting filesystem read-only [ 3298.398611][ T925] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.15243: couldn't read orphan inode 11 (err -117) [ 3298.410512][ T925] EXT4-fs (loop4): mounted filesystem without journal. Opts: noauto_da_alloc,errors=continue,max_dir_size_kb=0x0000000000000009,data_err=abort,errors=remount-ro,noinit_itable,mblk_io_submit,i_version,acl, [ 3298.430777][ T24] audit: type=1326 audit(1721097194.054:143503): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.454199][ T24] audit: type=1326 audit(1721097194.054:143504): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.477505][ T24] audit: type=1326 audit(1721097194.054:143505): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.500896][ T24] audit: type=1326 audit(1721097194.054:143506): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.524565][ T24] audit: type=1326 audit(1721097194.054:143507): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.527269][T18864] snd-usb-audio: probe of 4-1:0.0 failed with error -2 [ 3298.557431][ T951] EXT4-fs (loop0): Ignoring removed orlov option [ 3298.563844][ T951] EXT4-fs (loop0): Test dummy encryption mode enabled [ 3298.583374][ T951] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 3298.583876][ T24] audit: type=1326 audit(1721097194.054:143508): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.614784][ T24] audit: type=1326 audit(1721097194.054:143509): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=947 comm="syz.2.15250" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3298.629506][T18864] usb 4-1: USB disconnect, device number 25 [ 3298.639181][ T951] System zones: 1-12 [ 3298.680144][ T951] EXT4-fs error (device loop0): ext4_orphan_get:1391: inode #15: comm syz.0.15249: casefold flag without casefold feature [ 3298.726222][ T951] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #12: comm syz.0.15249: missing EA_INODE flag [ 3298.740436][ T955] device pim6reg1 entered promiscuous mode [ 3298.747458][ T951] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.15249: error while reading EA inode 12 err=-117 [ 3298.761348][ T951] EXT4-fs (loop0): 1 orphan inode deleted [ 3298.767129][ T951] EXT4-fs (loop0): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 3299.180643][ T957] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 3299.189956][ T957] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 3299.214623][ T957] F2FS-fs (loop2): invalid crc value [ 3299.257076][T30423] usb 2-1: new high-speed USB device number 124 using dummy_hcd [ 3299.260836][ T957] F2FS-fs (loop2): Found nat_bits in checkpoint [ 3299.301300][ T957] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 3299.312324][ T957] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 3299.737151][T30423] usb 2-1: Using ep0 maxpacket: 32 [ 3299.867183][T30423] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 3299.877274][T30423] usb 2-1: config 0 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 3299.890621][T30423] usb 2-1: New USB device found, idVendor=046d, idProduct=c31c, bcdDevice= 0.40 [ 3299.900172][T30423] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3299.909618][ T989] FAULT_INJECTION: forcing a failure. [ 3299.909618][ T989] name failslab, interval 1, probability 0, space 0, times 0 [ 3299.912377][T30423] usb 2-1: config 0 descriptor?? [ 3299.922181][ T989] CPU: 1 PID: 989 Comm: syz.2.15259 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3299.922199][ T989] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3299.946622][ T989] Call Trace: [ 3299.949746][ T989] dump_stack_lvl+0x1e2/0x24b [ 3299.954293][ T989] ? bfq_pos_tree_add_move+0x43b/0x43b [ 3299.959562][ T989] dump_stack+0x15/0x17 [ 3299.962673][T30423] hub 2-1:0.0: bad descriptor, ignoring hub [ 3299.963568][ T989] should_fail+0x3c6/0x510 [ 3299.969433][T30423] hub: probe of 2-1:0.0 failed with error -5 [ 3299.973527][ T989] ? erspan_xmit+0x4c5/0x1690 [ 3299.973542][ T989] __should_failslab+0xa4/0xe0 [ 3299.973564][ T989] should_failslab+0x9/0x20 [ 3299.980572][T30423] usbhid 2-1:0.0: couldn't find an input interrupt endpoint [ 3299.983859][ T989] __kmalloc_track_caller+0x5f/0x320 [ 3299.983881][ T989] ? erspan_xmit+0x4c5/0x1690 [ 3300.009663][ T989] pskb_expand_head+0x12b/0x1180 [ 3300.014431][ T989] ? skb_crc32c_csum_help+0x510/0x510 [ 3300.019640][ T989] ? iptunnel_handle_offloads+0x2c4/0x540 [ 3300.025195][ T989] erspan_xmit+0x4c5/0x1690 [ 3300.029567][ T989] dev_hard_start_xmit+0x228/0x620 [ 3300.034483][ T989] sch_direct_xmit+0x292/0x9b0 [ 3300.039080][ T989] ? debug_smp_processor_id+0x17/0x20 [ 3300.044374][ T989] ? pfifo_fast_dequeue+0x781/0x2150 [ 3300.049582][ T989] ? stp_proto_unregister+0x200/0x200 [ 3300.054791][ T989] __qdisc_run+0xa85/0x1df0 [ 3300.059135][ T989] qdisc_run+0x121/0x330 [ 3300.063209][ T989] __dev_queue_xmit+0xcf0/0x28e0 [ 3300.067982][ T989] ? dev_queue_xmit+0x20/0x20 [ 3300.072494][ T989] ? slab_post_alloc_hook+0x80/0x2f0 [ 3300.077619][ T989] ? __kasan_check_write+0x14/0x20 [ 3300.082559][ T989] ? skb_release_data+0x406/0x6f0 [ 3300.087434][ T989] ? __kasan_check_write+0x14/0x20 [ 3300.092368][ T989] ? pskb_expand_head+0xbcf/0x1180 [ 3300.097332][ T989] dev_queue_xmit+0x17/0x20 [ 3300.101656][ T989] __bpf_redirect+0x9a4/0xde0 [ 3300.106170][ T989] ? skb_ensure_writable+0x2d0/0x440 [ 3300.111291][ T989] bpf_clone_redirect+0x24d/0x390 [ 3300.116151][ T989] bpf_prog_03df864d99f4a1cb+0x56/0x7a4 [ 3300.121532][ T989] ? __kasan_slab_alloc+0xc3/0xe0 [ 3300.126392][ T989] ? __kasan_slab_alloc+0xb1/0xe0 [ 3300.131251][ T989] ? slab_post_alloc_hook+0x61/0x2f0 [ 3300.136390][ T989] ? kmem_cache_alloc+0x168/0x2e0 [ 3300.141333][ T989] ? __build_skb+0x2a/0x300 [ 3300.145678][ T989] ? build_skb+0x25/0x1e0 [ 3300.149927][ T989] ? bpf_prog_test_run_skb+0x388/0x1410 [ 3300.155398][ T989] ? __se_sys_bpf+0x5235/0x11cb0 [ 3300.160167][ T989] ? __x64_sys_bpf+0x7b/0x90 [ 3300.164593][ T989] ? do_syscall_64+0x34/0x70 [ 3300.169028][ T989] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3300.174930][ T989] ? bpf_test_run+0xde/0xc20 [ 3300.179352][ T989] ? ktime_get+0x10e/0x140 [ 3300.183599][ T989] bpf_test_run+0x40b/0xc20 [ 3300.187939][ T989] ? convert___skb_to_skb+0x570/0x570 [ 3300.193145][ T989] ? eth_type_trans+0x2e4/0x620 [ 3300.197976][ T989] ? eth_get_headlen+0x240/0x240 [ 3300.202806][ T989] ? convert___skb_to_skb+0x44/0x570 [ 3300.207914][ T989] bpf_prog_test_run_skb+0xb6e/0x1410 [ 3300.213128][ T989] ? __bpf_prog_test_run_raw_tp+0x240/0x240 [ 3300.218854][ T989] ? __kasan_check_write+0x14/0x20 [ 3300.223807][ T989] ? fput_many+0x160/0x1b0 [ 3300.228058][ T989] ? __bpf_prog_test_run_raw_tp+0x240/0x240 [ 3300.233779][ T989] __se_sys_bpf+0x5235/0x11cb0 [ 3300.238384][ T989] ? stack_trace_save+0x113/0x1c0 [ 3300.243241][ T989] ? terminate_walk+0x407/0x4f0 [ 3300.248123][ T989] ? stack_trace_snprint+0xf0/0xf0 [ 3300.253095][ T989] ? kmem_cache_free+0xa9/0x1e0 [ 3300.257769][ T989] ? kmem_cache_free+0xa9/0x1e0 [ 3300.262618][ T989] ? kasan_set_track+0x5d/0x70 [ 3300.267218][ T989] ? kasan_set_track+0x4b/0x70 [ 3300.271818][ T989] ? kasan_set_free_info+0x23/0x40 [ 3300.276853][ T989] ? ____kasan_slab_free+0x121/0x160 [ 3300.281970][ T989] ? __kasan_slab_free+0x11/0x20 [ 3300.286749][ T989] ? __x64_sys_bpf+0x90/0x90 [ 3300.291190][ T989] ? do_sys_openat2+0x5e1/0x6f0 [ 3300.295859][ T989] ? __x64_sys_openat+0x243/0x290 [ 3300.300719][ T989] ? do_syscall_64+0x34/0x70 [ 3300.305149][ T989] ? entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3300.311052][ T989] ? _kstrtoull+0x3a0/0x4a0 [ 3300.315395][ T989] ? kstrtouint_from_user+0x20a/0x2a0 [ 3300.320592][ T989] ? kstrtol_from_user+0x310/0x310 [ 3300.325541][ T989] ? memset+0x35/0x40 [ 3300.329360][ T989] ? __fsnotify_parent+0x4b9/0x6c0 [ 3300.334312][ T989] ? __fsnotify_update_child_dentry_flags+0x2b0/0x2b0 [ 3300.340903][ T989] ? proc_fail_nth_write+0x20b/0x290 [ 3300.346024][ T989] ? proc_fail_nth_read+0x210/0x210 [ 3300.351064][ T989] ? security_file_permission+0x86/0xb0 [ 3300.356443][ T989] ? rw_verify_area+0x1c3/0x360 [ 3300.361129][ T989] ? slab_free_freelist_hook+0xc0/0x190 [ 3300.366508][ T989] ? preempt_count_add+0x92/0x1a0 [ 3300.371367][ T989] ? vfs_write+0x854/0xe70 [ 3300.375622][ T989] ? kernel_write+0x3d0/0x3d0 [ 3300.380254][ T989] ? __kasan_check_write+0x14/0x20 [ 3300.385220][ T989] ? mutex_lock+0xa5/0x110 [ 3300.389453][ T989] ? strncpy_from_kernel_nofault+0x169/0x1e0 [ 3300.395271][ T989] ? bpf_probe_read_kernel_str+0x49/0x70 [ 3300.401000][ T989] ? bpf_trace_run2+0xf4/0x280 [ 3300.405594][ T989] ? __bpf_trace_sys_enter+0x62/0x70 [ 3300.410797][ T989] __x64_sys_bpf+0x7b/0x90 [ 3300.415149][ T989] do_syscall_64+0x34/0x70 [ 3300.419394][ T989] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3300.425120][ T989] RIP: 0033:0x7fb1ded18bd9 [ 3300.429368][ T989] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3300.448898][ T989] RSP: 002b:00007fb1ddf9a048 EFLAGS: 00000246 ORIG_RAX: 0000000000000141 [ 3300.457148][ T989] RAX: ffffffffffffffda RBX: 00007fb1deea6f60 RCX: 00007fb1ded18bd9 [ 3300.464981][ T989] RDX: 000000000000002c RSI: 0000000020000080 RDI: 000000000000000a [ 3300.472766][ T989] RBP: 00007fb1ddf9a0a0 R08: 0000000000000000 R09: 0000000000000000 [ 3300.480576][ T989] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3300.488390][ T989] R13: 000000000000000b R14: 00007fb1deea6f60 R15: 00007ffd9d433788 [ 3300.566328][ T2792] print_req_error: 2 callbacks suppressed [ 3300.566346][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3300.584653][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3300.596798][ T2792] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3300.606045][ T287] usbhid 5-1:0.0: can't add hid device: -71 [ 3300.612542][ T287] usbhid: probe of 5-1:0.0 failed with error -71 [ 3300.619898][ T287] usb 5-1: USB disconnect, device number 109 [ 3300.688285][ T1003] EXT4-fs (loop4): Ignoring removed orlov option [ 3300.695033][ T1003] EXT4-fs (loop4): Test dummy encryption mode enabled [ 3300.702588][ T1003] [EXT4 FS bs=1024, gc=1, bpg=8192, ipg=32, mo=a014e09c, mo2=0002] [ 3300.711928][ T1003] System zones: 1-12 [ 3300.716369][ T1003] EXT4-fs error (device loop4): ext4_orphan_get:1391: inode #15: comm syz.4.15264: casefold flag without casefold feature [ 3300.729525][ T1003] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.15264: missing EA_INODE flag [ 3300.741316][ T1003] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.15264: error while reading EA inode 12 err=-117 [ 3300.753746][ T1003] EXT4-fs (loop4): 1 orphan inode deleted [ 3300.759334][ T1003] EXT4-fs (loop4): mounted filesystem without journal. Opts: orlov,minixdf,max_dir_size_kb=0x0000000000009c7c,debug,grpquota,errors=continue,test_dummy_encryption,auto_da_alloc,nodiscard,,errors=continue [ 3300.807094][T30423] usb 3-1: new high-speed USB device number 31 using dummy_hcd [ 3301.167200][T30423] usb 3-1: config index 0 descriptor too short (expected 146, got 18) [ 3301.175402][ T1011] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 3301.184221][ T1011] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 3301.197713][ T1011] F2FS-fs (loop4): invalid crc value [ 3301.206424][ T1011] F2FS-fs (loop4): Found nat_bits in checkpoint [ 3301.251433][ T1011] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 3301.258746][ T1011] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 3301.337177][T30423] usb 3-1: New USB device found, idVendor=066b, idProduct=20f9, bcdDevice=ff.94 [ 3301.356811][T30423] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3301.365099][T30423] usb 3-1: Product: syz [ 3301.369340][T30423] usb 3-1: Manufacturer: syz [ 3301.373793][T30423] usb 3-1: SerialNumber: syz [ 3301.379099][T30426] usb 2-1: USB disconnect, device number 124 [ 3301.390277][T30423] usb 3-1: config 0 descriptor?? [ 3301.700653][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3301.714845][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3301.728228][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3302.298861][ T287] usb 1-1: new high-speed USB device number 11 using dummy_hcd [ 3302.537158][ T287] usb 1-1: Using ep0 maxpacket: 8 [ 3302.587656][ T287] usb 1-1: too many configurations: 39, using maximum allowed: 8 [ 3302.724687][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3302.781682][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3302.880853][ T1075] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 3302.892131][ T1075] EXT4-fs (loop3): 1 truncate cleaned up [ 3302.898298][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3302.908354][ T1075] EXT4-fs (loop3): mounted filesystem without journal. Opts: init_itable,resuid=0x0000000000000000,stripe=0x0000000000000000,,errors=continue [ 3302.908382][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.047184][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3303.069209][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.167130][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3303.177171][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.179598][ T1102] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3303.257139][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3303.267826][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.331108][ T1110] EXT4-fs (loop3): Ignoring removed orlov option [ 3303.349007][ T1110] EXT4-fs (loop3): mounted filesystem without journal. Opts: orlov,errors=remount-ro, [ 3303.367223][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3303.382124][ T24] kauditd_printk_skb: 109 callbacks suppressed [ 3303.382141][ T24] audit: type=1326 audit(1721097199.114:143619): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1101 comm="syz.4.15297" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcaf2876bd9 code=0x0 [ 3303.449781][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.537800][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3303.548625][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.667333][ T287] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3303.778626][T30423] asix 3-1:0.0 (unnamed net_device) (uninitialized): Failed to read reg index 0x0000: -71 [ 3303.788629][T30423] asix: probe of 3-1:0.0 failed with error -71 [ 3303.795484][T30423] usb 3-1: USB disconnect, device number 31 [ 3303.806739][ T287] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3303.822847][ T24] audit: type=1326 audit(1721097199.554:143620): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.849163][ T24] audit: type=1326 audit(1721097199.584:143621): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.878063][ T24] audit: type=1326 audit(1721097199.584:143622): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.904343][ T24] audit: type=1326 audit(1721097199.584:143623): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.928020][ T24] audit: type=1326 audit(1721097199.584:143624): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.951842][ T24] audit: type=1326 audit(1721097199.584:143625): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.975580][ T24] audit: type=1326 audit(1721097199.584:143626): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3303.999527][ T24] audit: type=1326 audit(1721097199.584:143627): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1119 comm="syz.2.15300" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3304.026912][ T24] audit: type=1326 audit(1721097199.694:143628): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1125 comm="syz.2.15303" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3304.027369][ T287] usb 1-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 3304.157057][ T287] usb 1-1: New USB device strings: Mfr=137, Product=106, SerialNumber=129 [ 3304.165377][ T287] usb 1-1: Product: syz [ 3304.197165][ T287] usb 1-1: Manufacturer: syz [ 3304.201666][ T287] usb 1-1: SerialNumber: syz [ 3304.817092][ T287] usb 5-1: new high-speed USB device number 110 using dummy_hcd [ 3304.969724][ T1146] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 3304.985664][ T1146] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 3305.007177][ T1146] F2FS-fs (loop3): invalid crc value [ 3305.021741][ T1146] F2FS-fs (loop3): Found nat_bits in checkpoint [ 3305.057720][ T1152] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3305.070245][ T1152] ext4 filesystem being mounted at /140/file0 supports timestamps until 2038 (0x7fffffff) [ 3305.080053][ T1146] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 3305.080067][ T1146] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 3305.118359][ T1152] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3305.126712][ T1152] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.15311: mark_inode_dirty error [ 3305.138520][ T1152] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3305.157412][ T1152] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.15311: mark_inode_dirty error [ 3305.247930][ T287] usb 5-1: too many configurations: 253, using maximum allowed: 8 [ 3305.866624][T30423] usb 1-1: USB disconnect, device number 11 [ 3305.968460][ T1175] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 3306.007127][T30426] usb 2-1: new high-speed USB device number 125 using dummy_hcd [ 3306.013903][ T287] usb 5-1: unable to read config index 0 descriptor/start: -61 [ 3306.022292][ T287] usb 5-1: can't read configurations, error -61 [ 3306.177779][ T287] usb 5-1: new high-speed USB device number 111 using dummy_hcd [ 3306.247061][T30426] usb 2-1: Using ep0 maxpacket: 8 [ 3306.347063][T10798] usb 3-1: new high-speed USB device number 32 using dummy_hcd [ 3306.427170][T30423] usb 4-1: new high-speed USB device number 26 using dummy_hcd [ 3306.447223][T30426] usb 2-1: config 32 has an invalid interface number: 77 but max is 1 [ 3306.455207][T30426] usb 2-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3306.464121][T30426] usb 2-1: config 32 has no interface number 1 [ 3306.467185][ T287] usb 