last executing test programs: 6.188201734s ago: executing program 1 (id=4809): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x2, 0x4, 0x8, 0xc, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xd, &(0x7f0000000280)=ANY=[@ANYBLOB="18000000000000000000000000000004850000006d00000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000300000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='kfree\x00', r1}, 0x10) r2 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) ioctl$KVM_SET_MSRS(r2, 0xc008ae88, &(0x7f0000000040)=ANY=[@ANYBLOB="01000000cf0800004503"]) 6.187718025s ago: executing program 1 (id=4811): syz_mount_image$exfat(&(0x7f0000001500), &(0x7f0000001540)='./file1\x00', 0x0, &(0x7f0000000100)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c00a3a2a4e7417e941910c27d130b55ac2d5f7a61e59ec6d5de07239091924c32eeb367d16409d6d3ec1fb755f9a7989ebc4e96918e268f0b7acebf67c07bc4731250f87d27b5e9e61000e70f0c6a4e2432073d0d3e18f864e9ef64637d14e5485f36e53c821cb5898685c055a367ea51b653eff6581710f6c3824bc667bd24219163c60803099f985567be0d978e301b4f6603628606afadb04eee58f42f1853f2e8598a5e250e0f4c9a"], 0x1, 0x14fe, &(0x7f0000002ac0)="$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") r0 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000040)='memory.events\x00', 0x275a, 0x0) write$UHID_INPUT(r0, &(0x7f0000000940)={0x8, {"85f080a4933d55266e07e799aa0cc421388242df2a3c6b631b65b1c061edd2aa108c3528fe9b0bb3a53ab1200f5d01a68a4acdec8fee09648222f908c1fedc3000342e6139de28366c13509306d00ebcc67497181ac916db98af9d366b76e427d9ab5bb68095f0fb246df32b8af0783653136f8a04c03690312125b2ded6a24fda8685340c575ead69519e3583f89d467ec232d6a1ffd0463ba4ea3cbae5dae6654b5547b5458f02ac307729e57b09e134f68be44f88d72517b230b066f6315b5fb80206397bbff8cbc2a36e01c2e7b3aadb03bd3dd5288a69a991d9c674717e3abba7167280b2db3b1b8502afa4f3f296c532510c9d2dd79bb5eeb25adb5edddbdd069c09d14d15c2e7e1e2bb22e97d6992236d2273c8bb95536f7118d007965008b125c7daac2814e6bbe1adbfa3572ad0b7ad5c26c8014118d8374ca9f285779dfee7715a403908146a74de61b3853914c89f444c12e7a38bdd46c4ed36eb806ea598f44d1dec9eff9e2476f43802211f0762b66673b45d236b2391ce322e30fb9c69fe0d514dc1f8b6e3979c1205fd5224b07d18a44fec4f6f1a6f65158bb6adcc295bf2dd7dea107f59d7e03c61fe5822292e45968956b931bdc4d6445ff1631e0b98e4b4448774dd4b9cd53a45896fdb3f03702778741ae2b45a25bf9a23fc02fb97a630f132bf9def6c6d4a7baeb62972f1a814f6f2377bcfc78e2e86368c138510a04cedf7175af8c2033aae7413e3ace8c71ab9a0af1ca7042011a6ed028e205648535dabf3b2f85196ae18d36b839e3cd54ae4933ad529888fdac7bb8a70c72bc0fc81ba06506f2d5bc7686e219bbe5283959cbef9950e071cb6d9f341fc624a5110341f26cebd7100599a06e61f66fae120c7fc2b34c6221200eba75bd1277114671a3fa8f058b27fd897b052f4a52afcea814df526181c75c4497210a2b85b7b26601561e78735387cf123654b0295d1d60556956b36d96dd038866c4b4db31ebdcddd6929bbc2850cd4901389e6ea6e86041e0efa1111c2fb0e6df6364cb95659f506d5c7e63fb67c8116577d15e4a4b1fc4c27de2e52586cb1f52be9c3601f5066549de8bdc3ec07d1a84caf1961323ec2487a37b751aeabafcd647ce2dae5d9499c0f969467e6cabad198669ac96bd1488954eff0854ee0c83d7b596d273625bdb16270782321071fda5d980ded78ffa9dc2b56037d7cbf942547f48a5131f1991f6c17ae1ed5120ca6878f98e68e7997a9a2b70be640a70a34adb80de286c669bb5f092e4e3a15a83217e03d02a4054f34af3a65ff6b36f395b76a0579cffafd5d3bb0e704c935caecf3a7ab756c23fd60c9fe3f4fb2be7504f5bae22b116ff1588dcf02b327d31bf0488dba8af5b33ccf2d7d87f43bbc48fcd4f191ad6af9313ad38b8b2967cbfabd6651bc1f6ce5abb4a2f1413194f96b26d7d6edc4e013fba549075c97eef508af5ca7873664b058b7bcf455a8a04b591d29fab6366c844bb75576bac2d52323e747303d00a5736c9812922b0e17bcec9135550736b54cf6407d61e22e62d7bb75f62935b665acf33e75f688c36ef416f1b890d0f0c8ad1df00e02ec45967834d5649c8e7143978622fa3704672970b7993a87e97d3d926a14265647bc8b8c9e6f83e29572608d24b42c2635ef4abbd0af83860e99c90d7471cf6e8ce99507f5ec2bc572212fa9ee3f5a9dfa3815fe55f0bbb119acce062ae37f2ff921707abba139bcddf42bfd174d29b540161b4113c4e1a13f3a628c638ec4d3a884dfbc093e23ec0d0671b46b41dc8b42d950c8615ba5ee87f49b5d0910ffa4871207995001920db05a95199967f097ba7b55bbd271d818690c4238406b40a3dfc42fa56a67173b53a96b543326c56738b6d043195934018696f5ab49347e5148a78f2d1369a71afab8330273d46ecfba4ee05802a5385649851db949dbfb39e290941641c50b1ac20fb3102754a760b097f464ddb0b83f8168badfa71db6621dcf22fb081e3403f3bac5c7e65905aca52885c807f8ddab18bb2f12ef952c50483c0e251968bc70ff0d42a638ca744dea4c7ebb4fea777cf663bb4f1505ed79730c45bc86e488a13f924377a8e2ee6670a02ca52874ae1c42a35d55b9765757047b2cc3742aa51fa3e43fb2c113c92ad213bad252c1a82966dd016f12a7f1c3900c0f1ab455035163f31899bdd30f3ff43ad17d9e45bb7438c1c986712736f24be14f71ab1bfe92a25ec07f086ee8c7971b8077a13e58a8e8bea39c8e06b251909f02cb0080abf020f27ca160eb26c082dda1fa54ea4094dfdbcb2fa7bddccb67a844e8075f4cc08dad35757006d051e183dced336bc0c2502f93ffc87dca622286ba174c24e1f53f27dc2777baafe170348b0e8d3e743b3aa906bc0764bbe7da08ff403efe2212627d6748c2ce5bb513b7312517d1f88c61c7ba5f9647cd619281c5b390b48606ee39fb4171103df2e09d7cfd56c06c721f7c24ad8cce383623fc2dcb73f7b1b3b86df1b42490815513681aafbf7e871b4b9686efae6c45ecfca60a640a6f071dfd31f9437c3d03086164b48c1ed802986864bfe0d49bdd7709662262368dbc3ecc05eb240ecc41904c76d78ab5c52b66af5a720fdd6a92f52be0676427a56e32e5bc5085b25f90add28a76f2fce6f8f0ef74f4658098549646bd63175adf77b5cdcf102946554ba6136cbc83c6268ee40318f3c9d4718025688b35d2265bf60bf889ff629f7834586ef46eab7a9176337536bb6001e676546b987f36b1fe4baea02fa76fb4830aebbb9c14d8e2b43ea77ef887e5a26448f4086fa819a25e27725ac10298851c8bc45f2ce4430b07917ade5ea8c434c3f2576effbeb521173736e5c9557450643068b0c0fb132a7e99de6ca292246a9937fa7d7e06e59cf59ce5b9f8426a9049931146af40a8a1256ba373a88d09dc00cdf4453cc6ba78572bf3e1f2352a978cdbad60220cb8ac37d7f614a306492a4b5eee9244b0ca84b6cf2e23013bfb1cb92bf6d126fe550e58c19f84e7a4081437b75b31b2b9fb658dcd8ba077962e0f3359721a148d4fefe5c97941ca9688cb85adf38fd10f5811cdd8e074a21abfc9541c71465b08d7321281b68ed52bfab789b9c83849c09d52376d419b1e7ba367603236e119cdf4a7b7cf9d81f2229601deace53cea2f14a05f7fa0ca04b39e31c6453e332f4bd0915c0e09e28f4d1125c390c6ff0833a04b6fc37855e65de90333e505b9eb66e0068607000000fb7b8b215dbdc9787b5baa724cfa71ee6745b41e203de8b7794757ac328ec5567540b951b50530c3d4ee34705ea1c66fd6591e88561083e86d48c45ef3b83a3029319d8f3d8e65ce14c1dc3cb92d0a7dbeb609a8d2793928caa079f0fbbb2bc90b9fb4000000f4032041d14c5bca00e99b3027ec3a50c4957199cf016a4594069af8659df0973f20ffb15dbc265ac5b8a2203e90b114a3e9441e357c60ce0b550a7fe66fc34f5702ac8e8992a22e89194c1df69e81a9b7ad3d2634ea8c0388588192fd47d8e803b10044d558617fb2921b69eb4d85c051f86ef63a2f4382b9becd870fb2ecadca6902712b88680792e2f2ec89591cfebb6db3ad31c2a339af10465fcf7988519d382218df52261234f26a6f66ad0d1859de505d0fe819caf2f8d30aa9fd1228ac91d11ca67f1f8d50c8eefa5c441514321507dff6c6ea3cff6f340a1c11e0c40f419e8e60fc94d8828fa47a96cdf7ee4f61e23f40751b25cf9ca1295041a350f83f0e679515d6b4b46e2c9ce8999e07f835abc1663cefcf728df37831f4e17f8c8a4feaf1fbf44c38c9313284404a50ba4cd8abe835b33bfecb02cd6c9d7f435853b4c8d505ab83cf46512739116694765658bae64b3127152d216055aef9b25c70a8a3b302752d7b1e8791c657b9f3fc9001ef299fd1a349491ae6ee9940149160507fc4130fb825d47d97dc2c243209d2403583ac3ef6ddbedcaa76432255487c0a06e59e043e572ab3aec002afea6b6a2dc9cfaeefa70557886c4d12924a0388f2f1bc8e89e4cfa69705d1ef3c4658f8616278b588011d9dd914beec0b151d65b6524fba3e3f235d58373e021699b07622a51504eade747e0b2f9cf38bc167cabc8cb18c708d1337e25648707e8c0872876514c7a49c0b2aaee5ed9e9ecfcbcc23e032c4deb63e48e7120188056468fad31448e4b46e7d62fbcfc1c2cfb01fcf0db5e8a162bdb9bd820c763f17b96c23f32db9d1c1d74ddbe657b4f9595a9796982a0742153111b15e484d8ffebe47ce0a78a41e470a341616ec2eb6eef813fb415fab50fa965bec6a5977a0ade4fed67f86fc24e11b0e2f5364079f7c7c35b560cac726dbc80f29dbd248f7ecda0286a23ef172a28c96d9bdb1f598eab31c6baf0321312da23920c074b9d2d2e442717f2c21001142a39c2da6b8bd9d06b05a6a8deae1bd1be4108a636ddbebc682d113e715f2f3ee506abc28b1c654b3d2d28e02f73b171ed0deed71dda90ce4a0b728cc75cb576385e7418b545b992b1dd98e2ee53355f464f9250a2a03b3d1e4d2ac1aa71d01de2573530324e14d15a507883411ddbd37be21dc929db9b11f11010e4d2a04c7325a5ae6d24d19900ff97a8a89438f8676457a78cff05201528f4358fe67f61288bf042a8f3c2e0f8b4997b8fb74996b80d465489b2d7807a945eba72a945e8cf8625dbad6f6f6e30537b29e558ca8a8b0625f578c766d34f2d28d704715f94df1f6318a308042aa494baa295640679f1eab1e6a8308af8ce6441d5ad8a2f3d477eb5307af0dfae66444a8f1434030b8361621340ad3dcefa6d8f090ed3929d89ad9c0ba01a6903033428dd8f98619304b1803187d2a6130bf1e009b5eb0e7e21c75594b3b8470f3106c92a9e55bfeb026091ced127a90a1f1247f3c07e36d3572923e0de3f73518d0369a25fcd4e65d243b7eab91063a7bfd8bc8ac9e39fbbb32b5c9517886287a18eacd8dbfda9b91db693cb12e42cba5988280e09e51e72b91a0f360656d8f21cc1eb3248ac345ad51d1a6172b18419277851dab01e028c7e8e2cf34095efd28267852a08fccf61c45b5e46930160daf50282be058274e7ff58c48b60b86d0c8cc886ab8778a2a2b5fa2557ad7bf7f01f2175523ce758871d334c20a9839f7a89fe2867c06289c8a2f6456ac7e4fbadee53ac41aee68214bc76669853baa4f58255b39ba581414f2e8c4b49303f8936a33bae5cbc96b29a5c724d5b50e1614144c2acd03bd90de891c3d36ce040d57543682ecbfcae66c4153c337c3a5d01896524c8e0c27e9a08919821ca27bbfe3fc9ba24a823aeec8d4ad8ef8a65c585bee4dcf1acaa3da501a8c11a23b2e22920c1ad0129a038b31fe16c2abc80589dbf7c37211afc5d1a6db908bc5fe8a692060069fcbcdcba7c523d3c424aa3b0c6556387e0e51bcde9e5f850abf62d2c2101c3a2786a0cb94932877a09cb6b64aa61da8cab3b423e7adc4c4700418a65e87225710e1691f6d9cb2eb63cce5b605ce0a4a89cf519767e00845397c5e381141a0ed8a89b01064b495ec8d1e2da37433bf1597d919a69610d2ad26bdf6fca8de422bb2cb80d0516206e8194ee51445a3dcb5dee33c0c310b4751e68e58bebda2fb586985a5a5b06456756f44e6dbfef4bb99ca732f00fb9ea35775f7419681bfbe6f43dc7c4650c13b63d93c1d490bf0173f287a4309531f13ecb1a775d0bd881a00", 0xdd52d6c}}, 0x1006) mmap(&(0x7f0000000000/0x4000)=nil, 0x4000, 0x1, 0x10012, r0, 0x0) chdir(&(0x7f0000000240)='./file0\x00') 6.170267056s ago: executing program 1 (id=4815): syz_mount_image$ext4(&(0x7f0000000140)='ext4\x00', &(0x7f00000005c0)='./file0\x00', 0x4000, &(0x7f0000000380)={[{@test_dummy_encryption}, {@debug_want_extra_isize={'debug_want_extra_isize', 0x3d, 0x84}}, {@stripe={'stripe', 0x3d, 0x7}}, {@commit={'commit', 0x3d, 0x5}}, {@orlov}, {@barrier_val={'barrier', 0x3d, 0x5}}, {@max_batch_time}, {@data_err_abort}]}, 0xd, 0x5d8, &(0x7f0000000c00)="$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") quotactl$Q_QUOTAOFF(0xffffffff80000302, 0x0, 0xffffffffffffffff, 0x0) r0 = open_tree(0xffffffffffffff9c, &(0x7f0000000640)='\x00', 0x81000) symlinkat(&(0x7f0000000440)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa/file0\x00', r0, &(0x7f0000000340)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00') unlinkat(r0, &(0x7f0000000680)='./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa\x00', 0x0) 6.118695191s ago: executing program 1 (id=4816): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000800)=ANY=[@ANYBLOB="1201000000000040300f1101000000000001090224000100000000090400000103c59a0009210000000122070009058103"], 0x0) syz_usb_control_io(r0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000180)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000000000000b703000000000000850000000400000095"], &(0x7f0000000040)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) syz_usb_control_io(r0, &(0x7f0000000280)={0x2c, &(0x7f00000003c0)=ANY=[@ANYBLOB="00900d0000002ac229d9643c3a"], 0x0, 0x0, 0x0, 0x0}, 0x0) 2.842184634s ago: executing program 1 (id=4860): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000100)=@base={0x9, 0x4, 0x7fe2, 0x1, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x3, &(0x7f00000001c0)=@framed, &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) r2 = dup2(r1, r0) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000080)={&(0x7f0000000000)='sys_enter\x00', r2}, 0x10) fchmodat(0xffffffffffffffff, 0x0, 0x0) 2.841976213s ago: executing program 1 (id=4861): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f00000002c0)=ANY=[@ANYBLOB="12013f00000000407f04ffff00000000000109022d000100000000090400001503000000092140000001220f00090581", @ANYRES16], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000080), 0x0, 0x0) ioctl$HIDIOCGUSAGE(r1, 0xc018480b, &(0x7f00000000c0)={0x2, 0x100}) 2.209667856s ago: executing program 3 (id=4869): bpf$ENABLE_STATS(0x20, 0x0, 0x0) r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x5, 0x4, 0xfff, 0x7, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000021b70400000000000085000000c300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$PROG_BIND_MAP(0xa, &(0x7f0000000500)={r1}, 0xc) 2.153477751s ago: executing program 3 (id=4870): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000009c0)=@base={0x19, 0x4, 0x8, 0x8, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="180000000000000000000000000001b518110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000000000850000000100000095"], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000080)='kfree\x00', r1}, 0x10) bpf$MAP_UPDATE_ELEM_TAIL_CALL(0x2, &(0x7f0000000600)={{r0}, &(0x7f0000000000), &(0x7f00000005c0)=r1}, 0x20) request_key(&(0x7f00000003c0)='asymmetric\x00', &(0x7f0000000400)={'syz', 0x2}, 0x0, 0xfffffffffffffffd) 2.153328461s ago: executing program 3 (id=4871): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000200)=ANY=[@ANYBLOB="12010000000000107d1ece31000000000001090224000100000000090400000203000000092100000001220b0009058103"], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f00000009c0)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000008000000b703000000000083850000007100000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback=0x2, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x94) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000540)={&(0x7f0000000000)='kfree\x00', r1}, 0x10) syz_usb_control_io$hid(r0, &(0x7f0000000180)={0x24, 0x0, 0x0, &(0x7f0000000280)=ANY=[@ANYBLOB="00220b0000002b0f2bb50a28"], 0x0}, 0x0) 1.738377155s ago: executing program 4 (id=4886): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0x18, &(0x7f0000000300)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b702000014000000b7030000000000008500000083000000bf090000000000005509010000000000950000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b7040000090000008500000082000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f00000001c0)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000140)={&(0x7f0000000180)='tlb_flush\x00', r1}, 0x10) r2 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000000180)={0x18, 0x5, &(0x7f0000000000)=ANY=[@ANYBLOB="1801000000000000000000004b84ffec850000006d000000850000002a00000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x2, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x80) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000440)={&(0x7f0000000400)='tlb_flush\x00', r2}, 0x10) 1.737935316s ago: executing program 4 (id=4888): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f00000004c0), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_CREATE_IRQCHIP(r1, 0xae60) r2 = ioctl$KVM_CREATE_VCPU(r1, 0xae41, 0x2) ioctl$KVM_SET_VCPU_EVENTS(r2, 0x4040aea0, &(0x7f0000000040)=@x86={0x3, 0x8, 0x0, 0x0, 0x2, 0x2, 0xe, 0xfe, 0x0, 0x12, 0x0, 0x0, 0x0, 0x0, 0xa, 0x0, 0x2, 0x0, 0x34, '\x00', 0x0, 0x2}) 1.650159213s ago: executing program 4 (id=4889): r0 = signalfd4(0xffffffffffffffff, &(0x7f00000000c0), 0x8, 0x0) openat(0xffffffffffffff9c, &(0x7f00000003c0)='./file0\x00', 0x101a43, 0x0) pipe2$9p(&(0x7f0000000240)={0xffffffffffffffff, 0xffffffffffffffff}, 0x0) write$P9_RVERSION(r2, 0x0, 0x15) mount$9p_fd(0x0, &(0x7f0000000000)='./file0\x00', &(0x7f0000000180), 0x800000, &(0x7f0000000400)={'trans=fd,', {'rfdno', 0x3d, r1}, 0x2c, {'wfdno', 0x3d, r0}, 0x2c, {[], [], 0x6b}}) 1.376301276s ago: executing program 2 (id=4892): r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000240)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000003c0)={&(0x7f0000000140)='sys_enter\x00', r1}, 0x10) r2 = epoll_create(0x7) epoll_pwait(r2, &(0x7f00000000c0)=[{}], 0x1, 0x8, 0x0, 0x0) 1.314251561s ago: executing program 2 (id=4893): r0 = socket$packet(0x11, 0x3, 0x300) setsockopt$packet_int(r0, 0x107, 0x8, &(0x7f0000000140)=0xd, 0x4) readv(r0, &(0x7f0000000300)=[{&(0x7f0000001600)=""/4096, 0x1000}], 0x1) syz_emit_ethernet(0x4e, &(0x7f0000000240)={@local, @local, @val={@void}, {@ipv6={0x86dd, @tcp={0x0, 0x6, "080108", 0x14, 0x2f, 0x0, @private1, @private1, {[], {{0x0, 0x0, 0x41424344, 0x41424344, 0x0, 0x0, 0x5}}}}}}}, 0x0) mkdirat$cgroup_root(0xffffffffffffff9c, 0x0, 0x1ff) 1.289076043s ago: executing program 2 (id=4894): r0 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xb, &(0x7f0000000640)=ANY=[@ANYBLOB="18000000000000000000000000000000180100002020702500000000002020207b1af8ff00000000bfa100000000000007010000f8ffffffb702000004000000b703000000000000850000007200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000400)={&(0x7f00000003c0)='sched_switch\x00', r0}, 0x10) r1 = openat$rtc(0xffffff9c, &(0x7f0000000040), 0x0, 0x0) ioctl$BTRFS_IOC_TREE_SEARCH(r1, 0x7005, 0x0) readv(r1, &(0x7f0000000000)=[{&(0x7f00000012c0)=""/191, 0x4}], 0x1) 1.276637754s ago: executing program 2 (id=4895): r0 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=ANY=[@ANYBLOB="1b00000000000000000000000080"], 0x48) bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x0, 0xc, &(0x7f0000000240)=ANY=[@ANYBLOB="1800000000000000000000000000000018120000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000002010000850000004300000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000240)=ANY=[], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000001c0)={&(0x7f0000000180)='sys_enter\x00', r1}, 0x10) wait4(0x0, 0x0, 0x8, 0x0) 1.222229339s ago: executing program 2 (id=4896): r0 = bpf$PROG_LOAD(0x5, &(0x7f0000000200)={0x4, 0xe, &(0x7f0000001540)=ANY=[@ANYBLOB="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"], &(0x7f0000000340)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x8, &(0x7f0000000000), 0x0, 0x10, &(0x7f0000000880), 0xfffffffffffffddd, 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x48) bpf$ENABLE_STATS(0x20, 0x0, 0x0) socket$inet(0x2, 0x200000003, 0x84) process_vm_readv(0x0, 0x0, 0x0, 0x0, 0x0, 0x0) bpf$BPF_PROG_TEST_RUN(0xa, &(0x7f00000002c0)={r0, 0x0, 0xe, 0x0, &(0x7f0000000140)="3d6ee2e04b91ab10143d9abe86dd", 0x0, 0xffff, 0x0, 0x0, 0x0, 0x0, 0x0}, 0x50) 1.221999778s ago: executing program 2 (id=4897): close_range(0xffffffffffffffff, 0xffffffffffffffff, 0x2) r0 = syz_open_dev$evdev(&(0x7f0000000040), 0x0, 0x0) syz_usb_disconnect(r0) syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000080)={{0x12, 0x1, 0x0, 0x0, 0x0, 0x0, 0x40, 0x56a, 0x16, 0x0, 0x0, 0x0, 0x0, 0x1, [{{0x9, 0x2, 0x24, 0x1, 0x0, 0x0, 0x0, 0x0, [{{0x9, 0x4, 0x0, 0x0, 0x0, 0x3, 0x0, 0x0, 0x0, {0x9}}}]}}]}}, 0x0) ioctl$EVIOCRMFF(r0, 0x4004550d, &(0x7f0000000080)) 846.24318ms ago: executing program 0 (id=4904): r0 = openat$zero(0xffffffffffffff9c, &(0x7f0000000000), 0x0, 0x0) r1 = bpf$MAP_CREATE(0x0, &(0x7f00000000c0)=@base={0x1b, 0x0, 0x0, 0x8000, 0x0, 0xffffffffffffffff, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000800)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000008000000b704000000008000850000008200000095"], &(0x7f0000000200)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000740)={&(0x7f00000006c0)='sched_switch\x00', r2}, 0x10) read(r0, &(0x7f0000000040)=""/148, 0xffffff96) 804.161434ms ago: executing program 0 (id=4905): r0 = socket$nl_generic(0x10, 0x3, 0x10) r1 = fsopen(&(0x7f0000000000)='ramfs\x00', 0x0) fsconfig$FSCONFIG_CMD_CREATE(r1, 0x6, 0x0, 0x0, 0x0) fsmount(r1, 0x0, 0x0) fsconfig$FSCONFIG_SET_FD(r1, 0x5, &(0x7f00000009c0)='\\!