last executing test programs: 2.483381629s ago: executing program 4 (id=11422): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCL_GETMOUSEREPORTING(r0, 0x5412, &(0x7f00000006c0)=0x16) r1 = dup(r0) ioctl$TIOCSTI(r1, 0x5412, &(0x7f0000000300)=0xff) 2.418581735s ago: executing program 4 (id=11423): r0 = socket$tipc(0x1e, 0x4, 0x0) connect$tipc(r0, &(0x7f0000000040)=@nameseq={0x1e, 0x1, 0x0, {0x1, 0x0, 0x5}}, 0x10) sendmmsg$inet(r0, &(0x7f0000006740)=[{{0x0, 0x0, &(0x7f00000056c0)=[{&(0x7f0000001240)="80349c0d9e8fcc9f44658138dc4a3c4ad42f918348474a5bc38ff0e0571fc22c8eb5cb22fdf30ced1a4c1ccb5e5b35fed7db48c1a8a7132adc5623d146ddfe2254dd2579b4284b53d1cea6206864473d31bdb00c9d1462458b678827e80c94d88099e7471a58b1463086f9cdd1ccc19fa2fc4a9dd5a56fe782d15e66648c7630f1aaa7e9820460c46e292dbb8fa6f6701048ff17f46097b1ee0750ed038f18b81b2ba014bf866062c9a6f88b5d07e13b7eddd968ba9c7a53609c7b61471a51fd85bceebc0a92b2cd7c45a7f4571e693abebc3c5ff16c8128d92476", 0xdb}, {&(0x7f0000000280)="5b4ea50f20d7212327afde5e7a457cde2dff791c69fbc3", 0x17}, {&(0x7f00000002c0)="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", 0xeb}, {&(0x7f0000001440)="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", 0xb82}, {&(0x7f0000002440)="253c10cd0a56ebbb9e8b465670109c340c95f1d27d36cbeb7fa948545e9b18da346b70b5dc6ea12ad1a30e4f7038336f1af1d61b04de988f1755e9b3ba9919b2a4952ceda920a7f0e22dd239d4a74f2d1c854bc64f09f979aa3e9f5c25ff8ec189e5d809483583f648cd8870291200e428", 0x71}, {&(0x7f00000024c0)="2ba671ae8107530b978dd82841597ed8f4275ed9e6b9f7b73ee6324ddf688ad9d88125b82afd2e28aef7183086ce0dd4ee880fc56a2ca8b52ef8f5b5f3e475f49b0bcd201fe612703d680fdd1151dd32535b04d4697d472c7750d6c4c197162e9f872253b611b1ca20e79dcf40d1faf58a453f8db9a03fdd351b54ad4e77fa0fda7990bb281079ae7ba3994aef7380e1d6342305e2d12c57379fd12e784f48e4e832171df4576c8724e3bfd70ebc92fc11914cd4", 0xb4}, {&(0x7f00000025c0)="96cb9dfd0c61d5ed863c5a35109d427201da53416c37631f95451a170fdb734214157996b04630903a7ad20aca669b5120871c47c6ef4e5975222b9676223895144ae5c2898ba0e94642e43e374bf9515c7e840e62021f25181401bda4c4d2d77867390c0a05af019adabfe896d7824f0dcb1724c64da40478808059ea83fa60145e108809ca25edf6ab820f23a5ce2b1779aa8c037a26d99df56f39ff5beca1c1e0cbfd69e415971a02f5115f6da0ba6da9be9772efa870aa6b62774ce009e7bcca4b4a7a910aab97e7f3da899eaaf573ac8a926a7be9b5875b3bb707ae9124ead39e70948bcf654b6b4342043f756323494e4ec559866c5a480c3b156c0427f1cc1d373b77424ea38e3697e36dcefd261575e5516bfcedc7baa8cbebed0ce49dd27e6291dd6f968eaf37f13313ba0bd22b6a63496be04a42df10fef87386434103b5ef819a969e8792a7765dc52c310fbe89851eaf8b2eabcf27bd487f817d48a54b0c7e8b151f0941a6f4adcf6a4486f96f8d18a2928829db333ec08bffe029f4840fdc0433d75157e80b33c3041f193e5c3fb1b7c13d1d7d7a8fe3122ddef181a6534232731c8f91dae42d9a66b9c2e0c6de6da74c24752b53d344b3c9a48ed62705c3e93f7e346c0379a6ec672b3a73dcfc159a79a77bd7b9edd013e3e9832d4dca6f9f973d63d5d235c7e22822e012e4181e102e68b03bdec323db739968061a7ba6fcf9589bd2975520fe9f1b44e52489bf5f5b0125b14bc894f4ff1ad2ba817dad6ab1654a2cacce1cc5160ea4bf3d7011cbf16ad0389b6511448c4186da0a7a55be54031a6d2773ac33aab5d533e7bb213309193f2ca3970e8fffc2fdacbc96e6f49c116b0505385a8bf282589be6b844e2aaaa652459b5d021127f59009020d34932cd03fbe5fea45bdc1f68463c4afe2b5ea8f97dee5e2e6b58196aff00e5ca51a0087f02bcb1dbdd638a5c7590095561578c30904f7ea80072de21fcedd0e41da8e7fe3514eaabc603d770a6fbed5367edb7feb5c5edfda04c7b8a4bfce5c73b876f52fde7dc929f3ffa632eb9514596793533d20fd191b484e902ab104dfc34a8486ba64d3e31c495e043279d8d6b4e6ca3c3fd4ae43529e55be690309e1bc90af2e9188cd5673eea73c75d4decf8972039c086e4b47caee900e1422fd2fbe0303dd5147a9fa487a7b08ad529d0d3db2bae4b26a83de0b15b9b82f26b23336481aca875c48605dc8d25d872920d01e2e163cc13d1f026666f8f54d6fe7895b47939599d168dc98a2de4aac463d98cb39375ac13fadd722b9f1e221d35bde594c9e53aa0f34b235a9d68d8f4841f9455804cd8a7bf05315c5bab2fa8820e956a8161cdd685fc4e1344f9d89189057376a5d1c23273d475aaa72ccbf4b5d8f2863f3f0fe7c0f8b001c065bae68aad9d8878a5edcd8dcbeec07d317c0a81fc84b8b208c60db73c6cf86d46cac98a7df449581d74be7991f1fa6924b76a2d6077aacca10fc777f0d09c5420cfc38c4638957086c9a2065ce94a286da01527bd8b8fd5830f93bcab97a4d0ca13c55b4ee32a49e078b4d79e7b17200fb6a550cfcccd33c681e37bc83c7fcda081a67c2a828e65a75df33e587a05f75fe05aef4078b3482c9078e2edb63c74134f92461044871e4a71f40228d156cbb3beb53eb898e0b6ade2d486a7111ce074510ad957f0eeae0812dd3802db231d9a15948a6b133167eb51dde0199023dfb3471661c7f13f14e786278c551d60929ef969b15d4ea544a9cda830183052ca1072083fb304502f38bcfd46ef64091a2a64bacc55ff3e91f8a7a97f69a9524bdaa60c14d75ddb44e399158c603cded78f42b79a6e9b9c30575289a92558f4d1d9cbb35780c86462cb56d5b474901c17df6ccba95481c004c384b17f99fb29458c9c59666c5305c508561e654d5f1b8ed375231358828b73b487c5f3096211f863375333bb1d3970f7c4cbc7b0f122dbb330b24498f38d804ec0e9c8a5976578bfbc2e46e8d898ec08b3742d5f9ba03d56567f6541f075c4f45eec94a6af78065689e8851294c48f02d48b1266586db86266bd2d0cbb729b567ed7643edf6849f50ca7a28b4ef59433ff22ce0680ffb3348a458ff77b6a796e849cb456df4b443d625d423d10e21bf0bcc785a243cf70ed2ea7c52548cd366ad9af486a4a0171f21ee9d961aa808a69a066aeb0c605fe7a83291ba942df3d11ba1e12da7381d7af20ccbd0de5416ef389c65d1fd0ff209dce808c490707a371b317ce65765082d1c5f67846ddfa65f291117d6e5a795ac2961d56eb24060d8b160d5bd146cd61589c00a108a1dba9e8730157e403cc35b0cd64b3aa66eada80be3bbb974d4642aa76bdf87c2d63134af1c646b1f0bfd218d4e4ebd277ad1cfc9b6f20c4036c6a511cb1ce486c3a563ca9368b10bed088bcfcdab752e0c78a10e550544ee6250d3908e3e7b09b2119f94abc2fdf43d7c82a4ffce81a3f962124ace1108443f41202c6d055d37e99b4eb6287c485acabff03f3a115db1ec790fdc5436e97bf2443c2f707ffb513f6d6494812b2238d679c8787a854ec92126bdc4681803ed4a5b84590e4f00ce956c6c3394773303b0620d118d2290cb229ea3b9bb9de8d719a0f92a50d34909a363f5f6ff906326f917be78c914c78846ef30c9b107b26c0a55401ceabf5b3c669eaa7a1a36d97b01d5da410366e3da5d232fb711d26afd9d4a5016425e47c0ec9b6305673af4cb46526af752011793c322797fb706042da364b6e723b513fd73db6721b00bd80e0923fe075300951d4dfefdd029c3fed21b734bf102f96d58b50bf4edcad014670c2d93eeb4d7bda3d1b70d9e21262c644bb96855895e4c0b32c9ed599d940ac24814b69812c124648428e13d7f72d74feb30288eb78b4a99fadc96589d8a9c7047787aa802514ba28af4d5520ac50928cd75ca92e2934a2e126456bfe1587003e87d9428b1fdb6b7662c44a5fee9d537b7f43822e5b103aeece1aa603215c215de2873e3a6b327c5ed0a0190fb7645034e1839ad165f3f7f80fd793734ac1412bbe20d82aea543792047ba5c5b37ee11988cd7e71cd43547e13c6bbc1ce3cf6aff9727381f06feb83b23b694724d9259d3736eba6ee66ee73a224b8a978debbbc35f8e28cc8267646e5c8cd8076d2044d41eadce01738ab2c7dc763de5a8042b957680223c4d9fdbf65d17e8998444e8db36c50fbe3c9a83e506661a029c4538617d46b6a43675c6dcf283a45b99e44188fd2681a50747e819e7f37496207ec448670fe62a3cb94712abeafb5dd2690ec12b18f8d67d5b0db41a897124f8b94695501aba517447338034bf14d0f99cbf5518aa013e1f35a052b4d27d1247349ff7a83362444372f017fcbdfe972b91c46a0a57f4639204673341ae92bc2dbf2b8d1680b432552850964eb1e14f38995e7e404b1bd1bf63d8d58c7b4ec38e3b9e73959e6509ad9f67d684f62759f5cae90bf8c1781b5800922c312aa634e5748b6181fc37df267eb5c66afc0c9249f9f601136c78d817beddf308c6970ee0e8221abe6fa124f55de7e5e78398004095a175f58cc270840e8c6759627f139e4f9b3b362e2700c5d06da66e862d1016c9f89d18646a6bb823f992342433b03397ed7586f489824a1495d707c81d3885029a47845802ef97856e530789a5cb7239752c6509cdd094212cb4b1b8baa7416cf5000db59418ad7f7a0d7d8e4cb8ebbbe4c40ba0ccc25283b9c933e251fff9871fc01026fafd8eed7ddcbe454b79339be93cd4b25a55af449f5c0893a957c5468c9147a973478c834ac4ecfea339cf3", 0xa9b}], 0x7}}], 0x300, 0x0) connect$tipc(r0, &(0x7f00000008c0)=@name, 0x10) 2.213044634s ago: executing program 4 (id=11433): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID(r2, 0x4008ae8a, &(0x7f0000000100)={0x1, 0x0, [{0x12}]}) 2.069213948s ago: executing program 4 (id=11435): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x4, &(0x7f00000003c0)=ANY=[@ANYBLOB="180000000000ed000000000000000000850000000500000095"], &(0x7f0000000040)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x8, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r0}, 0x10) r1 = bpf$MAP_CREATE(0x0, &(0x7f0000000500)=@base={0x5, 0x1, 0x8e, 0xe7c9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_DELETE_BATCH(0x18, &(0x7f0000000080)={0x0, 0x0, 0x0, 0x0, 0xe30a, r1}, 0x38) 1.950742038s ago: executing program 4 (id=11437): bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000180)=@base={0xb, 0x7, 0x3, 0x9, 0x1, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000000)={{r0, 0xffffffffffffffff}, &(0x7f0000000200), &(0x7f0000000100)}, 0x20) syz_usb_connect(0x0, 0x10e, &(0x7f0000002300)=ANY=[@ANYBLOB="120100006a249f08ec1888323a3f010203010902fc0001870000000904e600030e01000006240600011005240008000d240f01000000000300a0010606241a0000000c241b000000000000ff01000424020c9024", @ANYRES16=r1, @ANYRES64=r0], 0x0) 1.043036863s ago: executing program 0 (id=11452): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_CPUID2(r2, 0x4008ae90, &(0x7f0000000380)={0x4, 0x0, [{0xa, 0xffffffff, 0x1, 0x5, 0x1, 0xc, 0xd}, {0x40000000, 0xa, 0x5, 0x3ff, 0xa, 0x304f}, {0x7, 0x8001, 0x0, 0x8, 0x400, 0x9, 0xfffd}, {0x80000000, 0x2, 0x1, 0x3d46, 0x6, 0x80000000, 0x101}]}) 934.782683ms ago: executing program 3 (id=11453): unshare(0x62040200) r0 = socket$inet(0x2, 0x3, 0x4) setsockopt$inet_int(r0, 0x0, 0xf, &(0x7f0000000400)=0x6, 0x4) bind$inet(r0, &(0x7f0000000500)={0x2, 0x4, @private=0xa010101}, 0x10) 911.230776ms ago: executing program 0 (id=11454): prctl$PR_SET_SECCOMP(0x16, 0x2, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000380)=ANY=[@ANYBLOB="1800000000000000000000000000000085000000500000001801000020756c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000002d00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$ENABLE_STATS(0x20, 0x0, 0x0) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000440)={r0}, 0xc) 853.318411ms ago: executing program 0 (id=11455): r0 = socket$nl_route(0x10, 0x3, 0x0) r1 = socket$nl_netfilter(0x10, 0x3, 0xc) ioctl$sock_SIOCGIFINDEX(r1, 0x8933, &(0x7f0000000080)={'bridge_slave_1\x00', 0x0}) sendmsg$nl_route(r0, &(0x7f00000000c0)={0x0, 0x0, &(0x7f0000000100)={&(0x7f0000000140)=ANY=[@ANYBLOB="540000001000090400"/20, @ANYRES32=r2, @ANYBLOB="000000000000000034001280110000006272696467655f736c617665000000001c000580050020000100000005000c000000000008000300"], 0x54}, 0x1, 0x0, 0x0, 0x4}, 0x0) 751.092441ms ago: executing program 3 (id=11457): r0 = syz_clone(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) ptrace(0x10, r0) syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000000)='./file0\x00', 0x0, &(0x7f0000000500)={[{@barrier}, {@sysvgroups}, {@errors_continue}, {@init_itable}, {@noblock_validity}], [{@fowner_lt}, {@subj_role={'subj_role', 0x3d, '[!+@'}}, {@audit}]}, 0x0, 0x4ac, &(0x7f0000000c40)="$eJzs3ctvFVUYAPBvpg/etCqiIGgVjI2PlhZUFm40mrjQxEQXuKxtQeRCDa2JECLVGFwaEvfGpYl/gTs3Rl0YE3dGE5eGhCgxAV3VzMu2t73l9nmB+/slw50zc27P+Tpz7px7TmcIoG31Zf8kEdsj4teI6CmS8zP0FS83rl0Y/efahdEkZmZe/zPJ812/dmG0ylq9b1uZ6E8j0o+TspD5Js+dPzVSq42fLdODUzMXByfPnX/q5OmRE+Mnxs8MHz165PDQs88MP70mcWZxXd/7wcS+PS+/efnV0WOX3/r+q6y+u/cX++fGsRzTS+zrywL/ayZXv+/RlRR2C9sxZz3pbGFFWJaOiMgOV1fe/nuiI2YPXk+89FFLKwesq+zatKnx7ukZ4A6WRKtrALRGdaHPvv9WywZ1PW4JV5+PGP2liP9GuRR7OiMt83StY/l9EXFs+t/PsyVWMQ4BANCsvG/z5GL9vzR256/FrM7Ocg6lNyLuioi7I+KeiNgVEfdG5Hnvi4j7izfP9DRZfv3U0ML+T3plVQHeRNb/e66c26qWYk6n7P2l0dtRpnbk8Xclx0/Wxg+Vv5P+6NqUpYeWKOObF3/+tH7blvJ1bv8vW7Lyq75g6Upn3QDd2MjUSHbgNq8+/Lj6YcTezvnxF3uS/2cCsjNgT0TsXd6P3lmtnHz8y32NMjURf2NrMM8080XEY8Xxn466+CtJPj95+t0G85ODm6M2fmiwOisW+uGnS681Kn9V8a+B7PhvnX/+1+Xo+Tsp5mu7olYbPzu5/DIu/fZJw+80N48/vVI/QJ2d/93JG/mc9Y9vF9veH5maOjsU0Z28kqe7Y8724dn3VukqfxZ//4HFzv80/4yL8vg/EBHZSbw/Ih6MiIfKuj8cEY9ExIEl4v/uhYPvrDz+9ZXFPxaLt/9SbzJ3vn7y3Pnqdzu7ZemVjlPffp00KL+Z49+56Ug+z95fbsk//26imXqt7GwGAACA208aEdsjSQfKL/zbI00HBoq/4d8VW9PaxOTUE8cn3jszVtwj0BtdaTXS1TNnPHQoqf4SvkgPl2PF1f7D5bjxZx1b8vTA6ERtrLWhQ9vbNtv+y8+Cov1n/uhode2Aded+LWhf9e0/bVE9gI3n+g/ta5H2v6UV9QA23sqv/0s8OgC4LSzW/i/Wpc0FwJ1pYfv/fZFH1lW617s6wAZacf9/PZ+MAWwI4//QvrR/aEvzbok/s6PZ2+at3LYrsVY/J70lwmnjleq/n5jdUg3aN/f2zjmPyTi4IE9rP5cAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAADWyn8BAAD//6KW65E=") ptrace$getregset(0x11, r0, 0x0, &(0x7f0000000080)={0x0}) 689.596336ms ago: executing program 0 (id=11459): r0 = syz_genetlink_get_family_id$ethtool(&(0x7f0000000300), 0xffffffffffffffff) r1 = socket$nl_generic(0x10, 0x3, 0x10) recvmmsg(r1, &(0x7f0000001640)=[{{0x0, 0x0, &(0x7f0000000040)=[{&(0x7f00000004c0)=""/4096, 0x1e1c}, {&(0x7f00000000c0)=""/250, 0x4}], 0x2, 0x0, 0xd64}}], 0x300, 0x34000, 0x0) sendmsg$ETHTOOL_MSG_TSINFO_GET(r1, &(0x7f0000000480)={0x0, 0x0, &(0x7f0000000440)={&(0x7f0000000280)=ANY=[@ANYBLOB="18000000", @ANYRES16=r0, @ANYBLOB="a787000000ff000000000b00000404000180"], 0x18}}, 0x0) 647.14275ms ago: executing program 3 (id=11460): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000080850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000180)={&(0x7f0000000140)='sys_enter\x00', r0}, 0x10) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000440)='blkio.bfq.avg_queue_size\x00', 0x275a, 0x0) sync_file_range(r1, 0x0, 0x0, 0x3) 617.639843ms ago: executing program 3 (id=11462): r0 = syz_open_dev$tty20(0xc, 0x4, 0x1) ioctl$TIOCSETD(r0, 0x5423, &(0x7f0000000080)=0x2) read(r0, 0x0, 0x0) ioctl$TIOCVHANGUP(r0, 0x5437, 0x0) 560.748878ms ago: executing program 2 (id=11463): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)="87", 0x520}], 0x1) 499.089064ms ago: executing program 2 (id=11464): r0 = openat$kvm(0xffffff9c, &(0x7f0000000140), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x0) ioctl$KVM_SET_MSRS(r2, 0x4008ae89, &(0x7f00000000c0)=ANY=[@ANYBLOB="010000000000000003000040"]) 498.929734ms ago: executing program 3 (id=11465): syz_mount_image$ext4(&(0x7f0000000040)='ext4\x00', &(0x7f0000000200)='./file1\x00', 0x0, &(0x7f0000000480), 0xf8, 0x58a, &(0x7f00000004c0)="$eJzs3U1vE9caAOB3HAfCx70JEkL33sVVKhalojgk6QeVuqDLqkVFavfUSkyE4uAodhBJkQqLsummQpWqqkhVu+++S9Q/0F+B1FLRCkXtoptU44yDSewQJw4O+HmkgXNmBs55Z+Y9PuOx5QD61mj6Ry7ivxHxRRIx3LQtH9nG0bX9Vh7dmEqXJFZXP/wjiSRb19g/yf4+klX+ExE/fRZxOre53erS8myxXC4tZPWx2tz8WHVp+cyVueJMaaZ0dWJy8tzrkxNvvflG12J95eJfX39w791zn59c+eqHB8fuJHE+jmbbmuPYhZvNldEYzY7JYJzfsON4FxrbT5Jed4AdGcjyfDDSMWA4BrKsb2l1+Fl2Ddhjn6ZpDfSpRP5Dn2rMAxr39l26D35uPHxn7QZoc/z5tfdGYqh+b3R4JXnizii93x3pQvtpGz/+evdOukRn70Mc7ELzQB+7eSsizubzm8e/JBv/du7sNvbZ2Ea/vf5AL91L5z+vtpr/5NbnP9Fi/nOkRe7uxNPzP/egC820lc7/3m45/11/aDUykNX+VZ/zDSaXr5RL6dj274g4FYMH0/oWz3M+zq3cX223sXn+ly5p+425YNaPB/kNM73pYq24q6CbPLwV8b+W899k/fwnLc5/ejwubrONE6W7/2+37enx763V7yJebnn+Hz/RSrZ+PjlWvx7GGlfFZn/ePvFzu/Y7ij+5uet4N0rP/+Gt4x9Jmp/XVjtv49uhv0vttu30+j+QfFQvH8jWXS/WagvjEQeS9zevn3j8bxv1xv5p/KdObj3+tbr+D6WJvc34bx+/3bzrUGfx7600/umOzn/nhfvvffJNu/a3d/5fq5dOZWu2M/5tt4O7OXYAAAAAAACw3+Qi4mgkucJ6OZcrFNY+33E8DufKlWrt9OXK4tXpqH9XdiQGc40n3cNNn4cYzz4P26hPbKhPRsSxiPhy4FC9XpiqlKd7HTwAAAAAAAAAAAAAAAAAAADsE0cihlp9/z/1y0CvewfsuS1+8ht4wbXP/2xLN37pCdiXvP5D/8ryP+l1P4Bnz+s/9C/5D/1L/kP/kv/Qv+Q/9K9O8v/7C3vYEQAAAAAAAAAAAAAAAAAAAAAAAAAAAHgxXLxwIV1WVx7dmErr09eWFmcr185Ml6qzhbnFqcJUZWG+MFOpzJRLhanK3NP+v3KlMj8+EYvXx2qlam2surR8aa6yeLV26cpccaZ0qTT4TKICAAAAAAAAAAAAAAAAAACA50t1aXm2WC6XFhR2VIh8q2PYOLr7oYd7Xcjvj268UIXffp9/qdfXT0+HJQAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB4wj8BAAD//6RiNVw=") r0 = open(&(0x7f0000000040)='./file2\x00', 0x181042, 0x0) write$P9_RREADDIR(r0, &(0x7f0000000ec0)={0x2a, 0x29, 0x0, {0x0, [{{0x0, 0x2}, 0x0, 0x6, 0x7, './file2'}]}}, 0x2a) sendfile(r0, r0, &(0x7f0000000240), 0x7f03) 358.524717ms ago: executing program 1 (id=11466): r0 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$inet6_int(r0, 0x29, 0x31, &(0x7f0000000100)=0xffff, 0x4) sendto$inet6(r0, &(0x7f0000000000)="800037bbfa9ba1ce", 0x8, 0x0, &(0x7f0000001100)={0xa, 0x0, 0x0, @loopback}, 0x1c) recvmmsg(r0, &(0x7f0000000640)=[{{0x0, 0x0, 0x0}, 0xffff}], 0x1, 0x0, 0x0) 354.458518ms ago: executing program 0 (id=11477): syz_mount_image$vfat(&(0x7f0000000140), &(0x7f0000000000)='./file0\x00', 0x101c08a, &(0x7f00000008c0)=ANY=[@ANYBLOB="7379735f696d6d757461626c652c757466383d312c696f636861727365743d61736369692c73686f72746e616d653d77696e39352c73686f77657865632c6e66732c636865636b3d7374726963742c756e695f786c6174653d302c757466383d312c73686f72746e616d653d6c6f7765722c73686f72746e616d653d6c6f7765722c726f6469722c726f6469722c64656275672c757466383d302c726f6469722c71756965742c6572726f72733d72656d6f756e742d726f2c009c8a8fc4f74784ad79ec08fb556262ebc972ef94821f3565ef5f75f11e30ef1f72a065c510b17cae352940538b7b2c5d72f4627c25306b2479725add28f511a68f5f6f47f9facdd0cc574286d00ab52d6b9374b6a58eac694336ebe971f41860d01084c1a0fa6b51d80fa9f9d2c5a2e7a5284f93296217ef8f28e0a36e573296a0bfb38b94191f4b82873563f3759b5e193ecfab6ed789254236470a3602991821d4844f628e6bdd8b62cca73744332f0185a54b846e0894c8c5c09209d6c17fff6a7caa9ac9a991da98e7073841b97afa6fb1687a987ff91325c4be005566c21bf91d6b03f6dd7d9fc43a6c6c2f5409e00abc1c3422cdc9551ad2d1d541517e9739475a829e82cc64e9793b111723a61f807244ac21e2b9b6d5a09d3106a1b86f2125021ae78c8327fddf77288154562a19be165e40e97ecac1ee8234250b76bd"], 0x6, 0x2c1, &(0x7f00000005c0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpuset.effective_mems\x00', 0x275a, 0x0) read$FUSE(r0, &(0x7f00000032c0)={0x2020}, 0x2020) ioctl$FAT_IOCTL_SET_ATTRIBUTES(r0, 0x40047211, &(0x7f00000000c0)) 314.251311ms ago: executing program 1 (id=11467): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x9, 0x66, 0x2, 0x8, 0x42, 0xffffffffffffffff, 0x2000000, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x50) bpf$MAP_GET_NEXT_KEY(0x2, &(0x7f0000000080)={r0, &(0x7f0000000140), &(0x7f0000000200)=""/137, 0x2}, 0x20) r1 = bpf$MAP_CREATE_TAIL_CALL(0x0, &(0x7f0000000740)={0x3, 0x4, 0x4, 0xa, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f00000001c0)={0x18, 0xc, &(0x7f0000000040)=@framed={{0x18, 0x7}, [@tail_call={{0x18, 0x2, 0x1, 0x0, r1}}, @func={0x85, 0x0, 0x1, 0x0, 0x3}, @initr0, @exit]}, &(0x7f0000000000)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) 260.861516ms ago: executing program 2 (id=11468): sched_setscheduler(0x0, 0x1, 0x0) bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000180)={0x3, 0x4, &(0x7f0000001180)=ANY=[@ANYBLOB="8500000013000000350000000000ba00850000000700000095000000000000004cf12aa5cbd56806f81f06a9c0ff431553ca08030871e23089f5e0a141d524588f32cb447f90ee60b191e2c825cd4d580e7953f911aa1f7017230163cf09493497cbe593f90a847687a1ef1f83dd6c1023678a1086f790f9dce435558fe138d7362090db7457c14bc34e6bde0887c697add9a7ab69000000004f0a9c139e19b27de95dbfb3fe241454a04080bf668ce021879c820f9b80fe233888f0008000007027d4b33729d714e0e205db36aa52281c71e90bbd1615e3a833c63d330700f514c622ff99237bfb3557b4e44bdfdae050a0678a3d8407b0a45c623d8ef9baf37ac4effeac63a1606ff3c25ac788dbcc31bb76fbf87fc74300000000932d2793674f1f8719d07a6396b18b6e214bd29aef8d03483012c76199e301494d766a733d7117fc9107bc5b9267fbf8b0d2e2f4f6582b9510d30a5d3d3bd12bc338028e217e7d59efd3090be5bf2f9d1c42104df0da362f586aa2397bb7866d97163b2bdc3364b08dfcc0415c369736ea2897e6bb88e8fae37345fb21b69331e250886b7bf9efdcd5e998f7cfad443c3336c6abfc401c4f774942c7e5a56f0c3281afbf9b1f5e2a7080d147347508a7d2884a2b49b6039c221dabadcd313c01384dd93ff43a3ff43b69bb8659a89d857f3b15de7b06fd9fe93470ee07794c213f9c51a7ecaa2cdc70024c3aa400000000000000000000000000000000000000000000000085d16fbc2f7845935b8abf55ae4fc25c736170a4b9b78bacd235e49c0c773e783f48e36d61aebcaaeec26da752aba7eda57fbe0fbb9d771e1d5b2979ab12b6467ae7d8d746"], &(0x7f0000000140)='GPL\x00', 