5-1: too many configurations: 253, using maximum allowed: 8 [ 3306.470465][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3306.488960][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3306.499731][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3306.510574][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3306.521341][T30426] usb 2-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3306.531923][T30426] usb 2-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3306.542524][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3306.553501][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3306.564472][T30426] usb 2-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3306.575306][T30426] usb 2-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0xB, skipping [ 3306.585932][T30426] usb 2-1: config 32 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 3306.596219][T30426] usb 2-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x4, skipping [ 3306.606644][T30426] usb 2-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping [ 3306.607209][ T287] usb 5-1: unable to read config index 0 descriptor/start: -61 [ 3306.617125][T30426] usb 2-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xE, skipping [ 3306.624615][ T287] usb 5-1: can't read configurations, error -61 [ 3306.635252][T30426] usb 2-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x7, skipping [ 3306.641350][ T287] usb usb5-port1: attempt power cycle [ 3306.651731][T30426] usb 2-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x5, skipping [ 3306.667203][T30426] usb 2-1: config 32 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 3306.677512][T30423] usb 4-1: Using ep0 maxpacket: 16 [ 3306.682430][T30426] usb 2-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping [ 3306.693012][T30426] usb 2-1: config 32 interface 77 has no altsetting 0 [ 3306.737155][T10798] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3306.748479][T10798] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3306.758372][T10798] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 3306.767455][T10798] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3306.776303][T10798] usb 3-1: config 0 descriptor?? [ 3306.797725][T30423] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 3306.808985][T30423] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 3306.820270][T30423] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 3306.840319][T30423] usb 4-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00 [ 3306.849414][T30423] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3306.857917][T30426] usb 2-1: Dual-Role OTG device on HNP port [ 3306.864746][T30423] usb 4-1: config 0 descriptor?? [ 3306.877220][T30426] usb 2-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3306.886488][T30426] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3306.895705][T30426] usb 2-1: Product: syz [ 3306.900307][T30426] usb 2-1: Manufacturer: syz [ 3306.904161][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3306.905264][T30426] usb 2-1: SerialNumber: syz [ 3306.917607][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3306.937806][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3306.998877][ T1199] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 3307.057536][ T287] usb 5-1: new high-speed USB device number 112 using dummy_hcd [ 3307.187208][ T287] usb 5-1: too many configurations: 253, using maximum allowed: 8 [ 3307.340667][T30426] usb 2-1: USB disconnect, device number 125 [ 3307.359131][T30423] ryos 0003:1E7D:31CE.01AC: unknown main item tag 0x0 [ 3307.371462][T30423] ryos 0003:1E7D:31CE.01AC: item fetching failed at offset 7/11 [ 3307.377172][ T287] usb 5-1: unable to read config index 0 descriptor/start: -71 [ 3307.380419][T30423] ryos 0003:1E7D:31CE.01AC: parse failed [ 3307.396281][ T287] usb 5-1: can't read configurations, error -71 [ 3307.397173][T30423] ryos: probe of 0003:1E7D:31CE.01AC failed with error -22 [ 3307.560444][T30420] usb 4-1: USB disconnect, device number 26 [ 3307.807176][T10798] uclogic 0003:256C:006D.01AB: failed retrieving Huion firmware version: -71 [ 3307.825999][T10798] uclogic 0003:256C:006D.01AB: failed probing parameters: -71 [ 3307.836139][T10798] uclogic: probe of 0003:256C:006D.01AB failed with error -71 [ 3307.868672][T10798] usb 3-1: USB disconnect, device number 32 [ 3308.417085][ T548] usb 2-1: new high-speed USB device number 126 using dummy_hcd [ 3308.436484][ T1222] netlink: 'syz.2.15329': attribute type 15 has an invalid length. [ 3308.447445][ T1222] netlink: 24 bytes leftover after parsing attributes in process `syz.2.15329'. [ 3308.498745][ T1228] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3308.534912][ T1217] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 3308.542888][ T1217] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 3308.556407][ T1217] F2FS-fs (loop0): invalid crc value [ 3308.588008][ T1217] F2FS-fs (loop0): Found nat_bits in checkpoint [ 3308.657062][ T548] usb 2-1: Using ep0 maxpacket: 8 [ 3308.692954][ T1217] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 3308.697290][ T548] usb 2-1: too many configurations: 39, using maximum allowed: 8 [ 3308.707240][ T1217] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 3308.718417][ T24] kauditd_printk_skb: 28 callbacks suppressed [ 3308.718432][ T24] audit: type=1326 audit(1721097204.454:143657): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1241 comm="syz.2.15334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3308.787227][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3308.803301][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3308.812745][ T24] audit: type=1326 audit(1721097204.464:143658): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1241 comm="syz.2.15334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=248 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3308.891263][ T24] audit: type=1326 audit(1721097204.464:143659): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1241 comm="syz.2.15334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3308.933689][ T24] audit: type=1326 audit(1721097204.464:143660): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1241 comm="syz.2.15334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=250 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3308.987424][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.054447][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3309.219739][ T24] audit: type=1326 audit(1721097204.464:143661): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1241 comm="syz.2.15334" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3309.247125][ T24] audit: type=1326 audit(1721097204.494:143662): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1227 comm="syz.4.15331" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fcaf2876bd9 code=0x0 [ 3309.277156][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.293623][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3309.378618][ T1253] syz.3.15333[1253] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 3309.378697][ T1253] syz.3.15333[1253] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 3309.397190][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.437188][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3309.456967][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3309.487142][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3309.507246][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3309.527255][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.543057][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3309.577508][T30426] usb 3-1: new high-speed USB device number 33 using dummy_hcd [ 3309.637167][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.659760][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3309.757164][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.776716][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3309.787201][T30423] usb 1-1: new high-speed USB device number 12 using dummy_hcd [ 3309.867149][ T548] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3309.887186][T30426] usb 3-1: too many configurations: 253, using maximum allowed: 8 [ 3309.887715][ T548] usb 2-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 3310.007203][T30426] usb 3-1: unable to read config index 0 descriptor/start: -61 [ 3310.014750][T30426] usb 3-1: can't read configurations, error -61 [ 3310.027130][T30423] usb 1-1: Using ep0 maxpacket: 8 [ 3310.057189][ T548] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 3310.066087][ T548] usb 2-1: New USB device strings: Mfr=137, Product=106, SerialNumber=129 [ 3310.074551][ T548] usb 2-1: Product: syz [ 3310.078668][ T548] usb 2-1: Manufacturer: syz [ 3310.083158][ T548] usb 2-1: SerialNumber: syz [ 3310.147149][T30421] usb 4-1: new high-speed USB device number 27 using dummy_hcd [ 3310.167267][T30426] usb 3-1: new high-speed