^:+&[@\\}&.&!\x00', 0x0, r0) 792.547594ms ago: executing program 0 (id=4906): r0 = bpf$MAP_CREATE(0x0, &(0x7f0000000640)=@base={0x17, 0x0, 0x4, 0xff, 0x0, 0x1, 0x0, '\x00', 0x0, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) bpf$PROG_LOAD_XDP(0x5, &(0x7f0000000a40)={0x3, 0xc, &(0x7f0000000440)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r0, @ANYBLOB="0000000000000000b7080000000000007b8af8ff00000000bfa200000000000007020000f8ffffffb703000000000000b704000000000000850000005700000095"], 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x25, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$PROG_LOAD(0x5, &(0x7f00000000c0)={0x11, 0xc, &(0x7f0000000440)=ANY=[], &(0x7f0000000240)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000040)={&(0x7f0000000000)='block_plug\x00', r1}, 0x10) madvise(&(0x7f0000000000/0x600000)=nil, 0x600003, 0x15) 791.778274ms ago: executing program 4 (id=4907): r0 = socket$inet6(0xa, 0x2, 0x3a) setsockopt$SO_BINDTODEVICE(r0, 0x1, 0x19, &(0x7f0000000040)='bridge_slave_1\x00', 0x10) r1 = dup(r0) bind$unix(r1, &(0x7f00000001c0)=@abs={0xa, 0x2}, 0x6e) syz_emit_ethernet(0x3e, &(0x7f0000000000)={@broadcast, @multicast, @void, {@ipv6={0x86dd, @icmpv6={0x0, 0x6, "120008", 0x8, 0x3a, 0x0, @remote, @local, {[], @echo_reply={0x81, 0x0, 0x0, 0x200}}}}}}, 0x0) 777.612566ms ago: executing program 4 (id=4908): r0 = bpf$BPF_PROG_RAW_TRACEPOINT_LOAD(0x5, &(0x7f0000002ac0)={0x1a, 0x3, &(0x7f0000000480)=ANY=[@ANYBLOB="1800000000000000000000000000000095"], &(0x7f0000000080)='GPL\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, 0x18, 0xffffffffffffffff, 0x8, 0x0, 0x0, 0x10, 0x0, 0x0, 0x20c9, 0x0, 0x0, 0x0, 0x0, 0x10, 0x0, @void, @value}, 0x90) r1 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r2 = bpf$PROG_LOAD(0x5, &(0x7f0000000440)={0x11, 0xf, &(0x7f00000003c0)=ANY=[@ANYBLOB="1800000000000000000000000000000018110000", @ANYRES32=r1, @ANYBLOB="0000000000000000b702000014008000b7030000000000008500000083000000bf0900000000000055090100000000009500000000000000bf91000000000000b7020000000000008500000084000000b70000000000000095"], &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f00000000c0)={&(0x7f0000000140)='mm_page_alloc\x00', r2}, 0x10) bpf$BPF_RAW_TRACEPOINT_OPEN_UNNAMED(0x11, &(0x7f0000000440)={0x0, r0}, 0x10) 777.112455ms ago: executing program 0 (id=4909): syz_mount_image$vfat(&(0x7f00000001c0), &(0x7f0000000100)='./bus\x00', 0x1000840, &(0x7f0000000400)=ANY=[@ANYBLOB="6572726f72733d636f6e74696e75652c73686f72746e616d653d6d697865642c756e695f786c6174653d302c696f636861727365743d63703933362c73686f72746e616d653d6d697865642c756e695f786c6174653d302c757466383d302c636f6465706167653d3733372c73686f72746e616d653d77696e6e742c696f636861727365743d6d61637475726b6973682c73686f72746e616d653d6d697865642c757466383d302c756e695f786c617465001d18"], 0x83, 0x367, &(0x7f0000002cc0)="$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") r0 = syz_open_dev$loop(&(0x7f0000000100), 0x8000000000000, 0x0) r1 = openat$cgroup_ro(0xffffffffffffff9c, &(0x7f0000000080)='cgroup.stat\x00', 0x275a, 0x0) write$binfmt_aout(r1, &(0x7f00000010c0)=ANY=[], 0x1a3) ioctl$LOOP_CONFIGURE(r0, 0x4c0a, &(0x7f00000002c0)={r1, 0x0, {0x2a00, 0x80010000, 0x0, 0x18, 0x0, 0x0, 0x0, 0x0, 0x1c, "fee8a2ab78fc179fd1f8a0e91ddaaca7bd64c6a4b4e00d9683dda1af1ea89de2b7fb0a0100000000000000000300", "2809e8dbe108598948224ad54afac11d875397bdb22d0000b420a1a93c5240f45f819e01177d3d458dd4992861ac00", "90be8b1c551265406c7f306003d8a0f4bd00"}}) 685.443404ms ago: executing program 4 (id=4910): r0 = open(&(0x7f0000000300)='.\x00', 0x0, 0x0) mknod(&(0x7f0000000040)='./file0\x00', 0x8001420, 0x0) close_range(r0, 0xffffffffffffffff, 0x2) r1 = epoll_create1(0x0) mount$9p_fd(0x0, &(0x7f0000000600)='./file0\x00', &(0x7f0000000640), 0x0, &(0x7f00000001c0)={'trans=fd,', {'rfdno', 0x3d, r0}, 0x2c, {'wfdno', 0x3d, r1}}) 641.130027ms ago: executing program 0 (id=4911): r0 = openat$kvm(0xffffffffffffff9c, &(0x7f0000000080), 0x0, 0x0) r1 = ioctl$KVM_CREATE_VM(r0, 0xae01, 0x0) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000180)={0x4}) ioctl$KVM_REGISTER_COALESCED_MMIO(r1, 0x4010ae67, &(0x7f0000000000)={0x1000, 0x24000, 0x1}) ioctl$KVM_UNREGISTER_COALESCED_MMIO(r1, 0x4010ae68, &(0x7f0000000500)={0x4, 0x10000}) 581.857282ms ago: executing program 0 (id=4912): pipe(&(0x7f0000000300)={0xffffffffffffffff, 0xffffffffffffffff}) write(r0, &(0x7f00000001c0), 0xfffffef3) pipe(&(0x7f0000000100)={0xffffffffffffffff, 0xffffffffffffffff}) write(r2, &(0x7f00000001c0)='4', 0x1) tee(r1, r0, 0x3, 0x3) 87.971693ms ago: executing program 3 (id=4913): syz_mount_image$ext4(&(0x7f0000000000)='ext4\x00', &(0x7f0000000100)='./mnt\x00', 0x22000d5, &(0x7f0000000640), 0xfe, 0x236, &(0x7f0000000300)="$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") r0 = bpf$MAP_CREATE_RINGBUF(0x0, &(0x7f00000009c0)={0x1b, 0x0, 0x0, 0x40000, 0x0, 0x0, 0x0, '\x00', 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value, @void, @value}, 0x48) r1 = bpf$PROG_LOAD(0x5, &(0x7f0000000b00)={0x11, 0xf, &(0x7f0000000340)=@ringbuf={{}, {{0x18, 0x1, 0x1, 0x0, r0}}, {}, [], {{}, {}, {0x85, 0x0, 0x0, 0x84}}}, &(0x7f0000000080)='syzkaller\x00', 0x0, 0x0, 0x0, 0x0, 0x0, '\x00', 0x0, @fallback, 0xffffffffffffffff, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, 0x0, @void, @value}, 0x90) bpf$BPF_RAW_TRACEPOINT_OPEN(0x11, &(0x7f0000000200)={&(0x7f0000000340)='kfree\x00', r1}, 0x10) syz_mount_image$msdos(&(0x7f0000000180), &(0x7f0000000100)='.\x00', 0x64, &(0x7f00000001c0)=ANY=[], 0x1, 0x0, &(0x7f0000000000)) 81.982474ms ago: executing program 3 (id=4914): syz_mount_image$ext4(&(0x7f0000000080)='ext4\x00', &(0x7f0000000140)='./file1\x00', 0x2000040, &(0x7f0000002e00)={[{@errors_remount}, {@nodiscard}, {@noquota}, {@oldalloc}, {@stripe={'stripe', 0x3d, 0x1}}, {@resgid}, {@sysvgroups}, {@delalloc}, {@usrquota}]}, 0x10, 0x4d9, &(0x7f0000002e80)="$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") mount$incfs(&(0x7f0000000240)='./file0\x00', &(0x7f00000000c0)='./file0\x00', &(0x7f0000000140), 0x0, 0x0) setxattr$incfs_id(&(0x7f0000000140)='./file0/file0\x00', &(0x7f00000001c0), &(0x7f0000000200), 0x20, 0x0) rmdir(&(0x7f0000000100)='./file2\x00') unlink(&(0x7f0000000080)='./file0/file0\x00') 0s ago: executing program 3 (id=4915): r0 = syz_usb_connect$hid(0x0, 0x36, &(0x7f0000000340)=ANY=[@ANYBLOB="12013f00000000407f04ffff000000000001090224000100000000090400001503000000092140000001220f00090581", @ANYRES64], 0x0) syz_usb_control_io$hid(r0, 0x0, 0x0) syz_usb_control_io(r0, &(0x7f0000000b00)={0x2c, &(0x7f0000000040)=ANY=[@ANYBLOB="00000f00000009003d140f3c369197d09647190890"], 0x0, 0x0, 0x0, 0x0}, 0x0) r1 = syz_open_dev$hiddev(&(0x7f0000000300), 0x0, 0x0) ioctl$HIDIOCGUSAGE(r1, 0x400c4808, 0x0) kernel console output (not intermixed with test programs): 0): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 228.996146][ T9813] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.004410][ T9813] bridge0: port 2(bridge_slave_1) entered disabled state [ 229.013725][ T9813] device bridge_slave_1 entered promiscuous mode [ 229.023003][ T9826] F2FS-fs (loop0): Try to recover 2th superblock, ret: 0 [ 229.031723][ T9826] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 229.061899][ T8543] syz-executor: attempt to access beyond end of device [ 229.061899][ T8543] loop0: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 229.121788][ T9828] loop3: detected capacity change from 0 to 40427 [ 229.129406][ T9828] F2FS-fs (loop3): Invalid log_blocksize (268), supports only 12 [ 229.137631][ T9828] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 229.183793][ T9828] F2FS-fs (loop3): Found nat_bits in checkpoint [ 229.259846][ T9828] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 229.267048][ T9828] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 229.333358][ T615] kworker/u4:5: attempt to access beyond end of device [ 229.333358][ T615] loop3: rw=1, sector=45096, nr_sectors = 16 limit=40427 [ 229.376430][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 229.384489][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 229.399479][ T319] device bridge_slave_1 left promiscuous mode [ 229.413628][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 229.424908][ T319] device bridge_slave_0 left promiscuous mode [ 229.431047][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 229.448067][ T319] device veth1_macvtap left promiscuous mode [ 229.454120][ T319] device veth0_vlan left promiscuous mode [ 229.631760][ T9852] binder: 9851:9852 ioctl c0306201 20001a80 returned -14 [ 229.702802][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 229.711177][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 229.721438][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.728421][ T299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.739024][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 229.744747][ T9863] loop3: detected capacity change from 0 to 40427 [ 229.747520][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 229.762496][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.768848][ T9863] F2FS-fs (loop3): invalid crc value [ 229.769469][ T299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.782187][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 229.789790][ T9863] F2FS-fs (loop3): Found nat_bits in checkpoint [ 229.791252][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 229.804752][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 229.813174][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 229.821783][ T299] bridge0: port 1(bridge_slave_0) entered blocking state [ 229.829293][ T299] bridge0: port 1(bridge_slave_0) entered forwarding state [ 229.836796][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 229.845333][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 229.853786][ T9863] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 229.853837][ T299] bridge0: port 2(bridge_slave_1) entered blocking state [ 229.868260][ T299] bridge0: port 2(bridge_slave_1) entered forwarding state [ 229.875506][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 229.883657][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 229.891786][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 229.891933][ T9777] syz-executor: attempt to access beyond end of device [ 229.891933][ T9777] loop3: rw=2049, sector=40960, nr_sectors = 32 limit=40427 [ 229.899839][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 229.942281][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 229.951718][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 229.960152][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 229.968112][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 229.976542][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 229.984810][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 229.997596][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 230.007887][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 230.031007][ T9816] device veth0_vlan entered promiscuous mode [ 230.041100][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 230.057341][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 230.073041][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 230.081623][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 230.096903][ T9816] device veth1_macvtap entered promiscuous mode [ 230.111045][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 230.118747][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 230.130368][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 230.142657][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 230.151091][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 230.158751][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 230.171737][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 230.180540][ T9813] device veth0_vlan entered promiscuous mode [ 230.203455][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 230.211167][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 230.223493][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 230.233298][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 230.242255][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 230.251320][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 230.280151][ T9813] device veth1_macvtap entered promiscuous mode [ 230.299219][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 230.312840][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 230.321274][ T3847] usb 4-1: new high-speed USB device number 51 using dummy_hcd [ 230.336001][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 230.356450][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 230.365088][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 230.387173][ T9886] loop0: detected capacity change from 0 to 40427 [ 230.395798][ T9886] F2FS-fs (loop0): Wrong SIT boundary, start(1536) end(50334208) blocks(1024) [ 230.404903][ T9886] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 230.414943][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 230.423454][ T9886] F2FS-fs (loop0): invalid crc value [ 230.423631][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 230.449508][ T9886] F2FS-fs (loop0): Found nat_bits in checkpoint [ 230.529685][ T9886] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 230.537201][ T9886] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 230.556457][ T9886] overlayfs: failed to set xattr on upper [ 230.568146][ T8543] syz-executor: attempt to access beyond end of device [ 230.568146][ T8543] loop0: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 230.583138][ T8543] syz-executor: attempt to access beyond end of device [ 230.583138][ T8543] loop0: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 230.602867][ T648] usb 5-1: new full-speed USB device number 56 using dummy_hcd [ 230.629655][ T319] kworker/u4:3: attempt to access beyond end of device [ 230.629655][ T319] loop0: rw=2049, sector=45096, nr_sectors = 24 limit=40427 [ 230.701629][ T319] tipc: Disabling bearer [ 230.707976][ T319] tipc: Left network mode [ 230.720740][ T3847] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 230.734577][ T3847] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 230.745562][ T3847] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 230.759675][ T3847] usb 4-1: New USB device found, idVendor=1a34, idProduct=0802, bcdDevice= 0.00 [ 230.769650][ T3847] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 230.778334][ T3847] usb 4-1: config 0 descriptor?? [ 231.025573][ T9939] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.033287][ T648] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 231.041547][ T9939] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.043510][ T648] usb 5-1: config 1 interface 0 altsetting 253 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 231.050970][ T9939] device bridge_slave_0 entered promiscuous mode [ 231.063263][ T648] usb 5-1: config 1 interface 0 has no altsetting 0 [ 231.083141][ T9939] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.090336][ T9939] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.107120][ T9939] device bridge_slave_1 entered promiscuous mode [ 231.207317][ T9939] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.214719][ T9939] bridge0: port 2(bridge_slave_1) entered forwarding state [ 231.222123][ T9939] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.229048][ T9939] bridge0: port 1(bridge_slave_0) entered forwarding state [ 231.245060][ T648] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 231.255314][ T648] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 231.263778][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 231.266841][ T648] usb 5-1: Product: syz [ 231.275147][ T648] usb 5-1: Manufacturer: syz [ 231.279857][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.280139][ T648] usb 5-1: SerialNumber: syz [ 231.291922][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.309961][ T3847] acrux 0003:1A34:0802.0086: hidraw0: USB HID v0.00 Device [HID 1a34:0802] on usb-dummy_hcd.3-1/input0 [ 231.323662][ T3847] acrux 0003:1A34:0802.0086: no inputs found [ 231.351531][ T3847] acrux 0003:1A34:0802.0086: Failed to enable force feedback support, error: -19 [ 231.362020][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 231.371078][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 231.379850][ T37] bridge0: port 1(bridge_slave_0) entered blocking state [ 231.386860][ T37] bridge0: port 1(bridge_slave_0) entered forwarding state [ 231.394429][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 231.402672][ T37] bridge0: port 2(bridge_slave_1) entered blocking state [ 231.410076][ T37] bridge0: port 2(bridge_slave_1) entered forwarding state [ 231.417729][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 231.425898][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 231.439107][ T9939] device veth0_vlan entered promiscuous mode [ 231.461437][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 231.470430][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 