0x0, 0xfffffe1f, &(0x7f00000004c0)=""/153, 0x0, 0x0, '\x00', 0x0, @sched_cls, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0xffffffffffffffff, 0x49, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x15) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f0000000440)={r0, 0x0, 0x12, 0xfffffffffffffd85, &(0x7f00000000c0)="61df712bc884fed5722780b688a8", 0x0, 0x739d, 0x0, 0x20}, 0x28) 257.985816ms ago: executing program 0 (id=11480): syz_mount_image$vfat(&(0x7f00000000c0), &(0x7f0000000040)='./file2\x00', 0x0, &(0x7f0000000240)=ANY=[], 0xfd, 0x11f3, &(0x7f0000001b80)="$eJzs3E+LW1UYB+C3cWrHqfNHrdV2oQfduLo0s3AlSJApyASU2gitINw6NxpyTUJuGIiI1ZVbP4e4dCeIX2A2fgZ3s3HZhXiFpLVNTdUuOpH6PJv7kvf8cu8hEDjhnBy/8c2n/W6VdfNJNE6disYoIt1KkaIRd7y0P79eu77farf3rqR0uXW1+XpKaevlHz/4/LtXfpqcff/7rR/OxNHOh8e/7v5ydP7owvHvVz/pValXpcFwkvJ0Yzic5DfKIh30qn6W0rtlkVdF6g2qYrzQ75bD0Wia8sHB5sZoXFRVygfT1C+maTJMk/E05R/nvUHKsixtbgQPdPqfh3S+vVXXdURdn44no67r+qnYiLPxdGzGVnwZEc/Es/FcnIvn43y8EC/Ghdmok3h8AAAAAAAAAAAAAAAAAAAA+P/4u/P/27Hj/D8AAAAAAAAAAAAAAAAAAACcgPeuXd9vtdt7V1Jajyi/PuwcdubXeb/VjV6UUcSl2I7fYnb6f25eX367vXcpzezEV+XN2/mbh50nFvPN2d8J3M6vzXp38s15Pi3mz8TGvfnd2I5zy++/uzS/Hq+9ek8+i+34+aMYRhkHs3vfzX/RTOmtd9r35S/OxgEAAMDjIEt/Wrp+z7IH9ef5h/h94L719VpcXFvt3Imopp/187IsxovF+l9eUfz7ovGI3rkR/5EJKh7/YtXfTJyEux/6qp8EAAAAAAAAAACAh/GIdxGuxZKdZW+uZqoAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAB/sAPHAgAAAADC/K3T6NgAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAAABgqAAD//99CzUo=") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000100)='blkio.throttle.io_service_bytes\x00', 0x275a, 0x0) ftruncate(r0, 0x100c17a) truncate(&(0x7f0000000040)='./file2\x00', 0x2328) 189.736823ms ago: executing program 1 (id=11469): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000180)=ANY=[@ANYBLOB="180000000000000000000000000000001801000020786c2500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b7030000ffffffff850000002d000000850000002a00000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000000)={&(0x7f00000002c0)='kfree\x00', r0}, 0x10) r1 = openat$vhost_vsock(0xffffffffffffff9c, &(0x7f0000000140), 0x2, 0x0) close_range(r1, 0xffffffffffffffff, 0x0) 147.824736ms ago: executing program 2 (id=11470): r0 = socket$inet_udplite(0x2, 0x2, 0x88) ioctl$sock_SIOCGIFINDEX(r0, 0x8933, &(0x7f0000000080)={'syz_tun\x00', 0x0}) r2 = socket$nl_route(0x10, 0x3, 0x0) sendmsg$nl_route(r2, &(0x7f0000000440)={0x0, 0x0, &(0x7f0000000400)={&(0x7f0000000a40)=@ipv4_newaddr={0x28, 0x14, 0x1, 0x0, 0x0, {0x2, 0x0, 0x0, 0x0, r1}, [@IFA_TARGET_NETNSID={0x8, 0xb}, @IFA_LOCAL={0x8}]}, 0x28}}, 0x0) 111.0791ms ago: executing program 2 (id=11471): sendmsg$nl_route(0xffffffffffffffff, &(0x7f0000000000)={0x0, 0x0, &(0x7f0000000180)={&(0x7f0000000200)=ANY=[], 0xa0}}, 0x0) r0 = socket(0x10, 0x3, 0x0) sendmsg$nl_route(r0, &(0x7f0000000040)={0x0, 0x0, &(0x7f0000000080)={&(0x7f00000000c0)=ANY=[@ANYBLOB="240000006800019f00000000000000000a00000000000000080001000100000004"], 0x24}, 0x1, 0x0, 0x0, 0x4}, 0x0) sendmmsg(r0, &(0x7f0000000000), 0x4000000000001f2, 0x0) 110.13121ms ago: executing program 1 (id=11473): r0 = open(&(0x7f00000004c0)='.\x00', 0x200100, 0x20) r1 = dup(r0) close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) fsetxattr$security_capability(r1, 0x0, 0x0, 0x0, 0x0) 68.200174ms ago: executing program 2 (id=11474): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000980)={0x11, 0x8, &(0x7f0000000b80)=ANY=[@ANYBLOB="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"], &(0x7f0000000100)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x8, 0x10, &(0x7f0000000000), 0x10, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x49) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000040)='kmem_cache_free\x00', r0}, 0x10) r1 = openat$sysfs(0xffffffffffffff9c, &(0x7f00000002c0)='/sys/power/resume', 0x149a82, 0x0) write$cgroup_int(r1, &(0x7f0000000000)=0x700, 0x12) 62.660445ms ago: executing program 1 (id=11475): bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r0 = socket$inet6(0xa, 0x3, 0x3c) connect$inet6(r0, &(0x7f0000000140)={0xa, 0x0, 0x0, @dev, 0x7}, 0x1c) writev(r0, &(0x7f00000000c0)=[{&(0x7f0000000100)="87", 0x520}], 0x1) 47.796256ms ago: executing program 3 (id=11476): syz_mount_image$ext4(&(0x7f0000000240)='ext4\x00', &(0x7f0000000280)='./mnt\x00', 0x0, &(0x7f00000002c0), 0x0, 0x236, &(0x7f0000000300)="$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") mkdirat(0xffffffffffffff9c, &(0x7f0000000640)='mnt/encrypted_dir\x00', 0x1c0) r0 = openat(0xffffffffffffff9c, &(0x7f0000000680)='mnt/encrypted_dir\x00', 0x0, 0x0) ioctl$FS_IOC_SET_ENCRYPTION_POLICY(r0, 0x6609, 0x0) 532.24µs ago: executing program 1 (id=11478): r0 = fsopen(&(0x7f00000003c0)='cgroup2\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r0, 0x6, 0x0, 0x0, 0x0) r1 = fsmount(r0, 0x0, 0x0) bpf$BPF_PROG_DETACH(0x9, &(0x7f0000000200)={@cgroup=r1, 0xffffffffffffffff, 0x2b, 0x0, 0x2, @void, @value}, 0x10) 0s ago: executing program 4 (id=11479): r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cpu.stat\x00', 0x275a, 0x0) write$UHID_CREATE2(r0, &(0x7f0000000300)=ANY=[], 0x118) mmap(&(0x7f0000000000/0x3000)=nil, 0x3000, 0x5, 0x12, r0, 0x0) capget(&(0x7f0000000300)={0x19980330}, 0x0) kernel console output (not intermixed with test programs): 413.674769][ T3149] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 413.682701][ T3149] usb 5-1: Product: syz [ 413.709828][ T3149] usb 5-1: Manufacturer: syz [ 413.716244][ T28] audit: type=1400 audit(2134217933.445:88929): avc: denied { ioctl } for pid=22133 comm="syz.4.10343" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 413.716628][ T3149] usb 5-1: SerialNumber: syz [ 413.749368][ T28] audit: type=1400 audit(2134217933.473:88930): avc: denied { bpf } for pid=22138 comm="syz.2.10345" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 413.770318][ T3149] usb 5-1: config 0 descriptor?? [ 413.778198][ T28] audit: type=1400 audit(2134217933.473:88931): avc: denied { prog_load } for pid=22138 comm="syz.2.10345" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 413.800764][ T28] audit: type=1400 audit(2134217933.473:88932): avc: denied { ioctl } for pid=22133 comm="syz.4.10343" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 413.876217][ T28] audit: type=1400 audit(2134217933.501:88933): avc: denied { bpf } for pid=22138 comm="syz.2.10345" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 414.008178][T22155] SELinux: Context Ü is not valid (left unmapped). [ 414.261772][T22178] netlink: 24 bytes leftover after parsing attributes in process `syz.2.10363'. [ 414.409947][T22190] loop3: detected capacity change from 0 to 512 [ 414.448685][T22190] EXT4-fs mount: 2 callbacks suppressed [ 414.448707][T22190] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 414.479988][T22190] ext4 filesystem being mounted at /18/file1 supports timestamps until 2038 (0x7fffffff) [ 414.565418][T21961] EXT4-fs (loop3): unmounting filesystem. [ 414.753262][ T3149] (unnamed net_device) (uninitialized): Assigned a random MAC address: 12:56:62:06:a0:f4 [ 414.799076][ T3149] rtl8150 5-1:0.0: eth1: rtl8150 is detected [ 414.821048][T22217] loop3: detected capacity change from 0 to 1024 [ 414.833075][ T3149] usb 5-1: USB disconnect, device number 106 [ 414.894882][T22217] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 414.908157][T22217] ext4 filesystem being mounted at /22/file1 supports timestamps until 2038 (0x7fffffff) [ 414.940630][T21961] EXT4-fs (loop3): unmounting filesystem. [ 414.983696][T22225] loop0: detected capacity change from 0 to 512 [ 415.041766][T22225] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #16: comm syz.0.10383: iget: bad extended attribute block 128 [ 415.074878][T22225] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.10383: couldn't read orphan inode 16 (err -117) [ 415.106507][T22225] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 415.136901][T22225] ext4 filesystem being mounted at /15/file1 supports timestamps until 2038 (0x7fffffff) [ 415.170365][T22225] EXT4-fs error (device loop0): ext4_search_dir:1548: inode #12: block 13: comm syz.0.10383: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0 [ 415.198031][T22239] loop3: detected capacity change from 0 to 128 [ 415.246123][T22225] EXT4-fs error (device loop0): ext4_acquire_dquot:6764: comm syz.0.10383: Failed to acquire dquot type 1 [ 415.294885][T21996] EXT4-fs (loop0): unmounting filesystem. [ 415.449593][T22251] tipc: Started in network mode [ 415.454308][T22251] tipc: Node identity 0300000003, cluster identity 4711 [ 415.462168][T22255] loop4: detected capacity change from 0 to 256 [ 415.479169][T22251] tipc: Enabling of bearer rejected, failed to enable media [ 415.579663][T22260] netlink: 8 bytes leftover after parsing attributes in process `syz.2.10398'. [ 415.654076][T22260] netlink: 36 bytes leftover after parsing attributes in process `syz.2.10398'. [ 415.727373][T22269] bridge0: port 1(bridge_slave_0) entered blocking state [ 415.734275][T22269] bridge0: port 1(bridge_slave_0) entered forwarding state [ 415.801897][T22274] input: syz0 as /devices/virtual/input/input70 [ 416.227115][T22252] loop3: detected capacity change from 0 to 40427 [ 416.272123][T22252] F2FS-fs (loop3): Invalid SB checksum offset: 0 [ 416.295202][T22252] F2FS-fs (loop3): Can't find valid F2FS filesystem in 2th superblock [ 416.365658][T22312] loop0: detected capacity change from 0 to 512 [ 416.373615][T22252] F2FS-fs (loop3): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 416.379637][T22312] EXT4-fs (loop0): encrypted files will use data=ordered instead of data journaling mode [ 416.433597][T22312] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #16: comm syz.0.10422: invalid indirect mapped block 4294967295 (level 0) [ 416.448263][T22316] loop2: detected capacity change from 0 to 2048 [ 416.464434][T22316] EXT4-fs: Ignoring removed nomblk_io_submit option [ 416.474878][T22312] EXT4-fs error (device loop0): ext4_free_branches:1030: inode #16: comm syz.0.10422: invalid indirect mapped block 4294967295 (level 1) [ 416.509514][T22252] F2FS-fs (loop3): Try to recover 2th superblock, ret: 0 [ 416.516944][T22312] EXT4-fs (loop0): 1 orphan inode deleted [ 416.523046][T22312] EXT4-fs (loop0): 1 truncate cleaned up [ 416.524474][T22316] EXT4-fs error (device loop2): ext4_orphan_get:1422: comm syz.2.10424: bad orphan inode 8 [ 416.538269][T22312] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 416.549268][T22252] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 416.551424][T22316] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 416.583188][T22316] EXT4-fs error (device loop2): ext4_validate_block_bitmap:429: comm syz.2.10424: bg 0: block 2: invalid block bitmap [ 416.611568][T22312] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 191 vs 220 free clusters [ 416.637973][T21403] EXT4-fs (loop2): unmounting filesystem. [ 416.685972][T22327] loop1: detected capacity change from 0 to 2048 [ 416.726612][T21996] EXT4-fs (loop0): unmounting filesystem. [ 416.749712][T22327] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 416.761021][ T1036] kernel write not supported for file /166/timerslack_ns (pid: 1036 comm: kworker/1:5) [ 416.858280][T21576] EXT4-fs (loop1): unmounting filesystem. [ 416.875600][T22310] loop4: detected capacity change from 0 to 40427 [ 416.891322][T22310] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 416.898933][T22310] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 416.916269][T22310] F2FS-fs (loop4): invalid crc value [ 416.954047][T22310] F2FS-fs (loop4): Found nat_bits in checkpoint [ 417.065879][T22351] loop1: detected capacity change from 0 to 16 [ 417.066167][T22352] loop3: detected capacity change from 0 to 512 [ 417.104415][T22310] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 417.113380][T22351] erofs: (device loop1): mounted with root inode @ nid 36. [ 417.120571][T22310] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 417.170219][T22352] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 417.180943][T22352] EXT4-fs error (device loop3): ext4_orphan_get:1422: comm syz.3.10437: bad orphan inode 15 [ 417.217530][T22352] ext4_test_bit(bit=14, block=4) = 1 [ 417.265412][T22352] is_bad_inode(inode)=0 [ 417.271227][T22351] syz.1.10436: attempt to access beyond end of device [ 417.271227][T22351] loop1: rw=0, sector=8, nr_sectors = 16 limit=16 [ 417.284283][T22352] NEXT_ORPHAN(inode)=0 [ 417.334223][T22352] max_ino=32 [ 417.337267][T22352] i_nlink=1 [ 417.340261][T22352] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 417.415975][T21961] EXT4-fs (loop3): unmounting filesystem. [ 417.484638][T22364] loop3: detected capacity change from 0 to 512 [ 417.546773][T22364] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.10442: Parent and EA inode have the same ino 15 [ 417.602709][T22364] EXT4-fs error (device loop3): ext4_xattr_inode_iget:400: comm syz.3.10442: Parent and EA inode have the same ino 15 [ 417.622633][T22366] loop1: detected capacity change from 0 to 2048 [ 417.637252][T22364] EXT4-fs (loop3): 1 orphan inode deleted [ 417.643472][T22364] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 417.651575][T22366] EXT4-fs: Ignoring removed nobh option [ 417.719771][T22376] loop4: detected capacity change from 0 to 128 [ 417.727133][T22366] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 417.756136][T22366] ext4 filesystem being mounted at /68/file0 supports timestamps until 2038 (0x7fffffff) [ 417.854687][T22376] FAT-fs (loop4): error, corrupted directory (invalid i_start) [ 417.862092][T22376] FAT-fs (loop4): Filesystem has been set read-only [ 417.890870][T22366] fs-verity (loop1, inode 13): ext4_end_enable_verity() failed with err -30 [ 417.985409][T21576] EXT4-fs (loop1): unmounting filesystem. [ 418.093652][T21961] EXT4-fs (loop3): unmounting filesystem. [ 418.185898][T22393] SELinux: failed to load policy [ 418.255938][T22401] bridge: RTM_NEWNEIGH with unconfigured vlan 1 on bridge_slave_0 [ 418.274884][T22404] binder: 22403:22404 ioctl c0306201 200003c0 returned -14 [ 418.355496][T22414] loop0: detected capacity change from 0 to 16 [ 418.393650][T22414] erofs: (device loop0): mounted with root inode @ nid 36. [ 418.429739][T22416] overlayfs: failed to clone lowerpath [ 418.436975][T22414] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=86 [ 418.452910][T22414] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop0 ino=86 [ 418.657719][ T28] kauditd_printk_skb: 964 callbacks suppressed [ 418.657736][ T28] audit: type=1400 audit(2134217938.178:89896): avc: denied { read write } for pid=21607 comm="syz-executor" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 418.698055][ T19] usb 2-1: new high-speed USB device number 105 using dummy_hcd [ 418.733846][ T28] audit: type=1400 audit(2134217938.178:89897): avc: denied { open } for pid=21607 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 418.794972][ T28] audit: type=1400 audit(2134217938.178:89898): avc: denied { ioctl } for pid=21607 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=118 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 418.821446][ T28] audit: type=1400 audit(2134217938.206:89899): avc: denied { read } for pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 418.845005][ T28] audit: type=1400 audit(2134217938.206:89900): avc: denied { search } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 418.917763][ T28] audit: type=1400 audit(2134217938.206:89901): avc: denied { append } for pid=85 comm="syslogd" name="messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 418.975357][ T28] audit: type=1400 audit(2134217938.206:89902): avc: denied { open } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 419.003533][T22443] xt_hashlimit: size too large, truncated to 1048576 [ 419.024903][T22428] loop0: detected capacity change from 0 to 40427 [ 419.039880][ T28] audit: type=1400 audit(2134217938.206:89903): avc: denied { getattr } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 419.075492][T22428] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 419.095941][T22428] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 419.110148][ T28] audit: type=1400 audit(2134217938.216:89904): avc: denied { bpf } for pid=22431 comm="syz.4.10473" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 419.122314][T22428] F2FS-fs (loop0): invalid crc value [ 419.159581][T22428] F2FS-fs (loop0): Found nat_bits in checkpoint [ 419.169142][ T28] audit: type=1400 audit(2134217938.216:89905): avc: denied { map_create } for pid=22431 comm="syz.4.10473" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 419.254226][T22428] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 419.264715][ T19] usb 2-1: New USB device found, idVendor=0f19, idProduct=0105, bcdDevice= 1.00 [ 419.273622][T22428] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 419.284343][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 419.312940][ T19] usb 2-1: Product: syz [ 419.327764][ T19] usb 2-1: Manufacturer: syz [ 419.338491][ T19] usb 2-1: SerialNumber: syz [ 419.351824][ T19] usb 2-1: config 0 descriptor?? [ 419.378433][T21996] syz-executor: attempt to access beyond end of device [ 419.378433][T21996] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 419.414824][ T19] usb-storage 2-1:0.0: USB Mass Storage device detected [ 419.438171][ T19] usb-storage 2-1:0.0: Quirks match for vid 0f19 pid 0105: 20 [ 419.646150][ T1043] usb 2-1: USB disconnect, device number 105 [ 419.696518][T22464] overlayfs: failed to clone lowerpath [ 419.864665][T22474] loop0: detected capacity change from 0 to 128 [ 419.952437][T22482] loop0: detected capacity change from 0 to 2048 [ 419.976835][T22482] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 420.015113][T21996] EXT4-fs (loop0): unmounting filesystem. [ 420.204962][T22493] xt_hashlimit: size too large, truncated to 1048576 [ 420.206454][T22468] loop3: detected capacity change from 0 to 40427 [ 420.241911][T22468] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 420.272774][T22468] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 420.294944][T22468] F2FS-fs (loop3): invalid crc value [ 420.309377][T22498] loop1: detected capacity change from 0 to 256 [ 420.330778][T22498] exfat: Deprecated parameter 'utf8' [ 420.331888][T22468] F2FS-fs (loop3): Found nat_bits in checkpoint [ 420.343228][T22498] exfat: Deprecated parameter 'namecase' [ 420.359006][T22498] exfat: Deprecated parameter 'namecase' [ 420.386121][T22498] exfat: Deprecated parameter 'utf8' [ 420.400316][T22498] exFAT-fs (loop1): failed to load upcase table (idx : 0x00012153, chksum : 0x822ffc2e, utbl_chksum : 0xe619d30d) [ 420.426652][T22468] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 420.440807][ T1036] usb 5-1: new high-speed USB device number 107 using dummy_hcd [ 420.451430][T22468] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 420.858496][T22509] loop1: detected capacity change from 0 to 40427 [ 420.874289][T22509] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 420.882579][T22509] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 420.889903][ T1036] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 420.897061][T22517] Invalid ELF header magic: != ELF [ 420.907601][ T1036] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 420.908362][T22509] F2FS-fs (loop1): invalid crc value [ 420.917256][ T1036] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 420.933216][T22509] F2FS-fs (loop1): Found nat_bits in checkpoint [ 420.942801][ T1036] usb 5-1: config 0 descriptor?? [ 421.006763][T22509] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 421.017605][T22509] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 421.317342][ T1036] usbhid 5-1:0.0: can't add hid device: -71 [ 421.324415][ T1036] usbhid: probe of 5-1:0.0 failed with error -71 [ 421.338713][ T3149] usb 3-1: new high-speed USB device number 103 using dummy_hcd [ 421.349676][ T1036] usb 5-1: USB disconnect, device number 107 [ 421.389368][T22536] loop1: detected capacity change from 0 to 16 [ 421.397178][T22536] erofs: (device loop1): mounted with root inode @ nid 36. [ 421.409019][T22536] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=86 [ 421.418890][T22536] SELinux: inode_doinit_use_xattr: getxattr returned 117 for dev=loop1 ino=86 [ 421.566843][T22538] loop1: detected capacity change from 0 to 40427 [ 421.574650][T22538] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 421.582269][T22538] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 421.599264][T22538] F2FS-fs (loop1): Found nat_bits in checkpoint [ 421.653111][T22543] loop3: detected capacity change from 0 to 2048 [ 421.657108][T22538] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 421.661342][T22543] EXT4-fs: Ignoring removed nobh option [ 421.675521][T22538] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 421.700477][T22543] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 421.709813][T22543] ext4 filesystem being mounted at /40/file0 supports timestamps until 2038 (0x7fffffff) [ 421.746254][T22543] fs-verity (loop3, inode 13): ext4_end_enable_verity() failed with err -30 [ 421.767292][T21961] EXT4-fs (loop3): unmounting filesystem. [ 421.826616][T22549] Invalid ELF header magic: != ELF [ 421.909782][T22558] loop3: detected capacity change from 0 to 128 [ 421.948394][ T3149] usb 3-1: New USB device found, idVendor=0f19, idProduct=0105, bcdDevice= 1.00 [ 421.958057][ T3149] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 421.969658][ T3149] usb 3-1: Product: syz [ 421.973653][ T3149] usb 3-1: Manufacturer: syz [ 421.978075][ T3149] usb 3-1: SerialNumber: syz [ 421.991427][T22558] FAT-fs (loop3): error, corrupted directory (invalid i_start) [ 421.999216][T22558] FAT-fs (loop3): Filesystem has been set read-only [ 422.027745][ T3149] usb 3-1: config 0 descriptor?? [ 422.066089][ T3149] usb-storage 3-1:0.0: USB Mass Storage device detected [ 422.083046][ T3149] usb-storage 3-1:0.0: Quirks match for vid 0f19 pid 0105: 20 [ 422.226023][ T1043] usb 2-1: new high-speed USB device number 106 using dummy_hcd [ 422.287478][ T3149] usb 3-1: USB disconnect, device number 103 [ 422.343577][ T19] usb 4-1: new high-speed USB device number 109 using dummy_hcd [ 422.482544][ T1043] usb 2-1: Using ep0 maxpacket: 16 [ 422.600122][ T19] usb 4-1: Using ep0 maxpacket: 16 [ 422.610904][ T1043] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 422.621717][ T1043] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 422.631355][ T1043] usb 2-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 422.644154][ T1043] usb 2-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 422.653014][ T1043] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 422.662141][ T1043] usb 2-1: config 0 descriptor?? [ 422.728519][ T19] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 422.739329][ T19] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 422.748868][ T19] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 422.758525][ T19] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64 [ 422.768321][ T19] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 422.867825][ T19] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 422.876786][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 422.884642][ T19] usb 4-1: SerialNumber: syz [ 422.910453][T22565] raw-gadget.3 gadget.3: fail, usb_ep_enable returned -22 [ 422.932859][ T19] cdc_acm 4-1:1.0: Control and data interfaces are not separated! [ 422.941231][ T19] cdc_acm: probe of 4-1:1.0 failed with error -12 [ 423.145375][ T24] usb 3-1: new high-speed USB device number 104 using dummy_hcd [ 423.159304][ T19] usb 4-1: USB disconnect, device number 109 [ 423.168076][ T1043] microsoft 0003:045E:07DA.0052: No inputs registered, leaving [ 423.178321][ T1043] microsoft 0003:045E:07DA.0052: hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.1-1/input0 [ 423.191593][ T1043] microsoft 0003:045E:07DA.0052: no inputs found [ 423.197757][ T1043] microsoft 0003:045E:07DA.0052: could not initialize ff, continuing anyway [ 423.215121][T22589] bridge0: trying to set multicast query interval below minimum, setting to 100 (1000ms) [ 423.225659][T22589] bridge0: port 2(bridge_slave_1) entered disabled state [ 423.232816][T22589] bridge0: port 1(bridge_slave_0) entered disabled state [ 423.306343][T22595] loop4: detected capacity change from 0 to 512 [ 423.317223][T22595] EXT4-fs error (device loop4): ext4_orphan_get:1396: inode #15: comm syz.4.10534: casefold flag without casefold feature [ 423.331224][T22595] EXT4-fs error (device loop4): ext4_xattr_inode_iget:404: inode #12: comm syz.4.10534: missing EA_INODE flag [ 423.343353][T22595] EXT4-fs error (device loop4): ext4_xattr_inode_iget:409: comm syz.4.10534: error while reading EA inode 12 err=-117 [ 423.356117][T22595] EXT4-fs (loop4): 1 orphan inode deleted [ 423.361775][T22595] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 423.388770][ T19] usb 2-1: USB disconnect, device number 106 [ 423.396173][T21607] EXT4-fs (loop4): unmounting filesystem. [ 423.412639][ T24] usb 3-1: Using ep0 maxpacket: 16 [ 423.475310][T22602] netlink: 28 bytes leftover after parsing attributes in process `syz.4.10537'. [ 423.485365][T22602] netlink: 12 bytes leftover after parsing attributes in process `syz.4.10537'. [ 423.620381][T22604] loop4: detected capacity change from 0 to 40427 [ 423.628118][T22604] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 423.636317][T22604] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 423.645633][T22604] F2FS-fs (loop4): invalid crc value [ 423.653111][T22604] F2FS-fs (loop4): Found nat_bits in checkpoint [ 423.712229][ T24] usb 3-1: New USB device found, idVendor=1235, idProduct=0010, bcdDevice=29.82 [ 423.721112][ T24] usb 3-1: New USB device strings: Mfr=83, Product=5, SerialNumber=10 [ 423.730808][ T24] usb 3-1: Product: syz [ 423.735717][ T24] usb 3-1: Manufacturer: syz [ 423.740161][ T24] usb 3-1: SerialNumber: syz [ 423.748049][T22604] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 423.763112][ T24] usb 3-1: config 0 descriptor?? [ 423.768800][T22604] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 423.815893][T22614] loop3: detected capacity change from 0 to 512 [ 423.822889][ T24] usb 3-1: selecting invalid altsetting 1 [ 423.837443][ T24] snd-usb-audio: probe of 3-1:0.0 failed with error -22 [ 423.869007][T22614] EXT4-fs error (device loop3): ext4_orphan_get:1422: comm syz.3.10542: bad orphan inode 13 [ 423.882779][T22614] ext4_test_bit(bit=12, block=4) = 1 [ 423.888357][T22614] is_bad_inode(inode)=0 [ 423.892557][T22614] NEXT_ORPHAN(inode)=0 [ 423.896968][T22614] max_ino=32 [ 423.899986][T22614] i_nlink=1 [ 423.902981][T22614] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 423.952923][T15489] udevd[15489]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 423.974020][T21961] EXT4-fs (loop3): unmounting filesystem. [ 424.011947][ T28] kauditd_printk_skb: 724 callbacks suppressed [ 424.011967][ T28] audit: type=1400 audit(2134222038.181:90630): avc: denied { prog_load } for pid=22627 comm="syz.3.10546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 424.046161][ T24] usb 3-1: USB disconnect, device number 104 [ 424.055581][ T28] audit: type=1400 audit(2134222038.181:90631): avc: denied { prog_run } for pid=22627 comm="syz.3.10546" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 424.060664][T22630] loop4: detected capacity change from 0 to 128 [ 424.096824][ T28] audit: type=1400 audit(2134222038.218:90632): avc: denied { read write } for pid=21996 comm="syz-executor" name="loop0" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 424.129889][T22634] input: syz0 as /devices/virtual/input/input71 [ 424.136260][ T28] audit: type=1400 audit(2134222038.218:90633): avc: denied { open } for pid=21996 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 424.249887][ T28] audit: type=1400 audit(2134222038.218:90634): avc: denied { ioctl } for pid=21996 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=114 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 424.351065][ T28] audit: type=1400 audit(2134222038.228:90635): avc: denied { read write } for pid=22629 comm="syz.4.10548" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 424.391477][T22650] audit: audit_backlog=65 > audit_backlog_limit=64 [ 424.398083][T21996] audit: audit_backlog=65 > audit_backlog_limit=64 [ 424.407089][T22650] audit: audit_lost=375 audit_rate_limit=0 audit_backlog_limit=64 [ 424.408767][T21576] audit: audit_backlog=65 > audit_backlog_limit=64 [ 424.658562][ T19] kernel write not supported for file bpf-prog (pid: 19 comm: kworker/0:1) [ 424.774197][T22673] loop2: detected capacity change from 0 to 512 [ 424.841125][T22673] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.10565: casefold flag without casefold feature [ 424.845475][T22640] loop4: detected capacity change from 0 to 40427 [ 424.870013][T22640] F2FS-fs (loop4): invalid crc value [ 424.875304][T22673] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.10565: missing EA_INODE flag [ 424.895852][T22640] F2FS-fs (loop4): Found nat_bits in checkpoint [ 424.926917][T22673] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.10565: error while reading EA inode 12 err=-117 [ 424.939752][T22673] EXT4-fs (loop2): 1 orphan inode deleted [ 424.946159][T22673] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 424.987502][T21403] EXT4-fs (loop2): unmounting filesystem. [ 425.106626][T22640] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 425.186139][T21607] syz-executor: attempt to access beyond end of device [ 425.186139][T21607] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 425.543048][T22710] bridge0: port 3(syz_tun) entered blocking state [ 425.566484][T22710] bridge0: port 3(syz_tun) entered disabled state [ 425.580034][T22710] device syz_tun entered promiscuous mode [ 425.604649][T22710] bridge0: port 3(syz_tun) entered blocking state [ 425.611009][T22710] bridge0: port 3(syz_tun) entered forwarding state [ 425.699630][T22701] loop0: detected capacity change from 0 to 40427 [ 425.742439][T22701] F2FS-fs (loop0): Invalid log_blocksize (268), supports only 12 [ 425.753862][T22701] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 425.874907][T22701] F2FS-fs (loop0): Found nat_bits in checkpoint [ 425.927076][T22703] loop2: detected capacity change from 0 to 40427 [ 425.951471][T22703] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 425.960181][T22703] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 426.009488][T22703] F2FS-fs (loop2): Found nat_bits in checkpoint [ 426.015913][T22701] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 426.031875][T22701] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 426.083482][T22703] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 426.090628][T22703] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 426.188842][T22747] loop1: detected capacity change from 0 to 512 [ 426.222680][T22747] EXT4-fs error (device loop1): ext4_orphan_get:1396: inode #15: comm syz.1.10595: casefold flag without casefold feature [ 426.236370][T22750] netlink: 4 bytes leftover after parsing attributes in process `syz.3.10596'. [ 426.251658][T22747] EXT4-fs error (device loop1): ext4_xattr_inode_iget:404: inode #12: comm syz.1.10595: missing EA_INODE flag [ 426.278054][T22747] EXT4-fs error (device loop1): ext4_xattr_inode_iget:409: comm syz.1.10595: error while reading EA inode 12 err=-117 [ 426.305572][T22747] EXT4-fs (loop1): 1 orphan inode deleted [ 426.311494][T22747] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 426.375099][T21576] EXT4-fs (loop1): unmounting filesystem. [ 426.377038][T22754] IPv6: NLM_F_REPLACE set, but no existing node found! [ 426.438065][ T19] usb 5-1: new high-speed USB device number 108 using dummy_hcd [ 426.824110][T22782] loop2: detected capacity change from 0 to 512 [ 426.866864][T22782] EXT4-fs: Ignoring removed nomblk_io_submit option [ 426.885774][T22782] EXT4-fs: Ignoring removed mblk_io_submit option [ 426.913414][T22782] EXT4-fs (loop2): Cannot turn on journaled quota: type 0: error -2 [ 426.923481][T22782] EXT4-fs (loop2): Cannot turn on journaled quota: type 1: error -2 [ 426.949623][T22782] EXT4-fs (loop2): 1 truncate cleaned up [ 426.955470][T22782] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 426.984701][T22782] EXT4-fs error (device loop2): __ext4_remount:6412: comm syz.2.10604: Abort forced by user [ 426.994400][ T19] usb 5-1: New USB device found, idVendor=0f19, idProduct=0105, bcdDevice= 1.00 [ 427.012194][ T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 427.020129][ T19] usb 5-1: Product: syz [ 427.024048][ T19] usb 5-1: Manufacturer: syz [ 427.028487][ T19] usb 5-1: SerialNumber: syz [ 427.030522][T22782] EXT4-fs (loop2): Remounting filesystem read-only [ 427.034177][ T19] usb 5-1: config 0 descriptor?? [ 427.053908][T22782] EXT4-fs (loop2): re-mounted. Quota mode: none. [ 427.067838][T21403] EXT4-fs (loop2): unmounting filesystem. [ 427.084780][ T19] usb-storage 5-1:0.0: USB Mass Storage device detected [ 427.118740][ T19] usb-storage 5-1:0.0: Quirks match for vid 0f19 pid 0105: 20 [ 427.135037][T22800] loop1: detected capacity change from 0 to 256 [ 427.204828][T22800] FAT-fs (loop1): Directory bread(block 64) failed [ 427.218909][T22800] FAT-fs (loop1): Directory bread(block 65) failed [ 427.236110][T22800] FAT-fs (loop1): Directory bread(block 66) failed [ 427.246860][T22800] FAT-fs (loop1): Directory bread(block 67) failed [ 427.261346][T22800] FAT-fs (loop1): Directory bread(block 68) failed [ 427.267732][T22800] FAT-fs (loop1): Directory bread(block 69) failed [ 427.293525][T22800] FAT-fs (loop1): Directory bread(block 70) failed [ 427.322708][ T19] usb 5-1: USB disconnect, device number 108 [ 427.328748][T22800] FAT-fs (loop1): Directory bread(block 71) failed [ 427.347158][T22800] FAT-fs (loop1): Directory bread(block 72) failed [ 427.353519][T22800] FAT-fs (loop1): Directory bread(block 73) failed [ 427.796750][T22825] loop1: detected capacity change from 0 to 40427 [ 427.805411][T22825] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 427.813139][T22825] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 427.827698][T22825] F2FS-fs (loop1): Found nat_bits in checkpoint [ 427.865019][T22825] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 427.872028][T22825] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 427.906280][T22843] incfs: mount failed -22 [ 428.073698][ T19] usb 4-1: new high-speed USB device number 110 using dummy_hcd [ 428.244760][ T24] usb 5-1: new high-speed USB device number 109 using dummy_hcd [ 428.341004][ T19] usb 4-1: Using ep0 maxpacket: 32 [ 428.469398][ T19] usb 4-1: config 1 interface 0 has no altsetting 0 [ 428.533406][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 428.640690][ T19] usb 4-1: New USB device found, idVendor=046d, idProduct=c087, bcdDevice= 0.40 [ 428.649710][ T19] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 428.657522][ T19] usb 4-1: Product: syz [ 428.661494][ T19] usb 4-1: Manufacturer: syz [ 428.666215][ T19] usb 4-1: SerialNumber: syz [ 428.672504][ T24] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 428.681391][ T24] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 428.691541][ T24] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 428.701088][ T24] usb 5-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 428.710620][ T24] usb 5-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 428.720139][ T24] usb 5-1: config 1 interface 0 has no altsetting 0 [ 428.726571][ T24] usb 5-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 428.735376][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 428.801347][ T24] ums-sddr09 5-1:1.0: USB Mass Storage device detected [ 429.026095][ T24] scsi host1: usb-storage 5-1:1.0 [ 429.241763][ T3013] usb 5-1: USB disconnect, device number 109 [ 429.400179][ T28] kauditd_printk_skb: 809 callbacks suppressed [ 429.400200][ T28] audit: type=1400 audit(2134222043.223:91434): avc: denied { ioctl } for pid=22836 comm="syz.3.10625" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 429.752181][ T19] usbhid 4-1:1.0: can't add hid device: -71 [ 429.758024][ T19] usbhid: probe of 4-1:1.0 failed with error -71 [ 429.772000][ T19] usb 4-1: USB disconnect, device number 110 [ 429.789942][ T28] audit: type=1400 audit(2134222043.587:91435): avc: denied { read write } for pid=21607 comm="syz-executor" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 429.815138][ T28] audit: type=1400 audit(2134222043.587:91436): avc: denied { read write open } for pid=21607 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 429.850050][ T28] audit: type=1400 audit(2134222043.587:91437): avc: denied { ioctl } for pid=21607 comm="syz-executor" path="/dev/loop4" dev="devtmpfs" ino=118 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 429.894915][ T28] audit: type=1400 audit(2134222043.606:91438): avc: denied { read } for pid=22865 comm="syz.4.10634" name="kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 429.917765][ T28] audit: type=1400 audit(2134222043.606:91439): avc: denied { open } for pid=22865 comm="syz.4.10634" path="/dev/kvm" dev="devtmpfs" ino=83 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 429.949518][ T28] audit: type=1400 audit(2134222043.606:91440): avc: denied { ioctl } for pid=22865 comm="syz.4.10634" path="/dev/kvm" dev="devtmpfs" ino=83 ioctlcmd=0xae01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:kvm_device_t tclass=chr_file permissive=1 [ 429.975317][ T28] audit: type=1400 audit(2134222043.653:91441): avc: denied { bpf } for pid=22869 comm="syz.1.10645" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 429.999775][ T28] audit: type=1400 audit(2134222043.653:91442): avc: denied { prog_load } for pid=22869 comm="syz.1.10645" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 430.023761][ T28] audit: type=1400 audit(2134222043.653:91443): avc: denied { perfmon } for pid=22869 comm="syz.1.10645" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 430.070082][T22879] netlink: 8 bytes leftover after parsing attributes in process `syz.4.10639'. [ 430.171634][T22888] loop4: detected capacity change from 0 to 16 [ 430.201548][ T6] usb 2-1: new high-speed USB device number 107 using dummy_hcd [ 430.231518][T22888] erofs: (device loop4): mounted with root inode @ nid 36. [ 430.248586][T22894] sch_tbf: burst 53766 is lower than device lo mtu (65550) ! [ 430.257693][T22888] erofs: (device loop4): z_erofs_extent_lookback: bogus lookback distance @ nid 36 [ 430.273302][T22888] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[1851] [ 430.295034][T22888] erofs: (device loop4): z_erofs_read_folio: failed to read, err [-117] [ 430.322758][T22888] erofs: (device loop4): z_erofs_readahead: readahead error at page 13 @ nid 36 [ 430.339167][T22888] erofs: (device loop4): z_erofs_readahead: readahead error at page 8 @ nid 36 [ 430.348937][T22888] erofs: (device loop4): z_erofs_readahead: readahead error at page 6 @ nid 36 [ 430.357878][T22888] erofs: (device loop4): z_erofs_readahead: readahead error at page 4 @ nid 36 [ 430.366773][T22888] erofs: (device loop4): z_erofs_do_map_blocks: invalid logical cluster 0 at nid 36 [ 430.376120][T22888] erofs: (device loop4): z_erofs_readahead: readahead error at page 0 @ nid 36 [ 430.384926][T22888] syz.4.10644: attempt to access beyond end of device [ 430.384926][T22888] loop4: rw=524288, sector=296, nr_sectors = 16 limit=16 [ 430.398552][T22888] syz.4.10644: attempt to access beyond end of device [ 430.398552][T22888] loop4: rw=524288, sector=1049264, nr_sectors = 16 limit=16 [ 430.412532][T22888] syz.4.10644: attempt to access beyond end of device [ 430.412532][T22888] loop4: rw=524288, sector=16, nr_sectors = 8 limit=16 [ 430.426056][T22888] syz.4.10644: attempt to access beyond end of device [ 430.426056][T22888] loop4: rw=524288, sector=720, nr_sectors = 80 limit=16 [ 430.439707][T22888] erofs: (device loop4): z_erofs_lz4_decompress_mem: failed to decompress -18 in[46, 4050] out[4055] [ 430.479156][ T6] usb 2-1: Using ep0 maxpacket: 16 [ 430.554027][ T1043] usb 3-1: new high-speed USB device number 105 using dummy_hcd [ 430.607680][ T6] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 430.638004][ T6] usb 2-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 430.661382][ T6] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 430.677386][ T6] usb 2-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 166 [ 430.687775][ T6] usb 2-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 430.778875][ T6] usb 2-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 430.787865][ T6] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 430.795867][ T6] usb 2-1: SerialNumber: syz [ 430.810527][ T1043] usb 3-1: Using ep0 maxpacket: 16 [ 430.821662][T22871] raw-gadget.0 gadget.1: fail, usb_ep_enable returned -22 [ 430.841560][T22913] loop4: detected capacity change from 0 to 40427 [ 430.843212][ T6] cdc_acm 2-1:1.0: Control and data interfaces are not separated! [ 430.864320][ T6] cdc_acm: probe of 2-1:1.0 failed with error -12 [ 430.872205][T22913] F2FS-fs (loop4): Invalid SB checksum offset: 0 [ 430.906745][T22913] F2FS-fs (loop4): Can't find valid F2FS filesystem in 2th superblock [ 430.923183][T22913] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 430.939065][ T1043] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 11 [ 430.955712][ T1043] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0xB has invalid wMaxPacketSize 0 [ 430.969813][ T1043] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0xB has invalid maxpacket 0 [ 430.986552][ T1043] usb 3-1: config 1 interface 0 altsetting 3 endpoint 0x8A has invalid wMaxPacketSize 0 [ 430.997461][ T1043] usb 3-1: config 1 interface 0 altsetting 3 bulk endpoint 0x8A has invalid maxpacket 0 [ 431.007905][ T1043] usb 3-1: config 1 interface 0 has no altsetting 0 [ 431.014404][ T1043] usb 3-1: New USB device found, idVendor=04e6, idProduct=0003, bcdDevice= 1.77 [ 431.024114][T22913] F2FS-fs (loop4): Try to recover 2th superblock, ret: 0 [ 431.031818][T22913] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 431.039688][ T1043] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 431.073042][ T6] usb 2-1: USB disconnect, device number 107 [ 431.099698][ T1043] ums-sddr09 3-1:1.0: USB Mass Storage device detected [ 431.222325][T22940] usb usb8: usbfs: process 22940 (syz.3.10666) did not claim interface 0 before use [ 431.334390][ T1043] scsi host1: usb-storage 3-1:1.0 [ 431.398039][T22952] loop3: detected capacity change from 0 to 512 [ 431.433441][T22952] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #16: comm syz.3.10671: iget: bad extended attribute block 128 [ 431.446565][T22952] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.10671: couldn't read orphan inode 16 (err -117) [ 431.458999][T22952] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 431.468351][T22952] ext4 filesystem being mounted at /89/file1 supports timestamps until 2038 (0x7fffffff) [ 431.485525][T22952] EXT4-fs error (device loop3): ext4_search_dir:1548: inode #12: block 13: comm syz.3.10671: bad entry in directory: inode out of bounds - offset=24, inode=33554445, rec_len=16, size=4096 fake=0 [ 431.506095][T22952] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.10671: Failed to acquire dquot type 1 [ 431.523786][T21961] EXT4-fs (loop3): unmounting filesystem. [ 431.541649][ T1043] usb 3-1: USB disconnect, device number 105 [ 431.962039][T22989] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10687'. [ 432.059021][T22996] loop4: detected capacity change from 0 to 2048 [ 432.113734][T22996] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 432.128573][T23005] xt_hashlimit: size too large, truncated to 1048576 [ 432.144291][T22996] ext4 filesystem being mounted at /118/file0 supports timestamps until 2038 (0x7fffffff) [ 432.175341][T23007] loop3: detected capacity change from 0 to 512 [ 432.219796][T22996] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.10690: bg 0: block 288: padding at end of block bitmap is not set [ 432.239568][T23007] EXT4-fs (loop3): Cannot turn on journaled quota: type 0: error -2 [ 432.274243][T23007] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #13: comm syz.3.10694: invalid indirect mapped block 8 (level 2) [ 432.305983][T22996] fs-verity (loop4, inode 13): ext4_end_enable_verity() failed with err -117 [ 432.322050][T23007] EXT4-fs (loop3): Remounting filesystem read-only [ 432.357650][T23007] EXT4-fs (loop3): 1 truncate cleaned up [ 432.370551][T21607] EXT4-fs (loop4): unmounting filesystem. [ 432.372520][T23007] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 432.412318][T23007] EXT4-fs (loop3): shut down requested (2) [ 432.435959][T21961] EXT4-fs (loop3): unmounting filesystem. [ 432.533663][T23020] loop1: detected capacity change from 0 to 1024 [ 432.621644][T23020] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 432.646917][T23029] loop4: detected capacity change from 0 to 128 [ 432.691225][T21576] EXT4-fs (loop1): unmounting filesystem. [ 432.788582][T23033] loop1: detected capacity change from 0 to 512 [ 432.832560][T23033] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 432.845766][T23033] ext4 filesystem being mounted at /120/file1 supports timestamps until 2038 (0x7fffffff) [ 432.881875][T21576] EXT4-fs (loop1): unmounting filesystem. [ 432.887571][ T6] usb 3-1: new high-speed USB device number 106 using dummy_hcd [ 432.945424][T23040] loop1: detected capacity change from 0 to 512 [ 432.964773][T23040] EXT4-fs error (device loop1): __ext4_fill_super:5386: inode #2: comm syz.1.10705: casefold flag without casefold feature [ 432.987162][T23040] EXT4-fs (loop1): warning: mounting fs with errors, running e2fsck is recommended [ 433.008360][T23040] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 433.055275][T21576] EXT4-fs (loop1): unmounting filesystem. [ 433.110409][T23031] loop4: detected capacity change from 0 to 40427 [ 433.118172][T23031] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 433.134903][T23031] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 433.162454][ T6] usb 3-1: Using ep0 maxpacket: 16 [ 433.167591][T23031] F2FS-fs (loop4): invalid crc value [ 433.187295][T23031] F2FS-fs (loop4): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 39874397669) [ 433.222312][T23031] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 433.229848][T23031] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 433.291097][ T6] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 433.322603][ T6] usb 3-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 433.343586][ T6] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 433.374852][ T6] usb 3-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64 [ 433.411833][ T6] usb 3-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 433.505915][T23079] loop0: detected capacity change from 0 to 512 [ 433.515336][ T6] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 433.529409][ T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 433.556262][ T6] usb 3-1: SerialNumber: syz [ 433.564160][T23079] EXT4-fs error (device loop0): ext4_orphan_get:1396: inode #15: comm syz.0.10721: casefold flag without casefold feature [ 433.584147][T23086] loop3: detected capacity change from 0 to 256 [ 433.609030][T23086] exFAT-fs (loop3): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 433.622716][T23024] raw-gadget.0 gadget.2: fail, usb_ep_enable returned -22 [ 433.643197][T23079] EXT4-fs error (device loop0): ext4_xattr_inode_iget:404: inode #2: comm syz.0.10721: missing EA_INODE flag [ 433.655321][ T6] cdc_acm 3-1:1.0: Control and data interfaces are not separated! [ 433.668510][ T6] cdc_acm: probe of 3-1:1.0 failed with error -12 [ 433.706408][T23079] EXT4-fs error (device loop0): ext4_xattr_inode_iget:409: comm syz.0.10721: error while reading EA inode 2 err=-117 [ 433.772283][T23079] EXT4-fs (loop0): 1 orphan inode deleted [ 433.777856][T23079] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 433.834356][T23079] fscrypt (loop0, inode 15): Can't use IV_INO_LBLK_32 policy on filesystem 'loop0' because it doesn't have stable inode numbers [ 433.895277][T21996] EXT4-fs (loop0): unmounting filesystem. [ 433.912712][ T1043] usb 3-1: USB disconnect, device number 106 [ 433.991765][T23119] raw_sendmsg: syz.4.10740 forgot to set AF_INET. Fix it! [ 434.109454][T23138] loop4: detected capacity change from 0 to 256 [ 434.119591][T23138] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0x1a9973fb, utbl_chksum : 0xe619d30d) [ 434.240898][T23146] usb usb7: Requested nonsensical USBDEVFS_URB_ZERO_PACKET. [ 434.327397][T23156] input: syz0 as /devices/virtual/input/input72 [ 434.411793][T23164] loop4: detected capacity change from 0 to 256 [ 434.442354][T23164] exFAT-fs (loop4): failed to load upcase table (idx : 0x0000fd4f, chksum : 0x3963664b, utbl_chksum : 0xe619d30d) [ 434.520289][T23173] loop1: detected capacity change from 0 to 256 [ 434.520475][T23164] exFAT-fs (loop4): hint_cluster is invalid (17) [ 434.541264][T23164] exFAT-fs (loop4): error, invalid access to FAT (entry 0xffffffff) [ 434.551036][T23164] exFAT-fs (loop4): Filesystem has been set read-only [ 434.646582][T23180] loop1: detected capacity change from 0 to 512 [ 434.665335][T23180] EXT4-fs (loop1): encrypted files will use data=ordered instead of data journaling mode [ 434.685251][T23180] EXT4-fs (loop1): 1 truncate cleaned up [ 434.690919][T23180] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 434.737660][T21576] EXT4-fs (loop1): unmounting filesystem. [ 434.756929][ T28] kauditd_printk_skb: 1181 callbacks suppressed [ 434.756945][ T28] audit: type=1400 audit(2134222048.236:92623): avc: denied { read write } for pid=21576 comm="syz-executor" name="loop1" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 434.851965][ T28] audit: type=1400 audit(2134222048.236:92624): avc: denied { bpf } for pid=23189 comm="syz.4.10771" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 434.943619][ T28] audit: type=1400 audit(2134222048.236:92625): avc: denied { prog_load } for pid=23189 comm="syz.4.10771" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 434.988158][ T28] audit: type=1400 audit(2134222048.236:92626): avc: denied { perfmon } for pid=23189 comm="syz.4.10771" capability=38 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 435.039123][ T28] audit: type=1400 audit(2134222048.236:92627): avc: denied { prog_run } for pid=23189 comm="syz.4.10771" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 435.059938][T23217] audit: audit_backlog=65 > audit_backlog_limit=64 [ 435.064681][T21576] audit: audit_backlog=65 > audit_backlog_limit=64 [ 435.074556][T23218] audit: audit_backlog=65 > audit_backlog_limit=64 [ 435.078963][T23217] audit: audit_lost=380 audit_rate_limit=0 audit_backlog_limit=64 [ 435.089118][T21576] audit: audit_lost=381 audit_rate_limit=0 audit_backlog_limit=64 [ 435.157719][T23221] loop1: detected capacity change from 0 to 512 [ 435.213584][T23221] [EXT4 FS bs=4096, gc=1, bpg=71, ipg=32, mo=a84ec028, mo2=0001] [ 435.232994][T23221] System zones: 0-2, 18-18, 34-34 [ 435.234517][T23232] netlink: 28 bytes leftover after parsing attributes in process `syz.2.10787'. [ 435.248034][T23221] EXT4-fs (loop1): 1 orphan inode deleted [ 435.253735][T23221] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 435.263331][T23221] ext4 filesystem being mounted at /150/file1 supports timestamps until 2038 (0x7fffffff) [ 435.289860][ T1043] usb 5-1: new high-speed USB device number 110 using dummy_hcd [ 435.304468][T21576] EXT4-fs (loop1): unmounting filesystem. [ 435.557324][ T1043] usb 5-1: Using ep0 maxpacket: 16 [ 435.685506][ T1043] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 435.696293][ T1043] usb 5-1: config 1 interface 0 altsetting 0 endpoint 0x82 has invalid wMaxPacketSize 0 [ 435.705862][ T1043] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 0 [ 435.715485][ T1043] usb 5-1: config 1 interface 0 altsetting 0 bulk endpoint 0x3 has invalid maxpacket 64 [ 435.726088][ T1043] usb 5-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 435.824490][ T1043] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 435.833432][ T1043] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 435.841216][ T1043] usb 5-1: SerialNumber: syz [ 435.867440][T23210] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 435.889018][ T1043] cdc_acm 5-1:1.0: Control and data interfaces are not separated! [ 435.896896][ T1043] cdc_acm: probe of 5-1:1.0 failed with error -12 [ 436.108013][ T24] usb 5-1: USB disconnect, device number 110 [ 436.522417][T23286] A link change request failed with some changes committed already. Interface vlan1 may have been left with an inconsistent configuration, please check. [ 436.600522][T23291] netlink: 'syz.2.10811': attribute type 18 has an invalid length. [ 436.611374][T23292] syz.1.10813[23292] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 436.611455][T23292] syz.1.10813[23292] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 436.701902][T23300] Invalid ELF section name index: 0 || e_shstrndx (0) >= e_shnum (0) [ 436.892295][T23322] loop1: detected capacity change from 0 to 256 [ 436.961504][T23332] loop3: detected capacity change from 0 to 512 [ 436.981240][T23332] EXT4-fs (loop3): encrypted files will use data=ordered instead of data journaling mode [ 437.009499][T23332] EXT4-fs (loop3): 1 truncate cleaned up [ 437.017120][T23332] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 437.050712][T21961] EXT4-fs (loop3): unmounting filesystem. [ 437.105033][T23344] tun0: tun_chr_ioctl cmd 2148553947 [ 437.174837][T23348] loop3: detected capacity change from 0 to 128 [ 437.214582][ T3013] usb 5-1: new high-speed USB device number 111 using dummy_hcd [ 437.248637][T23354] netlink: 12 bytes leftover after parsing attributes in process `syz.2.10841'. [ 437.368450][T23369] loop3: detected capacity change from 0 to 512 [ 437.403984][T23369] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 437.427161][T23373] loop2: detected capacity change from 0 to 1024 [ 437.429484][T23369] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 437.442596][T23369] EXT4-fs (loop3): orphan cleanup on readonly fs [ 437.452172][T23369] EXT4-fs warning (device loop3): ext4_enable_quotas:6999: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 437.458429][T23373] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 437.466866][T23369] EXT4-fs (loop3): Cannot turn on quotas: error -22 [ 437.482120][T23369] EXT4-fs error (device loop3): ext4_ext_check_inode:520: inode #13: comm syz.3.10847: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 437.501703][T23369] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.10847: couldn't read orphan inode 13 (err -117) [ 437.514822][T23369] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 437.515209][T21403] EXT4-fs (loop2): unmounting filesystem. [ 437.563083][T23378] loop2: detected capacity change from 0 to 512 [ 437.572056][T23369] EXT4-fs (loop3): warning: mounting fs with errors, running e2fsck is recommended [ 437.581515][T23378] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 437.591809][T23369] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 437.600605][T23378] EXT4-fs (loop2): 1 truncate cleaned up [ 437.606120][T23378] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 437.610668][T23369] EXT4-fs warning (device loop3): ext4_enable_quotas:6999: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 437.629195][ T3013] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 437.645988][ T3013] usb 5-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 437.655488][T21403] EXT4-fs (loop2): unmounting filesystem. [ 437.668501][T21961] EXT4-fs (loop3): unmounting filesystem. [ 437.674342][ T6] usb 2-1: new high-speed USB device number 108 using dummy_hcd [ 437.724124][T23385] loop3: detected capacity change from 0 to 512 [ 437.733098][T23385] EXT4-fs (loop3): Test dummy encryption mode enabled [ 437.738411][ T3013] usb 5-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 437.749699][ T3013] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 437.752659][T23385] EXT4-fs error (device loop3): ext4_find_inline_data_nolock:164: inode #12: comm syz.3.10851: inline data xattr refers to an external xattr inode [ 437.757606][ T3013] usb 5-1: SerialNumber: syz [ 437.773176][T23385] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.10851: couldn't read orphan inode 12 (err -117) [ 437.789317][T23385] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 437.839711][T21961] EXT4-fs (loop3): unmounting filesystem. [ 437.941216][ T6] usb 2-1: Using ep0 maxpacket: 16 [ 437.958218][T23401] Dead loop on virtual device ip6_vti0, fix it urgently! [ 438.069518][ T6] usb 2-1: config 0 has an invalid interface number: 251 but max is 0 [ 438.078103][ T6] usb 2-1: config 0 has no interface number 0 [ 438.084051][ T6] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x4 has invalid maxpacket 16 [ 438.094219][ T6] usb 2-1: config 0 interface 251 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 64 [ 438.272961][ T6] usb 2-1: New USB device found, idVendor=0b95, idProduct=172a, bcdDevice=f7.f4 [ 438.281981][ T6] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 438.289878][ T6] usb 2-1: Product: syz [ 438.294047][ T6] usb 2-1: Manufacturer: syz [ 438.298484][ T6] usb 2-1: SerialNumber: syz [ 438.304123][ T6] usb 2-1: config 0 descriptor?? [ 438.315347][ T3013] usb 5-1: USB disconnect, device number 111 [ 438.337036][T23371] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 438.344091][T23371] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 438.573547][T23371] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 438.580521][T23371] raw-gadget.2 gadget.1: fail, usb_ep_enable returned -22 [ 438.816608][T23410] loop3: detected capacity change from 0 to 256 [ 438.854645][T23414] loop4: detected capacity change from 0 to 512 [ 438.873021][T23414] EXT4-fs (loop4): encrypted files will use data=ordered instead of data journaling mode [ 438.897450][T23414] EXT4-fs (loop4): 1 truncate cleaned up [ 438.902944][T23414] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 438.931138][T21607] EXT4-fs (loop4): unmounting filesystem. [ 439.063796][ T6] asix 2-1:0.251 (unnamed net_device) (uninitialized): Interface mode not supported by driver [ 439.092103][ T6] asix: probe of 2-1:0.251 failed with error -524 [ 439.265070][T23420] loop2: detected capacity change from 0 to 40427 [ 439.279012][ T3013] usb 2-1: USB disconnect, device number 108 [ 439.290641][T23420] F2FS-fs (loop2): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 439.309916][T23420] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 439.334160][T23420] F2FS-fs (loop2): invalid crc value [ 439.342742][T23420] F2FS-fs (loop2): Found nat_bits in checkpoint [ 439.377724][T23448] netlink: 8 bytes leftover after parsing attributes in process `syz.3.10880'. [ 439.386573][T23448] netlink: 36 bytes leftover after parsing attributes in process `syz.3.10880'. [ 439.403471][T23420] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 439.410453][T23420] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 439.450491][T23420] syz.2.10877: attempt to access beyond end of device [ 439.450491][T23420] loop2: rw=2051, sector=65536, nr_sectors = 65536 limit=40427 [ 439.464714][T23420] F2FS-fs (loop2): Issue discard(8192, 8192, 8192) failed, ret: -5 [ 439.507763][T23460] loop4: detected capacity change from 0 to 512 [ 439.524315][T23460] EXT4-fs (loop4): Test dummy encryption mode enabled [ 439.533745][T23460] EXT4-fs error (device loop4): ext4_find_inline_data_nolock:164: inode #12: comm syz.4.10886: inline data xattr refers to an external xattr inode [ 439.549174][T23460] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.10886: couldn't read orphan inode 12 (err -117) [ 439.563097][T23460] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 439.598750][T21607] EXT4-fs (loop4): unmounting filesystem. [ 439.626401][T23468] loop4: detected capacity change from 0 to 128 [ 439.754473][T23481] loop4: detected capacity change from 0 to 256 [ 439.774116][T23481] exFAT-fs (loop4): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 439.789413][T23485] loop2: detected capacity change from 0 to 512 [ 439.802991][T23481] exFAT-fs (loop4): hint_cluster is invalid (17) [ 439.835454][T23485] EXT4-fs error (device loop2): ext4_get_branch:178: inode #13: block 2: comm syz.2.10903: invalid block [ 439.880112][T23485] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.10903: invalid indirect mapped block 10 (level 1) [ 439.904903][T23492] loop4: detected capacity change from 0 to 512 [ 439.916823][T23485] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #13: comm syz.2.10903: invalid indirect mapped block 8 (level 1) [ 439.931760][T23492] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 439.964288][T23485] EXT4-fs (loop2): 1 truncate cleaned up [ 439.970079][T23492] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 439.989206][T23492] EXT4-fs (loop4): orphan cleanup on readonly fs [ 440.011769][T23492] EXT4-fs warning (device loop4): ext4_enable_quotas:6999: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 440.037963][T23492] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 440.049070][T23492] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #13: comm syz.4.10897: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 440.074386][T23492] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.10897: couldn't read orphan inode 13 (err -117) [ 440.111715][ T28] kauditd_printk_skb: 1056 callbacks suppressed [ 440.111732][ T28] audit: type=1400 audit(2134222053.241:93680): avc: denied { read write } for pid=21996 comm="syz-executor" name="loop0" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 440.201158][T23492] EXT4-fs (loop4): warning: mounting fs with errors, running e2fsck is recommended [ 440.214724][ T28] audit: type=1400 audit(2134222053.241:93681): avc: denied { open } for pid=21996 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=114 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 440.244330][T23506] loop2: detected capacity change from 0 to 16 [ 440.266578][T23492] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=8856c01c, mo2=0002] [ 440.274630][T23506] erofs: Unknown parameter 'ÿÿÿÿÿÿ0xffffffffffffffffÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿÿ18446744073709551615ÿÿÿÿÿÿÿÿÿÿÿ0xffffffffffffffff' [ 440.290880][ T28] audit: type=1400 audit(2134222053.241:93682): avc: denied { ioctl } for pid=21996 comm="syz-executor" path="/dev/loop0" dev="devtmpfs" ino=114 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 440.297729][T23510] loop0: detected capacity change from 0 to 256 [ 440.325689][T15489] I/O error, dev loop2, sector 0 op 0x0:(READ) flags 0x80700 phys_seg 1 prio class 2 [ 440.361847][T23510] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 440.374032][ T28] audit: type=1400 audit(2134222053.278:93683): avc: denied { read write } for pid=21403 comm="syz-executor" name="loop2" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 440.374200][T23492] EXT4-fs warning (device loop4): ext4_enable_quotas:6999: Failed to enable quota tracking (type=2, err=-22, ino=15). Please run e2fsck to fix. [ 440.404896][T23515] loop2: detected capacity change from 0 to 256 [ 440.429846][T23487] loop3: detected capacity change from 0 to 40427 [ 440.433003][ T28] audit: type=1400 audit(2134222053.278:93684): avc: denied { open } for pid=21403 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 440.465934][T23487] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 440.489545][T23515] FAT-fs (loop2): Directory bread(block 64) failed [ 440.499576][T23487] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 440.517717][T23517] loop1: detected capacity change from 0 to 512 [ 440.521922][T23515] FAT-fs (loop2): Directory bread(block 65) failed [ 440.534366][T23517] EXT4-fs: Ignoring removed nobh option [ 440.548553][T21996] audit: audit_backlog=65 > audit_backlog_limit=64 [ 440.558627][ T28] audit: type=1400 audit(2134222053.278:93685): avc: denied { ioctl } for pid=21403 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=116 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 440.575581][T23487] F2FS-fs (loop3): invalid crc value [ 440.584653][T21996] audit: audit_lost=383 audit_rate_limit=0 audit_backlog_limit=64 [ 440.593938][T23515] FAT-fs (loop2): Directory bread(block 66) failed [ 440.597301][T23517] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 440.614592][T21996] audit: backlog limit exceeded [ 440.615587][T23523] audit: audit_backlog=65 > audit_backlog_limit=64 [ 440.635967][T23525] loop0: detected capacity change from 0 to 1024 [ 440.642905][T23515] FAT-fs (loop2): Directory bread(block 67) failed [ 440.643926][T23525] EXT4-fs (loop0): couldn't mount as ext3 due to feature incompatibilities [ 440.651381][T23515] FAT-fs (loop2): Directory bread(block 68) failed [ 440.664306][T23515] FAT-fs (loop2): Directory bread(block 69) failed [ 440.676941][T23517] ext4 filesystem being mounted at /179/file0 supports timestamps until 2038 (0x7fffffff) [ 440.688120][T23523] syz.4.10911[23523] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 440.688228][T23523] syz.4.10911[23523] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 440.703298][T23515] FAT-fs (loop2): Directory bread(block 70) failed [ 440.722422][T23487] F2FS-fs (loop3): Found nat_bits in checkpoint [ 440.757008][T23515] FAT-fs (loop2): Directory bread(block 71) failed [ 440.763810][T23515] FAT-fs (loop2): Directory bread(block 72) failed [ 440.788818][T23515] FAT-fs (loop2): Directory bread(block 73) failed [ 440.848381][T23536] loop4: detected capacity change from 0 to 128 [ 440.862445][T23537] loop0: detected capacity change from 0 to 1024 [ 440.883598][T23487] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 440.890463][T23487] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 440.913635][T23536] ext4 filesystem being mounted at /164/mnt supports timestamps until 2038 (0x7fffffff) [ 440.934925][T23537] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 440.950729][T23487] syz.3.10896: attempt to access beyond end of device [ 440.950729][T23487] loop3: rw=2051, sector=65536, nr_sectors = 65536 limit=40427 [ 440.965517][T23487] F2FS-fs (loop3): Issue discard(8192, 8192, 8192) failed, ret: -5 [ 440.985876][T23541] kvm [23540]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc0010004 data 0x0 [ 441.383592][ T19] usb 2-1: new high-speed USB device number 109 using dummy_hcd [ 441.494988][T23575] loop3: detected capacity change from 0 to 512 [ 441.495148][T23561] loop2: detected capacity change from 0 to 40427 [ 441.552192][T23561] F2FS-fs (loop2): Found nat_bits in checkpoint [ 441.566886][T23575] ext4 filesystem being mounted at /151/file0 supports timestamps until 2038 (0x7fffffff) [ 441.601083][T23564] loop4: detected capacity change from 0 to 40427 [ 441.615926][T23564] F2FS-fs (loop4): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 441.623917][T23561] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 441.641323][T23564] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 441.656714][T23561] syz.2.10927: attempt to access beyond end of device [ 441.656714][T23561] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 441.687861][T23564] F2FS-fs (loop4): invalid crc value [ 441.712846][T23564] F2FS-fs (loop4): Found nat_bits in checkpoint [ 441.735083][T23587] netlink: 20 bytes leftover after parsing attributes in process `syz.3.10934'. [ 441.779416][ T19] usb 2-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 441.783911][T23564] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 441.800953][ T19] usb 2-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 441.811128][T23564] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 441.856970][T23592] loop2: detected capacity change from 0 to 128 [ 441.873040][T23564] SELinux: Context @ is not valid (left unmapped). [ 441.890991][T23592] ext4 filesystem being mounted at /158/mnt supports timestamps until 2038 (0x7fffffff) [ 441.922687][T23597] loop3: detected capacity change from 0 to 512 [ 441.933495][T21607] syz-executor: attempt to access beyond end of device [ 441.933495][T21607] loop4: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 441.958689][T23597] EXT4-fs (loop3): Test dummy encryption mode enabled [ 441.971929][ T19] usb 2-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 441.987973][ T19] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 441.997376][ T19] usb 2-1: Product: syz [ 442.001367][ T19] usb 2-1: Manufacturer: syz [ 442.032290][ T19] usb 2-1: SerialNumber: syz [ 442.052132][ T19] r8152-cfgselector 2-1: config 0 descriptor?? [ 442.139111][T23606] loop2: detected capacity change from 0 to 1024 [ 442.160966][T23606] EXT4-fs: Ignoring removed mblk_io_submit option [ 442.176371][T23606] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 442.221087][T23616] loop4: detected capacity change from 0 to 128 [ 442.235291][T23616] EXT4-fs: Ignoring removed nobh option [ 442.250759][T23616] ext4 filesystem being mounted at /170/mnt supports timestamps until 2038 (0x7fffffff) [ 442.346540][ T10] usb 2-1: config 0 descriptor?? [ 442.538120][ T6] usb 3-1: new high-speed USB device number 107 using dummy_hcd [ 442.567418][ T19] usb 2-1: USB disconnect, device number 109 [ 442.581312][ T10] usb 2-1: can't set config #0, error -71 [ 442.655733][ T24] usb 4-1: new high-speed USB device number 111 using dummy_hcd [ 442.782915][T23650] tap0: tun_chr_ioctl cmd 2180551740 [ 442.794977][ T6] usb 3-1: Using ep0 maxpacket: 16 [ 442.881923][T23652] loop4: detected capacity change from 0 to 256 [ 442.923268][ T6] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 442.933793][ T6] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 442.944732][ T24] usb 4-1: Using ep0 maxpacket: 16 [ 443.072674][ T24] usb 4-1: config 0 has an invalid interface number: 1 but max is 0 [ 443.080511][ T24] usb 4-1: config 0 has no interface number 0 [ 443.088029][ T24] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 443.099262][ T24] usb 4-1: config 0 interface 1 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 443.107087][ T6] usb 3-1: New USB device found, idVendor=006b, idProduct=0101, bcdDevice= 0.40 [ 443.109261][ T24] usb 4-1: New USB device found, idVendor=28bd, idProduct=0071, bcdDevice= 0.00 [ 443.126913][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 443.139528][ T6] usb 3-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 443.158388][ T6] usb 3-1: Product: syz [ 443.162950][ T24] usb 4-1: config 0 descriptor?? [ 443.170013][ T6] usb 3-1: Manufacturer: syz [ 443.184998][ T6] usb 3-1: SerialNumber: syz [ 443.543094][ T6] usb 3-1: 0:2 : does not exist [ 443.756939][ T3013] usb 2-1: new high-speed USB device number 110 using dummy_hcd [ 443.767530][ T1036] usb 5-1: new high-speed USB device number 112 using dummy_hcd [ 443.799995][ T6] usb 3-1: 5:0: cannot get min/max values for control 5 (id 5) [ 443.812285][ T6] usb 3-1: USB disconnect, device number 107 [ 443.897378][ T24] input: HID 28bd:0071 Pen as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:28BD:0071.0053/input/input75 [ 443.910925][ T24] input: HID 28bd:0071 Pad as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.1/0003:28BD:0071.0053/input/input76 [ 443.925409][ T24] uclogic 0003:28BD:0071.0053: input,hiddev96,hidraw0: USB HID v0.02 Keypad [HID 28bd:0071] on usb-dummy_hcd.3-1/input1 [ 444.025435][ T1043] hid-generic 0000:0000:0000.0054: unknown main item tag 0x0 [ 444.036145][T15489] udevd[15489]: error opening ATTR{/sys/devices/platform/dummy_hcd.2/usb3/3-1/3-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 444.052280][ T1043] hid-generic 0000:0000:0000.0054: hidraw1: HID v0.00 Device [syz1] on syz0 [ 444.125376][ T1043] usb 4-1: USB disconnect, device number 111 [ 444.184702][ T1036] usb 5-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 444.194628][ T1036] usb 5-1: config 0 has 0 interfaces, different from the descriptor's value: 1 [ 444.313028][ T3013] usb 2-1: New USB device found, idVendor=067b, idProduct=23c3, bcdDevice=18.a2 [ 444.332915][ T3013] usb 2-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 444.349031][ T3013] usb 2-1: Product: syz [ 444.359754][ T3013] usb 2-1: Manufacturer: syz [ 444.369865][ T3013] usb 2-1: SerialNumber: syz [ 444.379102][ T3013] usb 2-1: config 0 descriptor?? [ 444.387887][ T1036] usb 5-1: New USB device found, idVendor=0bda, idProduct=8153, bcdDevice=e2.3d [ 444.399719][ T1036] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 444.411337][ T1036] usb 5-1: Product: syz [ 444.415334][ T1036] usb 5-1: Manufacturer: syz [ 444.420795][ T1036] usb 5-1: SerialNumber: syz [ 444.431331][ T3013] pl2303 2-1:0.0: required endpoints missing [ 444.431391][ T1036] r8152-cfgselector 5-1: config 0 descriptor?? [ 444.659730][ T1043] usb 2-1: USB disconnect, device number 110 [ 444.717893][T23735] loop2: detected capacity change from 0 to 40427 [ 444.762266][ T4688] usb 5-1: config 0 descriptor?? [ 444.763456][T23735] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 444.773872][T23735] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 444.824451][T23758] loop0: detected capacity change from 0 to 512 [ 444.831621][T23758] ext4: Unknown parameter 'fowner<00000000000000000000' [ 444.838357][T23735] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 444.905048][T23735] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 444.912347][T23735] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 444.942251][T21403] syz-executor: attempt to access beyond end of device [ 444.942251][T21403] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 444.980573][ T1036] usb 5-1: USB disconnect, device number 112 [ 444.997831][ T4688] usb 5-1: can't set config #0, error -71 [ 445.085153][T23777] netlink: 24 bytes leftover after parsing attributes in process `syz.3.11017'. [ 446.957284][ T28] kauditd_printk_skb: 996 callbacks suppressed [ 446.957306][ T28] audit: type=1400 audit(2134222059.377:94680): avc: denied { read write } for pid=21576 comm="syz-executor" name="loop1" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 446.995430][ T28] audit: type=1400 audit(2134222059.377:94681): avc: denied { open } for pid=21576 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 447.020350][ T28] audit: type=1400 audit(2134222059.377:94682): avc: denied { ioctl } for pid=21576 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=115 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 447.046916][ T28] audit: type=1400 audit(2134222059.377:94683): avc: denied { read } for pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 447.068887][ T28] audit: type=1400 audit(2134222059.377:94684): avc: denied { search } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 448.044068][ T28] audit: type=1400 audit(2134222059.377:94685): avc: denied { append } for pid=85 comm="syslogd" name="messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 448.066693][ T28] audit: type=1400 audit(2134222059.377:94686): avc: denied { open } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 448.090346][ T28] audit: type=1400 audit(2134222059.377:94687): avc: denied { getattr } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=14 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 448.113278][ T28] audit: type=1400 audit(2134222059.658:94688): avc: denied { bpf } for pid=23789 comm="syz.1.11022" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 