USB device number 34 using dummy_hcd [ 3310.247175][T30423] usb 1-1: config 32 has an invalid interface number: 77 but max is 1 [ 3310.255228][T30423] usb 1-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3310.263993][T30423] usb 1-1: config 32 has no interface number 1 [ 3310.270326][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3310.281133][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3310.292026][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3310.302983][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3310.313848][T30423] usb 1-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3310.324338][T30423] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3310.354697][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3310.365674][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3310.376633][T30423] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3310.387684][T30423] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0xB, skipping [ 3310.398490][T30421] usb 4-1: Using ep0 maxpacket: 32 [ 3310.403458][T30423] usb 1-1: config 32 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 3310.413777][T30423] usb 1-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x4, skipping [ 3310.424285][T30423] usb 1-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping [ 3310.435037][T30423] usb 1-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xE, skipping [ 3310.445592][T30423] usb 1-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x7, skipping [ 3310.456068][T30423] usb 1-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x5, skipping [ 3310.466729][T30426] usb 3-1: too many configurations: 253, using maximum allowed: 8 [ 3310.474433][T30423] usb 1-1: config 32 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 3310.484939][T30423] usb 1-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping [ 3310.524885][T30421] usb 4-1: New USB device found, idVendor=05ac, idProduct=023f, bcdDevice=e0.d8 [ 3310.536508][T30423] usb 1-1: config 32 interface 77 has no altsetting 0 [ 3310.543191][T30421] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3310.552872][T30421] usb 4-1: config 0 descriptor?? [ 3310.597993][T30421] usbhid 4-1:0.0: couldn't find an input interrupt endpoint [ 3310.607197][T30426] usb 3-1: unable to read config index 0 descriptor/start: -61 [ 3310.614587][T30426] usb 3-1: can't read configurations, error -61 [ 3310.624894][T30426] usb usb3-port1: attempt power cycle [ 3310.707195][T30423] usb 1-1: Dual-Role OTG device on HNP port [ 3310.727148][T30423] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3310.736109][T30423] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3310.744119][T30423] usb 1-1: Product: syz [ 3310.748514][T30423] usb 1-1: Manufacturer: syz [ 3310.752929][T30423] usb 1-1: SerialNumber: syz [ 3311.037146][T30426] usb 3-1: new high-speed USB device number 35 using dummy_hcd [ 3311.077170][T14633] usb 5-1: new high-speed USB device number 114 using dummy_hcd [ 3311.139096][T30423] usb 1-1: USB disconnect, device number 12 [ 3311.167179][T30426] usb 3-1: too many configurations: 253, using maximum allowed: 8 [ 3311.287605][T30426] usb 3-1: unable to read config index 0 descriptor/start: -61 [ 3311.295098][T30426] usb 3-1: can't read configurations, error -61 [ 3311.317109][T14633] usb 5-1: Using ep0 maxpacket: 8 [ 3311.389303][T28475] usb 2-1: USB disconnect, device number 126 [ 3311.447232][T30426] usb 3-1: new high-speed USB device number 36 using dummy_hcd [ 3311.517169][T14633] usb 5-1: config 32 has an invalid interface number: 77 but max is 1 [ 3311.525265][T14633] usb 5-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3311.534203][T14633] usb 5-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 3311.543171][T14633] usb 5-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 3311.553322][T14633] usb 5-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 3311.564031][T14633] usb 5-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 3311.573047][T14633] usb 5-1: config 32 has no interface number 0 [ 3311.579411][T30426] usb 3-1: too many configurations: 253, using maximum allowed: 8 [ 3311.588742][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3311.600057][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3311.611170][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3311.622910][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3311.634109][T14633] usb 5-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3311.648114][T14633] usb 5-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3311.659696][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3311.671075][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3311.682320][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3311.702448][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3311.714872][T14633] usb 5-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 3311.726192][T14633] usb 5-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 3311.739790][T30426] usb 3-1: unable to read config index 0 descriptor/start: -61 [ 3311.747372][T30426] usb 3-1: can't read configurations, error -61 [ 3311.753942][T30426] usb usb3-port1: unable to enumerate USB device [ 3311.754684][ T1289] EXT4-fs (loop0): mounted filesystem without journal. Opts: ,errors=continue [ 3311.760658][T14633] usb 5-1: config 32 interface 77 has no altsetting 0 [ 3311.861513][T28475] usb 4-1: USB disconnect, device number 27 [ 3311.927165][T14633] usb 5-1: Dual-Role OTG device on HNP port [ 3311.947137][T14633] usb 5-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3311.956061][T14633] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3311.964218][T14633] usb 5-1: Product: syz [ 3311.968231][T14633] usb 5-1: Manufacturer: syz [ 3311.972978][T14633] usb 5-1: SerialNumber: syz [ 3311.995700][ T24] audit: type=1326 audit(1721097207.724:143663): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1288 comm="syz.0.15347" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f241717cbd9 code=0x0 [ 3312.394977][ T1313] 9pnet: Insufficient options for proto=fd [ 3312.402780][ T1313] 9pnet: Insufficient options for proto=fd [ 3312.737292][T30423] usb 4-1: new high-speed USB device number 28 using dummy_hcd [ 3312.751077][T14633] usb 5-1: USB disconnect, device number 114 [ 3312.760023][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3312.775020][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3312.787384][ T2792] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3312.990933][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3313.003489][T30423] usb 4-1: Using ep0 maxpacket: 8 [ 3313.013907][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3313.026398][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3313.045266][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3313.058169][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3313.073347][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3313.217746][T30423] usb 4-1: config 32 has an invalid interface number: 77 but max is 1 [ 3313.225763][T30423] usb 4-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3313.264315][T30423] usb 4-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 3313.284529][T30423] usb 4-1: config 32 has an invalid descriptor of length 143, skipping remainder of the config [ 3313.307239][T30423] usb 4-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 3313.317112][T30423] usb 4-1: config 32 has no interface number 0 [ 3313.334280][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3313.345592][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3313.356714][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3313.367772][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3313.379120][T30423] usb 4-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3313.389984][T30423] usb 4-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3313.400785][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3313.411892][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3313.422944][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3313.434090][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 3313.445295][T30423] usb 4-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 3313.458619][T30423] usb 4-1: config 32 interface 77 has no altsetting 0 [ 3313.466058][ T1337] EXT4-fs (loop4): Test dummy encryption mode enabled [ 3313.474079][ T1337] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:163: inode #12: comm syz.4.15361: inline data xattr refers to an external xattr inode [ 3313.489333][ T1337] EXT4-fs error (device loop4): ext4_orphan_get:1396: comm syz.4.15361: couldn't read orphan inode 12 (err -117) [ 3313.501403][ T1337] EXT4-fs (loop4): mounted filesystem without journal. Opts: inode_readahead_blks=0x0000000000040000,init_itable=0x0000000000000000,nolazytime,grpid,prjquota,usrjquota=,lazytime,errors=continue,errors=continue,test_dummy_encryption,,errors=continue [ 3313.620505][T30423] usb 4-1: Dual-Role OTG device on HNP port [ 3313.676596][T30423] usb 4-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3313.695947][T30423] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3313.713955][T30423] usb 4-1: Product: syz [ 3313.718296][T30423] usb 4-1: Manufacturer: syz [ 3313.722696][T30423] usb 4-1: SerialNumber: syz [ 3313.747097][T14633] usb 1-1: new high-speed USB device number 13 using dummy_hcd [ 3313.889051][ T1350] EXT4-fs (loop2): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 3314.027233][T14633] usb 1-1: too many configurations: 253, using maximum allowed: 8 [ 3314.454937][T30420] usb 5-1: new high-speed USB device number 115 using dummy_hcd [ 3314.488745][T14633] usb 1-1: unable to read config index 0 descriptor/start: -61 [ 3314.496153][T14633] usb 1-1: can't read configurations, error -61 [ 3314.512857][T30423] usb 4-1: USB disconnect, device number 28 [ 3314.522566][ T1366] udc-core: couldn't find an available UDC or it's busy [ 3314.547521][ T1366] misc raw-gadget: fail, usb_gadget_probe_driver returned -16 [ 3314.693356][T14633] usb 1-1: new high-speed USB device number 14 using dummy_hcd [ 3314.701130][T14480] EXT4-fs error (device loop2): ext4_mb_generate_buddy:808: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 3314.737116][T30420] usb 5-1: Using ep0 maxpacket: 32 [ 3314.746194][T14480] EXT4-fs (loop2): Remounting filesystem read-only [ 3314.817232][T10798] usb 2-1: new high-speed USB device number 127 using dummy_hcd [ 3314.830627][ T1374] input: syz0 as /devices/virtual/input/input717 [ 3314.857155][T30420] usb 5-1: New USB device found, idVendor=05ac, idProduct=023f, bcdDevice=e0.d8 [ 3314.873756][T30420] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 3314.910906][T30420] usb 5-1: config 0 descriptor?? [ 3314.957727][T30420] usbhid 5-1:0.0: couldn't find an input interrupt endpoint [ 3314.987201][T14633] usb 1-1: too many configurations: 253, using maximum allowed: 8 [ 3314.999952][ T1380] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3315.028232][ T1380] ext4 filesystem being mounted at /155/file0 supports timestamps until 2038 (0x7fffffff) [ 3315.057529][T30423] usb 4-1: new high-speed USB device number 29 using dummy_hcd [ 3315.077069][T10798] usb 2-1: Using ep0 maxpacket: 16 [ 3315.088081][ T1380] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3315.117129][T14633] usb 1-1: unable to read config index 0 descriptor/start: -61 [ 3315.129960][T14633] usb 1-1: can't read configurations, error -61 [ 3315.139315][ T1380] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.15373: mark_inode_dirty error [ 3315.167704][T14633] usb usb1-port1: attempt power cycle [ 3315.196193][ T1380] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3315.230736][ T1380] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.15373: mark_inode_dirty error [ 3315.287159][T10798] usb 2-1: config 1 has an invalid interface descriptor of length 2, skipping [ 3315.307072][T30423] usb 4-1: Using ep0 maxpacket: 8 [ 3315.368108][T10798] usb 2-1: config 1 contains an unexpected descriptor of type 0x2, skipping [ 3315.377002][T10798] usb 2-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 3315.387000][T10798] usb 2-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 3315.647198][T10798] usb 2-1: language id specifier not provided by device, defaulting to English [ 3315.777107][T30423] usb 4-1: config 32 has an invalid interface number: 77 but max is 1 [ 3315.787072][T14633] usb 1-1: new high-speed USB device number 15 using dummy_hcd [ 3315.796666][T30423] usb 4-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3315.833982][T30423] usb 4-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 3315.847205][T10798] usb 2-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 3315.860571][T10798] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3315.877373][T30423] usb 4-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 3315.878772][T10798] usb 2-1: Product: ф [ 3315.908310][T10798] usb 2-1: Manufacturer: 뾫苝㗼榢䷻䲻䗮≽劝ࢴ㳙①舔⊇⃞ꃸ䡾䁢ꋢๆ瀖꣣贓ࠗ쵒籈겒硤뻯橲᤮❿ခ⩳䉼휤녦䬸쫉╾㘶됺ẩُ躭感盅謱驑꟬闆௼㭒햨⬈垚搊젛ఏ〟ᬡ槲밄ꨪⰉꋘ錸偳봃ᝤ㺜燆雹믈쀔著ૻ [ 3315.917088][T30423] usb 4-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 3315.945407][T14633] usb 1-1: too many configurations: 253, using maximum allowed: 8 [ 3315.971254][T10798] usb 2-1: SerialNumber: 㛚幕㿋獠뺯儲ሑ㵯不ᓐ썒뾝憉噋퓦ܼ桛೘䣸ۉ௥ὄ羭ӕꋡ繏༪鬣ᄭ侩왋䞀쨱᤮벰ȶ쵇ᝨ᫠㠶ࡨ㺂摈쐈ﰑ୩⋻簕뫼쀁䥛랿཈䄈ꦮ᷐꼐鷦턕⾥邮ꢽ뭬泚飹㎬똫✶멸㵗<꩞縖❊皉亮䰍ῼ襁崈쨒䊤탺逘ꈇ굋ᐲꚮ徰嶣碓때셇㺎괘渿홢㗸렪ꑉ䀴싳Ꞻ詙㙻穇캹鐱⯕⃫쐟 [ 3316.027051][T30423] usb 4-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 3316.035834][T30423] usb 4-1: config 32 has no interface number 0 [ 3316.067076][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3316.107081][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3316.137141][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3316.157179][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3316.168587][T30423] usb 4-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3316.179361][T14633] usb 1-1: unable to read config index 0 descriptor/start: -71 [ 3316.187126][T30423] usb 4-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3316.197998][T14633] usb 1-1: can't read configurations, error -71 [ 3316.204385][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3316.215518][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3316.226686][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3316.237918][T30423] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 3316.266291][T30423] usb 4-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 3316.305577][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3316.330017][T30423] usb 4-1: config 32 interface 77 has no altsetting 0 [ 3316.337056][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3316.350254][T25653] usb 5-1: USB disconnect, device number 115 [ 3316.356675][ T2792] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3316.477156][T10798] usb 2-1: 0:2 : does not exist [ 3316.483964][T10798] usb 2-1: USB disconnect, device number 127 [ 3316.494402][T11315] udevd[11315]: error opening ATTR{/sys/devices/platform/dummy_hcd.1/usb2/2-1/2-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 3316.507414][T30423] usb 4-1: Dual-Role OTG device on HNP port [ 3316.527194][T30423] usb 4-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3316.536102][T30423] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3316.543930][T30423] usb 4-1: Product: syz [ 3316.547906][T30423] usb 4-1: Manufacturer: syz [ 3316.552281][T30423] usb 4-1: SerialNumber: syz [ 3316.647109][T14633] usb 1-1: new high-speed USB device number 16 using dummy_hcd [ 3316.737121][T14633] usb 1-1: Using ep0 maxpacket: 8 [ 3316.832369][ T1394] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 3316.840113][ T1394] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 3316.849658][ T1394] F2FS-fs (loop2): invalid crc value [ 3316.867962][T27891] device bridge_slave_1 left promiscuous mode [ 3316.874019][T27891] bridge0: port 2(bridge_slave_1) entered disabled state [ 3316.885164][ T1394] F2FS-fs (loop2): Found nat_bits in checkpoint [ 3316.891602][T27891] device bridge_slave_0 left promiscuous mode [ 3316.897759][T27891] bridge0: port 1(bridge_slave_0) entered disabled state [ 3316.907470][T27891] device veth1_macvtap left promiscuous mode [ 3316.913352][T27891] device veth0_vlan left promiscuous mode [ 3316.937231][T14633] usb 1-1: config 32 has an invalid interface number: 77 but max is 1 [ 3316.955450][T14633] usb 1-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3316.969469][T14633] usb 1-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 3316.988709][T14633] usb 1-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 3316.998976][T14633] usb 1-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 3317.011454][T14633] usb 1-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 3317.021218][T14633] usb 1-1: config 32 has no interface number 0 [ 3317.021579][ T1394] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 3317.027398][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3317.038274][ T1394] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 3317.045166][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3317.063473][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3317.074395][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3317.085144][T14633] usb 1-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3317.095632][T14633] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3317.106221][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3317.117087][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3317.127908][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3317.139168][T14633] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 3317.150649][T14633] usb 1-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 3317.168553][T14633] usb 1-1: config 32 interface 77 has no altsetting 0 [ 3317.234755][T30423] usb 4-1: USB disconnect, device number 29 [ 