231.478487][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 231.498439][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 231.508857][ T9939] device veth1_macvtap entered promiscuous mode [ 231.519669][ T674] usb 4-1: USB disconnect, device number 51 [ 231.535499][ T319] device bridge_slave_1 left promiscuous mode [ 231.541652][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 231.565830][ T9973] loop1: detected capacity change from 0 to 40427 [ 231.573323][ T319] device bridge_slave_0 left promiscuous mode [ 231.573695][ T9973] F2FS-fs (loop1): Invalid log_blocksize (268), supports only 12 [ 231.579912][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 231.588464][ T9973] F2FS-fs (loop1): Can't find valid F2FS filesystem in 1th superblock [ 231.605268][ T319] device veth1_macvtap left promiscuous mode [ 231.611934][ T319] device veth0_vlan left promiscuous mode [ 231.618609][ T9973] F2FS-fs (loop1): Found nat_bits in checkpoint [ 231.661800][ T9973] F2FS-fs (loop1): Try to recover 1th superblock, ret: 0 [ 231.668745][ T9973] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 231.748828][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 231.757473][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 231.765988][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 231.774198][ T299] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 231.851946][ T37] usb 5-1: USB disconnect, device number 56 [ 231.904121][ T9992] loop0: detected capacity change from 0 to 8192 [ 231.911711][ T9992] FAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 231.927657][ T9994] loop1: detected capacity change from 0 to 256 [ 231.941825][ T9994] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xc5de6174, utbl_chksum : 0xe619d30d) [ 232.144066][T10020] loop2: detected capacity change from 0 to 128 [ 232.185072][T10020] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 232.198162][T10020] ext4 filesystem being mounted at /14/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 232.260859][ T9813] EXT4-fs (loop2): unmounting filesystem. [ 232.563732][T10032] loop2: detected capacity change from 0 to 40427 [ 232.577511][T10032] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 232.589603][T10032] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 232.654076][T10032] F2FS-fs (loop2): Found nat_bits in checkpoint [ 232.699340][T10002] loop0: detected capacity change from 0 to 131072 [ 232.708126][T10002] F2FS-fs (loop0): invalid crc value [ 232.731796][T10002] F2FS-fs (loop0): Found nat_bits in checkpoint [ 232.750809][T10032] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 232.761242][T10032] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 232.802516][T10032] syz.2.4082: attempt to access beyond end of device [ 232.802516][T10032] loop2: rw=10241, sector=45096, nr_sectors = 8 limit=40427 [ 232.812434][T10002] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e5 [ 232.876262][ T9813] F2FS-fs (loop2): Issue discard(5637, 5637, 1) failed, ret: -5 [ 233.037792][T10070] syz.2.4096[10070] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 233.052630][T10070] syz.2.4096[10070] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 233.088797][T10070] sch_tbf: peakrate 8 is lower than or equals to rate 12 ! [ 233.136869][ T37] usb 4-1: new high-speed USB device number 52 using dummy_hcd [ 233.214308][T10074] netlink: 'syz.2.4098': attribute type 10 has an invalid length. [ 233.267143][T10078] loop0: detected capacity change from 0 to 2048 [ 233.319222][T10078] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 233.341662][T10078] EXT4-fs error (device loop0): ext4_mb_generate_buddy:1102: group 0, block bitmap and bg descriptor inconsistent: 25 vs 150994969 free clusters [ 233.366419][T10078] EXT4-fs (loop0): Delayed block allocation failed for inode 18 at logical offset 16383 with max blocks 1 with error 28 [ 233.385322][T10078] EXT4-fs (loop0): This should not happen!! Data will be lost [ 233.385322][T10078] [ 233.406814][T10078] EXT4-fs (loop0): Total free blocks count 0 [ 233.417618][T10078] EXT4-fs (loop0): Free/Dirty block details [ 233.423613][T10078] EXT4-fs (loop0): free_blocks=2415919104 [ 233.430034][T10078] EXT4-fs (loop0): dirty_blocks=16 [ 233.435311][T10078] EXT4-fs (loop0): Block reservation details [ 233.441802][T10078] EXT4-fs (loop0): i_reserved_data_blocks=1 [ 233.465560][ T9939] EXT4-fs (loop0): unmounting filesystem. [ 233.521797][ T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 233.539214][ T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 233.549169][ T37] usb 4-1: New USB device found, idVendor=28de, idProduct=1142, bcdDevice= 0.00 [ 233.561218][ T37] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 233.570337][ T37] usb 4-1: config 0 descriptor?? [ 233.831786][ T299] usb 3-1: new high-speed USB device number 59 using dummy_hcd [ 234.089512][ T37] hid-steam 0003:28DE:1142.0087: : USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 234.120489][ T37] hid-steam 0003:28DE:1142.0088: hidraw0: USB HID v0.00 Device [HID 28de:1142] on usb-dummy_hcd.3-1/input0 [ 234.152470][ T314] usb 5-1: new high-speed USB device number 57 using dummy_hcd [ 234.216632][ T37] hid-steam 0003:28DE:1142.0087: Steam wireless receiver connected [ 234.248765][ T299] usb 3-1: New USB device found, idVendor=054c, idProduct=0df2, bcdDevice= 0.00 [ 234.258013][ T299] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 234.267615][ T299] usb 3-1: config 0 descriptor?? [ 234.308222][ T674] usb 4-1: USB disconnect, device number 52 [ 234.316738][ T674] hid-steam 0003:28DE:1142.0087: Steam wireless receiver disconnected [ 234.537393][ T314] usb 5-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 234.633625][ T314] usb 5-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 234.645790][ T314] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 234.653636][ T314] usb 5-1: SerialNumber: syz [ 234.784911][ T299] playstation 0003:054C:0DF2.0089: hidraw0: USB HID v1.01 Device [HID 054c:0df2] on usb-dummy_hcd.2-1/input0 [ 234.882058][T10129] loop3: detected capacity change from 0 to 512 [ 234.889406][T10129] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 234.903591][T10129] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.4118: bg 0: block 64: padding at end of block bitmap is not set [ 234.919230][T10129] __quota_error: 1403 callbacks suppressed [ 234.919246][T10129] Quota error (device loop3): write_blk: dquota write failed [ 234.932611][T10129] Quota error (device loop3): qtree_write_dquot: Error -117 occurred while creating quota [ 234.943910][T10129] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.4118: Failed to acquire dquot type 0 [ 234.955900][T10129] EXT4-fs (loop3): 1 truncate cleaned up [ 234.961746][T10129] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 234.965003][ T37] usb 1-1: new high-speed USB device number 60 using dummy_hcd [ 234.979702][ T28] audit: type=1400 audit(1729509677.536:2291): avc: denied { create } for pid=10128 comm="syz.3.4118" name=E91F7189591E9233614B scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=sock_file permissive=1 [ 234.979799][T10129] Quota error (device loop3): write_blk: dquota write failed [ 235.009514][T10129] Quota error (device loop3): qtree_write_dquot: Error -28 occurred while creating quota [ 235.019528][ T299] playstation 0003:054C:0DF2.0089: Invalid byte count transferred, expected 20 got 0 [ 235.028981][ T299] playstation 0003:054C:0DF2.0089: Failed to retrieve DualSense pairing info: -22 [ 235.029195][T10129] EXT4-fs error (device loop3): ext4_acquire_dquot:6764: comm syz.3.4118: Failed to acquire dquot type 0 [ 235.038682][ T299] playstation 0003:054C:0DF2.0089: Failed to get MAC address from DualSense [ 235.061284][ T299] playstation 0003:054C:0DF2.0089: Failed to create dualsense. [ 235.072541][ T299] playstation: probe of 0003:054C:0DF2.0089 failed with error -22 [ 235.081849][ T9777] EXT4-fs (loop3): unmounting filesystem. [ 235.103352][T10136] Attempt to set a LOCK_MAND lock via flock(2). This support has been removed and the request ignored. [ 235.117351][T10136] loop3: detected capacity change from 0 to 512 [ 235.124515][T10136] EXT4-fs (loop3): feature flags set on rev 0 fs, running e2fsck is recommended [ 235.138070][T10136] EXT4-fs error (device loop3): ext4_orphan_get:1396: inode #17: comm syz.3.4120: iget: bad i_size value: -6917529027641081756 [ 235.152487][T10136] EXT4-fs error (device loop3): ext4_orphan_get:1401: comm syz.3.4120: couldn't read orphan inode 17 (err -117) [ 235.165051][T10136] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 235.180610][ T9777] EXT4-fs (loop3): unmounting filesystem. [ 235.204784][T10142] loop3: detected capacity change from 0 to 256 [ 235.212198][T10142] exfat: Deprecated parameter 'utf8' [ 235.217870][T10142] exfat: Deprecated parameter 'utf8' [ 235.226684][T10142] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x41aa7242, utbl_chksum : 0xe619d30d) [ 235.246706][ T299] usb 3-1: USB disconnect, device number 59 [ 235.265474][T10144] x_tables: unsorted underflow at hook 2 [ 235.371301][ T37] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 235.392609][ T37] usb 1-1: config 1 has 0 interfaces, different from the descriptor's value: 3 [ 235.416769][ T314] cdc_ether 5-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.4-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 235.478201][ T37] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 235.491547][ T37] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 235.510182][ T37] usb 1-1: SerialNumber: syz [ 235.838890][T10154] syz.2.4127[10154] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 235.838980][T10154] syz.2.4127[10154] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 235.845785][ T314] usb 5-1: USB disconnect, device number 57 [ 235.881425][ T314] cdc_ether 5-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.4-1, CDC Ethernet Device [ 235.950500][T10156] ip_tunnel: non-ECT from 0.0.0.0 with TOS=0x3 [ 236.034967][ T37] usb 1-1: USB disconnect, device number 60 [ 236.069615][T10162] loop2: detected capacity change from 0 to 512 [ 236.077989][T10162] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 236.078165][T10149] loop3: detected capacity change from 0 to 131072 [ 236.094828][T10149] F2FS-fs (loop3): Wrong CP boundary, start(512) end(1536) blocks(0) [ 236.103439][T10149] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 236.104890][T10162] EXT4-fs (loop2): 1 truncate cleaned up [ 236.119592][T10162] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 236.135438][T10162] EXT4-fs (loop2): re-mounted. Quota mode: none. [ 236.143998][T10149] F2FS-fs (loop3): Found nat_bits in checkpoint [ 236.144407][T10162] EXT4-fs (loop2): re-mounted. Quota mode: none. [ 236.168428][ T9813] EXT4-fs (loop2): unmounting filesystem. [ 236.200904][T10149] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 236.210318][T10149] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e5 [ 236.346868][ T28] audit: type=1400 audit(1729509678.817:2292): avc: denied { bind } for pid=10172 comm="syz.2.4135" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=pppox_socket permissive=1 [ 236.480515][T10183] loop4: detected capacity change from 0 to 128 [ 236.668934][T10209] loop0: detected capacity change from 0 to 512 [ 236.691463][T10209] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 236.694278][T10220] loop2: detected capacity change from 0 to 512 [ 236.701993][T10209] ext4 filesystem being mounted at /19/bus supports timestamps until 2038 (0x7fffffff) [ 236.720887][T10220] EXT4-fs: Ignoring removed mblk_io_submit option [ 236.734159][ T9939] EXT4-fs (loop0): unmounting filesystem. [ 236.741681][T10220] EXT4-fs error (device loop2): ext4_orphan_get:1396: inode #15: comm syz.2.4154: casefold flag without casefold feature [ 236.760530][T10220] EXT4-fs error (device loop2): ext4_xattr_inode_iget:404: inode #12: comm syz.2.4154: missing EA_INODE flag [ 236.772659][T10220] EXT4-fs error (device loop2): ext4_xattr_inode_iget:409: comm syz.2.4154: error while reading EA inode 12 err=-117 [ 236.785652][T10220] EXT4-fs (loop2): 1 orphan inode deleted [ 236.791298][T10220] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 236.808841][ T9813] EXT4-fs (loop2): unmounting filesystem. [ 236.936164][T10227] loop2: detected capacity change from 0 to 40427 [ 236.944898][T10227] F2FS-fs (loop2): invalid crc value [ 236.951759][T10227] F2FS-fs (loop2): Found nat_bits in checkpoint [ 236.988107][T10227] F2FS-fs (loop2): Start checkpoint disabled! [ 236.994850][T10227] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e6 [ 237.011614][T10227] bio_check_eod: 1 callbacks suppressed [ 237.011631][T10227] syz.2.4158: attempt to access beyond end of device [ 237.011631][T10227] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 237.049634][ T674] usb 5-1: new high-speed USB device number 58 using dummy_hcd [ 237.061728][ T319] kworker/u4:3: attempt to access beyond end of device [ 237.061728][ T319] loop2: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 237.075905][ T319] kworker/u4:3: attempt to access beyond end of device [ 237.075905][ T319] loop2: rw=2049, sector=40992, nr_sectors = 8 limit=40427 [ 237.256758][T10241] loop2: detected capacity change from 0 to 128 [ 237.376749][T10249] loop3: detected capacity change from 0 to 1024 [ 237.385884][T10249] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e00cc02c, mo2=0002] [ 237.394197][T10249] System zones: 0-1, 3-36 [ 237.399407][T10249] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 237.413438][T10249] EXT4-fs error (device loop3): __ext4_iget:5046: inode #12: block 13: comm syz.3.4168: invalid block [ 237.424406][T10249] EXT4-fs (loop3): Remounting filesystem read-only [ 237.437285][ T9777] EXT4-fs (loop3): unmounting filesystem. [ 237.455943][ T674] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has an invalid bInterval 255, changing to 11 [ 237.467468][ T674] usb 5-1: config 17 interface 0 altsetting 0 endpoint 0x8B has invalid maxpacket 59391, setting to 1024 [ 237.471124][T10253] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 237.484627][T10253] FAT-fs (loop1): unable to read boot sector [ 237.492249][ T674] usb 5-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 237.507271][ T674] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 237.516494][T10255] device batadv_slave_1 entered promiscuous mode [ 237.552120][T10225] raw-gadget.1 gadget.4: fail, usb_ep_enable returned -22 [ 237.628398][T10265] loop0: detected capacity change from 0 to 1024 [ 237.635797][T10265] EXT4-fs: Ignoring removed nomblk_io_submit option [ 237.643542][T10265] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 237.656168][T10265] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 237.668076][T10265] System zones: 0-1, 3-36 [ 237.673675][T10265] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 237.682868][ T299] usb 3-1: new high-speed USB device number 60 using dummy_hcd [ 237.710617][ T9939] EXT4-fs (loop0): unmounting filesystem. [ 237.808702][ T674] aiptek 5-1:17.0: Aiptek using 400 ms programming speed [ 237.816206][ T674] input: Aiptek as /devices/platform/dummy_hcd.4/usb5/5-1/5-1:17.0/input/input70 [ 237.828370][ T674] usb 5-1: USB disconnect, device number 58 [ 237.947746][ T299] usb 3-1: Using ep0 maxpacket: 16 [ 238.054716][ T6] usb 4-1: new full-speed USB device number 53 using dummy_hcd [ 238.086768][ T299] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 238.098059][ T299] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 238.107654][ T299] usb 3-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 238.116939][ T299] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.127176][ T299] usb 3-1: config 0 descriptor?? [ 238.140078][ T314] usb 1-1: new high-speed USB device number 61 using dummy_hcd [ 238.396667][ T314] usb 1-1: Using ep0 maxpacket: 32 [ 238.482642][ T6] usb 4-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 238.491820][T10289] xt_hashlimit: size too large, truncated to 1048576 [ 238.493454][ T6] usb 4-1: config 1 interface 0 altsetting 253 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 238.513181][ T6] usb 4-1: config 1 interface 0 has no altsetting 0 [ 238.525057][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 238.546376][ T314] usb 1-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 238.564580][ T314] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 238.578765][ T314] usb 1-1: config 0 descriptor?? [ 238.591541][T10294] input: syz1 as /devices/virtual/input/input71 [ 238.621805][ T314] hub 1-1:0.0: USB hub found [ 238.665143][ T299] hid-multitouch 0003:1FD2:6007.008A: unknown main item tag 0x0 [ 238.673743][ T299] hid-multitouch 0003:1FD2:6007.008A: unknown main item tag 0x0 [ 238.682586][ T299] hid-multitouch 0003:1FD2:6007.008A: unknown main item tag 0x0 [ 238.691263][ T299] hid-multitouch 0003:1FD2:6007.008A: unknown main item tag 0x0 [ 238.699849][ T299] hid-multitouch 0003:1FD2:6007.008A: unknown main item tag 0x0 [ 238.708165][ T6] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a8, bcdDevice= 0.40 [ 238.718362][ T6] usb 4-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 238.726685][ T299] hid-multitouch 0003:1FD2:6007.008A: hidraw0: USB HID v0.00 Device [HID 1fd2:6007] on usb-dummy_hcd.2-1/input0 [ 238.739053][ T6] usb 4-1: Product: syz [ 238.744094][ T6] usb 4-1: Manufacturer: syz [ 238.748638][ T6] usb 4-1: SerialNumber: syz [ 238.891595][ T24] usb 3-1: USB disconnect, device number 60 [ 238.920669][ T314] hub 1-1:0.0: config failed, can't read hub descriptor (err -22) [ 238.920694][ T648] usb 5-1: new high-speed USB device number 59 using dummy_hcd [ 239.027487][ T314] usbhid 1-1:0.0: can't add hid device: -71 [ 239.033620][ T314] usbhid: probe of 1-1:0.0 failed with error -71 [ 239.070625][ T314] usb 1-1: USB disconnect, device number 61 [ 239.187788][ T648] usb 5-1: Using ep0 maxpacket: 8 [ 239.290351][ T314] usb 4-1: USB disconnect, device number 53 [ 239.326965][ T648] usb 5-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 239.338325][ T648] usb 5-1: config 1 has 2 interfaces, different from the descriptor's value: 