448.134218][ T28] audit: type=1400 audit(2134222059.658:94689): avc: denied { prog_load } for pid=23789 comm="syz.1.11022" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=bpf permissive=1 [ 448.287397][T23809] SELinux: policydb magic number 0x30307830 does not match expected magic number 0xf97cff8c [ 448.315895][T23809] SELinux: failed to load policy [ 448.354045][T23820] netlink: 28 bytes leftover after parsing attributes in process `syz.0.11036'. [ 448.450522][T23832] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 448.467627][T23832] exFAT-fs (loop0): unable to read boot sector [ 448.495489][T23832] exFAT-fs (loop0): failed to read boot sector [ 448.504803][T23832] exFAT-fs (loop0): failed to recognize exfat type [ 448.606603][T23851] loop3: detected capacity change from 0 to 128 [ 448.701565][T23857] sch_fq: defrate 0 ignored. [ 448.835423][T23867] loop3: detected capacity change from 0 to 512 [ 448.877757][T23867] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 448.991340][T23872] loop4: detected capacity change from 0 to 1024 [ 449.039439][T23872] EXT4-fs error (device loop4): ext4_ext_check_inode:520: inode #11: comm syz.4.11060: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 449.059268][T23867] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.11058: invalid indirect mapped block 4294967295 (level 1) [ 449.110458][T23867] EXT4-fs error (device loop3): ext4_free_branches:1030: inode #11: comm syz.3.11058: invalid indirect mapped block 4294967295 (level 1) [ 449.155991][T23854] loop2: detected capacity change from 0 to 40427 [ 449.163824][T23872] EXT4-fs error (device loop4): ext4_orphan_get:1401: comm syz.4.11060: couldn't read orphan inode 11 (err -117) [ 449.175780][T23867] EXT4-fs (loop3): 2 truncates cleaned up [ 449.181416][T23867] EXT4-fs mount: 20 callbacks suppressed [ 449.181437][T23867] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 449.190442][T23854] F2FS-fs (loop2): invalid crc value [ 449.202364][T23872] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 449.252662][T23854] F2FS-fs (loop2): Found nat_bits in checkpoint [ 449.266955][T21961] EXT4-fs (loop3): unmounting filesystem. [ 449.273087][T23872] EXT4-fs error (device loop4): ext4_read_block_bitmap_nowait:477: comm syz.4.11060: Invalid block bitmap block 0 in block_group 0 [ 449.311391][T23845] loop0: detected capacity change from 0 to 40427 [ 449.333060][T23872] EXT4-fs error (device loop4): ext4_acquire_dquot:6764: comm syz.4.11060: Failed to acquire dquot type 0 [ 449.346017][T23845] F2FS-fs (loop0): Invalid SB checksum offset: 0 [ 449.367097][T23845] F2FS-fs (loop0): Can't find valid F2FS filesystem in 2th superblock [ 449.403503][T21607] EXT4-fs (loop4): unmounting filesystem. [ 449.416413][T23893] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11066'. [ 449.427245][T23845] F2FS-fs (loop0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 449.438337][T23854] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 449.540700][T23845] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 449.572591][T23845] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 449.619896][T23909] loop3: detected capacity change from 0 to 1024 [ 449.681855][T23913] loop1: detected capacity change from 0 to 512 [ 449.683127][T23911] loop4: detected capacity change from 0 to 512 [ 449.698051][T23909] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 449.712458][T23913] EXT4-fs (loop1): orphan cleanup on readonly fs [ 449.719198][T23911] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 449.729451][T23909] EXT4-fs warning (device loop3): ext4_empty_dir:3110: inode #11: comm syz.3.11073: directory missing '..' [ 449.775833][T23913] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #4: comm syz.1.11074: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 0(0) [ 449.791842][T21961] EXT4-fs (loop3): unmounting filesystem. [ 449.813065][T23911] EXT4-fs (loop4): revision level too high, forcing read-only mode [ 449.826771][T23913] EXT4-fs error (device loop1): ext4_quota_enable:6958: comm syz.1.11074: Bad quota inode: 4, type: 1 [ 449.830043][T23911] [EXT4 FS bs=4096, gc=1, bpg=32768, ipg=32, mo=e800e118, mo2=0003] [ 449.868579][T23913] EXT4-fs warning (device loop1): ext4_enable_quotas:6999: Failed to enable quota tracking (type=1, err=-117, ino=4). Please run e2fsck to fix. [ 449.892849][T23913] EXT4-fs (loop1): Cannot turn on quotas: error -117 [ 449.907323][T23913] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 449.917187][T23926] netlink: 12 bytes leftover after parsing attributes in process `syz.3.11077'. [ 449.943250][T23911] System zones: 0-1, 15-15, 18-18, 34-34 [ 449.962387][T21576] EXT4-fs (loop1): unmounting filesystem. [ 449.968289][T23911] EXT4-fs (loop4): orphan cleanup on readonly fs [ 449.974255][T23926] tipc: Started in network mode [ 449.984615][T23911] EXT4-fs warning (device loop4): ext4_enable_quotas:6999: Failed to enable quota tracking (type=1, err=-22, ino=4). Please run e2fsck to fix. [ 449.996732][T23926] tipc: Node identity 40060020000000006e, cluster identity 8 [ 450.034841][T23934] loop1: detected capacity change from 0 to 2048 [ 450.043145][T23911] EXT4-fs (loop4): Cannot turn on quotas: error -22 [ 450.097103][T23911] EXT4-fs error (device loop4): ext4_validate_block_bitmap:438: comm syz.4.11075: bg 0: block 40: padding at end of block bitmap is not set [ 450.098017][T23934] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 450.120165][T23911] EXT4-fs error (device loop4) in ext4_mb_clear_bb:6173: Corrupt filesystem [ 450.137532][T23911] EXT4-fs (loop4): 1 truncate cleaned up [ 450.171469][T23911] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 450.265295][T21607] EXT4-fs (loop4): unmounting filesystem. [ 450.306122][T21576] EXT4-fs (loop1): unmounting filesystem. [ 450.315036][T23953] loop4: detected capacity change from 0 to 128 [ 450.343003][T23953] FAT-fs (loop4): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 450.408835][T23953] FAT-fs (loop4): Invalid FSINFO signature: 0x41615252, 0x80417272 (sector = 1) [ 450.544594][T23930] loop2: detected capacity change from 0 to 40427 [ 450.589947][T23930] F2FS-fs (loop2): invalid crc value [ 450.632331][T23930] F2FS-fs (loop2): Found nat_bits in checkpoint [ 450.778113][T23930] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e4 [ 450.799242][T23999] xt_hashlimit: size too large, truncated to 1048576 [ 450.835919][T23930] syz.2.11080: attempt to access beyond end of device [ 450.835919][T23930] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 450.888646][T24006] sch_tbf: burst 0 is lower than device lo mtu (65550) ! [ 451.014211][T24018] syz.4.11119[24018] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 451.014291][T24018] syz.4.11119[24018] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 451.055752][T24020] netlink: 'syz.0.11120': attribute type 11 has an invalid length. [ 451.238410][T24028] I/O error, dev loop0, sector 0 op 0x0:(READ) flags 0x800 phys_seg 1 prio class 2 [ 451.322958][T24034] loop2: detected capacity change from 0 to 256 [ 451.380202][T24034] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x726052d3, utbl_chksum : 0xe619d30d) [ 451.491849][T24041] loop2: detected capacity change from 0 to 256 [ 451.621164][T24017] loop3: detected capacity change from 0 to 40427 [ 451.659999][T24017] F2FS-fs (loop3): invalid crc value [ 451.678056][T24047] netlink: 8 bytes leftover after parsing attributes in process `syz.1.11132'. [ 451.699791][T24017] F2FS-fs (loop3): Found nat_bits in checkpoint [ 451.725928][T24024] loop0: detected capacity change from 0 to 40427 [ 451.752990][T24024] F2FS-fs (loop0): invalid crc value [ 451.776657][T24024] F2FS-fs (loop0): Found nat_bits in checkpoint [ 451.813353][T24062] loop1: detected capacity change from 0 to 128 [ 451.845023][T24062] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 451.858739][T24062] ext4 filesystem being mounted at /220/file0 supports timestamps until 2038 (0x7fffffff) [ 451.882961][T24024] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 451.888103][T24017] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 451.912229][T21576] EXT4-fs (loop1): unmounting filesystem. [ 451.960072][T21996] syz-executor: attempt to access beyond end of device [ 451.960072][T21996] loop0: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 451.990135][T21996] syz-executor: attempt to access beyond end of device [ 451.990135][T21996] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 452.004383][T21961] syz-executor: attempt to access beyond end of device [ 452.004383][T21961] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 452.072083][T23521] syz.0.10910: attempt to access beyond end of device [ 452.072083][T23521] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 452.204388][T24078] loop4: detected capacity change from 0 to 1024 [ 452.222473][T24078] EXT4-fs: Ignoring removed nomblk_io_submit option [ 452.264219][T24078] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 452.309809][T24078] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 452.317469][ T28] kauditd_printk_skb: 1005 callbacks suppressed [ 452.317489][ T28] audit: type=1400 audit(2134222064.653:95692): avc: denied { read write } for pid=21576 comm="syz-executor" name="loop1" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 452.421450][ T28] audit: type=1400 audit(2134222064.653:95693): avc: denied { mount } for pid=24076 comm="syz.4.11145" name="/" dev="loop4" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [ 452.443634][T21607] EXT4-fs (loop4): unmounting filesystem. [ 452.459444][ T28] audit: type=1400 audit(2134222064.653:95694): avc: denied { read write } for pid=24076 comm="syz.4.11145" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 452.487969][ T28] audit: type=1400 audit(2134222064.653:95695): avc: denied { open } for pid=24076 comm="syz.4.11145" path="/dev/loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 452.534649][ T28] audit: type=1400 audit(2134222064.653:95696): avc: denied { ioctl } for pid=24076 comm="syz.4.11145" path="/dev/loop4" dev="devtmpfs" ino=118 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 452.631508][T24094] loop4: detected capacity change from 0 to 512 [ 452.654751][ T28] audit: type=1400 audit(2134222064.690:95697): avc: denied { read write open } for pid=21576 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=115 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 452.716019][ T28] audit: type=1400 audit(2134222064.690:95698): avc: denied { ioctl } for pid=21576 comm="syz-executor" path="/dev/loop1" dev="devtmpfs" ino=115 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 452.750424][T24098] incfs: Options parsing error. -22 [ 452.755507][T24098] incfs: mount failed -22 [ 452.777223][T24094] EXT4-fs (loop4): Cannot turn on journaled quota: type 0: error -2 [ 452.781757][T24083] audit: audit_backlog=65 > audit_backlog_limit=64 [ 452.790553][T24094] EXT4-fs (loop4): 1 truncate cleaned up [ 452.791616][T24083] audit: audit_lost=385 audit_rate_limit=0 audit_backlog_limit=64 [ 452.804765][T24083] audit: backlog limit exceeded [ 452.809688][T24083] loop3: detected capacity change from 0 to 40427 [ 452.810697][T24094] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: writeback. [ 452.833541][T24083] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 452.843869][T24083] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 452.851974][T24102] loop2: detected capacity change from 0 to 2048 [ 452.862979][T24083] F2FS-fs (loop3): invalid crc value [ 452.907229][T24083] F2FS-fs (loop3): Found nat_bits in checkpoint [ 452.917063][T24102] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 452.926306][ T10] device bridge_slave_1 left promiscuous mode [ 452.937048][ T10] bridge0: port 2(bridge_slave_1) entered disabled state [ 452.949395][T21607] EXT4-fs (loop4): unmounting filesystem. [ 452.976367][ T10] device bridge_slave_0 left promiscuous mode [ 453.002594][ T10] bridge0: port 1(bridge_slave_0) entered disabled state [ 453.010503][T24083] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 453.019964][T24083] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 453.029802][T21403] EXT4-fs (loop2): unmounting filesystem. [ 453.035548][ T10] device veth1_macvtap left promiscuous mode [ 453.074921][ T10] device veth0_vlan left promiscuous mode [ 453.114351][T24083] syz.3.11140: attempt to access beyond end of device [ 453.114351][T24083] loop3: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 453.180695][T21961] syz-executor: attempt to access beyond end of device [ 453.180695][T21961] loop3: rw=2049, sector=45104, nr_sectors = 8 limit=40427 [ 453.255006][T24123] loop2: detected capacity change from 0 to 256 [ 453.272381][T24116] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11158'. [ 453.293811][T24116] device macsec1 entered promiscuous mode [ 453.299552][T24116] device vlan1 entered promiscuous mode [ 453.315330][T24116] device vlan1 left promiscuous mode [ 453.421937][T24130] loop2: detected capacity change from 0 to 128 [ 453.455601][T24099] bridge0: port 1(bridge_slave_0) entered blocking state [ 453.462737][T24099] bridge0: port 1(bridge_slave_0) entered disabled state [ 453.475612][T24130] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 453.485680][T24134] input: syz1 as /devices/virtual/input/input77 [ 453.520495][T24130] ext4 filesystem being mounted at /201/file0 supports timestamps until 2038 (0x7fffffff) [ 453.541145][T24099] device bridge_slave_0 entered promiscuous mode [ 453.574859][T24121] loop1: detected capacity change from 0 to 40427 [ 453.591090][T24121] F2FS-fs (loop1): invalid crc value [ 453.597371][T24099] bridge0: port 2(bridge_slave_1) entered blocking state [ 453.615086][T24121] F2FS-fs (loop1): Found nat_bits in checkpoint [ 453.623113][T24099] bridge0: port 2(bridge_slave_1) entered disabled state [ 453.635786][T21403] EXT4-fs (loop2): unmounting filesystem. [ 453.672021][T24099] device bridge_slave_1 entered promiscuous mode [ 453.762591][T24121] F2FS-fs (loop1): Start checkpoint disabled! [ 453.794477][T24121] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 453.943162][ T10] kworker/u4:1: attempt to access beyond end of device [ 453.943162][ T10] loop1: rw=2049, sector=40960, nr_sectors = 16 limit=40427 [ 453.991439][T24099] bridge0: port 2(bridge_slave_1) entered blocking state [ 453.998323][T24099] bridge0: port 2(bridge_slave_1) entered forwarding state [ 454.005454][T24099] bridge0: port 1(bridge_slave_0) entered blocking state [ 454.012514][T24099] bridge0: port 1(bridge_slave_0) entered forwarding state [ 454.070908][ T24] bridge0: port 1(bridge_slave_0) entered disabled state [ 454.081422][ T24] bridge0: port 2(bridge_slave_1) entered disabled state [ 454.104170][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 454.118477][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 454.141309][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 454.157536][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 454.164516][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 454.200691][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 454.220332][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 454.227233][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 454.266572][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 454.274520][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 454.308825][ T1036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 454.320180][T24099] device veth0_vlan entered promiscuous mode [ 454.330554][ T1036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 454.346929][ T1036] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 454.362488][ T1036] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 454.373869][ T3013] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 454.391152][T24099] device veth1_macvtap entered promiscuous mode [ 454.420780][ T1036] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 454.438642][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 455.085387][T24180] loop1: detected capacity change from 0 to 40427 [ 455.113781][T24180] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 455.132660][T24180] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 455.154898][T24180] F2FS-fs (loop1): invalid crc value [ 455.190398][T24180] F2FS-fs (loop1): Found nat_bits in checkpoint [ 455.281579][T24180] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 455.292010][T24180] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 455.369232][T24164] loop4: detected capacity change from 0 to 131072 [ 455.407182][T24164] F2FS-fs (loop4): Found nat_bits in checkpoint [ 455.505880][T24164] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 455.753040][T24249] loop3: detected capacity change from 0 to 128 [ 455.803398][T24257] A link change request failed with some changes committed already. Interface vcan0 may have been left with an inconsistent configuration, please check. [ 455.819352][T24249] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 455.834937][T24260] xt_hashlimit: size too large, truncated to 1048576 [ 455.857014][T24249] ext4 filesystem being mounted at /206/mnt supports timestamps until 2038 (0x7fffffff) [ 455.908757][T21961] EXT4-fs (loop3): unmounting filesystem. [ 455.911028][T24264] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=16 sclass=netlink_tcpdiag_socket pid=24264 comm=syz.0.11217 [ 456.430624][T24311] loop0: detected capacity change from 0 to 2048 [ 456.494008][T24311] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 456.510745][ T3013] usb 2-1: new high-speed USB device number 111 using dummy_hcd [ 456.595564][T24300] loop4: detected capacity change from 0 to 40427 [ 456.628801][T24099] EXT4-fs (loop0): unmounting filesystem. [ 456.649081][T24300] F2FS-fs (loop4): Invalid log_blocksize (268), supports only 12 [ 456.684855][T24300] F2FS-fs (loop4): Can't find valid F2FS filesystem in 1th superblock [ 456.695407][T24320] loop3: detected capacity change from 0 to 1024 [ 456.714712][T24320] EXT4-fs (loop3): couldn't mount as ext3 due to feature incompatibilities [ 456.741992][T24300] F2FS-fs (loop4): Found nat_bits in checkpoint [ 456.788355][T24327] loop2: detected capacity change from 0 to 1024 [ 456.834132][T24327] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 456.854586][T24300] F2FS-fs (loop4): Try to recover 1th superblock, ret: 0 [ 456.878459][T24300] F2FS-fs (loop4): Mounted with checkpoint version = 48b305e5 [ 456.906572][ T3013] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 456.925557][ T3013] usb 2-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 456.949732][T24327] EXT4-fs error (device loop2): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 456.965025][ T3013] usb 2-1: New USB device found, idVendor=1e7d, idProduct=30d4, bcdDevice= 0.00 [ 456.970561][T24327] EXT4-fs (loop2): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28 [ 456.974363][ T3013] usb 2-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 456.995740][ T3013] usb 2-1: config 0 descriptor?? [ 457.000688][T24327] EXT4-fs (loop2): This should not happen!! Data will be lost [ 457.000688][T24327] [ 457.003427][T24335] loop3: detected capacity change from 0 to 1024 [ 457.010734][T24327] EXT4-fs (loop2): Total free blocks count 0 [ 457.024351][T24327] EXT4-fs (loop2): Free/Dirty block details [ 457.030476][T24327] EXT4-fs (loop2): free_blocks=68451041280 [ 457.036844][T24327] EXT4-fs (loop2): dirty_blocks=16 [ 457.042000][T24327] EXT4-fs (loop2): Block reservation details [ 457.049037][T24327] EXT4-fs (loop2): i_reserved_data_blocks=1 [ 457.056321][T24335] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (62631!