3317.331696][T14633] usb 1-1: Dual-Role OTG device on HNP port [ 3317.357573][T14633] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3317.675690][T14633] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3317.683858][T14633] usb 1-1: Product: syz [ 3317.688055][T14633] usb 1-1: Manufacturer: syz [ 3317.692481][T14633] usb 1-1: SerialNumber: syz [ 3317.762765][ T1425] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3317.771674][ T1425] ext4 filesystem being mounted at /158/file0 supports timestamps until 2038 (0x7fffffff) [ 3317.783963][ T1425] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3317.795298][ T1425] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.15384: mark_inode_dirty error [ 3317.807217][ T1425] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3317.815583][ T1425] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.15384: mark_inode_dirty error [ 3318.280496][ T1438] netlink: 20 bytes leftover after parsing attributes in process `syz.4.15386'. [ 3318.360000][T14633] usb 1-1: USB disconnect, device number 16 [ 3318.579182][T28475] usb 4-1: new high-speed USB device number 30 using dummy_hcd [ 3318.587164][T30423] usb 5-1: new high-speed USB device number 116 using dummy_hcd [ 3318.808943][ T1453] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3318.837124][T30423] usb 5-1: Using ep0 maxpacket: 16 [ 3318.878801][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3318.895455][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3318.907640][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3318.917409][T28475] usb 4-1: too many configurations: 253, using maximum allowed: 8 [ 3318.967140][T30423] usb 5-1: config 1 has too many interfaces: 255, using maximum allowed: 32 [ 3318.982119][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3318.994792][T30423] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 255 [ 3319.007848][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3319.019945][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3319.035661][ T24] audit: type=1326 audit(1721097214.764:143664): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1452 comm="syz.2.15391" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x0 [ 3319.072999][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3319.087134][T28475] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 3319.094842][T28475] usb 4-1: can't read configurations, error -61 [ 3319.102121][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3319.114299][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3319.197200][T30423] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 3319.209380][T30423] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3319.226172][T30423] usb 5-1: Product: syz [ 3319.240363][T30423] usb 5-1: Manufacturer: syz [ 3319.244872][T30423] usb 5-1: SerialNumber: syz [ 3319.257060][T28475] usb 4-1: new high-speed USB device number 31 using dummy_hcd [ 3319.349280][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3319.363485][ T2792] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3319.376008][ T2792] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3319.517184][T30423] r8152 5-1:1.0: Unknown version 0x0000 [ 3319.610026][ T1477] overlayfs: missing 'workdir' [ 3319.905593][T28475] usb 4-1: too many configurations: 253, using maximum allowed: 8 [ 3319.956148][ T1480] FAULT_INJECTION: forcing a failure. [ 3319.956148][ T1480] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3319.969124][ T1480] CPU: 1 PID: 1480 Comm: syz.4.15388 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3319.978912][ T1480] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3319.988801][ T1480] Call Trace: [ 3319.991936][ T1480] dump_stack_lvl+0x1e2/0x24b [ 3319.996439][ T1480] ? bfq_pos_tree_add_move+0x43b/0x43b [ 3320.001736][ T1480] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 3320.007373][ T1480] ? hrtimer_try_to_cancel+0x302/0x320 [ 3320.012670][ T1480] dump_stack+0x15/0x17 [ 3320.016662][ T1480] should_fail+0x3c6/0x510 [ 3320.020919][ T1480] should_fail_usercopy+0x1a/0x20 [ 3320.025776][ T1480] _copy_to_user+0x20/0x90 [ 3320.030027][ T1480] put_itimerspec64+0x1c1/0x220 [ 3320.034711][ T1480] ? get_itimerspec64+0x450/0x450 [ 3320.039573][ T1480] ? k_itimer_rcu_free+0x30/0x30 [ 3320.044349][ T1480] ? bpf_probe_read_kernel_str+0x49/0x70 [ 3320.049816][ T1480] __x64_sys_timer_settime+0x1cd/0x250 [ 3320.055111][ T1480] ? common_timer_set+0x400/0x400 [ 3320.059971][ T1480] ? __bpf_trace_sys_enter+0x62/0x70 [ 3320.065088][ T1480] ? syscall_enter_from_user_mode+0x144/0x1a0 [ 3320.070990][ T1480] do_syscall_64+0x34/0x70 [ 3320.075246][ T1480] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3320.080975][ T1480] RIP: 0033:0x7fcaf2876bd9 [ 3320.085227][ T1480] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3320.104667][ T1480] RSP: 002b:00007fcaf1ad7048 EFLAGS: 00000246 ORIG_RAX: 00000000000000df [ 3320.112915][ T1480] RAX: ffffffffffffffda RBX: 00007fcaf2a05038 RCX: 00007fcaf2876bd9 [ 3320.120737][ T1480] RDX: 0000000020000300 RSI: 0000000000000001 RDI: 0000000000000000 [ 3320.128534][ T1480] RBP: 00007fcaf1ad70a0 R08: 0000000000000000 R09: 0000000000000000 [ 3320.136347][ T1480] R10: 0000000020000080 R11: 0000000000000246 R12: 0000000000000001 [ 3320.144154][ T1480] R13: 000000000000006e R14: 00007fcaf2a05038 R15: 00007fff08417a38 [ 3320.158817][ T1482] netlink: 20 bytes leftover after parsing attributes in process `syz.0.15398'. [ 3320.188623][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 0 [ 3320.191512][ T1480] erofs: (device loop4): mounted with root inode @ nid 36. [ 3320.201206][T11315] blk_update_request: I/O error, dev loop0, sector 140737496743808 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 0 [ 3320.201218][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3320.237183][T28475] usb 4-1: unable to read config index 0 descriptor/start: -61 [ 3320.256757][ T1480] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 3320.296582][T28475] usb 4-1: can't read configurations, error -61 [ 3320.296622][ T1480] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -35 in[64, 4032] out[1851] [ 3320.303100][T28475] usb usb4-port1: attempt power cycle [ 3320.320591][ T1480] erofs: (device loop4): z_erofs_readpage: failed to read, err [-117] [ 3320.331146][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3320.350238][T11315] Buffer I/O error on dev loop0p18, logical block 17592187092976, async page read [ 3320.394026][ T24] audit: type=1326 audit(1721097216.124:143665): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1487 comm="syz.2.15400" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x0 [ 3320.727096][T28475] usb 4-1: new high-speed USB device number 32 using dummy_hcd [ 3320.907149][T28475] usb 4-1: device descriptor read/8, error -71 [ 3321.048144][ T1514] FAULT_INJECTION: forcing a failure. [ 3321.048144][ T1514] name fail_usercopy, interval 1, probability 0, space 0, times 0 [ 3321.061236][ T1514] CPU: 0 PID: 1514 Comm: syz.3.15408 Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3321.071020][ T1514] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3321.081003][ T1514] Call Trace: [ 3321.084139][ T1514] dump_stack_lvl+0x1e2/0x24b [ 3321.088645][ T1514] ? bfq_pos_tree_add_move+0x43b/0x43b [ 3321.093934][ T1514] dump_stack+0x15/0x17 [ 3321.097928][ T1514] should_fail+0x3c6/0x510 [ 3321.102270][ T1514] should_fail_usercopy+0x1a/0x20 [ 3321.107135][ T1514] _copy_from_iter_full+0x1ef/0xa20 [ 3321.112180][ T1514] ? kasan_poison+0x5d/0x70 [ 3321.116527][ T1514] ? __kasan_kmalloc_large+0xad/0xc0 [ 3321.121621][ T1514] ? kmalloc_order+0x115/0x170 [ 3321.126219][ T1514] ? copyin+0x90/0x90 [ 3321.130043][ T1514] ? __kasan_check_read+0x11/0x20 [ 3321.134990][ T1514] ? __check_object_size+0x2e6/0x3c0 [ 3321.140117][ T1514] virtio_transport_alloc_pkt+0x39e/0x7d0 [ 3321.145669][ T1514] virtio_transport_send_pkt_info+0x289/0x5b0 [ 3321.151571][ T1514] virtio_transport_stream_enqueue+0x169/0x220 [ 3321.157558][ T1514] ? virtio_transport_dgram_enqueue+0x10/0x10 [ 3321.163465][ T1514] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 3321.169102][ T1514] ? remove_wait_queue+0x12e/0x140 [ 3321.174046][ T1514] vsock_stream_sendmsg+0x925/0xc20 [ 3321.177821][T28475] usb 4-1: device descriptor read/8, error -71 [ 3321.179087][ T1514] ? vsock_stream_getsockopt+0x4d0/0x4d0 [ 3321.179107][ T1514] ? wait_woken+0x250/0x250 [ 3321.194889][ T1514] ? security_socket_sendmsg+0x82/0xb0 [ 3321.200171][ T1514] ? vsock_stream_getsockopt+0x4d0/0x4d0 [ 3321.205636][ T1514] sock_write_iter+0x39b/0x530 [ 3321.210416][ T1514] ? sock_read_iter+0x480/0x480 [ 3321.215102][ T1514] ? file_has_perm+0x508/0x6c0 [ 3321.219713][ T1514] do_iter_readv_writev+0x58e/0x790 [ 3321.224731][ T1514] ? generic_file_rw_checks+0x270/0x270 [ 3321.230125][ T1514] ? fsnotify_perm+0x67/0x4e0 [ 3321.234635][ T1514] ? security_file_permission+0x86/0xb0 [ 3321.240007][ T1514] ? rw_verify_area+0x1c3/0x360 [ 3321.244689][ T1514] do_iter_write+0x183/0x650 [ 3321.249118][ T1514] vfs_writev+0x26e/0x510 [ 3321.253285][ T1514] ? do_writev+0x340/0x340 [ 3321.257545][ T1514] ? __fget_files+0x31e/0x380 [ 3321.262049][ T1514] ? __fdget_pos+0x209/0x3a0 [ 3321.266473][ T1514] ? do_writev+0x7b/0x340 [ 3321.270638][ T1514] do_writev+0x1aa/0x340 [ 3321.274720][ T1514] ? bpf_trace_run1+0x210/0x210 [ 3321.279406][ T1514] ? do_readv+0x460/0x460 [ 3321.283582][ T1514] ? __bpf_trace_sys_enter+0x62/0x70 [ 3321.288698][ T1514] __x64_sys_writev+0x7d/0x90 [ 3321.293206][ T1514] do_syscall_64+0x34/0x70 [ 3321.297462][ T1514] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3321.303284][ T1514] RIP: 0033:0x7fdfbf0e0bd9 [ 3321.307534][ T1514] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 3321.327374][ T1514] RSP: 002b:00007fdfbe362048 EFLAGS: 00000246 ORIG_RAX: 0000000000000014 [ 3321.335647][ T1514] RAX: ffffffffffffffda RBX: 00007fdfbf26ef60 RCX: 00007fdfbf0e0bd9 [ 3321.343424][ T1514] RDX: 0000000000000001 RSI: 00000000200002c0 RDI: 0000000000000006 [ 3321.351235][ T1514] RBP: 00007fdfbe3620a0 R08: 0000000000000000 R09: 0000000000000000 [ 3321.359044][ T1514] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000001 [ 3321.366858][ T1514] R13: 000000000000000b R14: 00007fdfbf26ef60 R15: 00007ffcfbd84a48 [ 3321.420206][T14633] usb 5-1: USB disconnect, device number 116 [ 3321.436900][ T1517] netlink: 20 bytes leftover after parsing attributes in process `syz.1.15409'. [ 3321.560055][ T1523] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3321.577061][ T24] audit: type=1326 audit(1721097217.304:143666): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.601108][ T24] audit: type=1326 audit(1721097217.314:143667): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.626326][ T24] audit: type=1326 audit(1721097217.314:143668): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=99 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.650111][ T24] audit: type=1326 audit(1721097217.314:143669): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.673924][ T24] audit: type=1326 audit(1721097217.314:143670): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.697601][ T24] audit: type=1326 audit(1721097217.314:143671): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=258 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.721383][ T24] audit: type=1326 audit(1721097217.314:143672): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.745580][ T1541] fuse: Bad value for 'fd' [ 3321.755145][ T24] audit: type=1326 audit(1721097217.314:143673): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1534 comm="syz.2.15415" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3321.867954][ T287] usb 1-1: new high-speed USB device number 17 using dummy_hcd [ 3322.107068][ T287] usb 1-1: Using ep0 maxpacket: 8 [ 3322.327226][ T287] usb 1-1: config 32 has an invalid interface number: 77 but max is 1 [ 3322.341221][ T287] usb 1-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3322.357842][ T287] usb 1-1: config 32 contains an unexpected descriptor of type 0x2, skipping [ 3322.366529][ T287] usb 1-1: config 32 has an invalid interface association descriptor of length 5, skipping [ 3322.376669][ T287] usb 1-1: config 32 has an invalid descriptor of length 169, skipping remainder of the config [ 3322.387403][ T287] usb 1-1: config 32 has 1 interface, different from the descriptor's value: 2 [ 3322.422370][ T287] usb 1-1: config 32 has no interface number 0 [ 3322.437197][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3322.451377][ T1556] incfs_lookup_dentry err:-14 [ 3322.455920][ T1556] incfs: Can't find or create .index dir in ./file0 [ 3322.457342][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3322.463235][ T1556] incfs: mount failed -14 [ 3322.493596][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3322.514630][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3322.534723][ T287] usb 1-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3322.548619][ T287] usb 1-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3322.559275][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3322.570075][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3322.581015][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3322.591801][ T287] usb 1-1: config 32 interface 77 altsetting 64 endpoint 0x6 has invalid maxpacket 1023, setting to 64 [ 3322.602902][ T287] usb 1-1: config 32 interface 77 altsetting 64 has 10 endpoint descriptors, different from the interface descriptor's value: 12 [ 3322.616231][ T287] usb 1-1: config 32 interface 77 has no altsetting 0 [ 3322.670563][ T1562] netlink: 20 bytes leftover after parsing attributes in process `syz.4.15423'. [ 3322.777091][T14633] usb 4-1: new high-speed USB device number 34 using dummy_hcd [ 3322.797175][ T287] usb 1-1: Dual-Role OTG device on HNP port [ 3322.818083][ T287] usb 1-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3322.827079][ T287] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3322.834905][ T287] usb 1-1: Product: syz [ 3322.839483][ T287] usb 1-1: Manufacturer: syz [ 3322.843966][ T287] usb 1-1: SerialNumber: syz [ 3322.938795][ T1578] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3323.017116][T14633] usb 4-1: Using ep0 maxpacket: 8 [ 3323.137188][T14633] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 238, changing to 11 [ 3323.157055][T14633] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 16 [ 3323.176897][T14633] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x3 has invalid wMaxPacketSize 0 [ 3323.186754][T14633] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 0 [ 3323.196554][T14633] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 18 [ 3323.287120][T14633] usb 4-1: New USB device found, idVendor=0001, idProduct=8000, bcdDevice= 0.00 [ 3323.295986][T14633] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 3323.314118][ T287] usb 1-1: USB disconnect, device number 17 [ 3323.316445][T14633] usb 4-1: SerialNumber: syz [ 3323.337163][ T1555] raw-gadget.1 gadget: fail, usb_ep_enable returned -22 [ 3323.357740][T14633] hub 4-1:1.0: bad descriptor, ignoring hub [ 3323.363588][T14633] hub: probe of 4-1:1.0 failed with error -5 [ 3323.369910][T14633] cdc_ether: probe of 4-1:1.0 failed with error -22 [ 3323.449139][ T1587] EXT4-fs (loop2): mounted filesystem without journal. Opts: ,errors=continue [ 3323.458236][ T1587] ext4 filesystem being mounted at /167/file0 supports timestamps until 2038 (0x7fffffff) [ 3323.471750][ T1587] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3323.480105][ T1587] EXT4-fs error (device loop2): ext4_dirty_inode:6079: inode #2: comm syz.2.15429: mark_inode_dirty error [ 3323.491632][ T1587] EXT4-fs error (device loop2) in ext4_do_update_inode:5275: error 27 [ 3323.499859][ T1587] EXT4-fs error (device loop2): __ext4_ext_dirty:182: inode #2: comm syz.2.15429: mark_inode_dirty error [ 3324.118989][ T1621] EXT4-fs (loop4): mounted filesystem without journal. Opts: ,errors=continue [ 3324.360236][ T24] kauditd_printk_skb: 61 callbacks suppressed [ 3324.360252][ T24] audit: type=1326 audit(1721097220.094:143735): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.429884][ T24] audit: type=1326 audit(1721097220.124:143736): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.490234][ T24] audit: type=1326 audit(1721097220.124:143737): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.532311][T30420] usb 4-1: USB disconnect, device number 34 [ 3324.559697][ T24] audit: type=1326 audit(1721097220.124:143738): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.600288][ T24] audit: type=1326 audit(1721097220.124:143739): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.633776][ T24] audit: type=1326 audit(1721097220.124:143740): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.689538][ T24] audit: type=1326 audit(1721097220.124:143741): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.747108][ T24] audit: type=1326 audit(1721097220.124:143742): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.777468][ T24] audit: type=1326 audit(1721097220.124:143743): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.801152][ T24] audit: type=1326 audit(1721097220.124:143744): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=1632 comm="syz.2.15442" exe="/root/syz-executor" sig=0 arch=c000003e syscall=321 compat=0 ip=0x7fb1ded18bd9 code=0x7ffc0000 [ 3324.817262][T30420] usb 4-1: new high-speed USB device number 35 using dummy_hcd [ 3325.067169][T30420] usb 4-1: Using ep0 maxpacket: 8 [ 3325.267112][T30420] usb 4-1: config 32 has an invalid interface number: 77 but max is 1 [ 3325.277326][T30420] usb 4-1: config 32 contains an unexpected descriptor of type 0x1, skipping [ 3325.292492][T30420] usb 4-1: config 32 has no interface number 1 [ 3325.304000][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xD has invalid maxpacket 512, setting to 64 [ 