3 [ 239.347979][ T648] usb 5-1: config 1 has no interface number 1 [ 239.354332][ T648] usb 5-1: config 1 interface 2 altsetting 1 endpoint 0x82 has an invalid bInterval 0, changing to 7 [ 239.365770][ T648] usb 5-1: config 1 interface 2 has no altsetting 0 [ 239.453476][T10307] loop2: detected capacity change from 0 to 1024 [ 239.467960][T10307] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: none. [ 239.477770][T10307] ext4 filesystem being mounted at /49/file1 supports timestamps until 2038 (0x7fffffff) [ 239.502133][ T9813] EXT4-fs (loop2): unmounting filesystem. [ 239.516357][T10316] loop2: detected capacity change from 0 to 256 [ 239.525226][T10316] exFAT-fs (loop2): failed to load upcase table (idx : 0x00017f3e, chksum : 0x0b83170a, utbl_chksum : 0xe619d30d) [ 239.562067][ T648] usb 5-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.40 [ 239.571517][ T648] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 239.579951][ T648] usb 5-1: Product: syz [ 239.584413][ T648] usb 5-1: Manufacturer: syz [ 239.588932][ T648] usb 5-1: SerialNumber: syz [ 239.807890][ T674] usb 1-1: new high-speed USB device number 62 using dummy_hcd [ 239.968334][ T648] usb 5-1: 2:1 : format type 0 is detected, processed as PCM [ 239.975980][ T648] usb 5-1: selecting invalid altsetting 0 [ 240.021677][ T648] usb 5-1: 2:1: cannot set freq 5590914 to ep 0x82 [ 240.028067][ T648] usb 5-1: selecting invalid altsetting 0 [ 240.037036][ T648] usb 5-1: USB disconnect, device number 59 [ 240.235674][ T674] usb 1-1: config index 0 descriptor too short (expected 45, got 36) [ 240.243798][ T674] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 240.254930][ T674] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 240.266367][ T674] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 240.279571][ T674] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 240.288469][ T674] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 240.297174][ T674] usb 1-1: config 0 descriptor?? [ 240.331738][T10314] raw-gadget.1 gadget.0: fail, usb_ep_enable returned -22 [ 240.676291][T10379] loop4: detected capacity change from 0 to 512 [ 240.682806][T10379] /dev/loop4: Can't open blockdev [ 240.718940][T10381] syz.4.4224[10381] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 240.719009][T10381] syz.4.4224[10381] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 240.824658][ T674] plantronics 0003:047F:FFFF.008B: unknown main item tag 0x3 [ 240.843538][ T674] plantronics 0003:047F:FFFF.008B: unknown main item tag 0x0 [ 240.851318][ T674] plantronics 0003:047F:FFFF.008B: unknown main item tag 0x0 [ 240.868414][ T674] plantronics 0003:047F:FFFF.008B: unknown main item tag 0x0 [ 240.876318][ T674] plantronics 0003:047F:FFFF.008B: unknown main item tag 0x0 [ 240.883742][ T674] plantronics 0003:047F:FFFF.008B: unknown main item tag 0x0 [ 240.891829][ T674] plantronics 0003:047F:FFFF.008B: No inputs registered, leaving [ 240.901139][ T674] plantronics 0003:047F:FFFF.008B: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 240.952937][T10398] loop4: detected capacity change from 0 to 1024 [ 240.960008][T10398] /dev/loop4: Can't open blockdev [ 241.113682][ T674] usb 1-1: USB disconnect, device number 62 [ 241.227202][T10418] loop4: detected capacity change from 0 to 512 [ 241.251467][T10418] EXT4-fs: Ignoring removed mblk_io_submit option [ 241.257934][T10418] /dev/loop4: Can't open blockdev [ 241.335841][T10386] loop3: detected capacity change from 0 to 131072 [ 241.343570][T10386] F2FS-fs (loop3): invalid crc value [ 241.358566][T10386] F2FS-fs (loop3): Found nat_bits in checkpoint [ 241.402812][T10386] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 241.425159][ T28] audit: type=1400 audit(1729509683.569:2293): avc: denied { reparent } for pid=10385 comm="syz.3.4226" name="file0" dev="loop3" ino=4 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 241.454186][ T6] usb 3-1: new high-speed USB device number 61 using dummy_hcd [ 241.481058][T10429] xt_hashlimit: size too large, truncated to 1048576 [ 241.715520][T10434] loop4: detected capacity change from 0 to 256 [ 241.733055][T10436] syz.3.4243[10436] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 241.733112][T10436] syz.3.4243[10436] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 241.746944][T10436] netlink: 24 bytes leftover after parsing attributes in process `syz.3.4243'. [ 241.871181][ T6] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 241.882639][ T6] usb 3-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 241.891881][ T6] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 241.900593][ T6] usb 3-1: config 0 descriptor?? [ 241.919233][T10447] loop3: detected capacity change from 0 to 8192 [ 242.224125][ T648] usb 5-1: new high-speed USB device number 60 using dummy_hcd [ 242.298751][ T674] usb 4-1: new high-speed USB device number 54 using dummy_hcd [ 242.406221][ T6] keytouch 0003:0926:3333.008C: fixing up Keytouch IEC report descriptor [ 242.416646][ T6] input: HID 0926:3333 as /devices/platform/dummy_hcd.2/usb3/3-1/3-1:0.0/0003:0926:3333.008C/input/input72 [ 242.480476][ T648] usb 5-1: Using ep0 maxpacket: 16 [ 242.503831][ T6] keytouch 0003:0926:3333.008C: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.2-1/input0 [ 242.581632][ T28] audit: type=1400 audit(1729509684.645:2294): avc: denied { write } for pid=10478 comm="syz.0.4265" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=vsock_socket permissive=1 [ 242.619523][ T648] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has an invalid bInterval 0, changing to 7 [ 242.634027][ T648] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x89 has invalid wMaxPacketSize 0 [ 242.644521][ T648] usb 5-1: New USB device found, idVendor=0158, idProduct=0100, bcdDevice= 0.00 [ 242.653611][ T648] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 242.662063][ T648] usb 5-1: config 0 descriptor?? [ 242.716027][ T674] usb 4-1: config index 0 descriptor too short (expected 45, got 36) [ 242.724236][ T674] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 242.736312][ T674] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 242.747839][ T674] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 242.760671][ T674] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 242.770159][ T674] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 242.778853][ T674] usb 4-1: config 0 descriptor?? [ 242.801323][T10459] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22 [ 242.929512][ T314] usb 1-1: new high-speed USB device number 63 using dummy_hcd [ 243.052772][T10490] loop1: detected capacity change from 0 to 512 [ 243.082811][T10490] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 243.092263][T10490] ext4 filesystem being mounted at /172/file0 supports timestamps until 2038 (0x7fffffff) [ 243.106870][T10490] EXT4-fs (loop1): shut down requested (2) [ 243.113212][ T28] audit: type=1400 audit(1729509685.150:2295): avc: denied { link } for pid=10489 comm="syz.1.4270" name="file1" dev="loop1" ino=15 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 [ 243.137047][ T8386] EXT4-fs (loop1): unmounting filesystem. [ 243.154835][T10450] UDC core: USB Raw Gadget: couldn't find an available UDC or it's busy [ 243.163750][T10450] misc raw-gadget: fail, usb_gadget_register_driver returned -16 [ 243.197532][ T648] hid (null): bogus close delimiter [ 243.203827][ T648] hid (null): bogus close delimiter [ 243.215044][ T648] hid-generic 0003:0158:0100.008D: unknown main item tag 0x0 [ 243.223040][ T648] hid-generic 0003:0158:0100.008D: unknown main item tag 0x0 [ 243.230728][ T648] hid-generic 0003:0158:0100.008D: bogus close delimiter [ 243.238366][ T648] hid-generic 0003:0158:0100.008D: item 0 0 2 10 parsing failed [ 243.246402][ T648] hid-generic: probe of 0003:0158:0100.008D failed with error -22 [ 243.250633][ T24] usb 3-1: USB disconnect, device number 61 [ 243.271573][ C0] keytouch 0003:0926:3333.008C: usb_submit_urb(ctrl) failed: -19 [ 243.304421][ T674] plantronics 0003:047F:FFFF.008E: unknown main item tag 0x3 [ 243.312024][ T674] plantronics 0003:047F:FFFF.008E: unknown main item tag 0x0 [ 243.314491][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 243.319778][ T674] plantronics 0003:047F:FFFF.008E: unknown main item tag 0x0 [ 243.338964][ T674] plantronics 0003:047F:FFFF.008E: unknown main item tag 0x0 [ 243.346784][ T674] plantronics 0003:047F:FFFF.008E: unknown main item tag 0x0 [ 243.355271][ T674] plantronics 0003:047F:FFFF.008E: unknown main item tag 0x0 [ 243.358259][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 243.373157][ T674] plantronics 0003:047F:FFFF.008E: No inputs registered, leaving [ 243.373176][ T314] usb 1-1: New USB device found, idVendor=0419, idProduct=0600, bcdDevice= 0.00 [ 243.391099][ T314] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 243.392297][ T674] plantronics 0003:047F:FFFF.008E: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 243.400648][ T314] usb 1-1: config 0 descriptor?? [ 243.421583][ T37] usb 5-1: USB disconnect, device number 60 [ 243.445950][T10507] syz.1.4277[10507] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 243.446012][T10507] syz.1.4277[10507] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 243.603413][ T674] usb 4-1: USB disconnect, device number 54 [ 243.935374][ T314] samsung 0003:0419:0600.008F: item fetching failed at offset 0/5 [ 243.943896][ T314] samsung 0003:0419:0600.008F: parse failed [ 243.950139][ T314] samsung: probe of 0003:0419:0600.008F failed with error -22 [ 244.061290][T10517] netlink: 8 bytes leftover after parsing attributes in process `syz.4.4282'. [ 244.116154][ T314] usb 3-1: new high-speed USB device number 62 using dummy_hcd [ 244.177894][ T24] usb 1-1: USB disconnect, device number 63 [ 244.221432][T10520] loop4: detected capacity change from 0 to 40427 [ 244.395960][T10538] overlayfs: invalid origin (0000) [ 244.511845][ T37] usb 4-1: new high-speed USB device number 55 using dummy_hcd [ 244.565260][ T314] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 244.576411][ T314] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 244.586626][ T314] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 244.599366][ T314] usb 3-1: New USB device found, idVendor=1770, idProduct=ff00, bcdDevice= 0.00 [ 244.608464][ T314] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 244.617365][ T314] usb 3-1: config 0 descriptor?? [ 244.739179][T10550] tipc: Enabling of bearer rejected, media not registered [ 244.909379][T10565] SELinux: unrecognized netlink message: protocol=4 nlmsg_type=24 sclass=netlink_tcpdiag_socket pid=10565 comm=syz.0.4305 [ 244.960811][ T37] usb 4-1: config index 0 descriptor too short (expected 45, got 36) [ 244.969385][ T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 244.980872][ T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 244.992981][ T37] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 245.006378][ T37] usb 4-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 245.015477][ T37] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.024349][ T37] usb 4-1: config 0 descriptor?? [ 245.046258][T10526] raw-gadget.2 gadget.3: fail, usb_ep_enable returned -22 [ 245.060523][ T28] audit: type=1400 audit(1729509686.965:2296): avc: denied { execute_no_trans } for pid=10576 comm="syz.0.4311" path="/49/file1" dev="tmpfs" ino=269 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_tmpfs_t tclass=file permissive=1 [ 245.134058][ T314] gt683r_led 0003:1770:FF00.0090: item fetching failed at offset 1/5 [ 245.147591][ T314] gt683r_led 0003:1770:FF00.0090: hid parsing failed [ 245.154249][ T314] gt683r_led: probe of 0003:1770:FF00.0090 failed with error -22 [ 245.359757][ T674] usb 3-1: USB disconnect, device number 62 [ 245.527376][ T314] usb 1-1: new high-speed USB device number 64 using dummy_hcd [ 245.549590][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.556984][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.564852][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.572873][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.580776][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.589108][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.596998][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.605260][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.612682][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.620336][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.627793][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.635749][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.643303][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.650980][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.658407][ T37] plantronics 0003:047F:FFFF.0091: unknown main item tag 0x0 [ 245.666492][ T37] plantronics 0003:047F:FFFF.0091: No inputs registered, leaving [ 245.675107][ T37] plantronics 0003:047F:FFFF.0091: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.3-1/input0 [ 245.741158][ T648] usb 5-1: new high-speed USB device number 61 using dummy_hcd [ 245.838493][ T37] usb 4-1: USB disconnect, device number 55 [ 245.933613][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 245.954899][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 245.965326][ T314] usb 1-1: New USB device found, idVendor=046d, idProduct=c222, bcdDevice= 0.00 [ 245.986975][ T314] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 245.997784][ T648] usb 5-1: Using ep0 maxpacket: 32 [ 245.998065][ T314] usb 1-1: config 0 descriptor?? [ 246.126104][ T648] usb 5-1: config 0 has an invalid interface number: 67 but max is 0 [ 246.134401][ T648] usb 5-1: config 0 has no interface number 0 [ 246.307759][ T648] usb 5-1: New USB device found, idVendor=0424, idProduct=9901, bcdDevice=c2.57 [ 246.317026][ T648] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 246.325617][ T648] usb 5-1: Product: syz [ 246.330366][ T648] usb 5-1: Manufacturer: syz [ 246.334787][ T648] usb 5-1: SerialNumber: syz [ 246.338425][T10596] loop2: detected capacity change from 0 to 131072 [ 246.340537][ T648] usb 5-1: config 0 descriptor?? [ 246.351324][T10596] F2FS-fs (loop2): Invalid Fs Meta Ino: node(1) meta(2) root(8963) [ 246.359314][T10596] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 246.368442][T10596] F2FS-fs (loop2): invalid crc value [ 246.379141][T10596] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387) [ 246.393803][ T648] smsc95xx v2.0.0 [ 246.407905][T10596] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 246.415509][T10596] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b [ 246.512240][ T314] lg-g15 0003:046D:C222.0092: item fetching failed at offset 7/11 [ 246.520424][ T314] lg-g15: probe of 0003:046D:C222.0092 failed with error -22 [ 246.611638][T10605] loop2: detected capacity change from 0 to 1024 [ 246.619016][T10605] EXT4-fs: Ignoring removed orlov option [ 246.625552][T10605] EXT4-fs (loop2): Test dummy encryption mode enabled [ 246.635935][T10605] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 246.655072][ T9813] EXT4-fs (loop2): unmounting filesystem. [ 246.671345][ T674] usb 4-1: new high-speed USB device number 56 using dummy_hcd [ 246.736489][ T314] usb 1-1: USB disconnect, device number 64 [ 246.740830][ T28] audit: type=1326 audit(1729509688.536:2297): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10620 comm="syz.1.4329" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x0 [ 246.883696][T10631] loop2: detected capacity change from 0 to 256 [ 246.896689][T10631] incfs: ino conflict with backing FS 1 [ 246.912282][ T9813] FAT-fs (loop2): error, invalid access to FAT (entry 0x000004ff) [ 246.920460][ T9813] FAT-fs (loop2): Filesystem has been set read-only [ 247.056097][ T674] usb 4-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config [ 247.077059][ T674] usb 4-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 247.098927][ T674] usb 4-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 247.108221][ T674] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 247.130494][T10633] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.137611][T10633] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.145833][T10633] device bridge_slave_0 entered promiscuous mode [ 247.153539][T10633] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.160936][T10633] bridge0: port 2(bridge_slave_1) entered disabled state [ 247.168843][T10633] device bridge_slave_1 entered promiscuous mode [ 247.224117][T10633] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.231597][T10633] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.238943][T10633] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.247163][T10633] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.270619][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 247.278590][ T3237] bridge0: port 1(bridge_slave_0) entered disabled state [ 247.287433][ T3237] bridge0: port 2(bridge_slave_1) entered disabled state [ 247.304348][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 247.313368][ T6] bridge0: port 1(bridge_slave_0) entered blocking state [ 247.320223][ T6] bridge0: port 1(bridge_slave_0) entered forwarding state [ 247.329318][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 247.338674][ T6] bridge0: port 2(bridge_slave_1) entered blocking state [ 247.345848][ T6] bridge0: port 2(bridge_slave_1) entered forwarding state [ 247.359695][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 247.370780][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 247.388232][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 247.401582][T10633] device veth0_vlan entered promiscuous mode [ 247.409020][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 247.417041][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 247.424691][ T674] usb 4-1: string descriptor 0 read error: -71 [ 247.433515][ T674] aiptek 4-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 247.442987][ T6] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 247.451435][ T674] usb 4-1: USB disconnect, device number 56 [ 247.459310][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 247.471914][T10633] device veth1_macvtap entered promiscuous mode [ 