=20869) [ 457.094594][T24335] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a800e11d, mo2=0002] [ 457.102852][T24335] System zones: 0-1, 2-3, 4-36, 98-101, 102-102 [ 457.110473][T24335] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 457.126512][T21403] EXT4-fs (loop2): unmounting filesystem. [ 457.155553][T21961] EXT4-fs (loop3): unmounting filesystem. [ 457.244901][T24348] bridge0: received packet on syz_tun with own address as source address (addr:aa:aa:aa:aa:aa:aa, vlan:0) [ 457.310704][T24354] loop3: detected capacity change from 0 to 128 [ 457.507383][ T3013] arvo 0003:1E7D:30D4.0055: item fetching failed at offset 5/7 [ 457.520733][ T3013] arvo 0003:1E7D:30D4.0055: parse failed [ 457.528593][ T3013] arvo: probe of 0003:1E7D:30D4.0055 failed with error -22 [ 457.725721][ T3013] usb 2-1: USB disconnect, device number 111 [ 457.782956][ T1043] usb 3-1: new high-speed USB device number 108 using dummy_hcd [ 457.804515][ T28] kauditd_printk_skb: 1022 callbacks suppressed [ 457.804533][ T28] audit: type=1400 audit(2134222069.797:96718): avc: denied { ioctl } for pid=24373 comm="syz.2.11263" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 458.061130][ T28] audit: type=1400 audit(2134222070.031:96719): avc: denied { ioctl } for pid=24373 comm="syz.2.11263" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 458.093560][ T28] audit: type=1400 audit(2134222070.069:96720): avc: denied { read } for pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 458.115477][ T28] audit: type=1400 audit(2134222070.069:96721): avc: denied { search } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 458.136967][ T28] audit: type=1400 audit(2134222070.069:96722): avc: denied { append } for pid=85 comm="syslogd" name="messages" dev="tmpfs" ino=15 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 458.159310][ T28] audit: type=1400 audit(2134222070.069:96723): avc: denied { open } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=15 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 458.178587][ T1043] usb 3-1: too many endpoints for config 0 interface 0 altsetting 0: 253, using maximum allowed: 30 [ 458.182347][ T28] audit: type=1400 audit(2134222070.069:96724): avc: denied { getattr } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=15 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 458.192535][ T1043] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 458.215480][ T28] audit: type=1400 audit(2134222070.087:96725): avc: denied { ioctl } for pid=24373 comm="syz.2.11263" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5503 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 458.225730][ T1043] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 458.225758][ T1043] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 253 [ 458.225796][ T1043] usb 3-1: New USB device found, idVendor=057e, idProduct=2009, bcdDevice= 0.00 [ 458.225822][ T1043] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 458.230314][ T1043] usb 3-1: config 0 descriptor?? [ 458.256026][ T28] audit: type=1400 audit(2134222070.106:96726): avc: denied { ioctl } for pid=24373 comm="syz.2.11263" path="/dev/raw-gadget" dev="devtmpfs" ino=166 ioctlcmd=0x5502 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1 [ 458.352622][ T28] audit: type=1400 audit(2134222070.218:96727): avc: denied { read write } for pid=21607 comm="syz-executor" name="loop4" dev="devtmpfs" ino=118 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 458.484119][T24400] netlink: 20 bytes leftover after parsing attributes in process `syz.4.11275'. [ 458.537924][T24406] netlink: 'syz.1.11277': attribute type 15 has an invalid length. [ 458.572991][T24410] serio: Serial port tty23 [ 458.826343][ T1043] nintendo 0003:057E:2009.0056: unknown main item tag 0x0 [ 458.834574][ T1043] nintendo 0003:057E:2009.0056: unknown main item tag 0x0 [ 458.858231][ T1043] nintendo 0003:057E:2009.0056: item fetching failed at offset 2/5 [ 458.874117][ T1043] nintendo 0003:057E:2009.0056: HID parse failed [ 458.887204][ T1043] nintendo 0003:057E:2009.0056: probe - fail = -22 [ 458.901811][ T1043] nintendo: probe of 0003:057E:2009.0056 failed with error -22 [ 459.048333][T24450] netlink: 8 bytes leftover after parsing attributes in process `syz.4.11294'. [ 459.075148][T24450] device macsec0 entered promiscuous mode [ 459.080455][ T24] usb 3-1: USB disconnect, device number 108 [ 459.116043][T24454] netlink: 'syz.4.11297': attribute type 11 has an invalid length. [ 459.123897][T24454] netlink: 4 bytes leftover after parsing attributes in process `syz.4.11297'. [ 459.198227][T24462] loop4: detected capacity change from 0 to 256 [ 459.211666][T24462] FAT-fs (loop4): Directory bread(block 64) failed [ 459.219335][T24462] FAT-fs (loop4): Directory bread(block 65) failed [ 459.227757][T24462] FAT-fs (loop4): Directory bread(block 66) failed [ 459.234287][T24462] FAT-fs (loop4): Directory bread(block 67) failed [ 459.241267][T24462] FAT-fs (loop4): Directory bread(block 68) failed [ 459.248291][T24462] FAT-fs (loop4): Directory bread(block 69) failed [ 459.254703][T24462] FAT-fs (loop4): Directory bread(block 70) failed [ 459.261304][T24462] FAT-fs (loop4): Directory bread(block 71) failed [ 459.267688][T24462] FAT-fs (loop4): Directory bread(block 72) failed [ 459.274426][T24462] FAT-fs (loop4): Directory bread(block 73) failed [ 459.301379][T24464] loop1: detected capacity change from 0 to 8192 [ 459.327322][T24464] FAT-fs (loop1): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 459.434300][T24473] loop4: detected capacity change from 0 to 512 [ 459.450374][T24464] FAT-fs (loop1): error, fat_get_cluster: invalid cluster chain (i_pos 1052) [ 459.465649][T24464] FAT-fs (loop1): Filesystem has been set read-only [ 459.471158][T24473] EXT4-fs error (device loop4): ext4_get_branch:178: inode #13: block 2: comm syz.4.11308: invalid block [ 459.475320][T24476] loop3: detected capacity change from 0 to 256 [ 459.488893][T24473] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.11308: invalid indirect mapped block 10 (level 1) [ 459.516786][T24473] EXT4-fs error (device loop4): ext4_free_branches:1030: inode #13: comm syz.4.11308: invalid indirect mapped block 8 (level 1) [ 459.531294][T24476] FAT-fs (loop3): Directory bread(block 64) failed [ 459.540699][T24476] FAT-fs (loop3): Directory bread(block 65) failed [ 459.540999][T24473] EXT4-fs (loop4): 1 truncate cleaned up [ 459.548022][T24476] FAT-fs (loop3): Directory bread(block 66) failed [ 459.555884][T24473] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 459.560023][T24476] FAT-fs (loop3): Directory bread(block 67) failed [ 459.573908][T24476] FAT-fs (loop3): Directory bread(block 68) failed [ 459.613075][T24480] loop1: detected capacity change from 0 to 512 [ 459.620697][T24476] FAT-fs (loop3): Directory bread(block 69) failed [ 459.627552][T24476] FAT-fs (loop3): Directory bread(block 70) failed [ 459.634046][T24480] EXT4-fs (loop1): Test dummy encryption mode enabled [ 459.641010][T24476] FAT-fs (loop3): Directory bread(block 71) failed [ 459.647640][T24476] FAT-fs (loop3): Directory bread(block 72) failed [ 459.654657][T24480] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 459.670144][T24476] FAT-fs (loop3): Directory bread(block 73) failed [ 459.681525][T21607] EXT4-fs (loop4): unmounting filesystem. [ 459.690531][T21576] EXT4-fs (loop1): unmounting filesystem. [ 460.038889][ T1043] usb 5-1: new high-speed USB device number 113 using dummy_hcd [ 460.194600][T24521] loop0: detected capacity change from 0 to 512 [ 460.220712][T24521] EXT4-fs: Ignoring removed bh option [ 460.253820][T24521] EXT4-fs error (device loop0): __ext4_iget:5046: inode #15: block 1803188595: comm syz.0.11329: invalid block [ 460.273020][T24527] loop3: detected capacity change from 0 to 128 [ 460.280928][T24521] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.11329: couldn't read orphan inode 15 (err -117) [ 460.295262][ T1043] usb 5-1: Using ep0 maxpacket: 16 [ 460.311566][T24521] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 460.326282][T24527] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 460.348276][T24527] ext4 filesystem being mounted at /229/mnt supports timestamps until 2038 (0x7fffffff) [ 460.371722][T24099] EXT4-fs (loop0): unmounting filesystem. [ 460.411610][T24532] loop0: detected capacity change from 0 to 128 [ 460.411794][T21961] EXT4-fs (loop3): unmounting filesystem. [ 460.423764][ T1043] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 460.455694][ T1043] usb 5-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 460.485815][T24532] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 460.503511][T24532] ext4 filesystem being mounted at /27/mnt supports timestamps until 2038 (0x7fffffff) [ 460.544699][ T3013] hid-generic 0000:0000:0000.0057: unknown main item tag 0x0 [ 460.564357][ T3013] hid-generic 0000:0000:0000.0057: hidraw0: HID v0.00 Device [syz1] on syz0 [ 460.607925][T24099] EXT4-fs (loop0): unmounting filesystem. [ 460.651542][ T1043] usb 5-1: New USB device found, idVendor=006b, idProduct=0101, bcdDevice= 0.40 [ 460.676741][ T1043] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 460.704878][ T1043] usb 5-1: Product: syz [ 460.712690][ T1043] usb 5-1: Manufacturer: syz [ 460.717268][ T1043] usb 5-1: SerialNumber: syz [ 460.848806][T24560] loop2: detected capacity change from 0 to 128 [ 460.908596][T24560] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 460.926341][T24560] ext4 filesystem being mounted at /239/mnt supports timestamps until 2038 (0x7fffffff) [ 460.957466][T21403] EXT4-fs (loop2): unmounting filesystem. [ 460.995818][T24570] netlink: 24 bytes leftover after parsing attributes in process `syz.2.11358'. [ 461.010750][T24571] loop3: detected capacity change from 0 to 1024 [ 461.049192][T24571] EXT4-fs: Ignoring removed mblk_io_submit option [ 461.068254][T24571] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 461.075888][ T1043] usb 5-1: 0:2 : does not exist [ 461.093388][T24571] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 461.145224][T21961] EXT4-fs (loop3): unmounting filesystem. [ 461.332510][ T1043] usb 5-1: 5:0: cannot get min/max values for control 5 (id 5) [ 461.353897][ T1043] usb 5-1: USB disconnect, device number 113 [ 461.500100][T24567] loop0: detected capacity change from 0 to 40427 [ 461.511372][T24567] F2FS-fs (loop0): Invalid Fs Meta Ino: node(1) meta(2) root(0) [ 461.530244][T24567] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 461.557496][T24567] F2FS-fs (loop0): invalid crc value [ 461.595546][T15489] udevd[15489]: error opening ATTR{/sys/devices/platform/dummy_hcd.4/usb5/5-1/5-1:1.0/sound/card0/controlC0/../uevent} for writing: No such file or directory [ 461.642564][T24567] F2FS-fs (loop0): Found nat_bits in checkpoint [ 461.734023][T24614] loop3: detected capacity change from 0 to 256 [ 461.765948][T24614] exFAT-fs (loop3): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 461.789537][T24567] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 461.802875][T24567] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 461.832330][T24614] exFAT-fs (loop3): hint_cluster is invalid (17) [ 461.878898][T24099] syz-executor: attempt to access beyond end of device [ 461.878898][T24099] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 461.893936][T24617] kvm [24616]: vcpu0, guest rIP: 0xfff0 disabled perfctr wrmsr: 0xc0010004 data 0x0 [ 461.903517][T24619] loop1: detected capacity change from 0 to 128 [ 461.916252][T24622] loop3: detected capacity change from 0 to 128 [ 461.941570][ T3149] usb 3-1: new high-speed USB device number 109 using dummy_hcd [ 461.953682][T24622] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 461.962057][T24619] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 461.962482][T24622] ext4 filesystem being mounted at /242/mnt supports timestamps until 2038 (0x7fffffff) [ 461.981079][T24619] ext4 filesystem being mounted at /265/mnt supports timestamps until 2038 (0x7fffffff) [ 462.037676][T21961] EXT4-fs (loop3): unmounting filesystem. [ 462.072072][T21576] EXT4-fs (loop1): unmounting filesystem. [ 462.114034][ T3013] hid-generic 0000:0000:0000.0058: unknown main item tag 0x0 [ 462.122820][ T3013] hid-generic 0000:0000:0000.0058: hidraw0: HID v0.00 Device [syz1] on syz0 [ 462.213465][ T3149] usb 3-1: Using ep0 maxpacket: 16 [ 462.288051][T24643] loop3: detected capacity change from 0 to 512 [ 462.306012][T24643] EXT4-fs: Ignoring removed bh option [ 462.330648][T24643] EXT4-fs error (device loop3): __ext4_iget:5046: inode #15: block 1803188595: comm syz.3.11387: invalid block [ 462.342735][ T3149] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 462.374368][ T3149] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 462.391560][T24643] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.11387: couldn't read orphan inode 15 (err -117) [ 462.398739][ T3149] usb 3-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 462.408483][T24655] loop1: detected capacity change from 0 to 256 [ 462.419094][T24643] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 462.427510][ T3149] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 462.436718][ T3149] usb 3-1: config 0 descriptor?? [ 462.444401][ T1036] usb 5-1: new high-speed USB device number 114 using dummy_hcd [ 462.462888][T24655] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 462.475287][T21961] EXT4-fs (loop3): unmounting filesystem. [ 462.514460][T24655] exFAT-fs (loop1): hint_cluster is invalid (17) [ 462.569161][T24662] syz.3.11384[24662] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 462.569243][T24662] syz.3.11384[24662] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 462.602805][T24666] loop1: detected capacity change from 0 to 128 [ 462.628845][T24666] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: none. [ 462.639915][T24666] ext4 filesystem being mounted at /271/mnt supports timestamps until 2038 (0x7fffffff) [ 462.704494][T21576] EXT4-fs (loop1): unmounting filesystem. [ 463.021417][ T3149] usbhid 3-1:0.0: can't add hid device: -71 [ 463.031748][ T3149] usbhid: probe of 3-1:0.0 failed with error -71 [ 463.049260][ T3149] usb 3-1: USB disconnect, device number 109 [ 463.055874][ T1036] usb 5-1: New USB device found, idVendor=067b, idProduct=23c3, bcdDevice=18.a2 [ 463.070480][ T1036] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 463.080927][ T1036] usb 5-1: Product: syz [ 463.085476][ T1036] usb 5-1: Manufacturer: syz [ 463.090544][ T1036] usb 5-1: SerialNumber: syz [ 463.097915][ T1036] usb 5-1: config 0 descriptor?? [ 463.140714][ T1036] pl2303 5-1:0.0: required endpoints missing [ 463.361230][ T3149] usb 5-1: USB disconnect, device number 114 [ 463.367205][ T28] kauditd_printk_skb: 1151 callbacks suppressed [ 463.367222][ T28] audit: type=1400 audit(2268439802.982:97879): avc: denied { create } for pid=24691 comm="syz.0.11397" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1 [ 463.413047][ T28] audit: type=1400 audit(2268439803.010:97880): avc: denied { read } for pid=85 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1 [ 463.435440][ T28] audit: type=1400 audit(2268439803.010:97881): avc: denied { search } for pid=85 comm="syslogd" name="/" dev="tmpfs" ino=1 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 463.465661][ T28] audit: type=1400 audit(2268439803.010:97882): avc: denied { append } for pid=85 comm="syslogd" name="messages" dev="tmpfs" ino=15 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 463.524705][ T28] audit: type=1400 audit(2268439803.010:97883): avc: denied { open } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=15 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 463.571289][ T28] audit: type=1400 audit(2268439803.010:97884): avc: denied { getattr } for pid=85 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=15 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 463.627393][ T28] audit: type=1400 audit(2268439803.104:97885): avc: denied { read write } for pid=21403 comm="syz-executor" name="loop2" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 463.660135][ T28] audit: type=1400 audit(2268439803.104:97886): avc: denied { read write open } for pid=21403 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=116 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 463.685802][ T28] audit: type=1400 audit(2268439803.104:97887): avc: denied { ioctl } for pid=21403 comm="syz-executor" path="/dev/loop2" dev="devtmpfs" ino=116 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 463.712275][ T28] audit: type=1400 audit(2268439803.132:97888): avc: denied { bpf } for pid=24698 comm="syz.2.11399" capability=39 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=capability2 permissive=1 [ 463.852898][T24697] loop1: detected capacity change from 0 to 40427 [ 463.864722][T24697] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 463.870981][T24697] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 463.882154][T24697] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 463.907761][T24697] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 463.914674][T24697] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 463.953791][T21576] syz-executor: attempt to access beyond end of device [ 463.953791][T21576] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 463.991203][T24714] loop0: detected capacity change from 0 to 512 [ 463.995458][T24715] loop4: detected capacity change from 0 to 128 [ 464.046166][T24715] EXT4-fs (loop4): mounted filesystem without journal. Quota mode: none. [ 464.055301][T24714] EXT4-fs error (device loop0): ext4_xattr_ibody_find:2213: inode #15: comm syz.0.11413: corrupted in-inode xattr [ 464.069353][T24725] netlink: 16 bytes leftover after parsing attributes in process `syz.2.11407'. [ 464.078295][T24725] netlink: 192 bytes leftover after parsing attributes in process `syz.2.11407'. [ 464.101707][T24714] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.11413: couldn't read orphan inode 15 (err -117) [ 464.110326][T24727] loop2: detected capacity change from 0 to 512 [ 464.123450][T24715] ext4 filesystem being mounted at /272/mnt supports timestamps