3325.323492][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x1 has invalid maxpacket 512, setting to 64 [ 3325.348154][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xB has invalid maxpacket 1023, setting to 64 [ 3325.367102][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xF has invalid maxpacket 512, setting to 64 [ 3325.377935][T30420] usb 4-1: config 32 interface 77 altsetting 64 has an invalid endpoint with address 0x0, skipping [ 3325.388435][T30420] usb 4-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0x1, skipping [ 3325.399189][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xA has invalid maxpacket 1024, setting to 64 [ 3325.410247][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0xE has invalid maxpacket 1024, setting to 64 [ 3325.424208][T30420] usb 4-1: config 32 interface 77 altsetting 64 endpoint 0x2 has invalid maxpacket 1024, setting to 64 [ 3325.435487][T30420] usb 4-1: config 32 interface 77 altsetting 64 has a duplicate endpoint with address 0xB, skipping [ 3325.447665][T30420] usb 4-1: config 32 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 3325.458874][T30420] usb 4-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x4, skipping [ 3325.469379][T30420] usb 4-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping [ 3325.479718][T30420] usb 4-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xE, skipping [ 3325.490290][T30420] usb 4-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x7, skipping [ 3325.500773][T30420] usb 4-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0x5, skipping [ 3325.517301][T30420] usb 4-1: config 32 interface 0 altsetting 0 has an invalid endpoint with address 0x0, skipping [ 3325.527811][T30420] usb 4-1: config 32 interface 0 altsetting 0 has a duplicate endpoint with address 0xB, skipping [ 3325.538343][T30420] usb 4-1: config 32 interface 77 has no altsetting 0 [ 3325.573614][ T1680] EXT4-fs (loop0): Ignoring removed nomblk_io_submit option [ 3325.588267][ T1680] EXT4-fs (loop0): Test dummy encryption mode enabled [ 3325.599383][ T1680] EXT4-fs (loop0): 1 truncate cleaned up [ 3325.604935][ T1680] EXT4-fs (loop0): mounted filesystem without journal. Opts: nomblk_io_submit,init_itable=0x0000000000000003,jqfmt=vfsold,test_dummy_encryption,auto_da_alloc=0x0000000000000008,,errors=continue [ 3325.674791][ T1686] EXT4-fs (loop2): mounted filesystem without journal. Opts: stripe=0x0000000000000401,errors=remount-ro, [ 3325.693129][ T1679] EXT4-fs error (device loop0): __ext4_new_inode:1069: comm syz.0.15459: reserved inode found cleared - inode=1 [ 3325.705021][T30420] usb 4-1: Dual-Role OTG device on HNP port [ 3325.727126][T30420] usb 4-1: New USB device found, idVendor=1bc7, idProduct=1207, bcdDevice=22.33 [ 3325.739985][T30420] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 3325.756854][T30420] usb 4-1: Product: syz [ 3325.764756][T30420] usb 4-1: Manufacturer: syz [ 3325.783241][T30420] usb 4-1: SerialNumber: syz [ 3325.796584][ T371] EXT4-fs error (device loop0): ext4_readdir:260: inode #2: block 13: comm syz-executor: path /58/file2: bad entry in directory: rec_len is smaller than minimal - offset=76, inode=196608, rec_len=0, size=1024 fake=0 [ 3325.817665][ T371] ------------[ cut here ]------------ [ 3325.822972][ T371] kernel BUG at fs/ext4/inode.c:5246! [ 3325.828283][ T371] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 3325.834159][ T371] CPU: 0 PID: 371 Comm: syz-executor Not tainted 5.10.218-syzkaller-00638-g3feee789f446 #0 [ 3325.843962][ T371] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 06/07/2024 [ 3325.853867][ T371] RIP: 0010:ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 3325.859852][ T371] Code: 6f ca ff e9 0f f1 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 21 f1 ff ff 48 89 df e8 49 70 ca ff e9 14 f1 ff ff e8 0f dc 8c ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 41 57 41 [ 3325.879289][ T371] RSP: 0018:ffffc90000bc79a0 EFLAGS: 00010293 [ 3325.885186][ T371] RAX: ffffffff81ddce71 RBX: 0000000000000000 RCX: ffff88810b25bb40 [ 3325.892996][ T371] RDX: 0000000000000000 RSI: 0000000000020000 RDI: 0000000000000000 [ 3325.900807][ T371] RBP: ffffc90000bc7ab0 R08: ffffffff81ddaa8d R09: ffffed1024ff5f24 [ 3325.908618][ T371] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 3325.916429][ T371] R13: 0000000000020000 R14: 0000000000000000 R15: ffff8881306e7000 [ 3325.924246][ T371] FS: 000055555752c500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 3325.933272][ T371] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3325.939689][ T371] CR2: 00007f77232619d4 CR3: 000000011eb17000 CR4: 00000000003506b0 [ 3325.947504][ T371] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3325.955312][ T371] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3325.963119][ T371] Call Trace: [ 3325.966263][ T371] ? __die_body+0x62/0xb0 [ 3325.970418][ T371] ? die+0x88/0xb0 [ 3325.973975][ T371] ? do_trap+0x1a4/0x310 [ 3325.978057][ T371] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 3325.983435][ T371] ? handle_invalid_op+0x95/0xc0 [ 3325.988208][ T371] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 3325.993590][ T371] ? exc_invalid_op+0x32/0x50 [ 3325.998104][ T371] ? asm_exc_invalid_op+0x12/0x20 [ 3326.002963][ T371] ? ext4_mark_iloc_dirty+0x1a6d/0x3e60 [ 3326.008347][ T371] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 3326.013730][ T371] ? ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 3326.019117][ T371] __ext4_mark_inode_dirty+0x4fc/0x7b0 [ 3326.024405][ T371] ? sb_end_intwrite+0x110/0x110 [ 3326.029180][ T371] ? memset+0x35/0x40 [ 3326.033003][ T371] ? ktime_get_coarse_real_ts64+0xe1/0xf0 [ 3326.038551][ T371] ? __kasan_check_read+0x11/0x20 [ 3326.043409][ T371] ? __ext4_journal_start_sb+0x2e1/0x4a0 [ 3326.048878][ T371] ext4_dirty_inode+0xdd/0x120 [ 3326.053475][ T371] ? __ext4_expand_extra_isize+0x3f0/0x3f0 [ 3326.059296][ T371] __mark_inode_dirty+0xd0/0x9d0 [ 3326.064066][ T371] ? memcpy+0x56/0x70 [ 3326.067885][ T371] touch_atime+0x2ff/0x4c0 [ 3326.072140][ T371] ? current_time+0x2f0/0x2f0 [ 3326.076655][ T371] iterate_dir+0x4a1/0x580 [ 3326.080904][ T371] ? ext4_dir_llseek+0x4c0/0x4c0 [ 3326.085682][ T371] __se_sys_getdents64+0x1c1/0x460 [ 3326.090627][ T371] ? __x64_sys_getdents64+0x90/0x90 [ 3326.095654][ T371] ? filldir+0x680/0x680 [ 3326.099740][ T371] ? debug_smp_processor_id+0x17/0x20 [ 3326.104943][ T371] ? fpregs_assert_state_consistent+0xb6/0xe0 [ 3326.110851][ T371] ? __bpf_trace_sys_enter+0x62/0x70 [ 3326.115969][ T371] __x64_sys_getdents64+0x7b/0x90 [ 3326.120828][ T371] do_syscall_64+0x34/0x70 [ 3326.125081][ T371] entry_SYSCALL_64_after_hwframe+0x61/0xcb [ 3326.130806][ T371] RIP: 0033:0x7f24171aec73 [ 3326.135066][ T371] Code: c1 66 0f 1f 44 00 00 48 83 c4 08 48 89 ef 5b 5d e9 e2 44 f8 ff 66 90 b8 ff ff ff 7f 48 39 c2 48 0f 47 d0 b8 d9 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 05 c3 0f 1f 40 00 48 c7 c2 a8 ff ff ff f7 d8 [ 3326.154503][ T371] RSP: 002b:00007ffdbae45f68 EFLAGS: 00000293 ORIG_RAX: 00000000000000d9 [ 3326.162744][ T371] RAX: ffffffffffffffda RBX: 00005555575474e0 RCX: 00007f24171aec73 [ 3326.170558][ T371] RDX: 0000000000008000 RSI: 00005555575474e0 RDI: 0000000000000005 [ 3326.178371][ T371] RBP: 00005555575474b4 R08: 0000000000000000 R09: 0000000000000000 [ 3326.186195][ T371] R10: 0000000000001000 R11: 0000000000000293 R12: ffffffffffffffa8 [ 3326.193992][ T371] R13: 0000000000000010 R14: 00005555575474b0 R15: 000000000032bdf7 [ 3326.201804][ T371] Modules linked in: [ 3326.205762][ T371] ---[ end trace a480041bd06233de ]--- [ 3326.211163][ T371] RIP: 0010:ext4_mark_iloc_dirty+0x3e51/0x3e60 [ 3326.217280][ T371] Code: 6f ca ff e9 0f f1 ff ff 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 21 f1 ff ff 48 89 df e8 49 70 ca ff e9 14 f1 ff ff e8 0f dc 8c ff <0f> 0b 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 00 55 48 89 e5 41 57 41 [ 3326.236821][ T371] RSP: 0018:ffffc90000bc79a0 EFLAGS: 00010293 [ 3326.242828][ T371] RAX: ffffffff81ddce71 RBX: 0000000000000000 RCX: ffff88810b25bb40 [ 3326.250726][ T371] RDX: 0000000000000000 RSI: 0000000000020000 RDI: 0000000000000000 [ 3326.258556][ T371] RBP: ffffc90000bc7ab0 R08: ffffffff81ddaa8d R09: ffffed1024ff5f24 [ 3326.266355][ T371] R10: 0000000000000000 R11: dffffc0000000001 R12: dffffc0000000000 [ 3326.274325][ T371] R13: 0000000000020000 R14: 0000000000000000 R15: ffff8881306e7000 [ 3326.282239][ T371] FS: 000055555752c500(0000) GS:ffff8881f7000000(0000) knlGS:0000000000000000 [ 3326.291095][ T371] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 3326.297428][ T371] CR2: 00007f77232619d4 CR3: 000000011eb17000 CR4: 00000000003506b0 [ 3326.305219][ T371] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 3326.313081][ T371] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 3326.320887][ T371] Kernel panic - not syncing: Fatal exception [ 3326.326956][ T371] Kernel Offset: disabled [ 3326.331086][ T371] Rebooting in 86400 seconds..