247.482147][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 247.497705][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 247.569245][ T648] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to read reg index 0x00000034: -71 [ 247.580476][ T648] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Error reading E2P_DATA [ 247.601511][ T648] smsc95xx 5-1:0.67 (unnamed net_device) (uninitialized): Failed to write reg index 0x00000014: -71 [ 247.613897][ T648] smsc95xx: probe of 5-1:0.67 failed with error -71 [ 247.621623][ T648] usb 5-1: USB disconnect, device number 61 [ 248.040692][T10666] loop2: detected capacity change from 0 to 131072 [ 248.047938][T10666] F2FS-fs (loop2): QUOTA feature is enabled, so ignore qf_name [ 248.056337][T10666] F2FS-fs (loop2): invalid crc value [ 248.063065][T10666] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (15359802341028777995, 275811881701387) [ 248.090197][T10666] F2FS-fs (loop2): Mounted with checkpoint version = 753bd00b [ 248.106234][T10672] syz.4.4349[10672] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 248.106317][T10672] syz.4.4349[10672] is installing a program with bpf_probe_write_user helper that may corrupt user memory! [ 248.447176][ T319] device bridge_slave_1 left promiscuous mode [ 248.466940][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 248.476042][ T319] device bridge_slave_0 left promiscuous mode [ 248.483200][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 248.495118][ T319] device veth1_macvtap left promiscuous mode [ 248.501518][ T319] device veth0_vlan left promiscuous mode [ 249.149542][T10697] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.158204][T10697] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.165915][T10697] device bridge_slave_0 entered promiscuous mode [ 249.181223][T10697] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.189742][T10697] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.197445][T10697] device bridge_slave_1 entered promiscuous mode [ 249.325956][T10714] loop4: detected capacity change from 0 to 256 [ 249.332625][T10714] /dev/loop4: Can't open blockdev [ 249.353350][T10697] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.360272][T10697] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.367362][T10697] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.374397][T10697] bridge0: port 1(bridge_slave_0) entered forwarding state [ 249.385051][T10711] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.400922][T10711] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.408894][T10711] device bridge_slave_0 entered promiscuous mode [ 249.433933][T10711] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.442432][T10711] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.450092][T10711] device bridge_slave_1 entered promiscuous mode [ 249.462589][T10710] bridge0: port 1(bridge_slave_0) entered blocking state [ 249.481514][T10710] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.489496][T10710] device bridge_slave_0 entered promiscuous mode [ 249.525609][T10710] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.532481][T10710] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.540176][T10710] device bridge_slave_1 entered promiscuous mode [ 249.591182][T10725] loop4: detected capacity change from 0 to 256 [ 249.598212][T10725] /dev/loop4: Can't open blockdev [ 249.630398][T10725] overlayfs: failed to resolve './file0': -2 [ 249.639340][ T648] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 249.650763][ T648] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 249.659532][ T648] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.702091][ T648] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 249.710603][ T648] bridge0: port 2(bridge_slave_1) entered blocking state [ 249.717914][ T648] bridge0: port 2(bridge_slave_1) entered forwarding state [ 249.725424][ T648] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 249.735527][ T648] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 249.757818][T10697] device veth0_vlan entered promiscuous mode [ 249.765658][ T319] device bridge_slave_1 left promiscuous mode [ 249.772123][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.779854][ T319] device bridge_slave_0 left promiscuous mode [ 249.786175][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.794666][ T319] device bridge_slave_1 left promiscuous mode [ 249.800873][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.809344][ T319] device bridge_slave_0 left promiscuous mode [ 249.815951][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.824451][ T319] device bridge_slave_1 left promiscuous mode [ 249.831234][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 249.839442][ T319] device bridge_slave_0 left promiscuous mode [ 249.845531][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 249.854669][ T319] device veth1_macvtap left promiscuous mode [ 249.860856][ T319] device veth0_vlan left promiscuous mode [ 249.866738][ T319] device veth1_macvtap left promiscuous mode [ 249.872931][ T319] device veth0_vlan left promiscuous mode [ 249.878863][ T319] device veth1_macvtap left promiscuous mode [ 249.885015][ T319] device veth0_vlan left promiscuous mode [ 249.964967][T10737] loop4: detected capacity change from 0 to 40427 [ 250.142028][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 250.150591][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 250.159682][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 250.168260][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 250.219924][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 250.229384][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 250.237747][T10743] netlink: 'syz.4.4383': attribute type 11 has an invalid length. [ 250.246802][T10697] device veth1_macvtap entered promiscuous mode [ 250.287375][T10747] input: syz0 as /devices/virtual/input/input74 [ 250.309164][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 250.324441][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 250.333528][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 250.343469][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 250.351189][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 250.358888][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 250.367416][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 250.375716][ T314] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.382831][ T314] bridge0: port 1(bridge_slave_0) entered forwarding state [ 250.389997][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 250.398593][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 250.406844][ T314] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.413845][ T314] bridge0: port 2(bridge_slave_1) entered forwarding state [ 250.420980][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 250.429223][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 250.437753][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 250.445701][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 250.467390][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 250.477321][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 250.485550][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 250.543592][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 250.553662][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 250.576586][T10711] device veth0_vlan entered promiscuous mode [ 250.584815][ T28] audit: type=1326 audit(1729509692.138:2298): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.4.4391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8eda97dff9 code=0x7ffc0000 [ 250.616039][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 250.624031][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 250.632737][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 250.641418][ T28] audit: type=1326 audit(1729509692.166:2299): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=10762 comm="syz.4.4391" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7f8eda97dff9 code=0x7ffc0000 [ 250.666278][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 250.675726][ T314] bridge0: port 1(bridge_slave_0) entered blocking state [ 250.683015][ T314] bridge0: port 1(bridge_slave_0) entered forwarding state [ 250.690995][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 250.699541][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 250.708011][ T314] bridge0: port 2(bridge_slave_1) entered blocking state [ 250.715439][ T314] bridge0: port 2(bridge_slave_1) entered forwarding state [ 250.723302][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 250.731518][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 250.754768][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 250.762633][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 250.770213][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 250.778179][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 250.786228][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 250.794189][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 250.802624][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 250.811289][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 250.819757][ T314] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 250.829912][T10711] device veth1_macvtap entered promiscuous mode [ 250.848288][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 250.861039][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 250.869859][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 250.878343][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready [ 250.887044][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 250.895518][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 250.904265][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 250.915559][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 250.924201][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 250.933699][ T295] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 250.943176][T10710] device veth0_vlan entered promiscuous mode [ 250.966451][T10782] Invalid ELF header magic: != ELF [ 250.989525][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 251.006456][T10710] device veth1_macvtap entered promiscuous mode [ 251.021283][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 251.030219][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 251.057333][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 251.067277][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 251.108752][T10796] loop0: detected capacity change from 0 to 256 [ 251.141254][T10796] exFAT-fs (loop0): failed to load upcase table (idx : 0x00011e5d, chksum : 0x63a11b78, utbl_chksum : 0xe619d30d) [ 251.154333][ T28] audit: type=1400 audit(1729509692.671:2300): avc: denied { relabelfrom } for pid=10801 comm="syz.4.4407" name="NETLINK" dev="sockfs" ino=68208 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_netfilter_socket permissive=1 [ 251.199382][ T28] audit: type=1400 audit(1729509692.671:2301): avc: denied { relabelto } for pid=10801 comm="syz.4.4407" name="NETLINK" dev="sockfs" ino=68208 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:mouse_device_t tclass=netlink_netfilter_socket permissive=1 [ 251.229593][T10804] kvm [10803]: vcpu0, guest rIP: 0xfff0 unimplemented HWCR wrmsr: 0xb9200080000 [ 251.351891][T10794] loop2: detected capacity change from 0 to 40427 [ 251.359309][T10794] F2FS-fs (loop2): Invalid SB checksum offset: 0 [ 251.365932][T10794] F2FS-fs (loop2): Can't find valid F2FS filesystem in 2th superblock [ 251.386266][T10794] F2FS-fs (loop2): Disable nat_bits due to incorrect cp_ver (10241045589465957861, 585327988383614437) [ 251.415068][T10794] F2FS-fs (loop2): Try to recover 2th superblock, ret: 0 [ 251.422584][T10794] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 251.448971][T10711] syz-executor: attempt to access beyond end of device [ 251.448971][T10711] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 251.491322][T10819] loop3: detected capacity change from 0 to 128 [ 251.578175][ T674] usb 1-1: new high-speed USB device number 65 using dummy_hcd [ 251.593471][T10824] loop2: detected capacity change from 0 to 512 [ 251.601695][T10824] EXT4-fs: Ignoring removed i_version option [ 251.608107][T10824] EXT4-fs (loop2): encrypted files will use data=ordered instead of data journaling mode [ 251.624338][T10824] EXT4-fs (loop2): 1 truncate cleaned up [ 251.630447][T10824] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 251.649706][T10711] EXT4-fs (loop2): unmounting filesystem. [ 251.666574][T10833] loop3: detected capacity change from 0 to 1024 [ 251.673215][T10833] EXT4-fs: Ignoring removed orlov option [ 251.679410][T10833] EXT4-fs: Ignoring removed nomblk_io_submit option [ 251.695786][ T19] usb 5-1: new high-speed USB device number 62 using dummy_hcd [ 251.705068][T10833] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 251.730997][T10697] EXT4-fs (loop3): unmounting filesystem. [ 251.746470][T10839] loop3: detected capacity change from 0 to 256 [ 251.856202][ T674] usb 1-1: Using ep0 maxpacket: 8 [ 251.921931][T10865] loop1: detected capacity change from 0 to 512 [ 251.962829][T10865] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 251.971874][T10865] ext4 filesystem being mounted at /192/bus supports timestamps until 2038 (0x7fffffff) [ 251.985104][ T674] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 252.005163][ T8386] EXT4-fs (loop1): unmounting filesystem. [ 252.091515][ T674] usb 1-1: New USB device found, idVendor=05ac, idProduct=8501, bcdDevice=20.9d [ 252.101343][ T674] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=105 [ 252.110077][ T674] usb 1-1: SerialNumber: syz [ 252.114793][ T19] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 252.126751][ T19] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 252.137546][ T674] usb 1-1: config 0 descriptor?? [ 252.143043][ T19] usb 5-1: New USB device found, idVendor=044f, idProduct=b65d, bcdDevice= 0.00 [ 252.153102][ T19] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 252.162975][ T19] usb 5-1: config 0 descriptor?? [ 252.177435][ T674] usb 1-1: Found UVC 0.00 device (05ac:8501) [ 252.184724][ T674] usb 1-1: No valid video chain found. [ 252.358664][ T295] usb 3-1: new high-speed USB device number 63 using dummy_hcd [ 252.399751][ T314] usb 1-1: USB disconnect, device number 65 [ 252.530896][T10904] loop3: detected capacity change from 0 to 512 [ 252.542590][T10904] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 252.552033][T10904] ext4 filesystem being mounted at /23/bus supports timestamps until 2038 (0x7fffffff) [ 252.660014][ T19] hid-thrustmaster 0003:044F:B65D.0093: unbalanced collection at end of report description [ 252.673771][ T19] hid-thrustmaster 0003:044F:B65D.0093: parse failed with error -22 [ 252.682186][ T19] hid-thrustmaster: probe of 0003:044F:B65D.0093 failed with error -22 [ 252.706046][T10697] EXT4-fs (loop3): unmounting filesystem. [ 252.722657][T10910] loop3: detected capacity change from 0 to 512 [ 252.735007][T10910] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 252.744428][ T295] usb 3-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 252.754855][T10910] ext4 filesystem being mounted at /24/file1 supports timestamps until 2038 (0x7fffffff) [ 252.776477][T10697] EXT4-fs (loop3): unmounting filesystem. [ 252.839751][ T295] usb 3-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 252.849174][ T295] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 252.857750][ T295] usb 3-1: SerialNumber: syz [ 252.870310][T10916] SELinux: Context system_u:object_r:ptchown_exec_t:s0 is not valid (left unmapped). [ 252.870310][ T28] audit: type=1400 audit(1729509694.270:2302): avc: denied { relabelfrom } for pid=10915 comm="syz.3.4452" name="TCPv6" dev="sockfs" ino=68425 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=tcp_socket permissive=1 [ 252.903893][ T28] audit: type=1400 audit(1729509694.298:2303): avc: denied { relabelto } for pid=10915 comm="syz.3.4452" name="TCPv6" dev="sockfs" ino=68425 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=tcp_socket permissive=1 trawcon="system_u:object_r:ptchown_exec_t:s0" [ 252.904534][ T19] usb 5-1: USB disconnect, device number 62 [ 252.965909][T10922] loop0: detected capacity change from 0 to 1024 [ 252.975075][T10922] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 252.993902][T10710] EXT4-fs (loop0): unmounting filesystem. [ 253.008705][T10925] netlink: 16 bytes leftover after parsing attributes in process `syz.0.4456'. [ 253.144170][T10927] loop0: detected capacity change from 0 to 40427 [ 253.151072][T10927] F2FS-fs (loop0): Insane cp_payload (553648128 >= 504) [ 253.158178][T10927] F2FS-fs (loop0): Can't find valid F2FS filesystem in 1th superblock [ 253.167677][T10927] F2FS-fs (loop0): invalid crc value [ 253.176079][T10927] F2FS-fs (loop0): Found nat_bits in checkpoint [ 253.211706][T10927] F2FS-fs (loop0): Start checkpoint disabled! [ 253.220459][T10927] F2FS-fs (loop0): Try to recover 1th superblock, ret: 0 [ 253.229201][T10927] F2FS-fs (loop0): Mounted with checkpoint version = 48b305e6 [ 253.245940][ T37] usb 4-1: new high-speed USB device number 57 using dummy_hcd [ 253.306561][ T319] kworker/u4:3: attempt to access beyond end of device [ 253.306561][ T319] loop0: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 253.502503][ T37] usb 4-1: Using ep0 maxpacket: 16 [ 253.524965][T10943] loop0: detected capacity change from 0 to 256 [ 253.539726][T10943] overlayfs: filesystem on './file1' not supported [ 253.558485][T10946] I/O error, dev loop1, sector 0 op 0x0:(READ) flags 0x0 phys_seg 1 prio class 2 [ 253.568309][T10946] FAT-fs (loop1): unable to read boot sector [ 253.584324][T10948] loop0: detected capacity change from 0 to 256 [ 253.591260][T10948] exfat: Deprecated parameter 'namecase' [ 253.600760][ T295] cdc_ether 3-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.2-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 253.613775][T10948] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 253.630854][ T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 253.642694][ T37] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 253.653346][ T37] usb 4-1: New USB device found, idVendor=17ef, idProduct=60a3, bcdDevice= 0.00 [ 253.662971][ T37] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 253.673871][ T37] usb 4-1: config 0 descriptor?? [ 254.047961][ T314] usb 3-1: USB disconnect, device number 63 [ 254.054463][ T314] cdc_ether 3-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.2-1, CDC Ethernet Device [ 254.219231][ T37] hid (null): report_id 0 is invalid [ 254.242613][ T37] lenovo 0003:17EF:60A3.0094: report_id 0 is invalid [ 254.260402][ T37] lenovo 0003:17EF:60A3.0094: item 0 1 1 8 parsing failed [ 254.270306][ T37] lenovo 0003:17EF:60A3.0094: hid_parse failed [ 254.285825][ T37] lenovo: probe of 0003:17EF:60A3.0094 failed with error -22 [ 254.518442][ T37] usb 4-1: USB disconnect, device number 57 [ 254.583556][T10961] loop0: detected capacity change from 0 to 128 [ 254.591790][T10961] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: none. [ 254.601096][T10961] ext4 filesystem being mounted at /12/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 254.642650][T10710] EXT4-fs (loop0): unmounting filesystem. [ 254.870928][ T24] usb 5-1: new high-speed USB device number 63 using dummy_hcd [ 255.009893][ T648] usb 1-1: new high-speed USB device number 66 using dummy_hcd [ 255.127477][ T24] usb 5-1: Using ep0 maxpacket: 8 [ 255.163766][T11002] loop2: detected capacity change from 0 to 512 [ 255.183174][T11002] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 255.192598][T11002] ext4 filesystem being mounted at /24/file0 supports timestamps until 2038 (0x7fffffff) [ 255.255834][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 255.277123][ T648] usb 1-1: Using ep0 maxpacket: 16 [ 255.277244][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 255.309238][ T24] usb 5-1: New USB device found, idVendor=1e7d, idProduct=2ced, bcdDevice= 0.00 [ 255.318384][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 255.328253][ T24] usb 5-1: config 0 descriptor?? [ 255.352004][ T3847] usb 4-1: new high-speed USB device number 58 using dummy_hcd [ 255.425445][T10711] EXT4-fs (loop2): unmounting filesystem. [ 255.504359][ T28] audit: type=1326 audit(1729509696.740:2304): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 255.619325][ T648] usb 1-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 255.628597][ T648] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 255.636790][ T648] usb 1-1: Product: syz [ 255.641289][ T648] usb 1-1: Manufacturer: syz [ 255.645692][ T648] usb 1-1: SerialNumber: syz [ 255.650844][ T648] r8152-cfgselector 1-1: config 0 descriptor?? [ 255.736968][ T3847] usb 4-1: config 1 interface 0 altsetting 0 has 2 endpoint descriptors, different from the interface descriptor's value: 18 [ 255.833133][ T3847] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 255.843006][ T3847] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=1 [ 255.851825][ T24] kone 0003:1E7D:2CED.0095: collection stack underflow [ 255.858798][ T3847] usb 4-1: SerialNumber: syz [ 255.863527][ T24] kone 0003:1E7D:2CED.0095: item 0 1 0 12 parsing failed [ 255.871402][ T24] kone 0003:1E7D:2CED.0095: parse failed [ 255.877118][ T24] kone: probe of 0003:1E7D:2CED.0095 failed with error -22 [ 255.907898][ T3237] usb 3-1: new high-speed USB device number 64 using dummy_hcd [ 256.079751][ T24] usb 5-1: USB disconnect, device number 63 [ 256.175202][ T648] r8152-cfgselector 1-1: Unknown version 0x0000 [ 256.182072][ T648] r8152-cfgselector 1-1: bad CDC descriptors [ 256.188554][ T3237] usb 3-1: Using ep0 maxpacket: 32 [ 256.207333][ T648] r8152-cfgselector 1-1: Unknown version 0x0000 [ 256.214274][ T648] r8152-cfgselector 1-1: USB disconnect, device number 66 [ 256.286157][ T28] audit: type=1326 audit(1729509697.469:2305): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=257 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.311189][ T28] audit: type=1326 audit(1729509697.469:2306): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.335502][ T3237] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 256.347282][ T28] audit: type=1326 audit(1729509697.469:2307): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.371435][ T3237] usb 3-1: config 4 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 256.381239][ T28] audit: type=1326 audit(1729509697.469:2308): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.404869][ T28] audit: type=1326 audit(1729509697.469:2309): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.431774][ T28] audit: type=1326 audit(1729509697.469:2310): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.456876][ T28] audit: type=1326 audit(1729509697.469:2311): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.482600][ T28] audit: type=1326 audit(1729509697.469:2312): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.510401][ T28] audit: type=1326 audit(1729509697.469:2313): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.534218][ T28] audit: type=1326 audit(1729509697.469:2314): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11008 comm="syz.1.4490" exe="/root/syz-executor" sig=0 arch=c000003e syscall=202 compat=0 ip=0x7fa1e477dff9 code=0x7fc00000 [ 256.558072][ T3237] usb 3-1: New USB device found, idVendor=046d, idProduct=c314, bcdDevice= 0.40 [ 256.567245][ T3237] usb 3-1: New USB device strings: Mfr=255, Product=255, SerialNumber=0 [ 256.575569][ T3237] usb 3-1: Product: syz [ 256.579503][ T3237] usb 3-1: Manufacturer: syz [ 256.615022][ T3847] cdc_ether 4-1:1.0 usb0: register 'cdc_ether' at usb-dummy_hcd.3-1, CDC Ethernet Device, 42:42:42:42:42:42 [ 256.635416][ T3237] hub 3-1:4.0: USB hub found [ 256.756719][T11061] loop0: detected capacity change from 0 to 1024 [ 256.764935][T11061] EXT4-fs: Ignoring removed nobh option [ 256.774969][T11061] EXT4-fs error (device loop0): ext4_ext_check_inode:520: inode #11: comm syz.0.4516: pblk 0 bad header/extent: invalid extent entries - magic f30a, entries 1, max 4(4), depth 32512(32512) [ 256.793961][T11061] EXT4-fs error (device loop0): ext4_orphan_get:1401: comm syz.0.4516: couldn't read orphan inode 11 (err -117) [ 256.806078][T11061] EXT4-fs (loop0): mounted filesystem without journal. Quota mode: writeback. [ 256.870091][ T3237] hub 3-1:4.0: config failed, hub has too many ports! (err -19) [ 257.044240][ T24] usb 4-1: USB disconnect, device number 58 [ 257.050388][ T24] cdc_ether 4-1:1.0 usb0: unregister 'cdc_ether' usb-dummy_hcd.3-1, CDC Ethernet Device [ 257.105335][ T674] usb 1-1: new high-speed USB device number 67 using dummy_hcd [ 257.223568][ T3237] usb 3-1: USB disconnect, device number 64 [ 257.511524][ T674] usb 1-1: config 0 has an invalid descriptor of length 0, skipping remainder of the config [ 257.522392][ T674] usb 1-1: New USB device found, idVendor=046d, idProduct=08c1, bcdDevice=ee.8d [ 257.531353][ T674] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 257.541601][ T674] usb 1-1: config 0 descriptor?? [ 257.608674][T11082] netlink: 272 bytes leftover after parsing attributes in process `syz.3.4523'. [ 257.800250][ T24] usb 5-1: new high-speed USB device number 64 using dummy_hcd [ 257.810550][ T37] usb 1-1: USB disconnect, device number 67 [ 258.056689][ T24] usb 5-1: Using ep0 maxpacket: 16 [ 258.185098][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 258.196699][ T24] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 258.207889][ T24] usb 5-1: New USB device found, idVendor=17ef, idProduct=6009, bcdDevice= 0.00 [ 258.217502][ T24] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 258.226119][ T24] usb 5-1: config 0 descriptor?? [ 258.359810][T10710] EXT4-fs (loop0): unmounting filesystem. [ 258.405202][T11133] loop2: detected capacity change from 0 to 1024 [ 258.426202][T11133] EXT4-fs: Ignoring removed orlov option [ 258.437728][T11133] EXT4-fs: Ignoring removed nomblk_io_submit option [ 258.449221][T11133] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 258.464154][T11133] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=a84ec018, mo2=0002] [ 258.472438][T11133] System zones: 0-1, 3-36 [ 258.478368][T11133] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 258.519671][T10711] EXT4-fs (loop2): unmounting filesystem. [ 258.617281][T11151] netlink: 87 bytes leftover after parsing attributes in process `syz.3.4552'. [ 258.742634][ T24] lenovo 0003:17EF:6009.0096: global environment stack underflow [ 258.750649][ T24] lenovo 0003:17EF:6009.0096: item 0 4 1 11 parsing failed [ 258.773144][ T24] lenovo 0003:17EF:6009.0096: hid_parse failed [ 258.779444][ T24] lenovo: probe of 0003:17EF:6009.0096 failed with error -22 [ 258.787476][ T37] usb 1-1: new high-speed USB device number 68 using dummy_hcd [ 258.857017][T11163] netlink: 'syz.2.4557': attribute type 13 has an invalid length. [ 258.869377][T11163] gretap1: default qdisc (pfifo_fast) fail, fallback to noqueue [ 258.876987][T11163] device gretap1 entered promiscuous mode [ 258.959304][ T24] usb 5-1: USB disconnect, device number 64 [ 259.179387][ T37] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 259.191510][ T37] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 259.211251][ T37] usb 1-1: New USB device found, idVendor=10c4, idProduct=ea90, bcdDevice= 0.00 [ 259.222100][ T37] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 259.241968][ T37] usb 1-1: config 0 descriptor?? [ 259.291184][T11182] loop2: detected capacity change from 0 to 40427 [ 259.299231][T11182] F2FS-fs (loop2): invalid crc value [ 259.305922][T11182] F2FS-fs (loop2): Found nat_bits in checkpoint [ 259.352103][T11182] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 259.381563][T10711] syz-executor: attempt to access beyond end of device [ 259.381563][T10711] loop2: rw=524288, sector=45064, nr_sectors = 8 limit=40427 [ 259.396052][T10711] syz-executor: attempt to access beyond end of device [ 259.396052][T10711] loop2: rw=0, sector=45064, nr_sectors = 8 limit=40427 [ 259.415119][T10711] syz-executor: attempt to access beyond end of device [ 259.415119][T10711] loop2: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 259.527123][T11205] loop4: detected capacity change from 0 to 256 [ 259.606941][ T674] kernel write not supported for file bpf-prog (pid: 674 comm: kworker/0:5) [ 259.629595][T11210] loop4: detected capacity change from 0 to 256 [ 259.636121][T11210] /dev/loop4: Can't open blockdev [ 259.681761][T11211] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.689335][T11211] bridge0: port 1(bridge_slave_0) entered disabled state [ 259.697281][T11211] device bridge_slave_0 entered promiscuous mode [ 259.706561][T11211] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.714357][T11211] bridge0: port 2(bridge_slave_1) entered disabled state [ 259.722173][T11211] device bridge_slave_1 entered promiscuous mode [ 259.757548][ T37] cp2112 0003:10C4:EA90.0097: item fetching failed at offset 5/7 [ 259.766142][ T37] cp2112 0003:10C4:EA90.0097: parse failed [ 259.772411][ T37] cp2112: probe of 0003:10C4:EA90.0097 failed with error -22 [ 259.806024][T11211] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.813225][T11211] bridge0: port 2(bridge_slave_1) entered forwarding state [ 259.820805][T11211] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.828786][T11211] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.856797][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 259.866014][ T37] bridge0: port 1(bridge_slave_0) entered disabled state [ 259.873721][ T37] bridge0: port 2(bridge_slave_1) entered disabled state [ 259.891889][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 259.901246][ T674] bridge0: port 1(bridge_slave_0) entered blocking state [ 259.908451][ T674] bridge0: port 1(bridge_slave_0) entered forwarding state [ 259.928204][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 259.936967][ T3237] bridge0: port 2(bridge_slave_1) entered blocking state [ 259.944539][ T3237] bridge0: port 2(bridge_slave_1) entered forwarding state [ 259.953077][ T3237] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 259.969743][ T37] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 259.977735][ T3237] usb 1-1: USB disconnect, device number 68 [ 259.989809][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 259.998539][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 260.007866][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready [ 260.015634][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready [ 260.027323][T11211] device veth0_vlan entered promiscuous mode [ 260.042819][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 260.052213][T11211] device veth1_macvtap entered promiscuous mode [ 260.064116][ T674] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 260.080934][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 260.178641][ T319] device bridge_slave_1 left promiscuous mode [ 260.185523][ T319] bridge0: port 2(bridge_slave_1) entered disabled state [ 260.193325][ T319] device bridge_slave_0 left promiscuous mode [ 260.199705][ T319] bridge0: port 1(bridge_slave_0) entered disabled state [ 260.208667][ T319] device veth1_macvtap left promiscuous mode [ 260.216450][ T319] device veth0_vlan left promiscuous mode [ 260.388188][T11260] raw_sendmsg: syz.4.4600 forgot to set AF_INET. Fix it! [ 260.428065][T11266] loop3: detected capacity change from 0 to 512 [ 260.442900][T11266] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 260.452432][T11266] ext4 filesystem being mounted at /55/file0 supports timestamps until 2038 (0x7fffffff) [ 260.480799][T10697] EXT4-fs (loop3): unmounting filesystem. [ 260.498223][T11272] loop3: detected capacity change from 0 to 128 [ 260.515568][T11272] FAT-fs (loop3): utf8 is not a recommended IO charset for FAT filesystems, filesystem will be case sensitive! [ 260.625032][T11282] loop3: detected capacity change from 0 to 128 [ 260.648328][T11282] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 260.673853][T11282] ext4 filesystem being mounted at /58/file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa supports timestamps until 2038 (0x7fffffff) [ 260.732399][T11293] netlink: 24 bytes leftover after parsing attributes in process `syz.0.4613'. [ 260.783653][T10697] EXT4-fs (loop3): unmounting filesystem. [ 260.862099][T11308] loop3: detected capacity change from 0 to 1024 [ 260.869793][T11308] EXT4-fs: Ignoring removed nomblk_io_submit option [ 260.878620][T11308] EXT4-fs: Warning: mounting with an experimental mount option 'dioread_nolock' for blocksize < PAGE_SIZE [ 260.898925][T11308] [EXT4 FS bs=1024, gc=1, bpg=131072, ipg=32, mo=e855c01c, mo2=0003] [ 260.907545][T11308] System zones: 0-1, 3-36 [ 260.912885][T11308] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 260.936886][T10697] EXT4-fs (loop3): unmounting filesystem. [ 260.965445][T11315] SELinux: ebitmap: map size 0 does not match my size 64 (high bit was 0) [ 260.974185][T11315] SELinux: failed to load policy [ 260.988078][T11323] loop2: detected capacity change from 0 to 256 [ 260.994688][T11323] exfat: Deprecated parameter 'namecase' [ 261.003755][T11323] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xb5fb52fc, utbl_chksum : 0xe619d30d) [ 261.016326][ T3237] usb 5-1: new high-speed USB device number 65 using dummy_hcd [ 261.263908][ T24] usb 4-1: new high-speed USB device number 59 using dummy_hcd [ 261.328148][ T648] usb 1-1: new high-speed USB device number 69 using dummy_hcd [ 261.424305][ T3237] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 261.435354][ T3237] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 261.449389][ T3237] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 261.458926][ T3237] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.468308][ T3237] usb 5-1: config 0 descriptor?? [ 261.520467][ T24] usb 4-1: Using ep0 maxpacket: 16 [ 261.648844][ T24] usb 4-1: config 1 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 261.660341][ T24] usb 4-1: config 1 interface 0 altsetting 0 bulk endpoint 0x82 has invalid maxpacket 8 [ 261.670949][ T24] usb 4-1: config 1 interface 0 altsetting 0 has 3 endpoint descriptors, different from the interface descriptor's value: 22 [ 261.684823][ T24] usb 4-1: New USB device found, idVendor=0525, idProduct=a4a1, bcdDevice= 0.40 [ 261.693985][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.723817][T11321] raw-gadget.1 gadget.3: fail, usb_ep_enable returned -22 [ 261.745346][ T24] cdc_acm 4-1:1.0: Control and data interfaces are not separated! [ 261.755787][ T648] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 261.767004][ T648] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 261.778235][ T648] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 261.791331][ T648] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 261.800259][ T648] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 261.808852][ T648] usb 1-1: config 0 descriptor?? [ 261.830557][T11327] raw-gadget.2 gadget.0: fail, usb_ep_enable returned -22 [ 261.981670][ T24] cdc_acm 4-1:1.0: ttyACM0: USB ACM device [ 261.988449][ T24] usb 4-1: USB disconnect, device number 59 [ 261.992676][ T3237] plantronics 0003:047F:FFFF.0098: unknown main item tag 0x0 [ 262.001816][ T3237] plantronics 0003:047F:FFFF.0098: No inputs registered, leaving [ 262.010396][ T3237] plantronics 0003:047F:FFFF.0098: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 262.065824][ T1652] Bluetooth: hci0: command 0x1003 tx timeout [ 262.071967][ T1653] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 262.091551][T11335] netlink: 20 bytes leftover after parsing attributes in process `syz.2.4632'. [ 262.102025][T11334] loop1: detected capacity change from 0 to 512 [ 262.121346][T11334] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 262.130766][T11334] ext4 filesystem being mounted at /205/file0 supports timestamps until 2038 (0x7fffffff) [ 262.176649][T11343] loop2: detected capacity change from 0 to 128 [ 262.301673][ T19] usb 5-1: USB disconnect, device number 65 [ 262.323763][ T648] plantronics 0003:047F:FFFF.0099: unknown main item tag 0xd [ 262.344049][ T648] plantronics 0003:047F:FFFF.0099: No inputs registered, leaving [ 262.354971][ T648] plantronics 