until 2038 (0x7fffffff) [ 464.133719][T24714] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 464.147058][T24727] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 464.206349][T21607] EXT4-fs (loop4): unmounting filesystem. [ 464.214164][T24099] EXT4-fs (loop0): unmounting filesystem. [ 464.220284][T21403] EXT4-fs (loop2): unmounting filesystem. [ 464.326734][ T3149] usb 4-1: new high-speed USB device number 112 using dummy_hcd [ 464.445827][T24747] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 464.465371][T24745] loop0: detected capacity change from 0 to 2048 [ 464.484578][T24747] exFAT-fs (loop1): unable to read boot sector [ 464.497572][T24747] exFAT-fs (loop1): failed to read boot sector [ 464.508926][T24747] exFAT-fs (loop1): failed to recognize exfat type [ 464.517626][T24745] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 464.537109][T24745] ext4 filesystem being mounted at /43/file0 supports timestamps until 2038 (0x7fffffff) [ 464.603584][ T3149] usb 4-1: Using ep0 maxpacket: 16 [ 464.631017][T24099] EXT4-fs (loop0): unmounting filesystem. [ 464.660294][T24760] sch_fq: defrate 0 ignored. [ 464.732074][ T3149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 464.750500][ T3149] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 464.774898][ T3149] usb 4-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 464.784046][ T3149] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 464.814092][T24774] loop2: detected capacity change from 0 to 512 [ 464.821633][ T3149] usb 4-1: config 0 descriptor?? [ 464.840444][T24774] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 464.864223][T24779] loop1: detected capacity change from 0 to 1024 [ 464.872760][T24774] EXT4-fs error (device loop2): ext4_get_branch:178: inode #11: block 4294967295: comm syz.2.11431: invalid block [ 464.893835][T24774] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.11431: invalid indirect mapped block 4294967295 (level 1) [ 464.913625][T24774] EXT4-fs error (device loop2): ext4_free_branches:1030: inode #11: comm syz.2.11431: invalid indirect mapped block 4294967295 (level 1) [ 464.931217][T24774] EXT4-fs (loop2): 2 truncates cleaned up [ 464.937320][T24774] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 464.939319][T24779] EXT4-fs error (device loop1): ext4_ext_check_inode:520: inode #11: comm syz.1.11432: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 464.976529][T24779] EXT4-fs error (device loop1): ext4_orphan_get:1401: comm syz.1.11432: couldn't read orphan inode 11 (err -117) [ 464.976546][T21403] EXT4-fs (loop2): unmounting filesystem. [ 464.977611][T24779] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 465.028358][T24779] EXT4-fs error (device loop1): ext4_read_block_bitmap_nowait:477: comm syz.1.11432: Invalid block bitmap block 0 in block_group 0 [ 465.050338][T24779] EXT4-fs error (device loop1): ext4_acquire_dquot:6764: comm syz.1.11432: Failed to acquire dquot type 0 [ 465.070608][T24787] netlink: 8 bytes leftover after parsing attributes in process `syz.2.11434'. [ 465.092246][T21576] EXT4-fs (loop1): unmounting filesystem. [ 465.218868][T24799] loop1: detected capacity change from 0 to 128 [ 465.311184][T24805] loop2: detected capacity change from 0 to 1024 [ 465.344194][ T3149] lua 0003:1E7D:2C2E.0059: hidraw0: USB HID v0.00 Device [HID 1e7d:2c2e] on usb-dummy_hcd.3-1/input0 [ 465.378933][T24805] EXT4-fs warning (device loop2): ext4_empty_dir:3110: inode #11: comm syz.2.11443: directory missing '..' [ 465.419289][ T3013] usb 5-1: new high-speed USB device number 115 using dummy_hcd [ 465.496614][T24803] loop1: detected capacity change from 0 to 40427 [ 465.504608][T24803] F2FS-fs (loop1): Invalid SB checksum offset: 0 [ 465.510819][T24803] F2FS-fs (loop1): Can't find valid F2FS filesystem in 2th superblock [ 465.525519][T24803] F2FS-fs (loop1): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 465.552402][T24803] F2FS-fs (loop1): Try to recover 2th superblock, ret: 0 [ 465.563705][T24803] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 465.568742][ T3149] usb 4-1: USB disconnect, device number 112 [ 465.683478][ T3013] usb 5-1: Using ep0 maxpacket: 8 [ 465.812084][ T3013] usb 5-1: config 135 has an invalid interface number: 230 but max is 0 [ 465.820731][ T3013] usb 5-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config [ 465.863926][ T3013] usb 5-1: config 135 has no interface number 0 [ 465.878239][ T3013] usb 5-1: config 135 interface 230 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 3 [ 466.089634][ T3013] usb 5-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 466.107335][ T3013] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 466.119903][T24816] loop1: detected capacity change from 0 to 40427 [ 466.132742][ T3013] usb 5-1: Product: syz [ 466.136743][ T3013] usb 5-1: Manufacturer: syz [ 466.153681][ T3013] usb 5-1: SerialNumber: syz [ 466.167390][T24816] F2FS-fs (loop1): invalid crc value [ 466.218580][ T3013] usb 5-1: Found UVC 0.00 device syz (18ec:3288) [ 466.224959][ T3013] usb 5-1: No valid video chain found. [ 466.233217][T24816] F2FS-fs (loop1): Found nat_bits in checkpoint [ 466.331798][T24816] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 466.338292][T24843] loop3: detected capacity change from 0 to 512 [ 466.359125][T24843] ext4: Unknown parameter 'fowner<00000000000000000000' [ 466.464508][ T3149] usb 5-1: USB disconnect, device number 115 [ 466.477445][T24856] serio: Serial port tty27 [ 466.584093][T24861] loop3: detected capacity change from 0 to 1024 [ 466.658262][T24869] netlink: 16 bytes leftover after parsing attributes in process `syz.1.11472'. [ 466.667584][T24869] netlink: 192 bytes leftover after parsing attributes in process `syz.1.11472'. [ 466.714412][T24871] loop0: detected capacity change from 0 to 256 [ 466.754033][T24861] EXT4-fs error (device loop3): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 4278190105 free clusters [ 466.769001][T24861] EXT4-fs (loop3): Delayed block allocation failed for inode 16 at logical offset 16 with max blocks 1 with error 28 [ 466.785002][T24861] EXT4-fs (loop3): This should not happen!! Data will be lost [ 466.785002][T24861] [ 466.814466][T24861] EXT4-fs (loop3): Total free blocks count 0 [ 466.831779][T24861] EXT4-fs (loop3): Free/Dirty block details [ 466.857050][T24861] EXT4-fs (loop3): free_blocks=68451041280 [ 466.874238][T24861] EXT4-fs (loop3): dirty_blocks=16 [ 466.890051][T24861] EXT4-fs (loop3): Block reservation details [ 466.917133][T24883] netlink: 'syz.2.11470': attribute type 11 has an invalid length. [ 466.922384][T24861] EXT4-fs (loop3): i_reserved_data_blocks=1 [ 466.959405][T24879] loop0: detected capacity change from 0 to 8192 [ 466.995318][T24879] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 467.049372][T24879] ================================================================== [ 467.051833][T24895] loop3: detected capacity change from 0 to 128 [ 467.057272][T24879] BUG: KASAN: null-ptr-deref in _raw_spin_lock+0x97/0x1b0 [ 467.070393][T24879] Write of size 4 at addr 00000000000000d4 by task syz.0.11480/24879 [ 467.078280][T24879] [ 467.080451][T24879] CPU: 0 PID: 24879 Comm: syz.0.11480 Not tainted 6.1.99-syzkaller-00109-g0e8b65e41ffd #0 [ 467.090176][T24879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 467.100078][T24879] Call Trace: [ 467.103194][T24879] [ 467.105968][T24879] dump_stack_lvl+0x151/0x1b7 [ 467.110495][T24879] ? nf_tcp_handle_invalid+0x3f1/0x3f1 [ 467.115783][T24879] ? _printk+0xd1/0x111 [ 467.119779][T24879] print_report+0xe1/0x4e0 [ 467.124025][T24879] ? __virt_addr_valid+0x59/0x2f0 [ 467.128887][T24879] ? kasan_addr_to_slab+0xd/0x80 [ 467.133661][T24879] ? _raw_spin_lock+0x97/0x1b0 [ 467.138259][T24879] kasan_report+0x13c/0x170 [ 467.142605][T24879] ? _raw_spin_lock+0x97/0x1b0 [ 467.147203][T24879] kasan_check_range+0x294/0x2a0 [ 467.151973][T24879] __kasan_check_write+0x14/0x20 [ 467.156744][T24879] _raw_spin_lock+0x97/0x1b0 [ 467.161171][T24879] ? _raw_spin_trylock_bh+0x190/0x190 [ 467.166383][T24879] ? unlock_page_memcg+0x146/0x160 [ 467.171327][T24879] ? mark_buffer_dirty+0x286/0x3b0 [ 467.176398][T24879] ? mark_buffer_dirty+0x1dc/0x3b0 [ 467.181347][T24879] mark_buffer_dirty_inode+0x131/0x310 [ 467.186641][T24879] fat16_ent_put+0x97/0xc0 [ 467.190892][T24879] fat_alloc_clusters+0x58b/0x1190 [ 467.195836][T24879] ? create_page_buffers+0x13f/0x210 [ 467.200965][T24879] ? fat_mirror_bhs+0x470/0x470 [ 467.203390][T24895] ext4 filesystem being mounted at /256/mnt supports timestamps until 2038 (0x7fffffff) [ 467.205651][T24879] ? __kasan_slab_alloc+0x6c/0x80 [ 467.220055][T24879] ? fat_bmap+0x4a3/0x5c0 [ 467.224221][T24879] fat_get_block+0x4c0/0xcf0 [ 467.228650][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.234026][T24879] ? _raw_spin_unlock+0x4c/0x70 [ 467.238715][T24879] ? create_empty_buffers+0x4af/0x4f0 [ 467.243927][T24879] ? __kasan_check_read+0x11/0x20 [ 467.248783][T24879] __block_write_begin_int+0x49c/0x1440 [ 467.254162][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.259455][T24879] ? page_zero_new_buffers+0x3e0/0x3e0 [ 467.264750][T24879] ? __kasan_check_read+0x11/0x20 [ 467.269609][T24879] cont_write_begin+0x68e/0x950 [ 467.274299][T24879] ? generic_cont_expand_simple+0x2a0/0x2a0 [ 467.280020][T24879] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 467.285667][T24879] ? avc_compute_av+0x4f5/0x830 [ 467.290356][T24879] fat_write_begin+0xa1/0x170 [ 467.294862][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.300159][T24879] cont_write_begin+0x30e/0x950 [ 467.304936][T24879] ? generic_cont_expand_simple+0x2a0/0x2a0 [ 467.310677][T24879] ? avc_has_perm+0x16f/0x260 [ 467.315179][T24879] fat_write_begin+0xa1/0x170 [ 467.319688][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.324982][T24879] generic_cont_expand_simple+0x187/0x2a0 [ 467.330624][T24879] ? submit_bh+0x30/0x30 [ 467.334700][T24879] ? selinux_inode_setattr+0x634/0x840 [ 467.339994][T24879] ? inode_owner_or_capable+0x1f0/0x1f0 [ 467.345377][T24879] ? selinux_inode_permission+0x650/0x650 [ 467.350933][T24879] ? debug_smp_processor_id+0x17/0x20 [ 467.356140][T24879] ? setattr_prepare+0x1fe/0xd00 [ 467.360914][T24879] fat_cont_expand+0x6b/0x1f0 [ 467.365426][T24879] fat_setattr+0x477/0x1070 [ 467.369767][T24879] ? fat_getattr+0x2a0/0x2a0 [ 467.374731][T24879] notify_change+0xd53/0x1010 [ 467.379244][T24879] ? cap_inode_need_killpriv+0x51/0x60 [ 467.384542][T24879] do_sys_ftruncate+0x5ab/0x820 [ 467.389226][T24879] ? __x64_compat_sys_truncate+0x70/0x70 [ 467.394699][T24879] ? __kasan_check_write+0x14/0x20 [ 467.399724][T24879] ? fpregs_restore_userregs+0x130/0x290 [ 467.405196][T24879] __x64_sys_ftruncate+0x60/0x70 [ 467.409967][T24879] x64_sys_call+0x243/0x9a0 [ 467.414306][T24879] do_syscall_64+0x3b/0xb0 [ 467.418560][T24879] ? clear_bhb_loop+0x55/0xb0 [ 467.423073][T24879] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 467.428810][T24879] RIP: 0033:0x7f5b3e97dff9 [ 467.433055][T24879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 467.452497][T24879] RSP: 002b:00007f5b3f7a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d [ 467.460740][T24879] RAX: ffffffffffffffda RBX: 00007f5b3eb35f80 RCX: 00007f5b3e97dff9 [ 467.468560][T24879] RDX: 0000000000000000 RSI: 000000000100c17a RDI: 0000000000000004 [ 467.476364][T24879] RBP: 00007f5b3e9f0296 R08: 0000000000000000 R09: 0000000000000000 [ 467.484177][T24879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 467.491985][T24879] R13: 0000000000000000 R14: 00007f5b3eb35f80 R15: 00007ffe12592ca8 [ 467.499805][T24879] [ 467.502664][T24879] ================================================================== [ 467.511144][T24879] Disabling lock debugging due to kernel taint [ 467.517402][T24879] BUG: kernel NULL pointer dereference, address: 00000000000000d4 [ 467.525021][T24879] #PF: supervisor write access in kernel mode [ 467.531034][T24879] #PF: error_code(0x0002) - not-present page [ 467.536925][T24879] PGD 12f871067 P4D 12f871067 PUD 13b42d067 PMD 0 [ 467.543266][T24879] Oops: 0002 [#1] PREEMPT SMP KASAN [ 467.548297][T24879] CPU: 0 PID: 24879 Comm: syz.0.11480 Tainted: G B 6.1.99-syzkaller-00109-g0e8b65e41ffd #0 [ 467.559491][T24879] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 467.569385][T24879] RIP: 0010:_raw_spin_lock+0xba/0x1b0 [ 467.574593][T24879] Code: 00 00 e8 b9 b6 9c fc 4c 89 ff be 04 00 00 00 e8 ac b6 9c fc 43 0f b6 04 26 84 c0 0f 85 a9 00 00 00 8b 44 24 20 b9 01 00 00 00 41 0f b1 4d 00 75 33 48 c7 04 24 0e 36 e0 45 49 c7 04 1c 00 00 [ 467.594069][T24879] RSP: 0018:ffffc900047a7100 EFLAGS: 00010297 [ 467.599936][T24879] RAX: 0000000000000000 RBX: 1ffff920008f4e20 RCX: 0000000000000001 [ 467.607746][T24879] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc900047a7120 [ 467.615557][T24879] RBP: ffffc900047a7198 R08: dffffc0000000000 R09: 0000000000000003 [ 467.623369][T24879] R10: ffffffffffffffff R11: dffffc0000000001 R12: dffffc0000000000 [ 467.631180][T24879] R13: 00000000000000d4 R14: 1ffff920008f4e24 R15: ffffc900047a7120 [ 467.639078][T24879] FS: 00007f5b3f7a66c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 467.647844][T24879] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 467.654266][T24879] CR2: 00000000000000d4 CR3: 0000000133661000 CR4: 00000000003506b0 [ 467.662086][T24879] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 467.669889][T24879] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 467.677700][T24879] Call Trace: [ 467.680827][T24879] [ 467.683605][T24879] ? __die_body+0x62/0xb0 [ 467.687770][T24879] ? __die+0x7e/0x90 [ 467.691505][T24879] ? page_fault_oops+0x7f9/0xa90 [ 467.696296][T24879] ? vprintk_default+0x26/0x30 [ 467.700966][T24879] ? kernelmode_fixup_or_oops+0xd0/0xd0 [ 467.706344][T24879] ? add_taint+0x44/0xe0 [ 467.710434][T24879] ? panic+0x667/0x667 [ 467.714339][T24879] ? exc_page_fault+0x529/0x6d0 [ 467.719028][T24879] ? asm_exc_page_fault+0x27/0x30 [ 467.723878][T24879] ? _raw_spin_lock+0xba/0x1b0 [ 467.728476][T24879] ? _raw_spin_trylock_bh+0x190/0x190 [ 467.733684][T24879] ? unlock_page_memcg+0x146/0x160 [ 467.738633][T24879] ? mark_buffer_dirty+0x286/0x3b0 [ 467.743578][T24879] ? mark_buffer_dirty+0x1dc/0x3b0 [ 467.748530][T24879] mark_buffer_dirty_inode+0x131/0x310 [ 467.753823][T24879] fat16_ent_put+0x97/0xc0 [ 467.758073][T24879] fat_alloc_clusters+0x58b/0x1190 [ 467.763019][T24879] ? create_page_buffers+0x13f/0x210 [ 467.768146][T24879] ? fat_mirror_bhs+0x470/0x470 [ 467.772834][T24879] ? __kasan_slab_alloc+0x6c/0x80 [ 467.777687][T24879] ? fat_bmap+0x4a3/0x5c0 [ 467.781856][T24879] fat_get_block+0x4c0/0xcf0 [ 467.786373][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.791664][T24879] ? _raw_spin_unlock+0x4c/0x70 [ 467.796348][T24879] ? create_empty_buffers+0x4af/0x4f0 [ 467.801561][T24879] ? __kasan_check_read+0x11/0x20 [ 467.806423][T24879] __block_write_begin_int+0x49c/0x1440 [ 467.811802][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.817094][T24879] ? page_zero_new_buffers+0x3e0/0x3e0 [ 467.822414][T24879] ? __kasan_check_read+0x11/0x20 [ 467.827248][T24879] cont_write_begin+0x68e/0x950 [ 467.831939][T24879] ? generic_cont_expand_simple+0x2a0/0x2a0 [ 467.837666][T24879] ? _raw_spin_unlock_irqrestore+0x5b/0x80 [ 467.843316][T24879] ? avc_compute_av+0x4f5/0x830 [ 467.848080][T24879] fat_write_begin+0xa1/0x170 [ 467.852591][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.857989][T24879] cont_write_begin+0x30e/0x950 [ 467.862662][T24879] ? generic_cont_expand_simple+0x2a0/0x2a0 [ 467.868391][T24879] ? avc_has_perm+0x16f/0x260 [ 467.872909][T24879] fat_write_begin+0xa1/0x170 [ 467.877418][T24879] ? fat_block_truncate_page+0x50/0x50 [ 467.882714][T24879] generic_cont_expand_simple+0x187/0x2a0 [ 467.888267][T24879] ? submit_bh+0x30/0x30 [ 467.892343][T24879] ? selinux_inode_setattr+0x634/0x840 [ 467.897637][T24879] ? inode_owner_or_capable+0x1f0/0x1f0 [ 467.903019][T24879] ? selinux_inode_permission+0x650/0x650 [ 467.908579][T24879] ? debug_smp_processor_id+0x17/0x20 [ 467.913780][T24879] ? setattr_prepare+0x1fe/0xd00 [ 467.918556][T24879] fat_cont_expand+0x6b/0x1f0 [ 467.923071][T24879] fat_setattr+0x477/0x1070 [ 467.927411][T24879] ? fat_getattr+0x2a0/0x2a0 [ 467.931836][T24879] notify_change+0xd53/0x1010 [ 467.936349][T24879] ? cap_inode_need_killpriv+0x51/0x60 [ 467.941647][T24879] do_sys_ftruncate+0x5ab/0x820 [ 467.946345][T24879] ? __x64_compat_sys_truncate+0x70/0x70 [ 467.951802][T24879] ? __kasan_check_write+0x14/0x20 [ 467.956747][T24879] ? fpregs_restore_userregs+0x130/0x290 [ 467.962230][T24879] __x64_sys_ftruncate+0x60/0x70 [ 467.966992][T24879] x64_sys_call+0x243/0x9a0 [ 467.971328][T24879] do_syscall_64+0x3b/0xb0 [ 467.975579][T24879] ? clear_bhb_loop+0x55/0xb0 [ 467.980096][T24879] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 467.985820][T24879] RIP: 0033:0x7f5b3e97dff9 [ 467.990074][T24879] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48 [ 468.009628][T24879] RSP: 002b:00007f5b3f7a6038 EFLAGS: 00000246 ORIG_RAX: 000000000000004d [ 468.017881][T24879] RAX: ffffffffffffffda RBX: 00007f5b3eb35f80 RCX: 00007f5b3e97dff9 [ 468.025696][T24879] RDX: 0000000000000000 RSI: 000000000100c17a RDI: 0000000000000004 [ 468.033524][T24879] RBP: 00007f5b3e9f0296 R08: 0000000000000000 R09: 0000000000000000 [ 468.041306][T24879] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 468.049201][T24879] R13: 0000000000000000 R14: 00007f5b3eb35f80 R15: 00007ffe12592ca8 [ 468.057129][T24879] [ 468.059986][T24879] Modules linked in: [ 468.063728][T24879] CR2: 00000000000000d4 [ 468.067709][T24879] ---[ end trace 0000000000000000 ]--- [ 468.073003][T24879] RIP: 0010:_raw_spin_lock+0xba/0x1b0 [ 468.078215][T24879] Code: 00 00 e8 b9 b6 9c fc 4c 89 ff be 04 00 00 00 e8 ac b6 9c fc 43 0f b6 04 26 84 c0 0f 85 a9 00 00 00 8b 44 24 20 b9 01 00 00 00 41 0f b1 4d 00 75 33 48 c7 04 24 0e 36 e0 45 49 c7 04 1c 00 00 [ 468.097648][T24879] RSP: 0018:ffffc900047a7100 EFLAGS: 00010297 [ 468.103639][T24879] RAX: 0000000000000000 RBX: 1ffff920008f4e20 RCX: 0000000000000001 [ 468.111450][T24879] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffc900047a7120 [ 468.119347][T24879] RBP: ffffc900047a7198 R08: dffffc0000000000 R09: 0000000000000003 [ 468.127160][T24879] R10: ffffffffffffffff R11: dffffc0000000001 R12: dffffc0000000000 [ 468.134969][T24879] R13: 00000000000000d4 R14: 1ffff920008f4e24 R15: ffffc900047a7120 [ 468.142780][T24879] FS: 00007f5b3f7a66c0(0000) GS:ffff8881f6e00000(0000) knlGS:0000000000000000 [ 468.151548][T24879] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 468.157978][T24879] CR2: 00000000000000d4 CR3: 0000000133661000 CR4: 00000000003506b0 [ 468.165790][T24879] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 468.173594][T24879] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 468.181407][T24879] Kernel panic - not syncing: Fatal exception [ 468.187509][T24879] Kernel Offset: disabled [ 468.191633][T24879] Rebooting in 86400 seconds..