0003:047F:FFFF.0099: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 262.376691][ T8386] EXT4-fs (loop1): unmounting filesystem. [ 262.399167][T11351] loop2: detected capacity change from 0 to 256 [ 262.417618][ T28] kauditd_printk_skb: 61 callbacks suppressed [ 262.417643][ T28] audit: type=1400 audit(1863727431.202:2376): avc: denied { reparent } for pid=11350 comm="syz.2.4639" name="file3" dev="loop2" ino=1048869 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [ 262.551420][T11365] loop2: detected capacity change from 0 to 16 [ 262.564289][T11365] erofs: Unknown parameter 'ÿÿÿÿ' [ 262.608376][T11352] loop1: detected capacity change from 0 to 40427 [ 262.616386][T11352] F2FS-fs (loop1): invalid crc value [ 262.625009][ T19] usb 1-1: USB disconnect, device number 69 [ 262.629917][T11373] loop3: detected capacity change from 0 to 512 [ 262.640739][T11352] F2FS-fs (loop1): Found nat_bits in checkpoint [ 262.656030][T11373] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 262.665209][T11373] ext4 filesystem being mounted at /69/file0 supports timestamps until 2038 (0x7fffffff) [ 262.688184][T11352] F2FS-fs (loop1): Start checkpoint disabled! [ 262.717812][T11352] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e6 [ 262.760958][ T615] kworker/u4:5: attempt to access beyond end of device [ 262.760958][ T615] loop1: rw=2049, sector=40960, nr_sectors = 8 limit=40427 [ 262.777292][ T615] kworker/u4:5: attempt to access beyond end of device [ 262.777292][ T615] loop1: rw=2049, sector=40984, nr_sectors = 8 limit=40427 [ 262.853533][T11391] loop4: detected capacity change from 0 to 512 [ 262.860273][T11391] /dev/loop4: Can't open blockdev [ 262.965381][ T28] audit: type=1400 audit(1863727431.716:2377): avc: denied { setattr } for pid=11394 comm="syz.1.4652" name="smaps" dev="proc" ino=70791 scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=file permissive=1 [ 262.995387][T10697] EXT4-fs (loop3): unmounting filesystem. [ 263.029635][T11399] SELinux: failed to load policy [ 263.145468][ T19] usb 3-1: new high-speed USB device number 65 using dummy_hcd [ 263.401965][ T19] usb 3-1: Using ep0 maxpacket: 32 [ 263.551753][ T19] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 263.562654][ T19] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 263.573058][ T19] usb 3-1: New USB device found, idVendor=1e7d, idProduct=2c2e, bcdDevice= 0.00 [ 263.583627][ T19] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 263.592738][ T19] usb 3-1: config 0 descriptor?? [ 264.108385][ T19] lua 0003:1E7D:2C2E.009A: global environment stack underflow [ 264.115817][ T19] lua 0003:1E7D:2C2E.009A: item 0 0 1 11 parsing failed [ 264.123039][ T19] lua 0003:1E7D:2C2E.009A: parse failed [ 264.128438][ T19] lua: probe of 0003:1E7D:2C2E.009A failed with error -22 [ 264.322798][ T19] usb 3-1: USB disconnect, device number 65 [ 266.236265][T11418] loop3: detected capacity change from 0 to 2048 [ 266.253108][T11420] loop4: detected capacity change from 0 to 1024 [ 266.261656][T11420] /dev/loop4: Can't open blockdev [ 266.303800][T11424] loop4: detected capacity change from 0 to 512 [ 266.321556][T11424] /dev/loop4: Can't open blockdev [ 266.563616][T11442] loop4: detected capacity change from 0 to 256 [ 266.570502][T11442] exfat: Deprecated parameter 'namecase' [ 266.576946][T11442] /dev/loop4: Can't open blockdev [ 266.617260][T11446] loop4: detected capacity change from 0 to 2048 [ 266.662662][ T3847] usb 1-1: new high-speed USB device number 70 using dummy_hcd [ 266.676179][T11446] Alternate GPT is invalid, using primary GPT. [ 266.682428][T11446] loop4: p2 p3 p7 [ 266.686266][ T19] usb 3-1: new high-speed USB device number 66 using dummy_hcd [ 266.800581][T11459] loop4: detected capacity change from 0 to 512 [ 266.807288][T11459] EXT4-fs: Ignoring removed mblk_io_submit option [ 266.814129][T11459] /dev/loop4: Can't open blockdev [ 266.983412][ T19] usb 3-1: Using ep0 maxpacket: 8 [ 267.047535][ T3847] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.058459][ T3847] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.068019][ T3847] usb 1-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 267.077387][ T3847] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.085876][ T3847] usb 1-1: config 0 descriptor?? [ 267.133099][ T19] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 267.144182][ T19] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 267.153890][ T19] usb 3-1: New USB device found, idVendor=1038, idProduct=1410, bcdDevice= 0.00 [ 267.162862][ T19] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 267.171635][ T19] usb 3-1: config 0 descriptor?? [ 267.668439][ T19] steelseries_srws1 0003:1038:1410.009C: unknown main item tag 0xd [ 267.676617][ T19] steelseries_srws1 0003:1038:1410.009C: item fetching failed at offset 6/7 [ 267.685974][ T19] steelseries_srws1 0003:1038:1410.009C: parse failed [ 267.693225][ T19] steelseries_srws1: probe of 0003:1038:1410.009C failed with error -22 [ 267.838849][ T3847] usb 1-1: string descriptor 0 read error: -22 [ 267.885135][ T674] usb 3-1: USB disconnect, device number 66 [ 268.309041][ T3847] uclogic 0003:256C:006D.009B: failed retrieving string descriptor #100: -71 [ 268.317999][ T3847] uclogic 0003:256C:006D.009B: failed retrieving pen parameters: -71 [ 268.326297][ T3847] uclogic 0003:256C:006D.009B: failed probing pen v1 parameters: -71 [ 268.334343][ T3847] uclogic 0003:256C:006D.009B: failed probing parameters: -71 [ 268.342004][ T3847] uclogic: probe of 0003:256C:006D.009B failed with error -71 [ 268.350187][ T3847] usb 1-1: USB disconnect, device number 70 [ 268.460530][T11468] loop2: detected capacity change from 0 to 128 [ 268.822154][ T674] usb 3-1: new high-speed USB device number 67 using dummy_hcd [ 269.153570][ T19] usb 1-1: new high-speed USB device number 71 using dummy_hcd [ 269.164275][ T1652] Bluetooth: hci0: command 0x1003 tx timeout [ 269.171113][ T1653] Bluetooth: hci0: Opcode 0x1003 failed: -110 [ 269.207094][ T674] usb 3-1: config 17 has an invalid descriptor of length 0, skipping remainder of the config [ 269.220590][ T674] usb 3-1: config 17 interface 0 altsetting 0 has 0 endpoint descriptors, different from the interface descriptor's value: 1 [ 269.235105][ T674] usb 3-1: New USB device found, idVendor=0458, idProduct=5003, bcdDevice= 0.00 [ 269.244540][ T674] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.538512][ T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 269.549396][ T19] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 269.559193][ T19] usb 1-1: New USB device found, idVendor=5543, idProduct=0522, bcdDevice= 0.00 [ 269.568524][ T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 269.577595][ T19] usb 1-1: config 0 descriptor?? [ 269.582678][T11505] loop3: detected capacity change from 0 to 256 [ 269.595248][T11505] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 269.744593][T11515] loop3: detected capacity change from 0 to 1024 [ 269.751572][T11515] EXT4-fs (loop3): ext4_check_descriptors: Inode bitmap for group 0 overlaps block group descriptors [ 269.762387][T11515] EXT4-fs (loop3): ext4_check_descriptors: Checksum for group 0 failed (51554!=20869) [ 269.773081][T11515] jbd2_journal_init_inode: Cannot locate journal superblock [ 269.780387][T11515] EXT4-fs (loop3): Could not load journal inode [ 269.891238][ T674] usb 3-1: string descriptor 0 read error: -71 [ 269.901697][ T674] aiptek 3-1:17.0: interface has no int in endpoints, but must have minimum 1 [ 269.913445][ T674] usb 3-1: USB disconnect, device number 67 [ 270.066939][T11534] tmpfs: Unknown parameter 'nr' [ 270.094631][ T19] hid (null): global environment stack underflow [ 270.102339][ T19] uclogic 0003:5543:0522.009D: global environment stack underflow [ 270.110646][ T19] uclogic 0003:5543:0522.009D: item 0 1 1 11 parsing failed [ 270.118072][ T28] audit: type=1400 audit(2000000000.018:2378): avc: denied { bind } for pid=11539 comm="syz.3.4724" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=nfc_socket permissive=1 [ 270.140231][ T19] uclogic 0003:5543:0522.009D: parse failed [ 270.146860][ T19] uclogic: probe of 0003:5543:0522.009D failed with error -22 [ 270.235596][T11553] netlink: 8 bytes leftover after parsing attributes in process `syz.3.4730'. [ 270.248042][T11555] loop4: detected capacity change from 0 to 256 [ 270.259087][T11555] exfat: Deprecated parameter 'utf8' [ 270.264426][T11555] /dev/loop4: Can't open blockdev [ 270.311380][ T24] usb 1-1: USB disconnect, device number 71 [ 270.450189][T11581] loop4: detected capacity change from 0 to 512 [ 270.458100][T11581] /dev/loop4: Can't open blockdev [ 270.491713][T11581] tmpfs: Unknown parameter 'usrjquota' [ 270.650251][ T19] usb 4-1: new high-speed USB device number 60 using dummy_hcd [ 270.725112][ T3847] usb 3-1: new high-speed USB device number 68 using dummy_hcd [ 270.906824][ T19] usb 4-1: Using ep0 maxpacket: 16 [ 271.003100][ T3847] usb 3-1: Using ep0 maxpacket: 32 [ 271.013751][ T37] usb 5-1: new high-speed USB device number 66 using dummy_hcd [ 271.035246][ T19] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 271.046593][ T19] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 9 [ 271.059548][ T19] usb 4-1: New USB device found, idVendor=045e, idProduct=07da, bcdDevice= 0.00 [ 271.068453][ T19] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.077040][ T19] usb 4-1: config 0 descriptor?? [ 271.152721][ T3237] usb 1-1: new high-speed USB device number 72 using dummy_hcd [ 271.259664][ T3847] usb 3-1: New USB device found, idVendor=17cc, idProduct=1010, bcdDevice=40.72 [ 271.268710][ T3847] usb 3-1: New USB device strings: Mfr=1, Product=129, SerialNumber=0 [ 271.276762][ T37] usb 5-1: Using ep0 maxpacket: 16 [ 271.281871][ T3847] usb 3-1: Product: syz [ 271.285879][ T3847] usb 3-1: Manufacturer: syz [ 271.291026][ T3847] usb 3-1: config 0 descriptor?? [ 271.409309][ T3237] usb 1-1: Using ep0 maxpacket: 8 [ 271.409308][ T37] usb 5-1: config index 0 descriptor too short (expected 13220, got 36) [ 271.409338][ T37] usb 5-1: config 224 has too many interfaces: 249, using maximum allowed: 32 [ 271.432640][ T37] usb 5-1: config 224 has an invalid descriptor of length 0, skipping remainder of the config [ 271.443204][ T37] usb 5-1: config 224 has 0 interfaces, different from the descriptor's value: 249 [ 271.453314][ T37] usb 5-1: New USB device found, idVendor=1fd2, idProduct=6007, bcdDevice= 0.00 [ 271.462832][ T37] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 271.537635][ T3237] usb 1-1: config 135 has an invalid interface number: 230 but max is 0 [ 271.545960][ T3237] usb 1-1: config 135 has an invalid descriptor of length 0, skipping remainder of the config [ 271.556315][ T3237] usb 1-1: config 135 has no interface number 0 [ 271.562533][ T3237] usb 1-1: too many endpoints for config 135 interface 230 altsetting 126: 53, using maximum allowed: 30 [ 271.569716][ T3847] snd-usb-audio: probe of 3-1:0.0 failed with error -71 [ 271.574342][ T3237] usb 1-1: config 135 interface 230 altsetting 126 has 0 endpoint descriptors, different from the interface descriptor's value: 53 [ 271.582866][ T3847] usb 3-1: USB disconnect, device number 68 [ 271.596947][ T19] HID 045e:07da: Invalid code 65791 type 1 [ 271.610060][ T19] input: HID 045e:07da as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:045E:07DA.009E/input/input77 [ 271.622267][ T3237] usb 1-1: config 135 interface 230 has no altsetting 0 [ 271.630149][ T19] microsoft 0003:045E:07DA.009E: input,hidraw0: USB HID v0.00 Device [HID 045e:07da] on usb-dummy_hcd.3-1/input0 [ 271.794190][ T3237] usb 1-1: New USB device found, idVendor=18ec, idProduct=3288, bcdDevice=3f.3a [ 271.803666][ T3237] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 271.811932][ T3237] usb 1-1: Product: syz [ 271.816030][ T3237] usb 1-1: Manufacturer: syz [ 271.820439][ T3237] usb 1-1: SerialNumber: syz [ 272.050787][ T37] usb 5-1: string descriptor 0 read error: -71 [ 272.057766][ T37] usb 5-1: USB disconnect, device number 66 [ 272.093558][ T3237] usb 1-1: Found UVC 0.00 device syz (18ec:3288) [ 272.100018][ T3237] usb 1-1: No valid video chain found. [ 272.315548][ T37] usb 1-1: USB disconnect, device number 72 [ 272.521080][ T3237] usb 3-1: new high-speed USB device number 69 using dummy_hcd [ 272.777687][ T3237] usb 3-1: Using ep0 maxpacket: 16 [ 272.906070][ T3237] usb 3-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 272.916274][ T3237] usb 3-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 273.002492][ T3237] usb 3-1: New USB device found, idVendor=1d6b, idProduct=0101, bcdDevice= 0.00 [ 273.011603][ T3237] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 273.027477][ T3237] usb 3-1: SerialNumber: syz [ 273.067051][ T3237] usb 3-1: 0:2 : does not exist [ 273.324285][ T3237] usb 3-1: USB disconnect, device number 69 [ 273.515330][ T19] usb 5-1: new high-speed USB device number 67 using dummy_hcd [ 273.581275][ T3237] usb 4-1: USB disconnect, device number 60 [ 273.771884][ T19] usb 5-1: Using ep0 maxpacket: 16 [ 273.834388][T11652] loop2: detected capacity change from 0 to 1024 [ 273.850913][T11652] EXT4-fs (loop2): mounted filesystem without journal. Quota mode: writeback. [ 273.878032][T11211] EXT4-fs (loop2): unmounting filesystem. [ 273.921657][ T37] usb 1-1: new high-speed USB device number 73 using dummy_hcd [ 274.071295][ T19] usb 5-1: New USB device found, idVendor=17ef, idProduct=721e, bcdDevice=de.06 [ 274.086222][ T19] usb 5-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 274.102646][ T19] usb 5-1: Product: syz [ 274.110008][ T19] usb 5-1: Manufacturer: syz [ 274.114760][ T19] usb 5-1: SerialNumber: syz [ 274.136543][ T19] r8152-cfgselector 5-1: config 0 descriptor?? [ 274.180196][T11679] loop3: detected capacity change from 0 to 2048 [ 274.222229][T11679] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 274.247612][T11679] EXT4-fs (loop3): shut down requested (0) [ 274.278325][T10697] EXT4-fs (loop3): unmounting filesystem. [ 274.285634][T11671] loop2: detected capacity change from 0 to 40427 [ 274.296053][T11671] F2FS-fs (loop2): fault_injection options not supported [ 274.306486][ T37] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 274.320448][T11671] F2FS-fs (loop2): Image doesn't support compression [ 274.327534][ T37] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 274.338708][T11671] F2FS-fs (loop2): Image doesn't support compression [ 274.345589][ T37] usb 1-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 274.359055][T11671] F2FS-fs (loop2): fault_type options not supported [ 274.366241][ T37] usb 1-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 274.375647][ T37] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 274.383668][T11671] F2FS-fs (loop2): invalid crc value [ 274.390370][ T37] usb 1-1: config 0 descriptor?? [ 274.400559][T11671] F2FS-fs (loop2): Found nat_bits in checkpoint [ 274.413363][ T19] r8152-cfgselector 5-1: Unknown version 0x0000 [ 274.456149][T11671] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 274.483394][T11211] syz-executor: attempt to access beyond end of device [ 274.483394][T11211] loop2: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 274.542300][T11688] loop1: detected capacity change from 0 to 1024 [ 274.549189][T11688] journal_path: Lookup failure for './file0' [ 274.555998][T11688] EXT4-fs: error: could not find journal device path [ 274.638947][ T19] r8152-cfgselector 5-1: Unknown version 0x0000 [ 274.645171][ T19] r8152-cfgselector 5-1: bad CDC descriptors [ 274.655807][T11704] loop2: detected capacity change from 0 to 256 [ 274.667201][T11704] exFAT-fs (loop2): failed to load upcase table (idx : 0x0000fe7f, chksum : 0x39626d3b, utbl_chksum : 0xe619d30d) [ 274.680006][ T19] r8152-cfgselector 5-1: Unknown version 0x0000 [ 274.687291][ T19] r8152-cfgselector 5-1: USB disconnect, device number 67 [ 274.691262][ T24] usb 4-1: new high-speed USB device number 61 using dummy_hcd [ 274.740510][T11708] input: syz0 as /devices/virtual/input/input78 [ 274.866077][T11723] netlink: 8 bytes leftover after parsing attributes in process `syz.2.4803'. [ 274.880484][T11723] netlink: 4 bytes leftover after parsing attributes in process `syz.2.4803'. [ 274.899487][T11706] loop1: detected capacity change from 0 to 40427 [ 274.908722][T11706] F2FS-fs (loop1): invalid crc value [ 274.914951][T11706] F2FS-fs (loop1): Found nat_bits in checkpoint [ 274.916945][ T37] plantronics 0003:047F:FFFF.009F: unknown main item tag 0x0 [ 274.929428][ T37] plantronics 0003:047F:FFFF.009F: No inputs registered, leaving [ 274.938784][ T37] plantronics 0003:047F:FFFF.009F: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.0-1/input0 [ 274.973522][T11706] F2FS-fs (loop1): Mounted with checkpoint version = 48b305e5 [ 275.000895][ T8386] syz-executor: attempt to access beyond end of device [ 275.000895][ T8386] loop1: rw=2049, sector=45096, nr_sectors = 8 limit=40427 [ 275.140325][ T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 97, changing to 10 [ 275.152364][ T24] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 24929, setting to 1024 [ 275.164808][ T24] usb 4-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40 [ 275.174080][ T24] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 275.191258][ T24] usb 4-1: config 0 descriptor?? [ 275.200416][T11733] loop2: detected capacity change from 0 to 256 [ 275.213635][T11733] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0x205ad3fc, utbl_chksum : 0xe619d30d) [ 275.230034][T11735] loop4: detected capacity change from 0 to 2048 [ 275.238637][T11735] EXT4-fs: Ignoring removed nobh option [ 275.238831][ T19] usb 1-1: USB disconnect, device number 73 [ 275.244365][T11735] /dev/loop4: Can't open blockdev [ 275.278153][T11739] loop1: detected capacity change from 0 to 256 [ 275.299824][T11739] exFAT-fs (loop1): failed to load upcase table (idx : 0x000104d0, chksum : 0x60d18cac, utbl_chksum : 0xe619d30d) [ 275.338649][T11750] loop1: detected capacity change from 0 to 1024 [ 275.346022][T11750] EXT4-fs: Ignoring removed orlov option [ 275.352049][T11750] EXT4-fs (loop1): Test dummy encryption mode enabled [ 275.361205][T11750] EXT4-fs (loop1): mounted filesystem without journal. Quota mode: writeback. [ 275.381954][ T8386] EXT4-fs (loop1): unmounting filesystem. [ 275.621432][ T37] usb 5-1: new high-speed USB device number 68 using dummy_hcd [ 275.718139][ T24] keytouch 0003:0926:3333.00A0: fixing up Keytouch IEC report descriptor [ 275.727993][ T24] input: HID 0926:3333 as /devices/platform/dummy_hcd.3/usb4/4-1/4-1:0.0/0003:0926:3333.00A0/input/input79 [ 275.826299][ T24] keytouch 0003:0926:3333.00A0: input,hidraw0: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.3-1/input0 [ 275.942106][ C1] usb 4-1: input irq status -75 received [ 276.038387][ T37] usb 5-1: config index 0 descriptor too short (expected 45, got 36) [ 276.046852][ T37] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 255, changing to 11 [ 276.058528][ T37] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid maxpacket 59391, setting to 1024 [ 276.070255][ T37] usb 5-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 21 [ 276.070362][ T314] usb 1-1: new high-speed USB device number 74 using dummy_hcd [ 276.091182][ T37] usb 5-1: New USB device found, idVendor=047f, idProduct=ffff, bcdDevice= 0.00 [ 276.100363][ T37] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.109554][ T37] usb 5-1: config 0 descriptor?? [ 276.134627][T11746] raw-gadget.0 gadget.4: fail, usb_ep_enable returned -22 [ 276.151413][ T24] usb 4-1: USB disconnect, device number 61 [ 276.498123][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has an invalid bInterval 0, changing to 7 [ 276.509307][ T314] usb 1-1: config 0 interface 0 altsetting 0 endpoint 0x5 has invalid wMaxPacketSize 0 [ 276.540832][ T3847] usb 3-1: new high-speed USB device number 70 using dummy_hcd [ 276.627253][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.634902][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.642625][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.650026][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.657153][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.664945][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.673369][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.681094][ T314] usb 1-1: New USB device found, idVendor=133e, idProduct=0815, bcdDevice=7e.66 [ 276.690300][ T314] usb 1-1: New USB device strings: Mfr=1, Product=2, SerialNumber=3 [ 276.699087][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.707304][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.714879][ T314] usb 1-1: Product: syz [ 276.719059][ T314] usb 1-1: Manufacturer: syz [ 276.723599][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.730931][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.739152][ T314] usb 1-1: SerialNumber: syz [ 276.741250][T11766] loop3: detected capacity change from 0 to 256 [ 276.744951][ T314] usb 1-1: config 0 descriptor?? [ 276.754752][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.762429][ T37] plantronics 0003:047F:FFFF.00A1: unknown main item tag 0x0 [ 276.770340][ T37] plantronics 0003:047F:FFFF.00A1: No inputs registered, leaving [ 276.780139][ T37] plantronics 0003:047F:FFFF.00A1: hiddev96,hidraw0: USB HID v0.40 Device [HID 047f:ffff] on usb-dummy_hcd.4-1/input0 [ 276.808716][ T314] snd-usb-audio: probe of 1-1:0.0 failed with error -90 [ 276.925654][ T3847] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 276.926655][ T674] usb 5-1: USB disconnect, device number 68 [ 276.937706][ T3847] usb 3-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 276.953067][ T3847] usb 3-1: New USB device found, idVendor=256c, idProduct=006d, bcdDevice= 0.00 [ 276.962389][ T3847] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 276.971721][ T3847] usb 3-1: config 0 descriptor?? [ 276.994736][ T28] audit: type=1326 audit(2000000006.454:2379): auid=4294967295 uid=0 gid=0 ses=4294967295 subj=root:sysadm_r:sysadm_t pid=11771 comm="syz.3.4825" exe="/root/syz-executor" sig=31 arch=c000003e syscall=202 compat=0 ip=0x7f9be4d7dff9 code=0x0 [ 277.026227][ T19] usb 1-1: USB disconnect, device number 74 [ 277.331987][ T3847] usbhid 3-1:0.0: can't add hid device: -71 [ 277.337938][ T3847] usbhid: probe of 3-1:0.0 failed with error -71 [ 277.345472][ T3847] usb 3-1: USB disconnect, device number 70 [ 277.898444][ T19] usb 1-1: new high-speed USB device number 75 using dummy_hcd [ 277.911158][T11822] loop3: detected capacity change from 0 to 2048 [ 277.921259][T11822] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 277.986464][T11827] EXT4-fs (loop3): shut down requested (0) [ 278.074977][T11822] EXT4-fs error (device loop3): ext4_validate_block_bitmap:438: comm syz.3.4847: bg 0: block 234: padding at end of block bitmap is not set [ 278.092809][T11822] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 0 with max blocks 2048 with error 117 [ 278.105479][T11822] EXT4-fs (loop3): This should not happen!! Data will be lost [ 278.105479][T11822] [ 278.126398][ T319] EXT4-fs (loop3): Delayed block allocation failed for inode 18 at logical offset 2050 with max blocks 2048 with error 28 [ 278.139162][ T319] EXT4-fs (loop3): This should not happen!! Data will be lost [ 278.139162][ T319] [ 278.148783][ T319] EXT4-fs (loop3): Total free blocks count 0 [ 278.154697][ T319] EXT4-fs (loop3): Free/Dirty block details [ 278.160758][ T319] EXT4-fs (loop3): free_blocks=0 [ 278.165680][ T319] EXT4-fs (loop3): dirty_blocks=6144 [ 278.253439][T11838] loop3: detected capacity change from 0 to 2048 [ 278.263650][T11838] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 278.272012][T11838] ext4 filesystem being mounted at /114/bus supports timestamps until 2038 (0x7fffffff) [ 278.282419][T11838] EXT4-fs (loop3): unmounting filesystem. [ 278.326262][ T19] usb 1-1: config 1 has an invalid descriptor of length 0, skipping remainder of the config [ 278.353359][ T19] usb 1-1: config 1 has 1 interface, different from the descriptor's value: 3 [ 278.425279][T11850] loop3: detected capacity change from 0 to 256 [ 278.432093][T11850] exFAT-fs (loop3): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [ 278.442874][T11850] exFAT-fs (loop3): Medium has reported failures. Some data may be lost. [ 278.454500][ T19] usb 1-1: New USB device found, idVendor=08b7, idProduct=0000, bcdDevice= 0.00 [ 278.464808][ T19] usb 1-1: New USB device strings: Mfr=0, Product=0, SerialNumber=3 [ 278.473940][ T19] usb 1-1: SerialNumber: syz [ 278.485367][T11850] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xe62de5da, utbl_chksum : 0xe619d30d) [ 278.776410][T11858] loop2: detected capacity change from 0 to 40427 [ 278.783486][T11858] F2FS-fs (loop2): Invalid log_blocksize (268), supports only 12 [ 278.791315][T11858] F2FS-fs (loop2): Can't find valid F2FS filesystem in 1th superblock [ 278.802310][T11858] F2FS-fs (loop2): Found nat_bits in checkpoint [ 278.805069][T11860] loop3: detected capacity change from 0 to 40427 [ 278.815696][ T19] usb 1-1: 0:2 : does not exist [ 278.822775][ T19] usb 1-1: USB disconnect, device number 75 [ 278.829747][T11860] F2FS-fs (loop3): Invalid Fs Meta Ino: node(0) meta(2) root(0) [ 278.838481][T11860] F2FS-fs (loop3): Can't find valid F2FS filesystem in 1th superblock [ 278.848965][T11860] F2FS-fs (loop3): invalid crc value [ 278.855134][T11858] F2FS-fs (loop2): Try to recover 1th superblock, ret: 0 [ 278.862323][T11858] F2FS-fs (loop2): Mounted with checkpoint version = 48b305e5 [ 278.871851][T11860] F2FS-fs (loop3): Found nat_bits in checkpoint [ 278.928498][T11860] F2FS-fs (loop3): Try to recover 1th superblock, ret: 0 [ 278.935469][T11860] F2FS-fs (loop3): Mounted with checkpoint version = 48b305e4 [ 278.946420][T11873] loop4: detected capacity change from 0 to 256 [ 278.957202][T11873] exfat: Deprecated parameter 'utf8' [ 278.962637][T11873] exfat: Deprecated parameter 'utf8' [ 278.969932][T11873] /dev/loop4: Can't open blockdev [ 278.975124][ T28] audit: type=1400 audit(2000000008.306:2380): avc: denied { create } for pid=11859 comm="syz.3.4859" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 279.020059][ T28] audit: type=1400 audit(2000000008.343:2381): avc: denied { link } for pid=11859 comm="syz.3.4859" name="file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 279.032266][ T319] kworker/u4:3: attempt to access beyond end of device [ 279.032266][ T319] loop3: rw=2049, sector=45096, nr_sectors = 16 limit=40427 [ 279.078875][ T28] audit: type=1400 audit(2000000008.409:2382): avc: denied { read write } for pid=11859 comm="syz.3.4859" name="file0" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 279.103245][ T28] audit: type=1400 audit(2000000008.409:2383): avc: denied { open } for pid=11859 comm="syz.3.4859" path="/118/bus/file0" dev="loop3" ino=10 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:unlabeled_t tclass=fifo_file permissive=1 [ 279.209178][T11882] loop2: detected capacity change from 0 to 256 [ 279.255944][T11887] loop3: detected capacity change from 0 to 1024 [ 279.262953][T11887] EXT4-fs: Quota format mount options ignored when QUOTA feature is enabled [ 279.273793][T11887] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 279.291775][T10697] EXT4-fs (loop3): unmounting filesystem. [ 279.359416][T11898] loop0: detected capacity change from 0 to 2048 [ 279.417656][T11898] Alternate GPT is invalid, using primary GPT. [ 279.423804][T11898] loop0: p1 p2 p3 [ 279.608987][ T314] usb 4-1: new high-speed USB device number 62 using dummy_hcd [ 279.865587][ T314] usb 4-1: Using ep0 maxpacket: 16 [ 279.994028][ T314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7 [ 280.005330][ T314] usb 4-1: config 0 interface 0 altsetting 0 endpoint 0x81 has invalid wMaxPacketSize 0 [ 280.015541][ T314] usb 4-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 2 [ 280.028586][ T314] usb 4-1: New USB device found, idVendor=1e7d, idProduct=31ce, bcdDevice= 0.00 [ 280.037854][ T314] usb 4-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 280.047361][ T314] usb 4-1: config 0 descriptor?? [ 280.416971][T11963] loop0: detected capacity change from 0 to 1024 [ 280.424071][T11963] ext4: Bad value for 'commit' [ 280.561219][ T314] ryos 0003:1E7D:31CE.00A2: ignoring exceeding usage max [ 280.569549][ T314] ryos 0003:1E7D:31CE.00A2: ignoring exceeding usage max [ 280.577035][ T314] ryos 0003:1E7D:31CE.00A2: usage index exceeded [ 280.583620][ T314] ryos 0003:1E7D:31CE.00A2: item 0 0 2 2 parsing failed [ 280.591258][ T314] ryos 0003:1E7D:31CE.00A2: parse failed [ 280.597777][ T314] ryos: probe of 0003:1E7D:31CE.00A2 failed with error -22 [ 280.733109][T11984] loop0: detected capacity change from 0 to 256 [ 280.746654][T11984] FAT-fs (loop0): Directory bread(block 64) failed [ 280.753452][T11984] FAT-fs (loop0): Directory bread(block 65) failed [ 280.760060][T11984] FAT-fs (loop0): Directory bread(block 66) failed [ 280.766805][T11984] FAT-fs (loop0): Directory bread(block 67) failed [ 280.773711][T11984] FAT-fs (loop0): Directory bread(block 68) failed [ 280.781863][T11984] FAT-fs (loop0): Directory bread(block 69) failed [ 280.788251][ T37] usb 3-1: new high-speed USB device number 71 using dummy_hcd [ 280.788290][T11984] FAT-fs (loop0): Directory bread(block 70) failed [ 280.802169][T11984] FAT-fs (loop0): Directory bread(block 71) failed [ 280.803987][ T3847] usb 4-1: USB disconnect, device number 62 [ 280.814710][T11984] FAT-fs (loop0): Directory bread(block 72) failed [ 280.814750][T11984] FAT-fs (loop0): Directory bread(block 73) failed [ 280.831465][T11984] FAT-fs (loop0): error, invalid access to FAT (entry 0x0000616b) [ 280.840733][T11984] syz.0.4909: attempt to access beyond end of device [ 280.840733][T11984] loop0: rw=2049, sector=1224, nr_sectors = 4 limit=256 [ 281.180564][ T37] usb 3-1: config 0 interface 0 altsetting 0 has 1 endpoint descriptor, different from the interface descriptor's value: 0 [ 281.193953][ T37] usb 3-1: New USB device found, idVendor=056a, idProduct=0016, bcdDevice= 0.00 [ 281.203507][ T37] usb 3-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0 [ 281.212076][ T37] usb 3-1: config 0 descriptor?? [ 281.255823][ T37] usbhid 3-1:0.0: couldn't find an input interrupt endpoint [ 281.375599][T11994] loop3: detected capacity change from 0 to 128 [ 281.383495][T11994] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: none. [ 281.395343][T11994] EXT4-fs (loop3): re-mounted. Quota mode: none. [ 281.401653][T11994] ext4 filesystem being remounted at /124/mnt supports timestamps until 2038 (0x7fffffff) [ 281.418558][T10697] EXT4-fs (loop3): unmounting filesystem. [ 281.433891][T11998] loop3: detected capacity change from 0 to 512 [ 281.441018][T11998] EXT4-fs: Ignoring removed oldalloc option [ 281.461321][T11998] EXT4-fs (loop3): 1 orphan inode deleted [ 281.467091][T11998] EXT4-fs (loop3): mounted filesystem without journal. Quota mode: writeback. [ 281.476558][T11998] ext4 filesystem being mounted at /125/file1 supports timestamps until 2038 (0x7fffffff) [ 281.490802][T11998] incfs_lookup_dentry err:-2 [ 281.501538][T10697] ------------[ cut here ]------------ [ 281.506916][T10697] kernel BUG at fs/namei.c:2956! [ 281.511938][T10697] invalid opcode: 0000 [#1] PREEMPT SMP KASAN [ 281.517842][T10697] CPU: 1 PID: 10697 Comm: syz-executor Not tainted 6.1.99-syzkaller-00050-gadd3d68602a0 #0 [ 281.528057][T10697] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 281.537899][T10697] RIP: 0010:may_delete+0x6eb/0x6f0 [ 281.542844][T10697] Code: 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fe ff ff 4c 89 e7 e8 a6 6e f3 ff e9 72 fe ff ff e8 2c 2d ac ff 0f 0b e8 25 2d ac ff <0f> 0b 0f 1f 00 55 48 89 e5 41 56 53 48 89 fb e8 11 2d ac ff 4c 8d [ 281.562385][T10697] RSP: 0018:ffffc90000a37bd8 EFLAGS: 00010293 [ 281.568300][T10697] RAX: ffffffff81c9761b RBX: ffff8881005aae00 RCX: ffff888120aad100 [ 281.576318][T10697] RDX: 0000000000000000 RSI: 0000000000200000 RDI: 0000000000000000 [ 281.584267][T10697] RBP: ffffc90000a37c40 R08: ffffffff81c96faf R09: 0000000000000003 [ 281.592946][T10697] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8881005aaee0 [ 281.601019][T10697] R13: 1ffff110200b55dc R14: ffff8881330eba98 R15: dffffc0000000000 [ 281.609226][T10697] FS: 000055555637a500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 281.618303][T10697] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 281.625035][T10697] CR2: 00005555563a5528 CR3: 000000011a11f000 CR4: 00000000003506a0 [ 281.633691][T10697] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 281.641645][T10697] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 281.649873][T10697] Call Trace: [ 281.653156][T10697] [ 281.656082][T10697] ? __die_body+0x62/0xb0 [ 281.660430][T10697] ? die+0x88/0xb0 [ 281.663989][T10697] ? do_trap+0x103/0x330 [ 281.669035][T10697] ? may_delete+0x6eb/0x6f0 [ 281.673582][T10697] ? handle_invalid_op+0x95/0xc0 [ 281.678351][T10697] ? may_delete+0x6eb/0x6f0 [ 281.683021][T10697] ? exc_invalid_op+0x32/0x50 [ 281.687532][T10697] ? asm_exc_invalid_op+0x1b/0x20 [ 281.692574][T10697] ? may_delete+0x7f/0x6f0 [ 281.696891][T10697] ? may_delete+0x6eb/0x6f0 [ 281.701773][T10697] ? may_delete+0x6eb/0x6f0 [ 281.706267][T10697] ? may_delete+0x6eb/0x6f0 [ 281.710596][T10697] vfs_rmdir+0x32/0x500 [ 281.714844][T10697] ? generic_shutdown_super+0x2b8/0x370 [ 281.720319][T10697] incfs_kill_sb+0x113/0x230 [ 281.724740][T10697] deactivate_locked_super+0xad/0x110 [ 281.729976][T10697] deactivate_super+0xbe/0xf0 [ 281.734497][T10697] cleanup_mnt+0x485/0x510 [ 281.738800][T10697] ? user_path_at_empty+0x14e/0x1a0 [ 281.744094][T10697] __cleanup_mnt+0x19/0x20 [ 281.748343][T10697] task_work_run+0x24d/0x2e0 [ 281.752784][T10697] ? task_work_cancel+0x2b0/0x2b0 [ 281.757641][T10697] ? __x64_sys_umount+0x122/0x170 [ 281.762490][T10697] exit_to_user_mode_loop+0x94/0xa0 [ 281.767537][T10697] exit_to_user_mode_prepare+0x5a/0xa0 [ 281.772818][T10697] syscall_exit_to_user_mode+0x26/0x130 [ 281.778376][T10697] do_syscall_64+0x47/0xb0 [ 281.782630][T10697] ? clear_bhb_loop+0x55/0xb0 [ 281.787412][T10697] entry_SYSCALL_64_after_hwframe+0x68/0xd2 [ 281.793131][T10697] RIP: 0033:0x7f9be4d7f327 [ 281.797384][T10697] Code: a8 ff ff ff f7 d8 64 89 01 48 83 c8 ff c3 0f 1f 44 00 00 31 f6 e9 09 00 00 00 66 0f 1f 84 00 00 00 00 00 b8 a6 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 01 c3 48 c7 c2 a8 ff ff ff f7 d8 64 89 02 b8 [ 281.817175][T10697] RSP: 002b:00007ffcde989e68 EFLAGS: 00000246 ORIG_RAX: 00000000000000a6 [ 281.825590][T10697] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 00007f9be4d7f327 [ 281.833698][T10697] RDX: 0000000000000000 RSI: 0000000000000009 RDI: 00007ffcde989f20 [ 281.841590][T10697] RBP: 00007ffcde989f20 R08: 0000000000000000 R09: 0000000000000000 [ 281.849538][T10697] R10: 00000000ffffffff R11: 0000000000000246 R12: 00007ffcde98b010 [ 281.857302][T10697] R13: 00007f9be4df0134 R14: 0000000000040bfd R15: 00007ffcde98c0d0 [ 281.865214][T10697] [ 281.868155][T10697] Modules linked in: [ 281.873743][T10697] ---[ end trace 0000000000000000 ]--- [ 281.879814][T10697] RIP: 0010:may_delete+0x6eb/0x6f0 [ 281.884888][T10697] Code: 44 89 e1 80 e1 07 80 c1 03 38 c1 0f 8c 7f fe ff ff 4c 89 e7 e8 a6 6e f3 ff e9 72 fe ff ff e8 2c 2d ac ff 0f 0b e8 25 2d ac ff <0f> 0b 0f 1f 00 55 48 89 e5 41 56 53 48 89 fb e8 11 2d ac ff 4c 8d [ 281.907242][T10697] RSP: 0018:ffffc90000a37bd8 EFLAGS: 00010293 [ 281.914704][T10697] RAX: ffffffff81c9761b RBX: ffff8881005aae00 RCX: ffff888120aad100 [ 281.922953][T10697] RDX: 0000000000000000 RSI: 0000000000200000 RDI: 0000000000000000 [ 281.930945][T10697] RBP: ffffc90000a37c40 R08: ffffffff81c96faf R09: 0000000000000003 [ 281.941088][T10697] R10: ffffffffffffffff R11: dffffc0000000001 R12: ffff8881005aaee0 [ 281.948902][T10697] R13: 1ffff110200b55dc R14: ffff8881330eba98 R15: dffffc0000000000 [ 281.957363][T10697] FS: 000055555637a500(0000) GS:ffff8881f6f00000(0000) knlGS:0000000000000000 [ 281.966984][T10697] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 281.973612][T10697] CR2: 00007f8edab0a338 CR3: 000000011a11f000 CR4: 00000000003506a0 [ 281.981659][T10697] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 281.990014][T10697] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 281.998320][T10697] Kernel panic - not syncing: Fatal exception [ 282.004441][T10697] Kernel Offset: disabled [ 282.008579][T10697] Rebooting in 86400 seconds..